This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft File: EhrxRNkD4_iJffD-0gcaFkd17U8.mft (raw, json) Hash identifier: Hzlp0Dv9IT6Ooi0Zrdy0ySoNobiW6HASbuj3T8dwvzQ= Subject key identifier: A4:BA:DC:BF:FD:FF:4F:A9:B8:D9:AE:1F:F9:80:24:6C:87:7F:B1:E9 Authority key identifier: 12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F Certificate issuer: /CN=A91E554A/serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Certificate serial: E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft Manifest number: DE Signing time: Sun 21 Dec 2025 04:45:18 +0000 Manifest this update: Sun 21 Dec 2025 04:45:18 +0000 Manifest next update: Sun 28 Dec 2025 04:45:18 +0000 Files and hashes: 1: EhrxRNkD4_iJffD-0gcaFkd17U8.crl (hash: eQ8vZDlFgV4s84BFk/rChE6NJ49ljTH3edO+e/JCQLo=) 2: 7C304160FECB11EFB755BB45C4F9AE02.roa (hash: 96JJ4xS4XL/KIJ4tbueQ63oeM+4CMNy+gkgjGzK0Myk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 04:45:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E554A, serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Validity Not Before: Dec 21 04:45:18 2025 GMT Not After : Dec 28 04:45:18 2025 GMT Subject: CN=69477b5e-e42b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:c9:f8:15:86:af:ae:de:f8:1f:8e:1d:a7:0e: e9:d4:38:d7:3e:ca:0e:05:7c:1a:5b:8f:a8:45:fd: ea:7f:d0:a3:61:18:7e:ff:6d:0c:ca:76:ba:26:b3: 89:d2:aa:e0:30:73:d7:54:a7:63:7b:84:13:48:68: 68:67:2a:34:e0:eb:60:a0:75:96:ac:7a:f3:a9:de: 45:f1:3f:e4:60:8e:0c:35:ed:ef:02:63:ab:15:6e: a5:bb:ab:26:e4:6e:26:da:04:32:05:d9:0c:06:4c: 91:00:5e:a9:33:de:e1:fb:e5:4f:66:96:34:29:6e: 19:5d:d1:99:69:f2:53:98:3b:3c:45:9e:73:49:a1: cd:42:70:98:0e:10:9a:31:37:8b:88:3f:36:b0:50: 2f:38:c9:d6:d2:1e:89:40:d6:10:a7:c1:2f:8e:9d: 93:da:6b:aa:07:2a:eb:94:d5:a2:ad:f0:38:e2:2d: c2:a2:cd:c1:2c:19:cd:94:90:d4:92:23:b0:28:33: b0:d6:10:ad:f7:f9:95:94:fc:88:21:be:da:64:b7: e4:03:aa:14:2a:51:d9:77:95:c1:08:2f:52:bc:e4: 6f:9b:ba:5c:82:8d:ee:ba:6b:3f:19:b9:4d:5c:3d: b6:b0:5d:e2:22:f7:d1:78:b6:88:e7:8b:99:8e:c5: da:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:BA:DC:BF:FD:FF:4F:A9:B8:D9:AE:1F:F9:80:24:6C:87:7F:B1:E9 X509v3 Authority Key Identifier: keyid:12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:96:55:fc:98:f9:18:94:24:bf:9f:8f:ac:2e:10:44:56:fe: d8:4a:5d:2e:13:81:78:d6:d6:68:f8:e2:cf:12:86:b1:df:30: 7d:6a:43:2d:fe:03:71:c0:7a:b8:10:04:5c:66:9c:0b:92:7c: ce:33:ce:3a:ce:08:c3:66:36:8b:83:d5:c7:cd:85:b1:9c:e2: ec:18:36:18:e0:96:45:13:52:02:0a:1d:67:36:8a:10:2e:9b: 98:84:ca:1b:2d:6d:cf:cd:b6:e5:ae:69:ec:fe:35:c1:7c:a5: 57:e1:52:b2:2b:29:06:db:bc:4b:89:5c:29:53:69:b4:3c:3a: 97:b0:13:4f:5d:d7:12:29:bb:43:6f:d7:57:d2:5f:5a:d1:68: 56:b3:0c:cb:cd:10:c6:b0:ba:b9:14:a0:c3:56:d5:07:af:3a: 81:d1:db:1b:8f:d0:5c:a3:12:17:5c:8c:e3:7a:1b:6c:0d:fc: 88:8f:29:b8:93:95:6a:d4:7f:43:e4:df:05:b5:74:ba:b0:72: 3a:d2:80:e4:c8:f9:96:91:86:a9:6c:e8:37:a9:2f:fc:cb:06: 59:9a:68:b1:0c:f3:bc:41:87:5c:ca:1f:fb:44:2e:1c:c7:0c: 13:28:f8:61:62:94:7c:03:07:04:80:fb:3d:12:2f:08:02:d8: 99:1e:d0:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU1NEExMTAvBgNVBAUTKDEyMUFGMTQ0RDkwM0UzRjg4OTdERjBGRUQyMDcxQTE2 NDc3NUVENEYwHhcNMjUxMjIxMDQ0NTE4WhcNMjUxMjI4MDQ0NTE4WjAYMRYwFAYD VQQDDA02OTQ3N2I1ZS1lNDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3sn4FYavrt74H44dpw7p1DjXPsoOBXwaW4+oRf3qf9CjYRh+/20Myna6JrOJ 0qrgMHPXVKdje4QTSGhoZyo04OtgoHWWrHrzqd5F8T/kYI4MNe3vAmOrFW6lu6sm 5G4m2gQyBdkMBkyRAF6pM97h++VPZpY0KW4ZXdGZafJTmDs8RZ5zSaHNQnCYDhCa MTeLiD82sFAvOMnW0h6JQNYQp8Evjp2T2muqByrrlNWirfA44i3Cos3BLBnNlJDU kiOwKDOw1hCt9/mVlPyIIb7aZLfkA6oUKlHZd5XBCC9SvORvm7pcgo3uums/GblN XD22sF3iIvfReLaI54uZjsXaOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKS63L/9 /0+puNmuH/mAJGyHf7HpMB8GA1UdIwQYMBaAFBIa8UTZA+P4iX3w/tIHGhZHde1P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTU0QS83OTVFNzNEMDkx RjcxMUVGQURFMTEyNjZDNEY5QUUwMi9FaHJ4Uk5rRDRfaUpmZkQtMGdjYUZrZDE3 VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0VocnhSTmtENF9pSmZmRC0wZ2NhRmtkMTdVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTU0QS83OTVFNzNEMDkxRjcxMUVGQURFMTEyNjZDNEY5QUUwMi9FaHJ4Uk5rRDRf aUpmZkQtMGdjYUZrZDE3VTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfllX8mPkYlCS/n4+sLhBEVv7YSl0uE4F41tZo+OLPEoax3zB9akMt /gNxwHq4EARcZpwLknzOM846zgjDZjaLg9XHzYWxnOLsGDYY4JZFE1ICCh1nNooQ LpuYhMobLW3Pzbblrmns/jXBfKVX4VKyKykG27xLiVwpU2m0PDqXsBNPXdcSKbtD b9dX0l9a0WhWswzLzRDGsLq5FKDDVtUHrzqB0dsbj9BcoxIXXIzjehtsDfyIjym4 k5Vq1H9D5N8FtXS6sHI60oDkyPmWkYapbOg3qS/8ywZZmmixDPO8QYdcyh/7RC4c xwwTKPhhYpR8AwcEgPs9Ei8IAtiZHtCw -----END CERTIFICATE-----Generated at Tue Dec 23 02:24:17 2025 by rpki-client