This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft File: epYXaVSeCq0Km_mSVoO673M6Lxo.mft (raw, json) Hash identifier: rVew3hSvLkZHXkxXm+IfORuS7LXaBo3EfZ7uylCqOXU= Subject key identifier: DE:DD:C5:0B:76:74:ED:E4:43:7F:E9:32:7C:FE:BC:85:EA:F6:6E:BB Authority key identifier: 7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A Certificate issuer: /CN=A911C5B0/serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Certificate serial: 355A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft Manifest number: 351F Signing time: Sat 06 Dec 2025 14:21:17 +0000 Manifest this update: Sat 06 Dec 2025 14:21:16 +0000 Manifest next update: Sat 13 Dec 2025 14:21:16 +0000 Files and hashes: 1: epYXaVSeCq0Km_mSVoO673M6Lxo.crl (hash: jix3MiTMD3B+pxzwnUfkNxbU/ueb7BEGsvZBxujvlPw=) 2: A9B6556E064311F0BA61C549C4F9AE02.roa (hash: 0C6TlHkpuDCz4hvNzUcvUCrXDtcFtiPeiunaW4mmmk0=) 3: 1F5CD892C35111EE9D744F36C4F9AE02.roa (hash: 1gkTF4crGWzpTEQnLV3friPjpJHknrP6i19dnfTKZhs=) 4: 1A83389CC35211EE8CE04C38C4F9AE02.roa (hash: wP5Do/J+7GR346S2KVvf1dpQZtkQwT1BPnhQO5L+JJ4=) 5: DA202262C34F11EE93BC8317C4F9AE02.roa (hash: dcDioS0VFo6S9vVwz+paS1zd6YFHx5bsZVN3a7QsfW4=) 6: 61A65BF2C35011EE95366E18C4F9AE02.roa (hash: Q61bbCPssNF62XMkq5QJdqkEtUeKQLsoUnsJMBUa8ZI=) 7: 1EEE3E0AC35111EE9D744F36C4F9AE02.roa (hash: 5YdHJezTTAq6NbRIi4l4/6Fihe+icCcCreH0PZW2XgQ=) 8: A50EE218C34D11EEBC95A913C4F9AE02.roa (hash: 5q/2MUPjpxwhlN6OCcanacRv9yZj3jDJtQjCybC3W8U=) 9: DC67BC1E8E1A11F08364EF73C4F9AE02.roa (hash: n9kveW6T0zGofNIWBVL2lz5XwTYiSjqFUg+Xl3iNCMQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:21:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13658 (0x355a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C5B0, serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Validity Not Before: Dec 6 14:21:16 2025 GMT Not After : Dec 13 14:21:16 2025 GMT Subject: CN=69343bdd-493c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:18:f0:61:00:9b:27:27:23:d5:cf:1a:8b:24: dd:82:5e:2e:3f:16:31:73:7a:52:e0:c7:1b:ff:bb: 52:a0:76:45:8e:a9:56:19:33:4b:1d:92:ee:9f:cb: 66:56:93:b6:3e:ee:52:9d:b9:25:11:b8:e5:3e:93: 0b:b1:5b:20:d1:55:75:73:95:2d:10:f1:f1:33:04: e6:33:c2:ff:79:3e:fa:39:17:51:d1:96:ab:0c:21: 62:a3:5b:69:1a:1d:90:2c:38:b3:76:74:f1:f6:3e: 8d:de:58:80:be:81:91:41:2f:62:45:bc:8f:65:46: fa:55:33:26:d0:29:75:df:91:fc:4d:17:cd:2d:9b: 05:c1:79:4f:ab:26:34:a5:df:58:45:c9:8b:37:36: 49:4c:1a:32:4d:26:c6:10:88:74:1e:ad:79:0d:60: ea:3a:97:d0:e3:be:95:05:42:53:5b:47:17:83:c6: 83:fc:c8:0c:9d:3d:6d:d5:f0:6b:5a:29:ab:65:d9: b6:62:33:57:42:48:9c:28:94:88:ab:3b:84:e5:d8: 0a:c2:bd:79:ae:62:e3:bc:5e:bf:6f:64:98:0a:f9: ec:9f:4b:0e:9e:5e:dc:d6:3c:b6:db:65:46:bf:49: 31:5c:22:b9:0c:6c:a5:35:d2:f2:99:c2:01:da:1a: 2e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:DD:C5:0B:76:74:ED:E4:43:7F:E9:32:7C:FE:BC:85:EA:F6:6E:BB X509v3 Authority Key Identifier: keyid:7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:00:e0:74:5b:f3:cc:12:84:b7:03:dd:e0:dc:f1:49:ec:18: d9:eb:b7:b9:8f:69:ea:5b:f0:ee:87:4d:5e:e6:cc:af:bc:fc: 55:81:ce:04:dd:44:00:c8:af:76:71:57:45:b8:64:c7:d3:05: 61:85:83:80:77:28:01:9e:2f:53:00:da:65:50:97:66:8d:7b: 19:f6:5a:bc:ae:5e:be:40:3d:b6:60:54:cd:77:3b:e0:2b:0c: 14:12:7c:b7:1d:5d:5e:56:80:8a:32:07:37:a4:f3:c2:5f:f2: 49:9b:ef:c5:fc:05:fb:36:69:21:d7:c8:26:c0:b8:bd:d3:b7: 85:7c:c3:27:a1:b3:49:a8:f5:43:6e:ff:d1:8f:83:39:c8:58: fe:6f:f2:f0:b3:dc:42:6f:76:75:d7:9c:62:87:d7:24:9e:95: d4:60:06:d1:19:1a:a8:7b:b2:a5:fd:99:03:a9:02:b7:7d:eb: d0:78:0b:83:df:c0:1b:e0:5e:d4:db:d9:32:1a:c4:0a:06:a8: 43:37:ed:c6:9d:e3:70:9e:cf:e4:ef:43:07:46:cf:6d:20:7e: 17:12:ec:e2:bd:ff:a0:a0:20:8e:de:eb:bd:aa:22:10:be:7c: 5e:89:b0:00:a6:91:df:bc:f0:57:18:2b:52:13:e1:f8:fd:ac: 44:46:38:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1QjAxMTAvBgNVBAUTKDdBOTYxNzY5NTQ5RTBBQUQwQTlCRjk5MjU2ODNCQUVG NzMzQTJGMUEwHhcNMjUxMjA2MTQyMTE2WhcNMjUxMjEzMTQyMTE2WjAYMRYwFAYD VQQDEw02OTM0M2JkZC00OTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3hjwYQCbJycj1c8aiyTdgl4uPxYxc3pS4Mcb/7tSoHZFjqlWGTNLHZLun8tm VpO2Pu5SnbklEbjlPpMLsVsg0VV1c5UtEPHxMwTmM8L/eT76ORdR0ZarDCFio1tp Gh2QLDizdnTx9j6N3liAvoGRQS9iRbyPZUb6VTMm0Cl135H8TRfNLZsFwXlPqyY0 pd9YRcmLNzZJTBoyTSbGEIh0Hq15DWDqOpfQ476VBUJTW0cXg8aD/MgMnT1t1fBr WimrZdm2YjNXQkicKJSIqzuE5dgKwr15rmLjvF6/b2SYCvnsn0sOnl7c1jy222VG v0kxXCK5DGylNdLymcIB2houaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN7dxQt2 dO3kQ3/pMnz+vIXq9m67MB8GA1UdIwQYMBaAFHqWF2lUngqtCpv5klaDuu9zOi8a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzVCMC80MEM4RDVBNjFE ODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNxMEttX21TVm9PNjczTTZM eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VwWVhhVlNlQ3EwS21fbVNWb082NzNNNkx4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzVCMC80MEM4RDVBNjFEODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNx MEttX21TVm9PNjczTTZMeG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPAOB0W/PMEoS3A93g3PFJ7BjZ67e5j2nqW/Duh01e5syvvPxVgc4E 3UQAyK92cVdFuGTH0wVhhYOAdygBni9TANplUJdmjXsZ9lq8rl6+QD22YFTNdzvg KwwUEny3HV1eVoCKMgc3pPPCX/JJm+/F/AX7Nmkh18gmwLi907eFfMMnobNJqPVD bv/Rj4M5yFj+b/Lws9xCb3Z115xih9cknpXUYAbRGRqoe7Kl/ZkDqQK3fevQeAuD 38Ab4F7U29kyGsQKBqhDN+3GneNwns/k70MHRs9tIH4XEuzivf+goCCO3uu9qiIQ vnxeibAAppHfvPBXGCtSE+H4/axERjis -----END CERTIFICATE-----Generated at Sun Dec 7 00:13:35 2025 by rpki-client