This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E782F/764CA2D0407011EFBDA9D66FC4F9AE02/ep_4ZMUDGAZxMFiObbqSi6HAOl0.mft File: ep_4ZMUDGAZxMFiObbqSi6HAOl0.mft (raw, json) Hash identifier: KklMCnt6ajXJixeLquvHHMdD780pn2YZgPVBx3HWi7U= Subject key identifier: C9:82:C9:5E:D1:82:68:41:D1:70:33:79:73:3C:F9:F3:02:5A:2B:74 Authority key identifier: 7A:9F:F8:64:C5:03:18:06:71:30:58:8E:6D:BA:92:8B:A1:C0:3A:5D Certificate issuer: /CN=A91E782F/serialNumber=7A9FF864C50318067130588E6DBA928BA1C03A5D Certificate serial: 010E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep_4ZMUDGAZxMFiObbqSi6HAOl0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E782F/764CA2D0407011EFBDA9D66FC4F9AE02/ep_4ZMUDGAZxMFiObbqSi6HAOl0.mft Manifest number: 010E Signing time: Tue 23 Dec 2025 03:55:21 +0000 Manifest this update: Tue 23 Dec 2025 03:55:20 +0000 Manifest next update: Tue 30 Dec 2025 03:55:20 +0000 Files and hashes: 1: ep_4ZMUDGAZxMFiObbqSi6HAOl0.crl (hash: hdoCb/hYKlzGnylh+DI1/pMxxexQWtgDiaY4eUcGBRg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E782F/764CA2D0407011EFBDA9D66FC4F9AE02/ep_4ZMUDGAZxMFiObbqSi6HAOl0.crl rsync://rpki.apnic.net/member_repository/A91E782F/764CA2D0407011EFBDA9D66FC4F9AE02/ep_4ZMUDGAZxMFiObbqSi6HAOl0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep_4ZMUDGAZxMFiObbqSi6HAOl0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:55:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E782F, serialNumber=7A9FF864C50318067130588E6DBA928BA1C03A5D Validity Not Before: Dec 23 03:55:20 2025 GMT Not After : Dec 30 03:55:20 2025 GMT Subject: CN=694a12a9-0e1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:49:95:54:31:8a:f0:2e:4a:da:ad:94:e8:63: 12:7c:db:eb:09:21:52:6f:d6:53:7a:be:c4:23:29: dc:62:a2:00:a1:b1:b5:df:2e:87:ce:3b:90:e1:01: 5f:c5:57:24:ea:f5:83:c0:fb:2d:a4:5e:28:8e:a0: ca:a7:c5:66:c1:4c:a1:31:96:06:c4:cd:3c:07:5c: 03:f9:fd:75:3f:68:ae:00:61:8e:51:c0:66:2f:2c: a1:ea:d7:77:a0:4f:06:28:f7:ee:ea:13:1e:86:44: 4b:99:1d:66:e1:12:68:a3:fd:aa:c4:f6:9c:ac:b3: cf:b1:eb:36:ef:49:c4:46:76:a4:00:d7:b0:6e:f3: 44:76:20:cd:2b:96:c7:6c:fb:96:8e:af:d1:ba:fc: 72:bb:12:6b:0d:f6:89:cd:d2:f4:2a:ec:dc:bc:32: f7:66:a9:d9:14:48:36:35:e7:5f:90:89:2e:71:45: c4:16:e0:d1:fe:02:dc:9e:0d:5e:4a:9c:cd:86:a1: 5f:21:11:3c:7e:2f:ec:79:70:b0:4f:28:94:fa:36: 42:f2:2f:50:2b:04:38:06:3b:da:5c:eb:16:d6:d7: d3:66:64:36:73:20:4c:5b:e9:2e:1d:a9:80:e0:7d: 5c:38:5b:5b:5a:dd:42:7f:c5:00:33:2e:29:b6:84: 2f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:82:C9:5E:D1:82:68:41:D1:70:33:79:73:3C:F9:F3:02:5A:2B:74 X509v3 Authority Key Identifier: keyid:7A:9F:F8:64:C5:03:18:06:71:30:58:8E:6D:BA:92:8B:A1:C0:3A:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E782F/764CA2D0407011EFBDA9D66FC4F9AE02/ep_4ZMUDGAZxMFiObbqSi6HAOl0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep_4ZMUDGAZxMFiObbqSi6HAOl0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E782F/764CA2D0407011EFBDA9D66FC4F9AE02/ep_4ZMUDGAZxMFiObbqSi6HAOl0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:1d:80:88:1c:1a:77:99:d5:53:99:43:26:f2:52:43:12:b9: e5:bb:d4:c3:5a:69:e7:e4:c5:11:a4:d0:c9:97:2e:bf:b7:f3: 82:99:e7:2f:28:ed:3c:13:6a:08:fc:f1:70:15:52:32:44:51: 71:bc:06:ed:b3:ba:c6:46:51:ed:52:9e:4d:ad:65:bf:4c:59: 33:65:47:7a:7e:ef:c7:8e:34:98:41:bb:63:6e:22:7a:33:5f: 14:cc:f0:2e:e3:02:c1:e6:56:3f:11:71:3c:cf:2a:dd:8e:54: fb:f4:50:0d:bd:4d:11:dc:6f:f1:e5:0d:24:7f:1f:0f:37:0f: c6:2f:dd:75:8e:a9:c6:e1:ad:d5:33:70:ee:29:4c:21:bf:3a: 46:ce:08:38:2a:5a:ac:04:90:0a:07:41:d7:9d:24:86:d3:f8: d7:89:c9:37:9d:8c:28:c5:e8:19:be:27:16:ec:ab:b7:2c:93: 93:2c:94:08:ac:b8:7d:24:c7:d5:55:fd:7b:f9:02:77:df:11: 52:52:bb:55:ba:2f:f7:58:c5:97:e0:c2:23:9c:f7:16:3e:6a: 98:d1:ca:43:d0:99:4f:4a:08:ef:5f:3a:71:1e:7a:50:7c:de: 8a:e8:4f:0d:96:8f:df:9f:52:50:98:1d:ed:46:b1:a1:14:37: 77:57:c8:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc4MkYxMTAvBgNVBAUTKDdBOUZGODY0QzUwMzE4MDY3MTMwNTg4RTZEQkE5MjhC QTFDMDNBNUQwHhcNMjUxMjIzMDM1NTIwWhcNMjUxMjMwMDM1NTIwWjAYMRYwFAYD VQQDDA02OTRhMTJhOS0wZTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo0mVVDGK8C5K2q2U6GMSfNvrCSFSb9ZTer7EIyncYqIAobG13y6HzjuQ4QFf xVck6vWDwPstpF4ojqDKp8VmwUyhMZYGxM08B1wD+f11P2iuAGGOUcBmLyyh6td3 oE8GKPfu6hMehkRLmR1m4RJoo/2qxPacrLPPses270nERnakANewbvNEdiDNK5bH bPuWjq/RuvxyuxJrDfaJzdL0KuzcvDL3ZqnZFEg2NedfkIkucUXEFuDR/gLcng1e SpzNhqFfIRE8fi/seXCwTyiU+jZC8i9QKwQ4BjvaXOsW1tfTZmQ2cyBMW+kuHamA 4H1cOFtbWt1Cf8UAMy4ptoQvOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMmCyV7R gmhB0XAzeXM8+fMCWit0MB8GA1UdIwQYMBaAFHqf+GTFAxgGcTBYjm26kouhwDpd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzgyRi83NjRDQTJEMDQw NzAxMUVGQkRBOUQ2NkZDNEY5QUUwMi9lcF80Wk1VREdBWnhNRmlPYmJxU2k2SEFP bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VwXzRaTVVER0FaeE1GaU9iYnFTaTZIQU9sMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzgyRi83NjRDQTJEMDQwNzAxMUVGQkRBOUQ2NkZDNEY5QUUwMi9lcF80Wk1VREdB WnhNRmlPYmJxU2k2SEFPbDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWHYCIHBp3mdVTmUMm8lJDErnlu9TDWmnn5MURpNDJly6/t/OCmecv KO08E2oI/PFwFVIyRFFxvAbts7rGRlHtUp5NrWW/TFkzZUd6fu/HjjSYQbtjbiJ6 M18UzPAu4wLB5lY/EXE8zyrdjlT79FANvU0R3G/x5Q0kfx8PNw/GL911jqnG4a3V M3DuKUwhvzpGzgg4KlqsBJAKB0HXnSSG0/jXick3nYwoxegZvicW7Ku3LJOTLJQI rLh9JMfVVf17+QJ33xFSUrtVui/3WMWX4MIjnPcWPmqY0cpD0JlPSgjvXzpxHnpQ fN6K6E8Nlo/fn1JQmB3tRrGhFDd3V8gc -----END CERTIFICATE-----Generated at Wed Dec 24 15:42:56 2025 by rpki-client