This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.mft File: EMpiwqdJv5H1YirewPGWGEk8u6k.mft (raw, json) Hash identifier: MBDs1ykRn2NwDK6p4UJCMr/YPxTI2SejWIWPthuqGBM= Subject key identifier: 58:EC:A7:EF:2F:E4:73:64:77:74:1B:49:72:2A:22:4C:99:67:09:8C Authority key identifier: 10:CA:62:C2:A7:49:BF:91:F5:62:2A:DE:C0:F1:96:18:49:3C:BB:A9 Certificate issuer: /CN=A91306B2/serialNumber=10CA62C2A749BF91F5622ADEC0F19618493CBBA9 Certificate serial: 0259 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EMpiwqdJv5H1YirewPGWGEk8u6k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.mft Manifest number: 0253 Signing time: Tue 23 Dec 2025 00:42:01 +0000 Manifest this update: Tue 23 Dec 2025 00:42:01 +0000 Manifest next update: Tue 30 Dec 2025 00:42:01 +0000 Files and hashes: 1: EMpiwqdJv5H1YirewPGWGEk8u6k.crl (hash: kisf8jkWIXwDyoC7I5phm9l5rJ9Z4cMJqQWDfxU6x5M=) 2: 695CA6D414BF11EEB8B95B7FC4F9AE02.roa (hash: UfOYe6RywBqkEJraeZHWTOUfrLHgXDOJgx5fH4IP4aM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.crl rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EMpiwqdJv5H1YirewPGWGEk8u6k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:42:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 601 (0x259) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91306B2, serialNumber=10CA62C2A749BF91F5622ADEC0F19618493CBBA9 Validity Not Before: Dec 23 00:42:01 2025 GMT Not After : Dec 30 00:42:01 2025 GMT Subject: CN=6949e559-1b96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:fa:50:f6:fc:49:46:88:d3:78:2d:a0:c9:cb: ab:cc:fe:3c:37:c3:69:bd:e5:16:1e:aa:b4:7c:17: b4:8d:57:65:e8:b5:a2:11:93:7b:c2:0c:9f:4c:d2: 6c:53:85:f0:28:8b:24:fa:5d:4d:e8:45:90:1e:fe: 00:f5:12:37:a3:68:40:23:b6:64:b0:d3:1e:23:6a: 50:b8:ac:f7:1e:6f:26:64:2b:1b:d6:bb:0e:9c:46: de:7f:56:25:99:27:39:ed:06:bd:e2:ca:aa:22:89: b5:dd:fe:95:01:ce:ff:03:96:8b:ac:67:41:62:86: ab:3b:d5:7c:be:4f:5c:78:c0:77:93:3b:01:89:4b: f9:88:ae:e0:16:f3:ab:6e:9d:93:69:08:a9:04:f8: 12:b3:c3:a9:ec:76:83:20:26:33:4e:1b:0e:77:4e: 12:13:6e:c7:bc:f6:41:d9:5a:2d:38:e6:b3:ee:07: e5:f1:b0:45:14:12:fa:c1:9a:9e:af:ac:18:f1:a6: 06:e9:1b:40:a5:26:be:96:1b:4d:ef:50:9e:b5:91: e6:d2:a8:91:55:c4:95:79:8a:d4:84:3a:04:23:cb: 47:23:f6:42:b7:27:21:88:e5:1e:1c:00:00:4f:e6: f2:c2:b6:d1:da:81:8d:ac:f5:86:26:cf:df:e5:e3: bb:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:EC:A7:EF:2F:E4:73:64:77:74:1B:49:72:2A:22:4C:99:67:09:8C X509v3 Authority Key Identifier: keyid:10:CA:62:C2:A7:49:BF:91:F5:62:2A:DE:C0:F1:96:18:49:3C:BB:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EMpiwqdJv5H1YirewPGWGEk8u6k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:93:07:f1:c1:ac:23:8e:77:33:ee:1e:ed:73:90:be:98:c7: 11:b9:32:0e:e3:78:e2:50:dd:13:9d:7b:96:77:f5:c7:e6:58: c7:f0:cf:fd:35:a6:16:80:d6:88:a8:33:0c:1e:91:e0:41:a3: 2f:f3:67:02:63:f1:18:21:14:1d:8a:ac:65:ca:31:ed:65:bd: fa:0e:61:f8:0f:b0:34:e2:4c:dc:f9:fd:a4:4a:2d:1e:24:d5: 1c:18:a2:d3:07:37:14:68:ed:48:83:77:22:67:2a:43:fa:1e: bb:8a:9f:ce:58:02:04:c8:34:32:dd:41:9f:9f:97:c5:e0:8a: 34:80:64:d8:4f:30:98:cf:ac:15:60:6f:7e:7b:cf:a4:f6:26: 9a:ef:40:b4:6d:cb:11:fe:af:77:c3:f6:68:a9:40:05:f8:b1: 79:31:59:c4:44:8d:38:42:b6:3b:4e:38:8b:75:d2:17:45:32: 0d:9c:af:99:39:5a:40:3b:b7:5c:cf:2c:ec:8a:d9:2b:74:21: 0a:87:4c:25:59:81:72:b5:a1:d7:7b:3e:f9:f8:ae:2e:ad:c9: 58:de:d5:99:ec:21:05:3c:cb:7c:6f:78:66:c3:33:cf:1e:8f: b7:ef:b3:fa:1e:6a:a1:7b:d4:a7:3e:13:aa:23:27:41:4b:50: 2c:af:e9:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA2QjIxMTAvBgNVBAUTKDEwQ0E2MkMyQTc0OUJGOTFGNTYyMkFERUMwRjE5NjE4 NDkzQ0JCQTkwHhcNMjUxMjIzMDA0MjAxWhcNMjUxMjMwMDA0MjAxWjAYMRYwFAYD VQQDDA02OTQ5ZTU1OS0xYjk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvpQ9vxJRojTeC2gycurzP48N8NpveUWHqq0fBe0jVdl6LWiEZN7wgyfTNJs U4XwKIsk+l1N6EWQHv4A9RI3o2hAI7ZksNMeI2pQuKz3Hm8mZCsb1rsOnEbef1Yl mSc57Qa94sqqIom13f6VAc7/A5aLrGdBYoarO9V8vk9ceMB3kzsBiUv5iK7gFvOr bp2TaQipBPgSs8Op7HaDICYzThsOd04SE27HvPZB2VotOOaz7gfl8bBFFBL6wZqe r6wY8aYG6RtApSa+lhtN71CetZHm0qiRVcSVeYrUhDoEI8tHI/ZCtychiOUeHAAA T+bywrbR2oGNrPWGJs/f5eO7+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFjsp+8v 5HNkd3QbSXIqIkyZZwmMMB8GA1UdIwQYMBaAFBDKYsKnSb+R9WIq3sDxlhhJPLup MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDZCMi8zMjFGREQzRTRE ODMxMUVEODdGQjFFNkZDNEY5QUUwMi9FTXBpd3FkSnY1SDFZaXJld1BHV0dFazh1 NmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VNcGl3cWRKdjVIMVlpcmV3UEdXR0VrOHU2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDZCMi8zMjFGREQzRTREODMxMUVEODdGQjFFNkZDNEY5QUUwMi9FTXBpd3FkSnY1 SDFZaXJld1BHV0dFazh1NmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChkwfxwawjjncz7h7tc5C+mMcRuTIO43jiUN0TnXuWd/XH5ljH8M/9 NaYWgNaIqDMMHpHgQaMv82cCY/EYIRQdiqxlyjHtZb36DmH4D7A04kzc+f2kSi0e JNUcGKLTBzcUaO1Ig3ciZypD+h67ip/OWAIEyDQy3UGfn5fF4Io0gGTYTzCYz6wV YG9+e8+k9iaa70C0bcsR/q93w/ZoqUAF+LF5MVnERI04QrY7TjiLddIXRTINnK+Z OVpAO7dczyzsitkrdCEKh0wlWYFytaHXez75+K4urclY3tWZ7CEFPMt8b3hmwzPP Ho+377P6Hmqhe9SnPhOqIydBS1Asr+lL -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:11 2025 by rpki-client