This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.


Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft
File:                     eKfTXvnEd150y6PRZrYbdZAkFSM.mft (raw, json)
Hash identifier:          9Fu2lUZdhQqkNVwzqRGTEo22VZOmgASSu1HAVH2GJEc=
Subject key identifier:   BF:CA:33:3C:19:4B:5A:97:D2:78:5C:8D:0A:B0:F2:76:25:ED:0E:E5
Authority key identifier: 78:A7:D3:5E:F9:C4:77:5E:74:CB:A3:D1:66:B6:1B:75:90:24:15:23
Certificate issuer:       /CN=A91D2C38/serialNumber=78A7D35EF9C4775E74CBA3D166B61B7590241523
Certificate serial:       C5
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft
Manifest number:          C3
Signing time:             Sun 07 Dec 2025 04:06:26 +0000
Manifest this update:     Sun 07 Dec 2025 04:06:26 +0000
Manifest next update:     Sun 14 Dec 2025 04:06:26 +0000
Files and hashes:         1: eKfTXvnEd150y6PRZrYbdZAkFSM.crl (hash: X1Uk6JueH5ZdaVpBCBSZsZsfQXrL5rUhvRQsqvgOvE4=)
                          2: 8DDD0D56A98C11EFAAC0F364C4F9AE02.roa (hash: UYM1+JyUTiIe7hrNbR8AB9pkdgDLjYHrI0Dj67rXtxY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.crl
                          rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 14 Dec 2025 04:06:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 197 (0xc5)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D2C38, serialNumber=78A7D35EF9C4775E74CBA3D166B61B7590241523
        Validity
            Not Before: Dec  7 04:06:26 2025 GMT
            Not After : Dec 14 04:06:26 2025 GMT
        Subject: CN=6934fd42-8a3c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:f4:0d:f2:03:5d:de:55:fe:c8:de:d9:01:81:
                    bd:c5:fc:2f:95:41:df:9f:9a:8f:21:5f:cb:9b:07:
                    d6:9c:32:89:20:00:ad:cd:75:ea:5e:43:c7:58:8c:
                    46:97:bb:7e:41:bd:a8:a2:ad:59:1a:a9:32:54:f8:
                    b2:b6:54:75:83:00:86:05:58:f1:84:a2:dc:7b:65:
                    71:56:ac:8f:26:c5:4a:42:a7:29:2c:76:c7:dc:1f:
                    40:ce:15:6b:a7:bc:42:4d:2e:6c:ce:d8:70:f8:30:
                    71:31:83:ab:95:18:58:b9:f4:f9:f5:d6:eb:55:66:
                    ec:ed:42:ef:96:44:3f:5d:c6:41:82:55:28:a9:97:
                    40:f9:0a:0a:d0:1b:62:99:32:bf:1d:f1:7c:cf:dd:
                    a9:98:a3:54:6f:61:29:bf:81:3f:cc:f0:f0:a5:fc:
                    0d:27:2e:61:e9:31:31:ee:24:95:fa:17:74:84:e1:
                    f3:ca:e4:cf:5b:9c:aa:a4:36:ec:7b:7f:b6:01:6d:
                    8b:77:93:7b:1a:0f:60:0f:10:38:96:e5:c3:1c:06:
                    b4:f5:ec:90:86:04:6a:68:43:df:01:71:77:4e:73:
                    6f:24:a2:b8:87:64:08:96:9a:3e:6e:8f:f3:d9:98:
                    14:31:84:35:bc:2d:f1:40:09:b9:49:a9:b5:56:78:
                    3d:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BF:CA:33:3C:19:4B:5A:97:D2:78:5C:8D:0A:B0:F2:76:25:ED:0E:E5
            X509v3 Authority Key Identifier:
                keyid:78:A7:D3:5E:F9:C4:77:5E:74:CB:A3:D1:66:B6:1B:75:90:24:15:23

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         c2:1d:27:66:69:37:10:a1:d6:67:5e:b1:07:f7:1b:18:42:a1:
         07:fe:3a:50:31:c4:85:18:c9:20:a9:e7:2d:4b:de:8d:a1:e7:
         43:18:8d:c6:35:ea:ee:f7:0d:cf:62:68:57:7a:9f:5a:94:c6:
         99:93:23:6c:c5:38:2d:d0:84:51:09:be:01:ef:62:c3:e0:2a:
         53:80:e0:b1:85:4c:10:28:d2:93:64:18:14:23:06:d2:f8:7d:
         45:da:5d:34:5b:1d:17:b8:ef:8d:9e:ba:85:1f:07:7d:0d:f4:
         fc:7d:70:0d:d4:1a:dd:c9:0b:28:1e:63:ff:f1:a2:6f:7c:cc:
         65:e3:ba:9e:fa:c6:f9:dc:7a:38:a3:b6:1a:42:08:a6:16:24:
         db:4f:16:45:e9:a4:de:f9:f0:b0:83:10:af:39:19:83:d8:aa:
         16:62:24:30:57:ec:f4:2a:c6:05:c9:16:65:ba:1f:a8:1f:37:
         71:4f:ee:4a:12:c4:cc:e8:59:10:ae:0c:cd:3d:a6:14:aa:2c:
         80:32:c7:e9:20:ce:90:72:9c:c5:24:d8:f0:bf:12:73:77:ec:
         de:e8:4c:85:f6:4c:25:1a:40:f8:48:66:37:6f:04:11:c4:70:
         3f:ff:7b:20:72:c4:54:23:23:92:c9:62:74:12:1c:fb:ee:21:
         f8:6b:b9:77
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RDJDMzgxMTAvBgNVBAUTKDc4QTdEMzVFRjlDNDc3NUU3NENCQTNEMTY2QjYxQjc1
OTAyNDE1MjMwHhcNMjUxMjA3MDQwNjI2WhcNMjUxMjE0MDQwNjI2WjAYMRYwFAYD
VQQDEw02OTM0ZmQ0Mi04YTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0/QN8gNd3lX+yN7ZAYG9xfwvlUHfn5qPIV/LmwfWnDKJIACtzXXqXkPHWIxG
l7t+Qb2ooq1ZGqkyVPiytlR1gwCGBVjxhKLce2VxVqyPJsVKQqcpLHbH3B9AzhVr
p7xCTS5szthw+DBxMYOrlRhYufT59dbrVWbs7ULvlkQ/XcZBglUoqZdA+QoK0Bti
mTK/HfF8z92pmKNUb2Epv4E/zPDwpfwNJy5h6TEx7iSV+hd0hOHzyuTPW5yqpDbs
e3+2AW2Ld5N7Gg9gDxA4luXDHAa09eyQhgRqaEPfAXF3TnNvJKK4h2QIlpo+bo/z
2ZgUMYQ1vC3xQAm5Sam1Vng9GQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL/KMzwZ
S1qX0nhcjQqw8nYl7Q7lMB8GA1UdIwQYMBaAFHin0175xHdedMuj0Wa2G3WQJBUj
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkMzOC8wREU4OTM0MEE5
OEMxMUVGOTM1MEZCNjNDNEY5QUUwMi9lS2ZUWHZuRWQxNTB5NlBSWnJZYmRaQWtG
U00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2VLZlRYdm5FZDE1MHk2UFJaclliZFpBa0ZTTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
MkMzOC8wREU4OTM0MEE5OEMxMUVGOTM1MEZCNjNDNEY5QUUwMi9lS2ZUWHZuRWQx
NTB5NlBSWnJZYmRaQWtGU00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQDCHSdmaTcQodZnXrEH9xsYQqEH/jpQMcSFGMkgqectS96NoedDGI3G
Neru9w3PYmhXep9alMaZkyNsxTgt0IRRCb4B72LD4CpTgOCxhUwQKNKTZBgUIwbS
+H1F2l00Wx0XuO+NnrqFHwd9DfT8fXAN1BrdyQsoHmP/8aJvfMxl47qe+sb53Ho4
o7YaQgimFiTbTxZF6aTe+fCwgxCvORmD2KoWYiQwV+z0KsYFyRZluh+oHzdxT+5K
EsTM6FkQrgzNPaYUqiyAMsfpIM6QcpzFJNjwvxJzd+ze6EyF9kwlGkD4SGY3bwQR
xHA//3sgcsRUIyOSyWJ0Ehz77iH4a7l3
-----END CERTIFICATE-----
Generated at Sun Dec 7 07:03:53 2025 by rpki-client