This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.mft File: 0ewZe9sNlRk40e71SWoRrMoCiO8.mft (raw, json) Hash identifier: MCe3paC4nIBfmroT/lwiccABqmtmdYtJzaVLXJwPhZE= Subject key identifier: CB:A0:83:76:AE:F5:3D:A9:2E:B8:AC:0E:77:F1:C7:A9:4B:F3:DD:44 Authority key identifier: D1:EC:19:7B:DB:0D:95:19:38:D1:EE:F5:49:6A:11:AC:CA:02:88:EF Certificate issuer: /CN=A919FDC0/serialNumber=D1EC197BDB0D951938D1EEF5496A11ACCA0288EF Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ewZe9sNlRk40e71SWoRrMoCiO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.mft Manifest number: 44 Signing time: Wed 03 Dec 2025 05:37:11 +0000 Manifest this update: Wed 03 Dec 2025 05:37:11 +0000 Manifest next update: Wed 10 Dec 2025 05:37:11 +0000 Files and hashes: 1: 0ewZe9sNlRk40e71SWoRrMoCiO8.crl (hash: ZaR7E/T1Nxevxmnqjl6unqc4gJly2ihF6o8xwCuAXgc=) 2: ACFE803469E911F0A7D42F68C4F9AE02.roa (hash: hVcLQOQnj8t+4j/b6kUDlk5JAqcOolfdhy262nXQ91E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.crl rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ewZe9sNlRk40e71SWoRrMoCiO8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 05:37:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FDC0, serialNumber=D1EC197BDB0D951938D1EEF5496A11ACCA0288EF Validity Not Before: Dec 3 05:37:11 2025 GMT Not After : Dec 10 05:37:11 2025 GMT Subject: CN=692fcc87-7923 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e7:22:c8:5d:fc:bb:0d:8f:c5:47:a5:1e:3d: d7:c4:16:36:ad:67:a9:0a:9b:95:cf:c9:7b:c4:8e: 32:ed:95:d8:0b:89:0b:c0:97:61:6f:95:0d:fa:fa: 05:d6:e3:84:63:3f:e3:cd:19:fa:f6:c9:b5:b3:e8: f7:97:f2:c7:4d:de:3b:95:18:ea:42:b7:d4:eb:9b: 41:7e:73:1f:80:29:84:0a:48:66:7c:7b:43:4e:c3: 56:2e:89:0c:9e:ee:51:5d:49:05:1f:34:c8:f9:65: 5b:83:9c:98:89:c2:75:2d:22:01:ea:72:de:00:4a: 6c:10:71:57:20:4d:41:35:a2:b5:59:ee:d4:14:c0: 49:4a:de:7c:d7:47:a5:87:93:c3:11:50:1c:c2:ad: 2d:76:e2:b3:d1:be:7a:a9:ed:89:47:17:75:92:36: 16:ab:eb:59:ca:2d:8f:07:fd:35:20:e6:7d:b3:fd: fc:2f:75:3d:9e:d3:09:d2:3f:29:23:ec:94:6b:12: 95:4e:73:d5:e0:30:27:be:d1:a7:53:ef:f3:22:e0: a1:0d:6b:d4:f2:62:7b:95:46:30:68:aa:c2:10:70: a2:6a:ad:21:46:9b:bb:fc:e8:66:26:8a:f5:26:da: 07:f3:6c:e9:85:17:4d:24:52:71:7a:28:1d:c1:f3: 27:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:A0:83:76:AE:F5:3D:A9:2E:B8:AC:0E:77:F1:C7:A9:4B:F3:DD:44 X509v3 Authority Key Identifier: keyid:D1:EC:19:7B:DB:0D:95:19:38:D1:EE:F5:49:6A:11:AC:CA:02:88:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ewZe9sNlRk40e71SWoRrMoCiO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:d9:77:25:f6:66:56:7e:58:f4:91:15:63:63:03:01:42:b5: 8e:7e:5c:c5:70:11:b8:36:bd:52:af:05:00:09:8a:cc:89:a7: 0e:23:fd:d7:fe:1b:ed:71:37:1d:f7:59:99:2d:cf:79:14:00: 47:b3:9c:1c:8b:9d:30:b0:61:5d:97:5a:ca:5a:75:b8:b3:f2: 1a:2c:90:68:6f:d4:11:56:e0:ae:56:f1:7d:29:ed:e3:9b:ee: 49:4c:d5:45:ec:69:97:79:ac:75:83:83:9d:26:bc:1b:60:4d: d3:3c:8f:f5:ee:48:9b:06:d5:03:9c:49:2c:cf:a7:3e:0c:ce: d9:64:51:44:14:ed:a9:56:b9:0a:3b:b8:16:6d:85:c3:4a:9c: 3e:e6:f4:fc:5e:5e:35:97:99:fd:57:3c:f2:1b:29:d8:02:1a: f9:8a:f0:17:5f:f3:1b:a5:64:22:29:d4:6e:f0:e8:68:a6:0b: c6:a9:95:c4:a6:0d:2f:44:38:a7:d3:71:fb:d1:ad:ca:8b:9b: 51:98:08:d3:90:c7:fe:ad:80:c2:50:f3:7c:88:95:d7:49:5e: fc:8a:86:2c:ab:5c:8a:f6:c6:6b:44:c2:a5:d9:49:41:26:02: 53:1d:31:46:04:61:60:e2:b2:3e:37:01:2e:90:bc:63:f2:62: c3:df:75:9a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RkRDMDExMC8GA1UEBRMoRDFFQzE5N0JEQjBEOTUxOTM4RDFFRUY1NDk2QTExQUND QTAyODhFRjAeFw0yNTEyMDMwNTM3MTFaFw0yNTEyMTAwNTM3MTFaMBgxFjAUBgNV BAMTDTY5MmZjYzg3LTc5MjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCy5yLIXfy7DY/FR6UePdfEFjatZ6kKm5XPyXvEjjLtldgLiQvAl2FvlQ36+gXW 44RjP+PNGfr2ybWz6PeX8sdN3juVGOpCt9Trm0F+cx+AKYQKSGZ8e0NOw1YuiQye 7lFdSQUfNMj5ZVuDnJiJwnUtIgHqct4ASmwQcVcgTUE1orVZ7tQUwElK3nzXR6WH k8MRUBzCrS124rPRvnqp7YlHF3WSNhar61nKLY8H/TUg5n2z/fwvdT2e0wnSPykj 7JRrEpVOc9XgMCe+0adT7/Mi4KENa9TyYnuVRjBoqsIQcKJqrSFGm7v86GYmivUm 2gfzbOmFF00kUnF6KB3B8yfnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUy6CDdq71 PakuuKwOd/HHqUvz3UQwHwYDVR0jBBgwFoAU0ewZe9sNlRk40e71SWoRrMoCiO8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlGREMwLzI5NTRENjJBNjlF OTExRjA4MUI2NUI2N0M0RjlBRTAyLzBld1plOXNObFJrNDBlNzFTV29Sck1vQ2lP OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMGV3WmU5c05sUms0MGU3MVNXb1JyTW9DaU84LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlG REMwLzI5NTRENjJBNjlFOTExRjA4MUI2NUI2N0M0RjlBRTAyLzBld1plOXNObFJr NDBlNzFTV29Sck1vQ2lPOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABrZdyX2ZlZ+WPSRFWNjAwFCtY5+XMVwEbg2vVKvBQAJisyJpw4j/df+ G+1xNx33WZktz3kUAEeznByLnTCwYV2XWspadbiz8hoskGhv1BFW4K5W8X0p7eOb 7klM1UXsaZd5rHWDg50mvBtgTdM8j/XuSJsG1QOcSSzPpz4MztlkUUQU7alWuQo7 uBZthcNKnD7m9PxeXjWXmf1XPPIbKdgCGvmK8Bdf8xulZCIp1G7w6GimC8aplcSm DS9EOKfTcfvRrcqLm1GYCNOQx/6tgMJQ83yIlddJXvyKhiyrXIr2xmtEwqXZSUEm AlMdMUYEYWDisj43AS6QvGPyYsPfdZo= -----END CERTIFICATE-----Generated at Wed Dec 3 15:32:04 2025 by rpki-client