This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.mft File: _Ern2eP0GafSBKVMedHz76mn1sg.mft (raw, json) Hash identifier: ImPsQi6V6dd7Lvm2V2tcIVrEJBqxynTKp5GgSDwCGwI= Subject key identifier: 0B:17:1F:0F:C6:55:D8:C9:D7:7E:F7:77:7E:8B:00:9B:24:13:1D:A2 Authority key identifier: FC:4A:E7:D9:E3:F4:19:A7:D2:04:A5:4C:79:D1:F3:EF:A9:A7:D6:C8 Certificate issuer: /CN=A91262F0/serialNumber=FC4AE7D9E3F419A7D204A54C79D1F3EFA9A7D6C8 Certificate serial: 021A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Ern2eP0GafSBKVMedHz76mn1sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.mft Manifest number: 0214 Signing time: Sun 07 Dec 2025 00:45:55 +0000 Manifest this update: Sun 07 Dec 2025 00:45:55 +0000 Manifest next update: Sun 14 Dec 2025 00:45:55 +0000 Files and hashes: 1: _Ern2eP0GafSBKVMedHz76mn1sg.crl (hash: qBnigKaB3ysfF8Ed0Y29BHkO+0IJ9IitiFem80pLnps=) 2: 8E412748A33311EDA2CB2420C4F9AE02.roa (hash: 3fAULkE6ttb330SWu8NuIByl/YALdaeco2VwvKvVPGY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.crl rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Ern2eP0GafSBKVMedHz76mn1sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:24:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 538 (0x21a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262F0, serialNumber=FC4AE7D9E3F419A7D204A54C79D1F3EFA9A7D6C8 Validity Not Before: Dec 7 00:45:55 2025 GMT Not After : Dec 14 00:45:55 2025 GMT Subject: CN=6934ce43-db65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ad:21:73:0b:40:71:5f:43:e0:bd:01:91:6b: a5:79:a6:3e:18:b7:7f:3b:10:a5:75:82:60:57:eb: 42:a4:48:d4:35:2a:5a:ba:fc:93:26:5d:b7:54:88: 01:b9:89:e4:d7:f2:59:fb:9d:d1:cc:9f:d3:58:32: 2f:18:eb:b2:69:df:de:4d:68:17:44:f0:a7:5d:5b: 22:e2:a5:40:eb:53:cd:cb:b7:bf:71:39:46:8b:76: 6f:45:9c:02:66:78:58:e8:9f:dd:48:e0:3d:27:b2: 39:81:9e:ea:59:c4:24:86:3c:a5:ee:c2:ea:5f:4e: d5:cd:04:8e:c4:a8:36:38:a6:28:5d:99:63:a1:7f: b7:34:d2:59:9a:49:ff:4a:7b:f6:e0:c0:d6:90:4c: 2e:a9:90:ab:bf:a1:ac:35:2c:f6:92:85:b3:85:5a: ec:e2:05:4a:9d:c2:4e:8c:c3:a5:43:4b:de:a3:27: 4f:21:91:ad:a0:ce:4b:42:90:a6:af:e0:05:12:27: cb:12:94:98:a3:48:06:ff:f4:04:7d:4a:44:91:97: fb:ba:e4:f4:b3:fd:dc:c3:55:ba:d2:81:8c:db:3d: 87:6e:d6:17:e0:a2:e1:8b:32:e0:06:74:bb:53:b3: f6:1a:3d:bf:f1:a7:e2:d8:01:86:bb:fa:a4:09:8b: 8d:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:17:1F:0F:C6:55:D8:C9:D7:7E:F7:77:7E:8B:00:9B:24:13:1D:A2 X509v3 Authority Key Identifier: keyid:FC:4A:E7:D9:E3:F4:19:A7:D2:04:A5:4C:79:D1:F3:EF:A9:A7:D6:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Ern2eP0GafSBKVMedHz76mn1sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:88:9e:63:7d:2b:96:82:79:c3:8b:68:20:0f:d7:8b:4e:dd: 2a:b5:f9:fe:1c:df:85:96:d6:b0:7c:f6:2f:d0:f0:2d:6f:a1: d2:b8:59:40:90:df:db:31:6e:fb:2b:e2:49:29:05:d7:c8:5d: 0e:85:6b:5d:a0:60:0d:e2:2c:16:75:79:43:07:30:cb:5e:41: 58:a2:db:b4:e3:59:a3:f3:02:6d:32:71:9c:8f:9d:43:b9:9c: a1:f8:ad:de:f7:cf:b6:83:2c:7b:1f:80:67:5c:4f:60:51:06: c0:d7:33:d9:6e:3f:9f:26:33:a7:70:c0:39:ca:fc:8f:fd:ce: d1:ce:aa:79:3f:cf:e1:ef:f8:df:a2:b0:9c:ef:27:a5:d7:5e: 2d:83:96:2c:95:0a:7d:10:af:26:71:d2:f4:c0:8a:51:5d:5f: a5:d1:45:e7:a2:34:e7:04:50:58:a5:65:b1:6a:8a:90:74:87: 69:3b:c8:48:9b:a5:d2:7d:14:b8:e5:80:0d:d5:de:f4:2d:16: 2e:86:67:b6:02:a6:15:8d:74:55:89:63:7d:23:e6:77:9a:50: ce:b0:9a:6c:6b:f8:15:92:e1:ba:cf:95:f2:c0:32:67:c1:ef: 54:78:4f:56:6c:41:fc:49:38:3a:72:40:19:0a:8a:32:a8:6c: bb:3c:de:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyRjAxMTAvBgNVBAUTKEZDNEFFN0Q5RTNGNDE5QTdEMjA0QTU0Qzc5RDFGM0VG QTlBN0Q2QzgwHhcNMjUxMjA3MDA0NTU1WhcNMjUxMjE0MDA0NTU1WjAYMRYwFAYD VQQDEw02OTM0Y2U0My1kYjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0a0hcwtAcV9D4L0BkWuleaY+GLd/OxCldYJgV+tCpEjUNSpauvyTJl23VIgB uYnk1/JZ+53RzJ/TWDIvGOuyad/eTWgXRPCnXVsi4qVA61PNy7e/cTlGi3ZvRZwC ZnhY6J/dSOA9J7I5gZ7qWcQkhjyl7sLqX07VzQSOxKg2OKYoXZljoX+3NNJZmkn/ Snv24MDWkEwuqZCrv6GsNSz2koWzhVrs4gVKncJOjMOlQ0veoydPIZGtoM5LQpCm r+AFEifLEpSYo0gG//QEfUpEkZf7uuT0s/3cw1W60oGM2z2HbtYX4KLhizLgBnS7 U7P2Gj2/8afi2AGGu/qkCYuNjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAsXHw/G VdjJ1373d36LAJskEx2iMB8GA1UdIwQYMBaAFPxK59nj9Bmn0gSlTHnR8++pp9bI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJGMC8zM0FEMEE2MkEz MEMxMUVEQjMzODhDMENDNEY5QUUwMi9fRXJuMmVQMEdhZlNCS1ZNZWRIejc2bW4x c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19Fcm4yZVAwR2FmU0JLVk1lZEh6NzZtbjFzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NjJGMC8zM0FEMEE2MkEzMEMxMUVEQjMzODhDMENDNEY5QUUwMi9fRXJuMmVQMEdh ZlNCS1ZNZWRIejc2bW4xc2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALiJ5jfSuWgnnDi2ggD9eLTt0qtfn+HN+FltawfPYv0PAtb6HSuFlA kN/bMW77K+JJKQXXyF0OhWtdoGAN4iwWdXlDBzDLXkFYotu041mj8wJtMnGcj51D uZyh+K3e98+2gyx7H4BnXE9gUQbA1zPZbj+fJjOncMA5yvyP/c7Rzqp5P8/h7/jf orCc7yel114tg5YslQp9EK8mcdL0wIpRXV+l0UXnojTnBFBYpWWxaoqQdIdpO8hI m6XSfRS45YAN1d70LRYuhme2AqYVjXRViWN9I+Z3mlDOsJpsa/gVkuG6z5XywDJn we9UeE9WbEH8STg6ckAZCooyqGy7PN5a -----END CERTIFICATE-----Generated at Sun Dec 7 03:38:18 2025 by rpki-client