This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.mft File: ep7epfyIL4Z-ujeIm807O7SsYjE.mft (raw, json) Hash identifier: DN8eprgicYz/zKIoMDGguCVJDp1sCxnCaacMuC1Hloo= Subject key identifier: 19:F1:3C:3A:9B:C5:43:20:2C:D1:6E:C7:B3:81:06:A7:22:AE:B4:4D Authority key identifier: 7A:9E:DE:A5:FC:88:2F:86:7E:BA:37:88:9B:CD:3B:3B:B4:AC:62:31 Certificate issuer: /CN=A91EBBAF/serialNumber=7A9EDEA5FC882F867EBA37889BCD3B3BB4AC6231 Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep7epfyIL4Z-ujeIm807O7SsYjE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.mft Manifest number: 64 Signing time: Fri 05 Dec 2025 04:54:23 +0000 Manifest this update: Fri 05 Dec 2025 04:54:23 +0000 Manifest next update: Fri 12 Dec 2025 04:54:23 +0000 Files and hashes: 1: ep7epfyIL4Z-ujeIm807O7SsYjE.crl (hash: BrSKhcRWNEMMRWTiy/Hw9na7p+MAUs2jAmX6UY0wcaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.crl rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep7epfyIL4Z-ujeIm807O7SsYjE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:54:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBBAF, serialNumber=7A9EDEA5FC882F867EBA37889BCD3B3BB4AC6231 Validity Not Before: Dec 5 04:54:23 2025 GMT Not After : Dec 12 04:54:23 2025 GMT Subject: CN=6932657f-afac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:cc:b6:9e:42:c8:44:b4:ad:4b:eb:d3:66:15: 30:fe:f5:1c:6f:5a:c3:ef:77:fb:93:27:0b:6e:80: b2:95:a5:e8:ca:19:05:37:f1:4f:03:be:08:cb:02: 4a:36:28:21:6c:3c:db:14:ba:55:30:0e:93:39:3c: 4e:ef:2b:a9:d2:7f:86:37:55:90:7d:c7:1c:6d:30: a1:eb:36:e0:a9:7e:af:2f:9b:53:3a:5e:d2:7d:e8: 0d:d9:5e:be:bd:58:72:8c:08:36:95:33:67:49:e0: a1:86:2c:f2:47:a1:09:10:93:02:7d:90:0c:9d:47: 3a:10:50:c0:1c:3e:6d:57:a4:16:22:1b:5d:d4:b4: da:98:37:f2:35:74:32:8d:33:87:aa:10:f2:38:0f: 21:b6:9f:97:3b:75:5f:f4:81:d1:9a:72:7a:3c:26: ea:eb:10:2d:66:dd:43:68:d5:9f:4d:b6:e3:66:91: b3:61:32:1e:57:71:a3:40:6b:10:6b:e1:74:7f:cf: e4:39:e2:eb:26:4c:94:45:41:94:1f:64:9a:73:f2: 76:81:3a:8a:79:c9:df:41:f0:d3:df:09:e3:4d:1e: ba:b9:ad:81:7c:d5:1a:83:89:31:76:9c:bf:4f:bb: ac:74:4f:d9:a4:2d:1d:0d:76:5e:80:09:45:35:11: 43:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:F1:3C:3A:9B:C5:43:20:2C:D1:6E:C7:B3:81:06:A7:22:AE:B4:4D X509v3 Authority Key Identifier: keyid:7A:9E:DE:A5:FC:88:2F:86:7E:BA:37:88:9B:CD:3B:3B:B4:AC:62:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep7epfyIL4Z-ujeIm807O7SsYjE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:5d:72:33:d3:87:6d:3e:52:ef:8b:be:7f:8b:5b:6d:3a:15: 1f:80:c0:a3:4a:fe:1a:57:4f:e2:ed:c0:e5:0e:36:e6:0b:79: e5:09:29:53:22:17:d7:29:49:55:08:b3:b0:ef:60:5c:81:29: 98:52:68:6b:28:60:a4:5c:aa:81:3c:6b:db:ac:ae:d0:4f:03: d6:59:ad:f9:a8:b2:1e:6e:94:28:ce:88:62:b9:86:c2:a9:2a: 42:d6:46:b2:8a:14:6d:a4:89:3f:95:fb:ef:14:92:00:bb:22: d3:7f:26:a4:59:f5:ab:2c:04:67:5e:93:dc:c6:d2:cd:ab:33: 82:93:33:f3:c5:71:0a:79:f7:15:bb:51:7e:ee:e1:f8:32:93: 48:f2:50:d4:55:53:bd:78:45:46:d8:e2:17:ec:48:4b:b8:5a: 53:11:8f:9c:82:a6:ed:b7:ec:77:a2:61:8b:5c:46:a8:3c:6b: 56:9b:8e:c0:3a:f4:d3:3f:92:a9:bf:4d:f6:15:0f:41:c0:08: df:a4:da:3a:40:93:7b:06:8d:1d:1b:c4:94:82:73:31:87:08: 27:a8:22:8d:54:df:1f:b4:aa:a0:7b:7d:bc:1b:e7:52:f4:32: 5e:5c:a2:00:0b:8d:70:aa:a0:01:3a:77:a8:eb:45:6d:53:18: a1:e9:60:ff -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QkJBRjExMC8GA1UEBRMoN0E5RURFQTVGQzg4MkY4NjdFQkEzNzg4OUJDRDNCM0JC NEFDNjIzMTAeFw0yNTEyMDUwNDU0MjNaFw0yNTEyMTIwNDU0MjNaMBgxFjAUBgNV BAMTDTY5MzI2NTdmLWFmYWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHzLaeQshEtK1L69NmFTD+9RxvWsPvd/uTJwtugLKVpejKGQU38U8DvgjLAko2 KCFsPNsUulUwDpM5PE7vK6nSf4Y3VZB9xxxtMKHrNuCpfq8vm1M6XtJ96A3ZXr69 WHKMCDaVM2dJ4KGGLPJHoQkQkwJ9kAydRzoQUMAcPm1XpBYiG13UtNqYN/I1dDKN M4eqEPI4DyG2n5c7dV/0gdGacno8JurrEC1m3UNo1Z9NtuNmkbNhMh5XcaNAaxBr 4XR/z+Q54usmTJRFQZQfZJpz8naBOop5yd9B8NPfCeNNHrq5rYF81RqDiTF2nL9P u6x0T9mkLR0Ndl6ACUU1EUOzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGfE8OpvF QyAs0W7Hs4EGpyKutE0wHwYDVR0jBBgwFoAUep7epfyIL4Z+ujeIm807O7SsYjEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVCQkFGLzE5MUE2Mzg2MzZE RDExRjA5Njg2MjE2NkM0RjlBRTAyL2VwN2VwZnlJTDRaLXVqZUltODA3TzdTc1lq RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZXA3ZXBmeUlMNFotdWplSW04MDdPN1NzWWpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVC QkFGLzE5MUE2Mzg2MzZERDExRjA5Njg2MjE2NkM0RjlBRTAyL2VwN2VwZnlJTDRa LXVqZUltODA3TzdTc1lqRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEFdcjPTh20+Uu+Lvn+LW206FR+AwKNK/hpXT+LtwOUONuYLeeUJKVMi F9cpSVUIs7DvYFyBKZhSaGsoYKRcqoE8a9usrtBPA9ZZrfmosh5ulCjOiGK5hsKp KkLWRrKKFG2kiT+V++8UkgC7ItN/JqRZ9assBGdek9zG0s2rM4KTM/PFcQp59xW7 UX7u4fgyk0jyUNRVU714RUbY4hfsSEu4WlMRj5yCpu237HeiYYtcRqg8a1abjsA6 9NM/kqm/TfYVD0HACN+k2jpAk3sGjR0bxJSCczGHCCeoIo1U3x+0qqB7fbwb51L0 Ml5cogALjXCqoAE6d6jrRW1TGKHpYP8= -----END CERTIFICATE-----Generated at Sat Dec 6 16:00:42 2025 by rpki-client