This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft File: eHDyQLxFFuOanCWVjPl7GUvnZWc.mft (raw, json) Hash identifier: 5zAJ0TGW4OkjdaRpxO8r8l2+BXyw4zIu2bek4FUFZGk= Subject key identifier: 67:41:4D:60:F4:F1:94:6B:07:D5:D0:EE:1E:F9:30:44:6C:4D:2F:5A Authority key identifier: 78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 Certificate issuer: /CN=A91A09BF/serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Certificate serial: 0C08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft Manifest number: 0BE9 Signing time: Thu 04 Dec 2025 18:16:51 +0000 Manifest this update: Thu 04 Dec 2025 18:16:51 +0000 Manifest next update: Thu 11 Dec 2025 18:16:51 +0000 Files and hashes: 1: eHDyQLxFFuOanCWVjPl7GUvnZWc.crl (hash: yV32lu3DOw5gtab6+2DTzkgprkJVB+6HW6OkXlHr0pQ=) 2: CEFDECF850B011F0B9262D4FC4F9AE02.roa (hash: CLQ3/hXK7ryJwut8NCieyr8cQPTKzXF6ACByOsd3FLE=) 3: EC4AB04AAA5511EABCEBDE19C4F9AE02.roa (hash: lYe/+IkQ+R02IaPZzlGxsHV36S7X3fY0hJQ296NQhrQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:16:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3080 (0xc08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A09BF, serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567 Validity Not Before: Dec 4 18:16:51 2025 GMT Not After : Dec 11 18:16:51 2025 GMT Subject: CN=6931d013-7ae7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:87:23:20:fc:97:b4:d6:98:81:77:60:39:9d: fa:d3:30:8b:e2:10:80:81:2f:b8:f0:d5:4e:3c:97: ee:cc:52:bb:ef:e3:47:51:4c:79:28:bc:56:d9:1e: a7:3d:92:bc:e0:38:65:13:a6:fb:73:23:18:d2:32: a5:31:3d:e7:bc:bf:0f:7f:b4:8a:41:39:bb:2d:55: 03:01:60:9b:c2:16:37:7c:41:97:07:bc:a3:77:ab: df:59:a2:94:fb:02:3f:f4:68:36:ee:ce:49:d0:13: 35:c0:70:77:99:c2:35:72:4f:40:7d:b2:8c:5c:64: 68:d0:2e:3b:8f:62:9c:84:72:64:26:ac:a2:93:6b: 95:6f:66:d1:0a:79:ee:06:63:05:1c:75:24:44:cb: 0e:81:cb:81:e0:d2:ae:df:ed:5b:aa:bb:33:82:65: 63:c3:5e:ae:d5:af:86:b6:ae:6d:64:a0:18:01:52: 6c:67:e8:71:c2:4a:96:5b:7c:c1:97:8f:27:f5:7a: 4c:90:e4:e3:de:81:ba:21:74:70:dc:34:8f:9b:e9: 7e:c2:5c:9d:c1:d2:85:e1:3a:e9:e0:57:97:dc:b0: cc:b2:69:45:bb:b9:1a:c4:13:5d:b8:27:28:7e:0e: bc:5f:da:ba:99:bd:71:9f:b2:c0:74:80:74:0a:6b: ee:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:41:4D:60:F4:F1:94:6B:07:D5:D0:EE:1E:F9:30:44:6C:4D:2F:5A X509v3 Authority Key Identifier: keyid:78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:0d:bc:5d:c0:bb:78:3a:fc:f9:3c:55:e3:f2:e5:61:61:01: 99:c0:22:2e:88:92:b2:6e:90:0f:3c:28:e8:1f:f3:6e:d6:30: e7:7f:9e:ef:cc:20:37:41:1d:df:42:18:2c:44:ef:3d:31:70: d1:5c:61:36:56:0f:f8:a2:c5:0a:a8:63:1d:c3:24:34:a1:23: 77:19:81:1d:1a:e4:e1:5c:f8:d4:73:a0:dc:51:7a:1c:15:e5: 1b:6f:f3:ce:c5:2d:91:0b:7e:af:53:89:33:85:35:01:b8:ad: e0:88:b9:a0:47:9f:33:df:49:16:a4:ea:af:1c:6b:71:3a:9b: 73:00:b0:46:e4:cf:4e:34:8b:b0:ce:76:41:a7:a3:31:38:8a: a6:6c:25:0f:31:f9:00:07:71:f8:37:12:09:5d:29:17:bf:90: e2:82:35:d8:d6:4c:90:e7:ec:30:c1:18:2f:5c:6f:6b:8d:40: b4:0f:ee:ae:72:20:c9:32:62:c2:b9:96:57:7b:3f:c3:80:d1: 96:66:02:46:25:3d:53:fb:ca:cd:e9:90:40:98:fb:e1:56:43: 2b:28:1f:e7:2d:d1:70:b6:55:7b:29:31:aa:65:01:91:78:11: 65:43:12:63:ae:64:f6:2e:a2:e9:c3:56:53:94:a3:fb:f5:f8: 78:a2:b5:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5QkYxMTAvBgNVBAUTKDc4NzBGMjQwQkM0NTE2RTM5QTlDMjU5NThDRjk3QjE5 NEJFNzY1NjcwHhcNMjUxMjA0MTgxNjUxWhcNMjUxMjExMTgxNjUxWjAYMRYwFAYD VQQDEw02OTMxZDAxMy03YWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7IcjIPyXtNaYgXdgOZ360zCL4hCAgS+48NVOPJfuzFK77+NHUUx5KLxW2R6n PZK84DhlE6b7cyMY0jKlMT3nvL8Pf7SKQTm7LVUDAWCbwhY3fEGXB7yjd6vfWaKU +wI/9Gg27s5J0BM1wHB3mcI1ck9AfbKMXGRo0C47j2KchHJkJqyik2uVb2bRCnnu BmMFHHUkRMsOgcuB4NKu3+1bqrszgmVjw16u1a+Gtq5tZKAYAVJsZ+hxwkqWW3zB l48n9XpMkOTj3oG6IXRw3DSPm+l+wlydwdKF4Trp4FeX3LDMsmlFu7kaxBNduCco fg68X9q6mb1xn7LAdIB0CmvufwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGdBTWD0 8ZRrB9XQ7h75MERsTS9aMB8GA1UdIwQYMBaAFHhw8kC8RRbjmpwllYz5exlL52Vn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDlCRi9EMTNEQTFENDJE RkMxMUVBQkMxQjZCODJDNEY5QUUwMi9lSER5UUx4RkZ1T2FuQ1dWalBsN0dVdm5a V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VIRHlRTHhGRnVPYW5DV1ZqUGw3R1V2blpXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDlCRi9EMTNEQTFENDJERkMxMUVBQkMxQjZCODJDNEY5QUUwMi9lSER5UUx4RkZ1 T2FuQ1dWalBsN0dVdm5aV2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqDbxdwLt4Ovz5PFXj8uVhYQGZwCIuiJKybpAPPCjoH/Nu1jDnf57v zCA3QR3fQhgsRO89MXDRXGE2Vg/4osUKqGMdwyQ0oSN3GYEdGuThXPjUc6DcUXoc FeUbb/POxS2RC36vU4kzhTUBuK3giLmgR58z30kWpOqvHGtxOptzALBG5M9ONIuw znZBp6MxOIqmbCUPMfkAB3H4NxIJXSkXv5DigjXY1kyQ5+wwwRgvXG9rjUC0D+6u ciDJMmLCuZZXez/DgNGWZgJGJT1T+8rN6ZBAmPvhVkMrKB/nLdFwtlV7KTGqZQGR eBFlQxJjrmT2LqLpw1ZTlKP79fh4orX5 -----END CERTIFICATE-----Generated at Sat Dec 6 19:15:06 2025 by rpki-client