This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft File: EHo5wcwE8nzHJmPb97rm2SqVA4A.mft (raw, json) Hash identifier: LS1Fsy/9qbvPDhmD4FrTrT7CcbUTnOOudgUkuDa/8fo= Subject key identifier: 77:A3:5A:C5:EF:75:D4:74:D3:58:6F:14:59:B9:CA:A4:C7:D4:D3:EB Authority key identifier: 10:7A:39:C1:CC:04:F2:7C:C7:26:63:DB:F7:BA:E6:D9:2A:95:03:80 Certificate issuer: /CN=A91AFBDA/serialNumber=107A39C1CC04F27CC72663DBF7BAE6D92A950380 Certificate serial: 0146 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EHo5wcwE8nzHJmPb97rm2SqVA4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft Manifest number: 0142 Signing time: Fri 05 Dec 2025 02:30:36 +0000 Manifest this update: Fri 05 Dec 2025 02:30:35 +0000 Manifest next update: Fri 12 Dec 2025 02:30:35 +0000 Files and hashes: 1: EHo5wcwE8nzHJmPb97rm2SqVA4A.crl (hash: leAfWxbs+83WJE4rfN6O8ecyhogJ4ggAG98palEAZOg=) 2: 62246EC4E67E11EEAD030482C4F9AE02.roa (hash: J5vtQMTwpL/xmHDO4Uy4YqCD/INA3rpqnN+ZrH/2hAs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.crl rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EHo5wcwE8nzHJmPb97rm2SqVA4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:30:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 326 (0x146) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFBDA, serialNumber=107A39C1CC04F27CC72663DBF7BAE6D92A950380 Validity Not Before: Dec 5 02:30:35 2025 GMT Not After : Dec 12 02:30:35 2025 GMT Subject: CN=693243cb-834f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:4f:f9:11:d7:e7:6f:f6:89:37:62:d5:6c:23: 0d:ed:ea:da:b5:4e:0b:e6:b7:21:6c:7e:9c:58:03: fe:d8:02:3e:59:10:58:75:8a:61:c3:bd:b5:25:ee: e1:70:2c:26:1a:ee:89:79:05:cb:e4:6d:aa:c9:89: 2a:88:29:67:ca:7c:fb:7f:4a:55:da:ef:00:92:5d: 2d:26:57:20:ef:14:c4:fa:ba:42:25:4a:71:87:f6: bf:22:53:46:65:e0:07:4f:99:83:75:fd:26:36:47: 6d:a7:aa:dc:cf:fb:a8:d0:08:41:93:33:00:3a:54: 31:8a:86:f6:3a:c7:1c:8a:05:b1:57:66:12:73:d9: b3:0b:cf:4a:06:7f:32:fe:ec:e1:d8:74:b5:7b:c0: bd:9a:ea:f0:0a:d5:bf:c5:9b:8f:e5:bf:3a:fb:80: e8:aa:d6:63:60:ee:0b:04:9c:87:e8:b4:68:6e:1a: 3e:69:64:8d:80:d6:16:4f:6d:b8:e9:ab:e4:0a:5c: 85:85:ed:26:d6:0a:a8:98:22:1e:bb:1d:1f:9e:c3: 35:2f:ab:40:2b:72:cf:ac:d5:02:8d:11:47:8c:b9: 57:6c:74:da:32:15:65:ea:78:93:25:06:2e:57:66: de:3f:4f:d9:a1:3d:05:15:82:3e:01:10:4d:2f:92: d6:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:A3:5A:C5:EF:75:D4:74:D3:58:6F:14:59:B9:CA:A4:C7:D4:D3:EB X509v3 Authority Key Identifier: keyid:10:7A:39:C1:CC:04:F2:7C:C7:26:63:DB:F7:BA:E6:D9:2A:95:03:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EHo5wcwE8nzHJmPb97rm2SqVA4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:54:cf:ba:7c:57:19:a4:db:7d:97:87:2c:af:51:89:8b:49: a2:28:81:05:0c:51:0d:a9:29:42:70:45:63:f2:6f:c3:5e:a3: 64:00:41:05:fd:8e:ee:1d:29:54:b9:89:4f:fe:04:37:ea:7f: d2:fe:49:8f:19:0d:ad:f7:1a:82:26:06:75:61:a3:f0:96:4d: 43:6a:2c:0c:61:52:64:ca:3e:ab:46:9a:dd:f9:3d:0a:37:87: 0d:6f:fe:2b:47:1d:94:79:2a:a9:c2:e4:29:e3:61:21:02:22: 2d:9a:59:f3:25:0c:e2:e1:df:dc:a2:c3:c2:c9:c0:5b:1c:67: 14:c2:94:1a:64:0d:bb:b6:85:ec:48:28:e8:be:bd:1f:1d:9a: 68:a3:21:b7:04:96:5e:18:1e:c0:ad:4c:d8:35:03:d4:4a:09: 03:0f:72:d1:b0:c1:c7:bf:86:96:91:2f:1b:12:53:cd:7c:b5: 7c:e3:e5:7b:c4:e6:df:a5:b5:4e:49:75:71:e2:9a:da:17:e8: c5:f2:85:ef:93:e3:97:d0:c0:08:b8:fb:2f:cf:7f:25:f3:27: 3d:32:44:4e:37:6a:e2:72:0d:8a:46:99:ea:e3:98:e1:f3:7b: 9d:62:fc:b6:61:1b:72:c3:84:07:fb:f8:3e:7c:dc:d7:d7:3b: f6:44:ee:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCREExMTAvBgNVBAUTKDEwN0EzOUMxQ0MwNEYyN0NDNzI2NjNEQkY3QkFFNkQ5 MkE5NTAzODAwHhcNMjUxMjA1MDIzMDM1WhcNMjUxMjEyMDIzMDM1WjAYMRYwFAYD VQQDEw02OTMyNDNjYi04MzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2U/5Edfnb/aJN2LVbCMN7eratU4L5rchbH6cWAP+2AI+WRBYdYphw721Je7h cCwmGu6JeQXL5G2qyYkqiClnynz7f0pV2u8Akl0tJlcg7xTE+rpCJUpxh/a/IlNG ZeAHT5mDdf0mNkdtp6rcz/uo0AhBkzMAOlQxiob2OsccigWxV2YSc9mzC89KBn8y /uzh2HS1e8C9murwCtW/xZuP5b86+4DoqtZjYO4LBJyH6LRobho+aWSNgNYWT224 6avkClyFhe0m1gqomCIeux0fnsM1L6tAK3LPrNUCjRFHjLlXbHTaMhVl6niTJQYu V2beP0/ZoT0FFYI+ARBNL5LWOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHejWsXv ddR001hvFFm5yqTH1NPrMB8GA1UdIwQYMBaAFBB6OcHMBPJ8xyZj2/e65tkqlQOA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkJEQS82QUQzNzRBQUU2 NUQxMUVFQjYxMjNFNDFDNEY5QUUwMi9FSG81d2N3RThuekhKbVBiOTdybTJTcVZB NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VIbzV3Y3dFOG56SEptUGI5N3JtMlNxVkE0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkJEQS82QUQzNzRBQUU2NUQxMUVFQjYxMjNFNDFDNEY5QUUwMi9FSG81d2N3RThu ekhKbVBiOTdybTJTcVZBNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwVM+6fFcZpNt9l4csr1GJi0miKIEFDFENqSlCcEVj8m/DXqNkAEEF /Y7uHSlUuYlP/gQ36n/S/kmPGQ2t9xqCJgZ1YaPwlk1DaiwMYVJkyj6rRprd+T0K N4cNb/4rRx2UeSqpwuQp42EhAiItmlnzJQzi4d/cosPCycBbHGcUwpQaZA27toXs SCjovr0fHZpooyG3BJZeGB7ArUzYNQPUSgkDD3LRsMHHv4aWkS8bElPNfLV84+V7 xObfpbVOSXVx4praF+jF8oXvk+OX0MAIuPsvz38l8yc9MkRON2ricg2KRpnq45jh 83udYvy2YRtyw4QH+/g+fNzX1zv2RO42 -----END CERTIFICATE-----Generated at Sat Dec 6 20:21:51 2025 by rpki-client