This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft File: EHo5wcwE8nzHJmPb97rm2SqVA4A.mft (raw, json) Hash identifier: 0XSGJG56Co0BKHrhFq7TRq9Fz/s35JZzYiFyiO0+mRY= Subject key identifier: 3A:34:8D:09:67:59:96:AB:C7:7A:59:BE:7A:28:B0:E8:9A:3B:46:BF Authority key identifier: 10:7A:39:C1:CC:04:F2:7C:C7:26:63:DB:F7:BA:E6:D9:2A:95:03:80 Certificate issuer: /CN=A91AFBDA/serialNumber=107A39C1CC04F27CC72663DBF7BAE6D92A950380 Certificate serial: 014E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EHo5wcwE8nzHJmPb97rm2SqVA4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft Manifest number: 014A Signing time: Sun 21 Dec 2025 03:29:48 +0000 Manifest this update: Sun 21 Dec 2025 03:29:47 +0000 Manifest next update: Sun 28 Dec 2025 03:29:47 +0000 Files and hashes: 1: EHo5wcwE8nzHJmPb97rm2SqVA4A.crl (hash: 0GE5tvC3Z89e/uqLiHG3BpfzxFTgrarZ/uyduVwonDk=) 2: 62246EC4E67E11EEAD030482C4F9AE02.roa (hash: J5vtQMTwpL/xmHDO4Uy4YqCD/INA3rpqnN+ZrH/2hAs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.crl rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EHo5wcwE8nzHJmPb97rm2SqVA4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 03:29:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 334 (0x14e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFBDA, serialNumber=107A39C1CC04F27CC72663DBF7BAE6D92A950380 Validity Not Before: Dec 21 03:29:47 2025 GMT Not After : Dec 28 03:29:47 2025 GMT Subject: CN=694769ac-d1d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:f0:0a:c5:3c:e3:6e:1a:c9:f5:97:71:ff:bb: b1:1b:b1:d4:2b:33:50:a8:54:a6:bb:11:fb:20:7f: 45:d2:d2:74:2d:e5:65:71:51:4f:6e:1e:b4:17:d4: 4d:89:ee:89:6b:eb:69:71:9b:fe:e3:cb:91:f8:a6: 81:6d:2a:21:54:0f:60:5e:7f:d8:a4:7f:e3:a0:98: 84:ad:25:ed:1a:6c:de:d7:f5:b7:83:a0:e3:4d:2d: 5f:e1:50:41:5d:e9:68:c3:57:ef:85:9d:7b:90:24: 32:be:c6:49:22:64:0e:f0:6d:62:7c:66:f5:3a:78: 83:a6:63:24:9f:eb:97:7a:4f:5c:d1:f7:1d:5b:19: de:64:ab:8d:47:20:88:ff:72:3b:0f:38:e3:3e:a0: c5:c4:93:60:6c:95:72:dd:57:58:24:02:a4:a8:f4: 81:9a:e3:7a:72:cd:71:cb:96:a1:b5:b5:b6:db:6a: 1f:48:6e:c6:19:eb:aa:5d:7c:c6:74:d1:2f:d9:af: b2:c6:aa:0f:8e:6c:c2:ce:74:d0:16:e0:d4:3b:1a: d9:4a:ef:8b:06:1f:23:36:6c:4c:cf:00:6c:43:74: c6:49:9d:f2:88:96:f8:cb:df:90:22:87:d1:2e:56: 01:dc:91:8a:53:2a:13:81:a9:5b:9c:fa:13:db:cf: 4b:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:34:8D:09:67:59:96:AB:C7:7A:59:BE:7A:28:B0:E8:9A:3B:46:BF X509v3 Authority Key Identifier: keyid:10:7A:39:C1:CC:04:F2:7C:C7:26:63:DB:F7:BA:E6:D9:2A:95:03:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EHo5wcwE8nzHJmPb97rm2SqVA4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:d2:29:33:36:7a:65:5a:7c:f3:d7:6e:31:17:86:d9:ee:e9: b6:7d:c5:99:d2:50:b6:b9:c7:95:bb:66:df:64:e4:47:ef:59: c9:2f:b6:c5:e9:79:e9:a1:23:49:ec:99:6f:c2:22:1d:11:68: e5:f0:c2:02:c3:1c:f2:96:fa:e5:f7:c1:a2:5f:56:f6:26:1f: bf:f8:2d:59:27:ab:ad:63:cc:f1:32:5f:a2:e8:04:40:53:3a: 67:81:aa:6c:43:f4:0c:1d:4e:ff:fc:23:b0:56:4d:16:e4:03: 78:38:93:0c:f9:5c:42:4d:3f:98:fa:c9:b7:42:61:bc:c2:32: b6:89:6c:bc:95:a7:c0:67:aa:4b:4c:50:0a:fc:3c:28:f2:63: 40:2a:35:9d:9d:15:21:68:f4:8d:cb:32:bd:bb:90:e4:8b:d2: b3:11:80:03:64:bf:59:04:d2:eb:ea:9f:0f:76:91:ad:60:7a: ba:6d:fe:d0:67:fe:02:0c:5f:11:4a:2e:94:dd:67:e1:b0:6e: 34:83:01:32:b2:53:99:66:a0:22:0b:b5:00:2e:2d:75:38:f8: 5e:27:69:25:a7:e2:5f:da:1a:9d:b3:10:a6:eb:fa:cf:be:55: 74:d6:8c:40:65:7b:ad:42:29:ef:b0:a9:06:9f:d2:63:bf:ef: 41:40:1c:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCREExMTAvBgNVBAUTKDEwN0EzOUMxQ0MwNEYyN0NDNzI2NjNEQkY3QkFFNkQ5 MkE5NTAzODAwHhcNMjUxMjIxMDMyOTQ3WhcNMjUxMjI4MDMyOTQ3WjAYMRYwFAYD VQQDDA02OTQ3NjlhYy1kMWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArPAKxTzjbhrJ9Zdx/7uxG7HUKzNQqFSmuxH7IH9F0tJ0LeVlcVFPbh60F9RN ie6Ja+tpcZv+48uR+KaBbSohVA9gXn/YpH/joJiErSXtGmze1/W3g6DjTS1f4VBB Xelow1fvhZ17kCQyvsZJImQO8G1ifGb1OniDpmMkn+uXek9c0fcdWxneZKuNRyCI /3I7DzjjPqDFxJNgbJVy3VdYJAKkqPSBmuN6cs1xy5ahtbW222ofSG7GGeuqXXzG dNEv2a+yxqoPjmzCznTQFuDUOxrZSu+LBh8jNmxMzwBsQ3TGSZ3yiJb4y9+QIofR LlYB3JGKUyoTgalbnPoT289LoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDo0jQln WZarx3pZvnoosOiaO0a/MB8GA1UdIwQYMBaAFBB6OcHMBPJ8xyZj2/e65tkqlQOA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkJEQS82QUQzNzRBQUU2 NUQxMUVFQjYxMjNFNDFDNEY5QUUwMi9FSG81d2N3RThuekhKbVBiOTdybTJTcVZB NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VIbzV3Y3dFOG56SEptUGI5N3JtMlNxVkE0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkJEQS82QUQzNzRBQUU2NUQxMUVFQjYxMjNFNDFDNEY5QUUwMi9FSG81d2N3RThu ekhKbVBiOTdybTJTcVZBNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZ0ikzNnplWnzz124xF4bZ7um2fcWZ0lC2uceVu2bfZORH71nJL7bF 6XnpoSNJ7JlvwiIdEWjl8MICwxzylvrl98GiX1b2Jh+/+C1ZJ6utY8zxMl+i6ARA UzpngapsQ/QMHU7//COwVk0W5AN4OJMM+VxCTT+Y+sm3QmG8wjK2iWy8lafAZ6pL TFAK/Dwo8mNAKjWdnRUhaPSNyzK9u5Dki9KzEYADZL9ZBNLr6p8PdpGtYHq6bf7Q Z/4CDF8RSi6U3WfhsG40gwEyslOZZqAiC7UALi11OPheJ2klp+Jf2hqdsxCm6/rP vlV01oxAZXutQinvsKkGn9Jjv+9BQBz/ -----END CERTIFICATE-----Generated at Sun Dec 21 19:45:58 2025 by rpki-client