This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft File: EhrxRNkD4_iJffD-0gcaFkd17U8.mft (raw, json) Hash identifier: CRI7/6U8xgI9ORmCCL5KMD7c7YcX40bWXM+8mJSIa0I= Subject key identifier: F1:43:17:00:9D:D0:B9:E7:A1:6B:B2:83:77:D9:64:78:F4:B2:24:EB Authority key identifier: 12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F Certificate issuer: /CN=A91E554A/serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft Manifest number: D6 Signing time: Fri 05 Dec 2025 03:42:52 +0000 Manifest this update: Fri 05 Dec 2025 03:42:52 +0000 Manifest next update: Fri 12 Dec 2025 03:42:52 +0000 Files and hashes: 1: EhrxRNkD4_iJffD-0gcaFkd17U8.crl (hash: LlOEVDOVsO9DtrKNLqqq2SZ9ZInhujnEC3LAH8CULKU=) 2: 7C304160FECB11EFB755BB45C4F9AE02.roa (hash: 96JJ4xS4XL/KIJ4tbueQ63oeM+4CMNy+gkgjGzK0Myk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:42:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E554A, serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Validity Not Before: Dec 5 03:42:52 2025 GMT Not After : Dec 12 03:42:52 2025 GMT Subject: CN=693254bc-7538 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:dd:85:20:82:2e:f4:74:ca:5b:e2:a6:4f:c6: 60:10:2e:a1:2a:95:b3:e1:a9:76:7a:83:33:32:2e: 35:3b:1c:19:0f:39:ed:a5:3f:dc:5e:dd:85:b1:b8: de:92:6b:f9:80:15:63:6e:7f:14:3a:4a:42:19:80: 61:e3:01:77:9d:a6:3d:99:ef:98:83:a2:d6:64:1b: bb:e3:57:17:4f:72:d0:e1:76:90:63:d1:78:22:40: a6:ad:75:5c:bc:a8:5b:17:50:8e:78:7c:dc:15:49: fa:08:1a:f6:7d:51:d9:a2:fa:70:56:1b:16:a9:13: 14:63:65:c8:90:c6:4f:a9:af:bc:20:87:8e:65:aa: 44:cc:23:e7:23:1c:72:b4:b0:f5:b9:c9:a3:78:50: 14:8b:51:c3:e4:71:a4:2d:30:fe:9e:0c:31:d5:44: 1e:10:7c:63:7a:fd:7c:d4:55:d3:e7:f2:c7:32:eb: 0c:f0:46:23:b3:41:ae:98:b5:0d:4c:c6:8d:cc:11: a8:6b:37:a6:a3:90:2d:28:19:0e:65:45:bd:98:d9: d4:f5:53:96:ff:bc:5a:ab:cb:73:24:33:0b:ae:e0: dd:50:38:09:f9:14:0b:70:55:c4:5c:c1:25:b6:d9: 85:46:00:33:16:2d:ad:4a:be:2f:5a:ac:0e:e4:58: 3f:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:43:17:00:9D:D0:B9:E7:A1:6B:B2:83:77:D9:64:78:F4:B2:24:EB X509v3 Authority Key Identifier: keyid:12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:38:eb:c6:7a:88:ff:1f:f2:18:86:3a:c9:e3:f7:8c:c7:d0: ca:85:f4:42:17:b9:63:c7:67:2e:bf:6f:08:b7:14:05:fb:1f: be:d9:6d:ca:24:68:e0:8f:55:ef:8a:85:7f:18:3c:c0:53:5c: fa:22:ba:3d:87:0c:a8:7c:a5:dd:3e:b9:3c:2e:ea:e5:0f:67: 13:bb:96:59:b9:a3:d7:8a:d9:42:96:b7:7b:8c:45:e5:75:51: 35:22:83:9b:08:ca:27:2e:ed:5b:df:d2:07:2d:9d:03:e3:6c: 38:cc:1b:93:d6:db:77:30:3c:b7:e1:b7:c5:11:81:24:c6:77: f0:d5:e5:79:c0:aa:c9:c0:ba:1a:11:02:3b:19:49:cc:a7:50: 3a:c7:7d:4c:c7:a1:a9:54:ac:01:84:86:31:3d:48:32:9e:ba: 46:02:20:a9:dc:7b:e8:60:35:1d:79:fd:13:9f:cf:48:b3:2c: 66:2a:8a:a7:04:52:aa:4c:dc:9e:fe:3e:35:11:70:21:5b:64: 80:78:50:b9:6f:ec:a7:45:ad:64:87:28:ad:35:bd:da:c7:b1: 3e:76:56:3d:17:58:05:8a:5d:4e:38:b4:80:da:7c:6e:0b:86: 9c:02:8c:cf:da:77:6a:d1:64:0f:4e:bd:96:08:b4:57:02:43: eb:9b:dd:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU1NEExMTAvBgNVBAUTKDEyMUFGMTQ0RDkwM0UzRjg4OTdERjBGRUQyMDcxQTE2 NDc3NUVENEYwHhcNMjUxMjA1MDM0MjUyWhcNMjUxMjEyMDM0MjUyWjAYMRYwFAYD VQQDEw02OTMyNTRiYy03NTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvd2FIIIu9HTKW+KmT8ZgEC6hKpWz4al2eoMzMi41OxwZDzntpT/cXt2Fsbje kmv5gBVjbn8UOkpCGYBh4wF3naY9me+Yg6LWZBu741cXT3LQ4XaQY9F4IkCmrXVc vKhbF1COeHzcFUn6CBr2fVHZovpwVhsWqRMUY2XIkMZPqa+8IIeOZapEzCPnIxxy tLD1ucmjeFAUi1HD5HGkLTD+ngwx1UQeEHxjev181FXT5/LHMusM8EYjs0GumLUN TMaNzBGoazemo5AtKBkOZUW9mNnU9VOW/7xaq8tzJDMLruDdUDgJ+RQLcFXEXMEl ttmFRgAzFi2tSr4vWqwO5Fg/jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPFDFwCd 0LnnoWuyg3fZZHj0siTrMB8GA1UdIwQYMBaAFBIa8UTZA+P4iX3w/tIHGhZHde1P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTU0QS83OTVFNzNEMDkx RjcxMUVGQURFMTEyNjZDNEY5QUUwMi9FaHJ4Uk5rRDRfaUpmZkQtMGdjYUZrZDE3 VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0VocnhSTmtENF9pSmZmRC0wZ2NhRmtkMTdVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTU0QS83OTVFNzNEMDkxRjcxMUVGQURFMTEyNjZDNEY5QUUwMi9FaHJ4Uk5rRDRf aUpmZkQtMGdjYUZrZDE3VTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDOOvGeoj/H/IYhjrJ4/eMx9DKhfRCF7ljx2cuv28ItxQF+x++2W3K JGjgj1XvioV/GDzAU1z6Iro9hwyofKXdPrk8LurlD2cTu5ZZuaPXitlClrd7jEXl dVE1IoObCMonLu1b39IHLZ0D42w4zBuT1tt3MDy34bfFEYEkxnfw1eV5wKrJwLoa EQI7GUnMp1A6x31Mx6GpVKwBhIYxPUgynrpGAiCp3HvoYDUdef0Tn89IsyxmKoqn BFKqTNye/j41EXAhW2SAeFC5b+ynRa1khyitNb3ax7E+dlY9F1gFil1OOLSA2nxu C4acAozP2ndq0WQPTr2WCLRXAkPrm91m -----END CERTIFICATE-----Generated at Sun Dec 7 01:28:20 2025 by rpki-client