This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.mft File: EWTaYENN7l6xS7U9S1lOZl3yb_Y.mft (raw, json) Hash identifier: 9SvHxahyTv3Zy/8MFADqiOTCgQrW4V924JCyOWZTa/g= Subject key identifier: 9A:89:EA:06:17:E6:8C:22:DF:50:BA:60:FE:54:C5:14:DF:31:E3:A3 Authority key identifier: 11:64:DA:60:43:4D:EE:5E:B1:4B:B5:3D:4B:59:4E:66:5D:F2:6F:F6 Certificate issuer: /CN=A91BD844/serialNumber=1164DA60434DEE5EB14BB53D4B594E665DF26FF6 Certificate serial: 01D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EWTaYENN7l6xS7U9S1lOZl3yb_Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.mft Manifest number: 01CF Signing time: Sun 07 Dec 2025 01:23:42 +0000 Manifest this update: Sun 07 Dec 2025 01:23:42 +0000 Manifest next update: Sun 14 Dec 2025 01:23:42 +0000 Files and hashes: 1: EWTaYENN7l6xS7U9S1lOZl3yb_Y.crl (hash: huzz/F6SYCkm3kLHynIWWniSxkpUUmzbIduFsREYBzY=) 2: 32D39C06224511EE81776175C4F9AE02.roa (hash: IpE3dRMtn4VIH+WF4zXN3kMbPGJfB4KqDmJ+7Dw6ktA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.crl rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EWTaYENN7l6xS7U9S1lOZl3yb_Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 01:23:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD844, serialNumber=1164DA60434DEE5EB14BB53D4B594E665DF26FF6 Validity Not Before: Dec 7 01:23:42 2025 GMT Not After : Dec 14 01:23:42 2025 GMT Subject: CN=6934d71e-9f98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:7a:f4:d9:be:28:93:8d:3e:4d:4c:47:46:2f: 5d:bc:78:a2:66:45:5b:b2:d6:23:98:f5:94:85:36: 72:81:94:9f:a0:2c:d8:c6:5b:9b:d8:9e:76:9b:35: 3f:dc:47:37:b0:89:6a:e2:e6:33:0b:54:b0:03:41: 37:95:a9:96:66:76:50:c6:6e:90:45:c4:88:f7:29: a5:14:45:07:39:8c:d7:76:86:c5:da:a5:41:83:ea: fa:44:26:7f:10:fa:eb:f1:15:c1:e8:fe:5c:82:ef: 92:e7:14:b9:b1:70:d1:1f:6e:98:7e:56:74:e8:49: 1d:7a:38:89:91:9b:1c:67:c3:07:38:56:cc:93:7f: 87:54:f3:0f:bc:a5:fc:5d:01:49:51:41:a1:94:9a: a7:42:2d:31:24:00:34:a4:37:52:09:4b:0f:4c:a2: bd:0e:fa:e4:8e:81:70:a5:f4:2d:33:69:88:92:ad: d7:45:2d:7b:6b:bc:9a:36:d3:f8:0a:61:78:d4:94: b6:2f:a9:6b:da:06:a1:9c:65:d7:0b:9d:6f:37:fc: 8c:d8:37:be:4a:d0:bf:8c:32:ff:b9:dc:1f:6e:ac: ea:f6:a6:f8:60:11:97:c5:b3:d4:11:bf:c2:ad:cc: 8a:14:88:10:35:09:d7:86:2f:7c:a1:e2:26:7f:39: f3:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:89:EA:06:17:E6:8C:22:DF:50:BA:60:FE:54:C5:14:DF:31:E3:A3 X509v3 Authority Key Identifier: keyid:11:64:DA:60:43:4D:EE:5E:B1:4B:B5:3D:4B:59:4E:66:5D:F2:6F:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EWTaYENN7l6xS7U9S1lOZl3yb_Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:63:4d:94:73:73:f1:1c:26:4e:61:37:51:75:85:c0:b4:aa: 4e:ad:1e:36:9a:a4:76:d8:26:45:a7:d4:59:94:89:2a:39:f7: 31:b6:8d:51:9f:3a:77:d4:2f:67:ee:db:62:5a:f7:13:8d:63: aa:45:2f:46:f9:28:d9:dc:b2:af:0e:00:fa:6c:3b:3b:1d:76: e0:61:0d:b8:6b:85:0a:56:c1:32:e6:5a:f9:ec:a3:9c:08:92: 21:5a:4d:07:91:a3:a8:52:4d:82:69:d8:4a:13:d2:2a:cb:cf: a7:09:6c:a4:bf:2d:19:36:55:a7:e6:5c:eb:62:d2:be:cd:93: b4:a2:5e:29:bf:c5:f8:b1:9e:59:23:21:89:f0:d6:11:c0:5c: 3c:22:4f:e4:5e:f7:b0:a8:a5:c1:22:85:5a:4c:c4:ce:5c:f9: b9:a4:7c:87:c8:6b:cf:e2:e6:90:d9:eb:ed:25:f8:bf:9b:e3: de:ef:30:20:9a:8d:2f:4e:bd:9d:15:d5:9c:33:d3:28:a3:a6: 40:d2:e5:0d:5b:23:b4:fb:7a:ee:97:a5:82:c5:64:b6:b6:0e: 32:e5:61:76:fa:18:c6:a7:f6:bc:fd:a0:f5:a1:a5:bc:fb:23: 64:22:cd:ec:7a:9b:35:12:80:2e:06:88:e0:53:45:57:6c:a2: 4b:a6:90:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ4NDQxMTAvBgNVBAUTKDExNjREQTYwNDM0REVFNUVCMTRCQjUzRDRCNTk0RTY2 NURGMjZGRjYwHhcNMjUxMjA3MDEyMzQyWhcNMjUxMjE0MDEyMzQyWjAYMRYwFAYD VQQDEw02OTM0ZDcxZS05Zjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Xr02b4ok40+TUxHRi9dvHiiZkVbstYjmPWUhTZygZSfoCzYxlub2J52mzU/ 3Ec3sIlq4uYzC1SwA0E3lamWZnZQxm6QRcSI9ymlFEUHOYzXdobF2qVBg+r6RCZ/ EPrr8RXB6P5cgu+S5xS5sXDRH26YflZ06EkdejiJkZscZ8MHOFbMk3+HVPMPvKX8 XQFJUUGhlJqnQi0xJAA0pDdSCUsPTKK9DvrkjoFwpfQtM2mIkq3XRS17a7yaNtP4 CmF41JS2L6lr2gahnGXXC51vN/yM2De+StC/jDL/udwfbqzq9qb4YBGXxbPUEb/C rcyKFIgQNQnXhi98oeImfznz0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJqJ6gYX 5owi31C6YP5UxRTfMeOjMB8GA1UdIwQYMBaAFBFk2mBDTe5esUu1PUtZTmZd8m/2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDg0NC83ODc2OTQ3NDE2 NTIxMUVFOTE0QjdCNTZDNEY5QUUwMi9FV1RhWUVOTjdsNnhTN1U5UzFsT1psM3li X1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VXVGFZRU5ON2w2eFM3VTlTMWxPWmwzeWJfWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDg0NC83ODc2OTQ3NDE2NTIxMUVFOTE0QjdCNTZDNEY5QUUwMi9FV1RhWUVOTjds NnhTN1U5UzFsT1psM3liX1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwY02Uc3PxHCZOYTdRdYXAtKpOrR42mqR22CZFp9RZlIkqOfcxto1R nzp31C9n7ttiWvcTjWOqRS9G+SjZ3LKvDgD6bDs7HXbgYQ24a4UKVsEy5lr57KOc CJIhWk0HkaOoUk2CadhKE9Iqy8+nCWykvy0ZNlWn5lzrYtK+zZO0ol4pv8X4sZ5Z IyGJ8NYRwFw8Ik/kXvewqKXBIoVaTMTOXPm5pHyHyGvP4uaQ2evtJfi/m+Pe7zAg mo0vTr2dFdWcM9Moo6ZA0uUNWyO0+3rul6WCxWS2tg4y5WF2+hjGp/a8/aD1oaW8 +yNkIs3seps1EoAuBojgU0VXbKJLppB3 -----END CERTIFICATE-----Generated at Mon Dec 8 06:19:26 2025 by rpki-client