This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft File: ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft (raw, json) Hash identifier: c9PphktlMg0ZnC4e/zXacKGdjw5y5ys+YGO+9J0F7i0= Subject key identifier: 3E:97:FF:CB:DC:11:CD:D7:25:F3:81:30:49:7C:97:49:30:30:89:D7 Authority key identifier: 7A:31:D5:73:97:98:B0:64:A6:00:71:33:AA:3E:5B:9C:D0:EE:D4:5F Certificate issuer: /CN=A919A285/serialNumber=7A31D5739798B064A6007133AA3E5B9CD0EED45F Certificate serial: 08D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft Manifest number: 08D1 Signing time: Mon 22 Dec 2025 19:47:51 +0000 Manifest this update: Mon 22 Dec 2025 19:47:51 +0000 Manifest next update: Mon 29 Dec 2025 19:47:51 +0000 Files and hashes: 1: ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl (hash: 5PQqZYJ1K7/HoZVID+G0YsOZkCDkZwDc1rQ53Z9pbWk=) 2: 1DCABC72C57811EA950A8643C4F9AE02.roa (hash: SmM5SV/HdQB936b+LrCiBj0nwbXGTgq5pP05qod/A04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:47:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2265 (0x8d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A285, serialNumber=7A31D5739798B064A6007133AA3E5B9CD0EED45F Validity Not Before: Dec 22 19:47:51 2025 GMT Not After : Dec 29 19:47:51 2025 GMT Subject: CN=6949a067-498d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:0a:1c:a2:35:80:5a:7c:65:c1:dc:11:08:ea: fa:40:ff:13:d1:60:9e:98:6d:da:30:6a:2b:ba:50: 7a:b9:5b:81:8f:ab:08:ef:52:27:65:e0:5b:95:92: 88:b2:50:af:3c:7e:d6:07:a9:2e:a8:e4:6f:9a:05: 54:ed:99:5c:b5:43:13:75:92:7b:c4:9c:21:b0:3f: 78:0f:2b:d6:2c:2b:ba:8e:ad:18:29:81:8d:41:58: be:81:5e:f7:ba:85:79:78:01:48:49:6c:0b:ce:32: de:d8:62:07:ad:d6:77:76:25:c4:2f:22:1c:df:41: 68:47:bc:35:a0:21:fe:28:ee:9f:f5:40:8d:bb:97: 15:b6:6f:4c:47:dd:58:d2:d8:43:ed:1a:ce:b6:7f: 1d:46:16:c1:32:1e:4b:e7:1a:84:94:91:c2:ad:c7: 05:96:23:bd:92:de:3d:6b:ce:2f:bc:66:ce:6a:f8: b9:f7:8b:7b:67:05:e8:f4:6c:b1:d4:f4:68:f4:34: 22:9f:ce:0f:b5:8f:76:9c:7d:6b:de:f6:60:23:1e: 68:30:95:ee:97:24:1b:d7:b5:6d:8d:b9:f8:33:0e: ac:d8:df:ab:06:71:89:1a:70:48:19:96:49:4d:d5: 02:8f:17:1a:3c:10:53:a6:9a:78:70:17:66:79:8f: a8:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:97:FF:CB:DC:11:CD:D7:25:F3:81:30:49:7C:97:49:30:30:89:D7 X509v3 Authority Key Identifier: keyid:7A:31:D5:73:97:98:B0:64:A6:00:71:33:AA:3E:5B:9C:D0:EE:D4:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e2:f9:09:94:17:94:f9:58:88:6c:ef:a7:71:26:09:7f:3c:84: 64:b0:ac:e7:95:57:3d:15:c4:0a:4f:62:e5:d9:91:75:f3:71: 64:61:5a:9b:58:41:bd:23:89:94:00:31:a2:b7:d7:66:24:61: 29:f5:19:f9:b5:60:9a:aa:fd:60:60:75:33:aa:87:42:98:a7: b2:f9:89:b2:4e:09:18:12:d6:ee:1c:8b:0f:fb:9c:74:19:bd: 3f:d3:35:3a:51:e7:3b:6d:e5:ad:1c:2e:6a:74:cb:90:61:e4: 7d:0c:bc:1b:fc:6b:5e:e9:c6:49:6a:96:22:fb:da:56:3f:26: f4:0c:41:ae:52:09:e1:e6:03:76:8f:97:42:9c:c6:97:1b:82: ba:ec:da:bb:b6:33:94:ca:54:0f:28:b6:3c:13:3e:df:fb:62: df:94:02:72:c5:5a:a4:d9:c1:47:5c:2c:1d:38:6b:3b:74:bd: fd:3e:c2:ec:1d:65:80:b5:82:20:5c:76:d4:77:2c:f9:9e:d9: c5:b6:64:43:a4:f7:c7:4e:34:28:48:a7:6e:13:cc:1f:71:6c: 97:4f:48:02:c0:0a:4c:dc:5f:dc:09:1a:60:17:6b:37:fc:b2: 20:c9:5c:da:88:23:d3:1a:72:9f:d3:c4:97:0e:d2:3e:81:33: 5a:49:58:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEyODUxMTAvBgNVBAUTKDdBMzFENTczOTc5OEIwNjRBNjAwNzEzM0FBM0U1QjlD RDBFRUQ0NUYwHhcNMjUxMjIyMTk0NzUxWhcNMjUxMjI5MTk0NzUxWjAYMRYwFAYD VQQDDA02OTQ5YTA2Ny00OThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApwocojWAWnxlwdwRCOr6QP8T0WCemG3aMGorulB6uVuBj6sI71InZeBblZKI slCvPH7WB6kuqORvmgVU7ZlctUMTdZJ7xJwhsD94DyvWLCu6jq0YKYGNQVi+gV73 uoV5eAFISWwLzjLe2GIHrdZ3diXELyIc30FoR7w1oCH+KO6f9UCNu5cVtm9MR91Y 0thD7RrOtn8dRhbBMh5L5xqElJHCrccFliO9kt49a84vvGbOavi594t7ZwXo9Gyx 1PRo9DQin84PtY92nH1r3vZgIx5oMJXulyQb17Vtjbn4Mw6s2N+rBnGJGnBIGZZJ TdUCjxcaPBBTppp4cBdmeY+oNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD6X/8vc Ec3XJfOBMEl8l0kwMInXMB8GA1UdIwQYMBaAFHox1XOXmLBkpgBxM6o+W5zQ7tRf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTI4NS9ERDYyODlBQUM1 NzUxMUVBQTU1ODFDNDBDNEY5QUUwMi9lakhWYzVlWXNHU21BSEV6cWo1Ym5ORHUx RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VqSFZjNWVZc0dTbUFIRXpxajVibk5EdTFGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTI4NS9ERDYyODlBQUM1NzUxMUVBQTU1ODFDNDBDNEY5QUUwMi9lakhWYzVlWXNH U21BSEV6cWo1Ym5ORHUxRjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDi+QmUF5T5WIhs76dxJgl/PIRksKznlVc9FcQKT2Ll2ZF183FkYVqb WEG9I4mUADGit9dmJGEp9Rn5tWCaqv1gYHUzqodCmKey+YmyTgkYEtbuHIsP+5x0 Gb0/0zU6Uec7beWtHC5qdMuQYeR9DLwb/Gte6cZJapYi+9pWPyb0DEGuUgnh5gN2 j5dCnMaXG4K67Nq7tjOUylQPKLY8Ez7f+2LflAJyxVqk2cFHXCwdOGs7dL39PsLs HWWAtYIgXHbUdyz5ntnFtmRDpPfHTjQoSKduE8wfcWyXT0gCwApM3F/cCRpgF2s3 /LIgyVzaiCPTGnKf08SXDtI+gTNaSVjE -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:38 2025 by rpki-client