This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.mft File: E2dBvZ6HDwbs5cs1W4x1ccyWunQ.mft (raw, json) Hash identifier: dcIkJCBLVe7eLna/nKzmt3/1Fx1qj84hunMmfZxT9Ck= Subject key identifier: CA:7D:40:BE:AD:63:04:CA:39:8F:5A:8F:F1:81:FE:94:A1:E5:C1:B0 Authority key identifier: 13:67:41:BD:9E:87:0F:06:EC:E5:CB:35:5B:8C:75:71:CC:96:BA:74 Certificate issuer: /CN=A91CE9D6/serialNumber=136741BD9E870F06ECE5CB355B8C7571CC96BA74 Certificate serial: 0A74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.mft Manifest number: 0A5C Signing time: Mon 22 Dec 2025 19:06:18 +0000 Manifest this update: Mon 22 Dec 2025 19:06:18 +0000 Manifest next update: Mon 29 Dec 2025 19:06:18 +0000 Files and hashes: 1: E2dBvZ6HDwbs5cs1W4x1ccyWunQ.crl (hash: PVEBngbfQYSNyQDz+cOJLvb5y6E7JlG07CeFQRWQggc=) 2: 722D43AC7A5A11EABD77E486C4F9AE02.roa (hash: dz0lDVUdbKurIPgLKnTIK+TUvk2MtsrFSHr5aV4oHoA=) 3: 02BA60CCDADF11F08398647877D3641D.roa (hash: hf/xfhsCkjRD1riGUd+zheh13EXWwTkwTc7MH2aa3Mo=) 4: 0166B48CDADF11F08398647877D3641D.roa (hash: XqtMKJ9wpqh8beswcRrtHh97SHniSpHNu3xBgpCCoIs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.crl rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:06:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2676 (0xa74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE9D6, serialNumber=136741BD9E870F06ECE5CB355B8C7571CC96BA74 Validity Not Before: Dec 22 19:06:18 2025 GMT Not After : Dec 29 19:06:18 2025 GMT Subject: CN=694996aa-a954 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b4:01:30:a9:bc:a6:61:be:c0:a1:ad:e9:3a: 84:7e:3f:44:f7:21:34:b9:b3:09:64:e6:44:6a:fb: 25:4c:6b:10:3a:5b:a3:d5:e1:d2:b0:4b:f1:43:70: db:fa:06:39:60:45:21:50:8c:8c:26:5f:4b:7c:e0: dc:d4:af:79:d8:96:30:b2:2f:b6:8d:4d:b5:78:df: 60:7e:f9:81:80:e3:fa:06:b7:7e:60:0a:25:84:18: 73:6b:f7:87:64:91:80:12:4a:9c:3f:fa:ae:22:91: 78:70:f0:c7:c4:31:3f:53:ec:b5:3e:45:fd:3f:b0: 7a:90:82:15:3b:c1:15:54:aa:83:09:3f:e8:64:cd: ea:a3:36:74:01:1e:8f:b8:e4:a8:c9:96:86:44:aa: c2:af:6a:77:9d:80:66:c2:c1:8e:d5:fc:37:1f:98: f3:8c:d3:44:3c:50:00:b8:80:eb:f2:20:d6:8c:d1: 94:30:b9:3c:41:79:5c:db:1a:d2:a2:6f:30:11:fa: 8f:65:8a:b7:c5:a9:61:d6:2a:ef:60:a8:36:d4:ef: a7:92:37:e6:32:ee:c0:5a:ff:82:db:b5:9c:2a:d1: e4:ed:5c:c5:d1:b9:56:5a:da:32:43:4d:04:78:30: 43:8d:12:3d:38:56:1a:90:d6:cb:38:87:15:60:0b: a3:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:7D:40:BE:AD:63:04:CA:39:8F:5A:8F:F1:81:FE:94:A1:E5:C1:B0 X509v3 Authority Key Identifier: keyid:13:67:41:BD:9E:87:0F:06:EC:E5:CB:35:5B:8C:75:71:CC:96:BA:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:bc:1a:ab:48:db:8a:d1:54:fd:3f:d7:98:d9:cf:a9:44:de: bf:b5:29:06:7d:7a:ce:c2:a5:64:0f:1a:ba:dd:92:8a:8a:a7: 2a:a9:40:8b:6c:ea:7f:50:58:2b:a0:fe:d9:76:38:d5:ac:e2: 35:0b:e9:74:e8:54:1e:ab:54:0b:95:1a:08:80:6e:86:5f:ea: 7a:a5:fb:f4:96:6e:53:e1:38:85:fe:9f:61:aa:2b:dd:a9:58: fb:3f:a5:9e:fd:04:a0:68:84:d2:07:e7:e7:32:92:2e:b2:8f: bc:b0:50:77:27:02:92:60:58:e8:ee:41:5a:78:76:16:4b:b0: 00:69:c3:fe:c5:e1:4d:22:24:9a:e9:95:d9:9a:14:d9:3e:8c: fd:23:44:c4:29:1c:1d:0c:76:45:af:57:d0:ee:da:af:68:bb: 73:f0:6c:23:ea:63:25:a2:ed:28:25:8c:72:b1:1d:6a:ee:fe: 32:04:0e:1a:44:21:f5:2b:ad:49:de:89:47:7a:57:64:00:01: fa:5e:ae:cd:ff:05:93:43:a0:53:8d:b9:85:b7:b9:54:35:f2: 0e:21:bf:c7:f9:d1:92:84:50:88:d5:94:76:c3:fa:44:5d:36: 19:56:c9:3c:b5:7c:d2:ef:87:4e:34:42:65:b9:13:a3:99:86: 4d:8e:66:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5RDYxMTAvBgNVBAUTKDEzNjc0MUJEOUU4NzBGMDZFQ0U1Q0IzNTVCOEM3NTcx Q0M5NkJBNzQwHhcNMjUxMjIyMTkwNjE4WhcNMjUxMjI5MTkwNjE4WjAYMRYwFAYD VQQDDA02OTQ5OTZhYS1hOTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuLQBMKm8pmG+wKGt6TqEfj9E9yE0ubMJZOZEavslTGsQOluj1eHSsEvxQ3Db +gY5YEUhUIyMJl9LfODc1K952JYwsi+2jU21eN9gfvmBgOP6Brd+YAolhBhza/eH ZJGAEkqcP/quIpF4cPDHxDE/U+y1PkX9P7B6kIIVO8EVVKqDCT/oZM3qozZ0AR6P uOSoyZaGRKrCr2p3nYBmwsGO1fw3H5jzjNNEPFAAuIDr8iDWjNGUMLk8QXlc2xrS om8wEfqPZYq3xalh1irvYKg21O+nkjfmMu7AWv+C27WcKtHk7VzF0blWWtoyQ00E eDBDjRI9OFYakNbLOIcVYAuj0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMp9QL6t YwTKOY9aj/GB/pSh5cGwMB8GA1UdIwQYMBaAFBNnQb2ehw8G7OXLNVuMdXHMlrp0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTlENi85RTY2RjUxMjdB NTUxMUVBQkZCRTk0N0FDNEY5QUUwMi9FMmRCdlo2SER3YnM1Y3MxVzR4MWNjeVd1 blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0UyZEJ2WjZIRHdiczVjczFXNHgxY2N5V3VuUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTlENi85RTY2RjUxMjdBNTUxMUVBQkZCRTk0N0FDNEY5QUUwMi9FMmRCdlo2SER3 YnM1Y3MxVzR4MWNjeVd1blEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDUvBqrSNuK0VT9P9eY2c+pRN6/tSkGfXrOwqVkDxq63ZKKiqcqqUCL bOp/UFgroP7ZdjjVrOI1C+l06FQeq1QLlRoIgG6GX+p6pfv0lm5T4TiF/p9hqivd qVj7P6We/QSgaITSB+fnMpIuso+8sFB3JwKSYFjo7kFaeHYWS7AAacP+xeFNIiSa 6ZXZmhTZPoz9I0TEKRwdDHZFr1fQ7tqvaLtz8Gwj6mMlou0oJYxysR1q7v4yBA4a RCH1K61J3olHeldkAAH6Xq7N/wWTQ6BTjbmFt7lUNfIOIb/H+dGShFCI1ZR2w/pE XTYZVsk8tXzS74dONEJluROjmYZNjmau -----END CERTIFICATE-----Generated at Wed Dec 24 17:35:08 2025 by rpki-client