This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft File: eKfTXvnEd150y6PRZrYbdZAkFSM.mft (raw, json) Hash identifier: Js9/uCi1CtI1qYdw/CBKA/3greExfoQDyEdseRUIIBA= Subject key identifier: CD:54:EA:1A:CA:4B:D5:6A:3B:52:A5:DC:81:15:1B:AA:BF:35:4B:3F Authority key identifier: 78:A7:D3:5E:F9:C4:77:5E:74:CB:A3:D1:66:B6:1B:75:90:24:15:23 Certificate issuer: /CN=A91D2C38/serialNumber=78A7D35EF9C4775E74CBA3D166B61B7590241523 Certificate serial: C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft Manifest number: C2 Signing time: Fri 05 Dec 2025 03:53:49 +0000 Manifest this update: Fri 05 Dec 2025 03:53:49 +0000 Manifest next update: Fri 12 Dec 2025 03:53:49 +0000 Files and hashes: 1: eKfTXvnEd150y6PRZrYbdZAkFSM.crl (hash: bOyEnqc0OIHjdhI/5/QO9e3x46oDnDGV1scdj4YqUPs=) 2: 8DDD0D56A98C11EFAAC0F364C4F9AE02.roa (hash: UYM1+JyUTiIe7hrNbR8AB9pkdgDLjYHrI0Dj67rXtxY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.crl rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:53:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2C38, serialNumber=78A7D35EF9C4775E74CBA3D166B61B7590241523 Validity Not Before: Dec 5 03:53:49 2025 GMT Not After : Dec 12 03:53:49 2025 GMT Subject: CN=6932574d-168a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:01:ce:af:be:1e:8e:dd:01:e8:d8:a1:2f:69: 29:f2:20:b0:90:db:68:f5:5b:51:8d:43:94:9d:03: 51:5f:6e:eb:2b:d0:08:b9:26:af:79:29:09:ee:78: 28:ad:15:3d:7f:a6:96:13:f0:8c:c5:50:01:55:de: 70:12:a9:6b:92:90:c2:78:fd:35:37:e2:68:58:f7: dc:16:70:03:d1:3e:fa:5a:28:bb:88:6c:26:07:b4: 1d:71:88:7a:92:20:f7:7b:cf:cc:d4:c2:dd:53:c7: 56:53:56:9c:fe:5f:c5:0f:87:d8:50:ae:95:a4:16: 4f:f7:ff:59:78:37:8d:5b:91:b4:1b:be:c2:3c:13: ee:81:45:d6:02:7a:be:c1:bd:86:cc:45:59:bd:a2: 38:6e:80:59:2a:a4:7c:cf:e6:08:40:56:b4:14:71: 6d:27:5d:e2:32:23:31:0a:73:30:70:46:51:56:81: 7b:07:a7:37:af:0c:cd:a2:71:50:7d:31:3f:4f:77: ec:52:19:a8:b1:b6:29:41:bb:ea:1d:27:a1:27:f5: 38:3a:7b:d3:90:b0:65:2a:ea:5c:9e:3c:c8:6c:ec: d6:a8:77:9f:be:00:07:56:6c:f4:3b:f7:33:47:2e: 76:fa:ef:39:80:53:77:1f:b0:c8:41:92:82:31:27: 8d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:54:EA:1A:CA:4B:D5:6A:3B:52:A5:DC:81:15:1B:AA:BF:35:4B:3F X509v3 Authority Key Identifier: keyid:78:A7:D3:5E:F9:C4:77:5E:74:CB:A3:D1:66:B6:1B:75:90:24:15:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:70:d8:8d:09:1a:5e:7b:60:a0:04:76:20:7e:dd:de:ff:8b: 63:f1:6f:51:e5:d7:a7:66:77:6a:29:67:23:13:6f:e7:dc:36: be:9d:3e:9c:26:c7:34:7e:d7:ab:fb:2d:ff:2e:7d:c3:2e:73: 84:95:88:15:96:70:88:ea:90:08:35:5b:67:f7:ea:91:1c:ca: 55:7c:f6:9f:6b:0f:8e:42:e2:42:97:72:4f:92:3d:2a:89:75: 6a:1f:46:d7:05:1a:75:b2:79:a1:69:d0:f9:50:da:aa:a9:19: dc:24:ba:51:a8:0a:31:cf:91:bd:a5:67:5f:b0:09:98:e1:99: 65:4d:8b:06:56:d8:55:62:3a:a2:db:0f:84:f0:67:ee:f9:46: 1a:72:45:89:e2:1c:ed:3f:4c:14:6e:3a:a9:b3:52:cf:e3:1b: ba:25:d9:d8:b3:f1:a2:6a:e5:74:a2:1a:cc:06:0c:21:cf:54: c5:d8:66:be:f7:63:78:74:17:28:5f:e1:ba:13:d1:cb:42:5a: 2c:1b:1b:2f:b5:8e:3a:5f:62:27:fd:68:99:e7:29:36:6b:00: b5:c6:0d:00:6a:87:7c:0a:3d:17:87:a6:13:7d:ff:48:f4:b6: 04:90:cd:36:47:ac:b3:a5:71:69:67:8c:86:cb:45:87:5d:50: 12:ff:8f:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJDMzgxMTAvBgNVBAUTKDc4QTdEMzVFRjlDNDc3NUU3NENCQTNEMTY2QjYxQjc1 OTAyNDE1MjMwHhcNMjUxMjA1MDM1MzQ5WhcNMjUxMjEyMDM1MzQ5WjAYMRYwFAYD VQQDEw02OTMyNTc0ZC0xNjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvwHOr74ejt0B6NihL2kp8iCwkNto9VtRjUOUnQNRX27rK9AIuSaveSkJ7ngo rRU9f6aWE/CMxVABVd5wEqlrkpDCeP01N+JoWPfcFnAD0T76Wii7iGwmB7QdcYh6 kiD3e8/M1MLdU8dWU1ac/l/FD4fYUK6VpBZP9/9ZeDeNW5G0G77CPBPugUXWAnq+ wb2GzEVZvaI4boBZKqR8z+YIQFa0FHFtJ13iMiMxCnMwcEZRVoF7B6c3rwzNonFQ fTE/T3fsUhmosbYpQbvqHSehJ/U4OnvTkLBlKupcnjzIbOzWqHefvgAHVmz0O/cz Ry52+u85gFN3H7DIQZKCMSeNiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM1U6hrK S9VqO1Kl3IEVG6q/NUs/MB8GA1UdIwQYMBaAFHin0175xHdedMuj0Wa2G3WQJBUj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkMzOC8wREU4OTM0MEE5 OEMxMUVGOTM1MEZCNjNDNEY5QUUwMi9lS2ZUWHZuRWQxNTB5NlBSWnJZYmRaQWtG U00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VLZlRYdm5FZDE1MHk2UFJaclliZFpBa0ZTTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkMzOC8wREU4OTM0MEE5OEMxMUVGOTM1MEZCNjNDNEY5QUUwMi9lS2ZUWHZuRWQx NTB5NlBSWnJZYmRaQWtGU00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3cNiNCRpee2CgBHYgft3e/4tj8W9R5denZndqKWcjE2/n3Da+nT6c Jsc0fter+y3/Ln3DLnOElYgVlnCI6pAINVtn9+qRHMpVfPafaw+OQuJCl3JPkj0q iXVqH0bXBRp1snmhadD5UNqqqRncJLpRqAoxz5G9pWdfsAmY4ZllTYsGVthVYjqi 2w+E8Gfu+UYackWJ4hztP0wUbjqps1LP4xu6JdnYs/GiauV0ohrMBgwhz1TF2Ga+ 92N4dBcoX+G6E9HLQlosGxsvtY46X2In/WiZ5yk2awC1xg0Aaod8Cj0Xh6YTff9I 9LYEkM02R6yzpXFpZ4yGy0WHXVAS/4+K -----END CERTIFICATE-----Generated at Sun Dec 7 03:42:07 2025 by rpki-client