This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.mft File: S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.mft (raw, json) Hash identifier: aKI4wZCBYO2regT2EMxh0f3r4Dj6VnF6ACt/G9JL7Po= Subject key identifier: B0:DE:08:E7:2C:3D:C1:07:CB:B8:9C:5E:CD:55:7C:9F:70:08:50:96 Authority key identifier: 4B:E1:07:39:36:25:2E:3C:F0:72:F9:89:D7:FD:C4:E7:E7:C6:62:74 Certificate issuer: /CN=A918E269/serialNumber=4BE1073936252E3CF072F989D7FDC4E7E7C66274 Certificate serial: 75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.mft Manifest number: 71 Signing time: Fri 05 Dec 2025 04:49:08 +0000 Manifest this update: Fri 05 Dec 2025 04:49:07 +0000 Manifest next update: Fri 12 Dec 2025 04:49:07 +0000 Files and hashes: 1: S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.crl (hash: gtt+wnbwL0QvnBa6TG9SRP/WSWuh+ooTR1uPK2xlwn0=) 2: 2B1A3764302A11F0B211AD0BC4F9AE02.roa (hash: NkhW5FW4JP+LMlscQaQBvoaph79aDkou+LpFxXsX7js=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.crl rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:49:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E269, serialNumber=4BE1073936252E3CF072F989D7FDC4E7E7C66274 Validity Not Before: Dec 5 04:49:07 2025 GMT Not After : Dec 12 04:49:07 2025 GMT Subject: CN=69326443-59bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:94:dc:2d:1f:ed:d1:20:c5:4c:a4:70:81:43: f0:5e:1c:e0:0a:e3:40:45:2f:3b:0b:16:b7:fe:a6: 9a:83:ae:3a:ae:e6:dc:53:69:e6:5c:14:59:80:f1: 24:96:ee:d9:28:f2:78:ab:cd:9a:98:33:e8:0b:0d: 27:43:63:57:7c:63:9a:12:40:b7:db:8e:9e:cd:4d: e5:44:04:92:8d:9a:02:c2:ee:e1:a3:0b:16:95:6c: e5:56:e0:0d:e9:b9:ee:84:b7:0a:02:8a:ad:81:17: 9c:ee:43:a6:7e:e5:a2:27:2b:2f:24:df:81:38:14: a8:5b:c9:17:46:98:e6:40:22:00:d6:d3:59:6c:86: c8:bc:de:e1:98:17:22:78:a3:7c:1f:a5:e2:ba:8f: 63:6a:dc:ce:52:95:5f:ed:4a:84:88:6b:2c:87:bc: 65:ae:1a:70:6d:4a:62:61:7e:96:cb:52:c5:53:36: 6f:25:c5:df:89:26:21:09:61:c6:05:8c:77:a6:f1: d4:9a:be:d9:ed:a2:ba:1c:99:9a:8e:b2:d4:55:54: 54:fc:a2:2a:55:52:9f:be:a7:a1:12:b5:60:5e:f3: c8:30:ff:17:13:cd:d9:14:16:e2:e8:8e:d2:68:17: fb:17:13:4e:14:6b:80:d1:b1:0b:95:05:2b:23:65: aa:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:DE:08:E7:2C:3D:C1:07:CB:B8:9C:5E:CD:55:7C:9F:70:08:50:96 X509v3 Authority Key Identifier: keyid:4B:E1:07:39:36:25:2E:3C:F0:72:F9:89:D7:FD:C4:E7:E7:C6:62:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:6e:0e:b8:b3:5d:9e:be:69:9a:27:ad:96:7a:f5:37:34:5f: c2:a8:c8:bd:f0:b5:b0:34:43:41:e9:be:2d:40:15:53:51:79: 93:8b:a7:1c:2f:5e:44:ff:8c:92:48:a8:d3:0e:21:d4:d0:ed: 9c:96:2b:d7:db:f3:4f:69:40:f1:67:f8:40:05:02:df:1d:9b: 6b:de:e0:fd:7e:2e:0f:8e:54:a2:58:d1:04:ac:35:f3:d8:84: d1:b5:1e:01:0d:e0:cd:76:f4:b3:2d:3e:e5:a3:53:e9:e5:ec: ed:57:c1:0d:81:4e:e1:bd:7a:5d:7a:b2:eb:74:33:20:5a:1a: 85:ad:d5:47:2a:8a:a9:a7:de:14:31:de:c8:35:92:0a:e9:99: 8c:90:f7:98:aa:37:d3:57:70:de:08:d2:4f:f3:01:4f:8f:b7: a0:18:b6:52:bc:34:be:85:36:dc:d5:77:24:ba:3a:95:57:f9: 5c:fc:b3:47:e8:f0:70:8a:bc:e4:de:65:80:77:55:39:31:e4: 8b:4b:42:fb:62:35:33:30:16:dc:f9:89:e9:ea:1a:4d:8e:90: 62:20:70:e9:83:22:15:89:8d:55:4d:24:d5:1a:c0:d1:81:13: dd:2e:ce:70:35:bf:5d:3b:fe:70:c1:e6:46:39:84:3e:08:64: 2b:17:8c:2b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTI2OTExMC8GA1UEBRMoNEJFMTA3MzkzNjI1MkUzQ0YwNzJGOTg5RDdGREM0RTdF N0M2NjI3NDAeFw0yNTEyMDUwNDQ5MDdaFw0yNTEyMTIwNDQ5MDdaMBgxFjAUBgNV BAMTDTY5MzI2NDQzLTU5YmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLlNwtH+3RIMVMpHCBQ/BeHOAK40BFLzsLFrf+ppqDrjqu5txTaeZcFFmA8SSW 7tko8nirzZqYM+gLDSdDY1d8Y5oSQLfbjp7NTeVEBJKNmgLC7uGjCxaVbOVW4A3p ue6EtwoCiq2BF5zuQ6Z+5aInKy8k34E4FKhbyRdGmOZAIgDW01lshsi83uGYFyJ4 o3wfpeK6j2Nq3M5SlV/tSoSIayyHvGWuGnBtSmJhfpbLUsVTNm8lxd+JJiEJYcYF jHem8dSavtntorocmZqOstRVVFT8oipVUp++p6EStWBe88gw/xcTzdkUFuLojtJo F/sXE04Ua4DRsQuVBSsjZapbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsN4I5yw9 wQfLuJxezVV8n3AIUJYwHwYDVR0jBBgwFoAUS+EHOTYlLjzwcvmJ1/3E5+fGYnQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFMjY5LzM5M0JBOENFMkI2 RjExRjA4NkFERTU0RUM0RjlBRTAyL1MtRUhPVFlsTGp6d2N2bUoxXzNFNS1mR1lu US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUy1FSE9UWWxManp3Y3ZtSjFfM0U1LWZHWW5RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF MjY5LzM5M0JBOENFMkI2RjExRjA4NkFERTU0RUM0RjlBRTAyL1MtRUhPVFlsTGp6 d2N2bUoxXzNFNS1mR1luUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJFuDrizXZ6+aZonrZZ69Tc0X8KoyL3wtbA0Q0Hpvi1AFVNReZOLpxwv XkT/jJJIqNMOIdTQ7ZyWK9fb809pQPFn+EAFAt8dm2ve4P1+Lg+OVKJY0QSsNfPY hNG1HgEN4M129LMtPuWjU+nl7O1XwQ2BTuG9el16sut0MyBaGoWt1Ucqiqmn3hQx 3sg1kgrpmYyQ95iqN9NXcN4I0k/zAU+Pt6AYtlK8NL6FNtzVdyS6OpVX+Vz8s0fo 8HCKvOTeZYB3VTkx5ItLQvtiNTMwFtz5ienqGk2OkGIgcOmDIhWJjVVNJNUawNGB E90uznA1v107/nDB5kY5hD4IZCsXjCs= -----END CERTIFICATE-----Generated at Sun Dec 7 01:22:51 2025 by rpki-client