This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

$ rpki-client -vvf rpki.apnic.net/member_repository/A91B38F5/E802819E025B11F09ACFD910C4F9AE02/eVaKOOzbYX5njAimzEPE1lAs7GI.mft
File: eVaKOOzbYX5njAimzEPE1lAs7GI.mft (raw, json)
Hash identifier: 3AC4vvTSIdkF6mInWeuLDYmifOFJeHHjQ0TKpI6VInY=
Subject key identifier: 6B:39:57:1B:6B:85:5E:01:93:52:3C:D1:A9:99:F8:81:4A:E0:1F:88
Authority key identifier: 79:56:8A:38:EC:DB:61:7E:67:8C:08:A6:CC:43:C4:D6:50:2C:EC:62
Certificate issuer: /CN=A91B38F5/serialNumber=79568A38ECDB617E678C08A6CC43C4D6502CEC62
Certificate serial: 91
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/eVaKOOzbYX5njAimzEPE1lAs7GI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B38F5/E802819E025B11F09ACFD910C4F9AE02/eVaKOOzbYX5njAimzEPE1lAs7GI.mft
Manifest number: 90
Signing time: Tue 23 Dec 2025 05:26:27 +0000
Manifest this update: Tue 23 Dec 2025 05:26:27 +0000
Manifest next update: Tue 30 Dec 2025 05:26:27 +0000
Files and hashes: 1: eVaKOOzbYX5njAimzEPE1lAs7GI.crl (hash: GTQxg6GFZxVUrdTaur1IUER45AxQnmOXzIozd2PyDOI=)
2: B5E94296025C11F0BDF41912C4F9AE02.roa (hash: vF2hPrjWnGE1wVLs/Ml1OeBVYR8W6IECJw4qVwfrJO0=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91B38F5/E802819E025B11F09ACFD910C4F9AE02/eVaKOOzbYX5njAimzEPE1lAs7GI.crl
rsync://rpki.apnic.net/member_repository/A91B38F5/E802819E025B11F09ACFD910C4F9AE02/eVaKOOzbYX5njAimzEPE1lAs7GI.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/eVaKOOzbYX5njAimzEPE1lAs7GI.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 30 Dec 2025 05:26:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145 (0x91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B38F5, serialNumber=79568A38ECDB617E678C08A6CC43C4D6502CEC62
Validity
Not Before: Dec 23 05:26:27 2025 GMT
Not After : Dec 30 05:26:27 2025 GMT
Subject: CN=694a2803-28fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:0a:16:5d:82:1a:4f:2b:d9:53:12:91:84:ce:
8c:c5:4d:2b:09:b2:91:a0:84:62:fb:a0:42:df:0a:
93:50:01:fa:26:56:40:27:ce:8e:33:41:f9:89:8e:
bd:5b:62:3b:66:05:fc:5b:38:a0:97:28:de:6a:11:
07:ef:01:a4:bf:e4:96:92:a7:62:0a:79:54:51:06:
14:b9:97:c2:84:69:ed:26:61:93:3a:3a:3b:9c:99:
3b:ff:3d:25:0b:e7:11:47:26:2e:49:e4:cf:0c:81:
16:ef:53:99:e6:b3:4d:b1:56:3e:e5:18:c2:5b:e2:
93:bd:18:a6:69:aa:06:80:89:1e:8c:ab:a5:c3:b6:
13:ce:9d:ec:87:ea:c7:55:e1:aa:c3:33:a2:6e:b4:
38:25:d1:77:08:1e:f8:04:29:21:de:fd:ab:90:a9:
52:b0:a3:d7:d2:ab:7a:0a:17:40:84:a1:e0:76:75:
3c:05:ee:59:27:1c:43:b3:9d:27:e9:99:7b:53:18:
7d:60:1c:b4:a7:99:af:1a:f8:b1:ed:f0:61:e2:ee:
b9:e3:85:78:50:f5:e0:48:32:1d:95:ab:5e:35:3b:
ed:ca:f7:ca:f1:1d:86:c7:09:63:73:22:de:d6:76:
67:e9:20:22:9a:b6:ff:fd:d7:55:b1:71:ae:77:f3:
49:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:39:57:1B:6B:85:5E:01:93:52:3C:D1:A9:99:F8:81:4A:E0:1F:88
X509v3 Authority Key Identifier:
keyid:79:56:8A:38:EC:DB:61:7E:67:8C:08:A6:CC:43:C4:D6:50:2C:EC:62
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B38F5/E802819E025B11F09ACFD910C4F9AE02/eVaKOOzbYX5njAimzEPE1lAs7GI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/eVaKOOzbYX5njAimzEPE1lAs7GI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B38F5/E802819E025B11F09ACFD910C4F9AE02/eVaKOOzbYX5njAimzEPE1lAs7GI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
66:c9:39:0f:e4:e5:2f:cc:b0:a3:f9:c9:e0:11:8b:5a:5c:b4:
49:0b:59:34:a5:fe:a7:c9:2a:e1:0d:e2:e4:e6:03:8a:d9:29:
e6:ca:ec:57:8b:99:58:af:3d:3b:2b:2b:9c:1a:3b:f9:dc:71:
f3:51:61:0e:48:fe:9c:a4:f1:43:c8:27:b5:70:af:f6:9b:99:
c7:16:5e:ca:64:81:89:d2:64:ae:fc:9a:fc:68:73:17:a5:4d:
e1:b8:55:16:6b:f2:9f:ce:4d:29:cd:7e:ff:39:06:1e:2a:c2:
76:c3:6c:21:3b:95:ff:a6:46:3d:8a:c6:51:a0:2c:89:29:ca:
28:c3:e4:f9:d8:b0:b8:64:8c:12:78:e5:00:35:a2:a7:40:bd:
6b:c7:f5:25:3b:32:19:80:a0:7a:0b:19:03:79:a6:12:0a:38:
0b:75:05:0c:03:eb:26:59:9d:77:c8:99:da:7a:a3:e7:d3:f9:
23:0a:6f:51:f2:eb:27:9c:9d:05:67:26:89:06:6b:46:14:4d:
2c:57:1e:c7:49:0b:bf:57:76:14:3b:33:0d:ac:58:b8:0a:53:
8a:63:e2:06:c4:2d:68:47:8a:ef:95:38:47:58:a1:1e:01:d8:
0d:21:a8:70:19:e8:7a:d4:99:7c:82:c4:89:cf:72:b9:54:75:
11:1a:6c:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 25 03:20:47 2025 by rpki-client