This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D513A/401BF81E1DAA11E2A572E2A508B02CD2/E2EsNInrrttWOQK8neWS_I2DxVs.mft File: E2EsNInrrttWOQK8neWS_I2DxVs.mft (raw, json) Hash identifier: hWGP/JJYd4iQYvzhEERUoqy/qEV7GuUAM9GMYOa6TWE= Subject key identifier: 28:70:E4:9A:11:ED:08:63:58:D1:E8:54:AC:F0:72:E8:69:59:65:A5 Authority key identifier: 13:61:2C:34:89:EB:AE:DB:56:39:02:BC:9D:E5:92:FC:8D:83:C5:5B Certificate issuer: /CN=A91D513A/serialNumber=13612C3489EBAEDB563902BC9DE592FC8D83C55B Certificate serial: 34F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2EsNInrrttWOQK8neWS_I2DxVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D513A/401BF81E1DAA11E2A572E2A508B02CD2/E2EsNInrrttWOQK8neWS_I2DxVs.mft Manifest number: 34F0 Signing time: Wed 24 Dec 2025 15:10:17 +0000 Manifest this update: Wed 24 Dec 2025 15:10:17 +0000 Manifest next update: Wed 31 Dec 2025 15:10:17 +0000 Files and hashes: 1: E2EsNInrrttWOQK8neWS_I2DxVs.crl (hash: 6l1nzVH4pq80cNFFj+4GdxVoM38/JnasUKQwhzJ5XtQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D513A/401BF81E1DAA11E2A572E2A508B02CD2/E2EsNInrrttWOQK8neWS_I2DxVs.crl rsync://rpki.apnic.net/member_repository/A91D513A/401BF81E1DAA11E2A572E2A508B02CD2/E2EsNInrrttWOQK8neWS_I2DxVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2EsNInrrttWOQK8neWS_I2DxVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13553 (0x34f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D513A, serialNumber=13612C3489EBAEDB563902BC9DE592FC8D83C55B Validity Not Before: Dec 24 15:10:17 2025 GMT Not After : Dec 31 15:10:17 2025 GMT Subject: CN=694c0259-72cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:6d:43:f9:42:39:f4:10:a8:10:fd:5f:54:53: f7:69:91:32:4b:6b:9c:5d:15:3a:a7:b0:18:bb:ac: 70:0c:ab:1c:3f:48:10:ed:8e:55:d6:88:57:4e:c9: 96:31:d4:4e:3c:52:f8:18:c9:d6:49:68:8c:91:92: 9a:87:fd:de:ec:12:e6:ee:20:1b:37:87:26:de:88: 08:cc:1e:bf:e2:d1:b4:1e:c9:7b:74:22:56:e8:99: f0:97:4e:c5:34:0b:72:20:7a:d8:08:24:73:44:0b: 85:f6:11:39:2b:29:62:44:8b:ae:72:b3:aa:3a:5b: 12:fb:20:96:71:43:f6:e3:07:dd:76:69:b4:c2:b3: ca:bd:33:97:d2:d9:de:41:24:eb:08:76:25:6f:1c: 08:c1:6a:b0:d0:97:ad:4c:ae:23:76:48:7f:b1:86: 64:92:8b:98:5b:e5:78:dc:f1:2c:2f:f3:5c:c8:48: 0d:87:ae:be:7a:ae:6f:da:41:13:0c:ec:b1:08:0d: 1c:3b:52:40:ea:1e:73:50:81:aa:fb:a4:94:11:e8: 46:a7:45:29:de:7b:95:dd:4a:b7:e2:12:b9:68:c8: 19:d0:31:e7:3e:b0:6c:3d:05:b8:a1:0e:07:39:20: 2f:da:c1:4a:e8:d4:d9:b0:ff:31:4a:ae:19:a0:d6: c8:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:70:E4:9A:11:ED:08:63:58:D1:E8:54:AC:F0:72:E8:69:59:65:A5 X509v3 Authority Key Identifier: keyid:13:61:2C:34:89:EB:AE:DB:56:39:02:BC:9D:E5:92:FC:8D:83:C5:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D513A/401BF81E1DAA11E2A572E2A508B02CD2/E2EsNInrrttWOQK8neWS_I2DxVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2EsNInrrttWOQK8neWS_I2DxVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D513A/401BF81E1DAA11E2A572E2A508B02CD2/E2EsNInrrttWOQK8neWS_I2DxVs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:84:0e:ed:8f:c8:01:7b:be:34:ea:a5:87:01:0a:96:92:b5: 41:23:38:f1:b5:af:89:7c:f7:c6:db:56:e2:d3:c8:8d:00:fb: 6d:39:93:84:2c:3c:2a:1c:ce:b1:d3:52:9b:28:12:a3:55:c4: 9b:23:67:5f:4d:ff:20:65:18:b6:d5:49:75:a0:9a:b1:60:cd: d6:24:62:91:74:46:be:e2:2d:e4:a0:bc:f7:47:25:68:3a:62: 53:da:a7:19:9a:7a:cc:bd:28:be:e6:12:32:79:79:64:84:39: 04:0a:77:33:65:10:b1:33:f1:23:f1:cd:60:1f:ec:8c:ee:fa: 9c:15:a8:3c:bc:ce:d3:c6:1d:3a:c7:52:5d:ce:e6:c5:f5:48: 9c:44:6b:ec:ac:72:2d:4f:29:a1:34:f0:e4:0d:13:a0:ab:67: 28:bf:70:38:76:74:3d:0e:73:0f:f0:3f:0d:09:4b:dd:90:b9: 21:19:da:f3:1c:f6:39:31:8f:e5:4f:a4:c0:69:4d:d6:0f:21: 12:41:23:24:3e:13:0d:ea:ae:a5:36:ff:08:1b:d3:ec:45:96: 37:12:d8:99:64:73:bb:c9:42:bc:32:b5:ee:16:9a:0a:7d:00: 58:7a:ad:a1:40:c0:9c:c8:e3:ea:94:26:4a:44:0d:57:25:ae: 8b:32:1d:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxM0ExMTAvBgNVBAUTKDEzNjEyQzM0ODlFQkFFREI1NjM5MDJCQzlERTU5MkZD OEQ4M0M1NUIwHhcNMjUxMjI0MTUxMDE3WhcNMjUxMjMxMTUxMDE3WjAYMRYwFAYD VQQDDA02OTRjMDI1OS03MmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjm1D+UI59BCoEP1fVFP3aZEyS2ucXRU6p7AYu6xwDKscP0gQ7Y5V1ohXTsmW MdROPFL4GMnWSWiMkZKah/3e7BLm7iAbN4cm3ogIzB6/4tG0Hsl7dCJW6Jnwl07F NAtyIHrYCCRzRAuF9hE5KyliRIuucrOqOlsS+yCWcUP24wfddmm0wrPKvTOX0tne QSTrCHYlbxwIwWqw0JetTK4jdkh/sYZkkouYW+V43PEsL/NcyEgNh66+eq5v2kET DOyxCA0cO1JA6h5zUIGq+6SUEehGp0Up3nuV3Uq34hK5aMgZ0DHnPrBsPQW4oQ4H OSAv2sFK6NTZsP8xSq4ZoNbIwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFChw5JoR 7QhjWNHoVKzwcuhpWWWlMB8GA1UdIwQYMBaAFBNhLDSJ667bVjkCvJ3lkvyNg8Vb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTEzQS80MDFCRjgxRTFE QUExMUUyQTU3MkUyQTUwOEIwMkNEMi9FMkVzTklucnJ0dFdPUUs4bmVXU19JMkR4 VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0UyRXNOSW5ycnR0V09RSzhuZVdTX0kyRHhWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTEzQS80MDFCRjgxRTFEQUExMUUyQTU3MkUyQTUwOEIwMkNEMi9FMkVzTklucnJ0 dFdPUUs4bmVXU19JMkR4VnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0hA7tj8gBe7406qWHAQqWkrVBIzjxta+JfPfG21bi08iNAPttOZOE LDwqHM6x01KbKBKjVcSbI2dfTf8gZRi21Ul1oJqxYM3WJGKRdEa+4i3koLz3RyVo OmJT2qcZmnrMvSi+5hIyeXlkhDkECnczZRCxM/Ej8c1gH+yM7vqcFag8vM7Txh06 x1JdzubF9UicRGvsrHItTymhNPDkDROgq2cov3A4dnQ9DnMP8D8NCUvdkLkhGdrz HPY5MY/lT6TAaU3WDyESQSMkPhMN6q6lNv8IG9PsRZY3EtiZZHO7yUK8MrXuFpoK fQBYeq2hQMCcyOPqlCZKRA1XJa6LMh3A -----END CERTIFICATE-----Generated at Wed Dec 24 19:29:40 2025 by rpki-client