This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft File: epYXaVSeCq0Km_mSVoO673M6Lxo.mft (raw, json) Hash identifier: SIaZTN2GoU7hKY/G5CX/6dJcaU1vGqkGtcrwoDZL4oQ= Subject key identifier: 52:60:7B:3A:E4:59:21:3D:44:C1:3C:3B:AC:8A:38:6A:4B:A9:9C:39 Authority key identifier: 7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A Certificate issuer: /CN=A911C5B0/serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Certificate serial: 3561 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft Manifest number: 3526 Signing time: Sat 20 Dec 2025 14:22:15 +0000 Manifest this update: Sat 20 Dec 2025 14:22:15 +0000 Manifest next update: Sat 27 Dec 2025 14:22:15 +0000 Files and hashes: 1: epYXaVSeCq0Km_mSVoO673M6Lxo.crl (hash: Zb0TtkUUPdylf5NNH1QR71l2SZU6TO3UpDJen8bun9k=) 2: A9B6556E064311F0BA61C549C4F9AE02.roa (hash: 0C6TlHkpuDCz4hvNzUcvUCrXDtcFtiPeiunaW4mmmk0=) 3: DA202262C34F11EE93BC8317C4F9AE02.roa (hash: dcDioS0VFo6S9vVwz+paS1zd6YFHx5bsZVN3a7QsfW4=) 4: A50EE218C34D11EEBC95A913C4F9AE02.roa (hash: 5q/2MUPjpxwhlN6OCcanacRv9yZj3jDJtQjCybC3W8U=) 5: 1EEE3E0AC35111EE9D744F36C4F9AE02.roa (hash: 5YdHJezTTAq6NbRIi4l4/6Fihe+icCcCreH0PZW2XgQ=) 6: 61A65BF2C35011EE95366E18C4F9AE02.roa (hash: Q61bbCPssNF62XMkq5QJdqkEtUeKQLsoUnsJMBUa8ZI=) 7: 1F5CD892C35111EE9D744F36C4F9AE02.roa (hash: 1gkTF4crGWzpTEQnLV3friPjpJHknrP6i19dnfTKZhs=) 8: 1A83389CC35211EE8CE04C38C4F9AE02.roa (hash: wP5Do/J+7GR346S2KVvf1dpQZtkQwT1BPnhQO5L+JJ4=) 9: DC67BC1E8E1A11F08364EF73C4F9AE02.roa (hash: n9kveW6T0zGofNIWBVL2lz5XwTYiSjqFUg+Xl3iNCMQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:22:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13665 (0x3561) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C5B0, serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Validity Not Before: Dec 20 14:22:15 2025 GMT Not After : Dec 27 14:22:15 2025 GMT Subject: CN=6946b117-614e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:0a:52:64:ff:bd:d8:97:e5:9f:ec:62:06:5a: e4:7e:07:1c:85:5a:c8:71:b9:fb:0a:3c:e2:dd:20: ed:4f:99:c8:63:e6:25:15:19:49:e4:1e:fb:91:0b: cf:bd:f9:b9:e9:33:4f:e6:6e:a4:b6:79:54:4e:f4: 4d:16:21:46:ca:1a:70:1a:2f:41:5c:31:dc:dc:cb: 71:27:8a:af:cf:a3:bb:9c:b9:c0:aa:31:d6:55:51: 17:47:78:ba:9e:0a:f6:ca:62:00:45:3e:f0:a7:5e: 91:de:cc:a7:17:be:55:25:ef:d1:c3:e1:3f:e1:1b: 58:d5:a4:bc:b2:7b:e1:39:7d:fb:f3:5f:c5:84:f1: c8:03:ee:5d:94:37:69:76:7e:c7:ab:3a:bd:39:a4: 09:3a:67:c4:de:62:66:8b:74:4d:51:53:28:8c:f7: be:58:40:93:cf:ad:b0:4b:6f:81:9f:aa:8a:ec:8c: 20:b7:33:c3:42:aa:b9:40:1d:b8:04:40:32:6e:92: 2b:9f:cf:a9:47:82:e9:86:f9:65:d3:ba:b9:1f:a5: 0c:46:fa:8b:44:a2:0f:6e:19:7f:01:14:42:76:3a: 59:db:d1:ad:eb:e6:63:c9:5b:03:13:80:4e:71:1e: 2c:ac:e1:ee:cb:79:0a:37:48:dd:19:95:45:45:fd: 8c:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:60:7B:3A:E4:59:21:3D:44:C1:3C:3B:AC:8A:38:6A:4B:A9:9C:39 X509v3 Authority Key Identifier: keyid:7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:28:5b:1f:5f:e4:05:e6:c6:de:6c:3b:b0:6f:36:34:d3:c4: 68:fd:38:0d:dd:1b:3c:e1:26:3f:e3:bc:8e:28:d1:1e:fd:db: ef:4f:70:84:37:c7:bf:7e:45:69:9e:16:be:9b:77:d2:d3:49: d9:f9:7e:77:6c:b1:a1:7b:4d:1b:44:7e:b9:53:cf:ee:1c:bb: 9d:fa:28:c3:b8:a1:35:1a:61:ba:7f:f7:3e:53:7f:be:dd:55: 0f:7a:b2:8b:47:c6:a5:2d:5a:11:ea:f3:5d:99:ab:16:1d:60: ba:59:d2:aa:eb:da:af:8e:28:08:6c:d3:2c:d1:b9:89:e9:28: 3d:f7:21:46:5f:28:ed:1c:7e:4d:ba:40:b5:d8:6b:33:76:4d: 57:5f:ef:59:e4:2f:b2:c0:ef:21:f9:e2:4b:d3:a5:e9:7b:b5: 46:06:47:f1:bd:80:75:a0:ba:75:26:36:c1:e2:d9:8f:21:31: 6b:0e:2a:f8:cb:35:b8:8c:1d:82:69:39:36:7f:7a:59:fc:73: 79:ce:44:ad:52:eb:5e:72:57:94:30:7f:a9:8b:3d:16:21:e5: 61:ef:65:e1:97:a5:80:6a:38:52:d7:5f:15:6c:bd:7f:e1:9d: b6:70:6d:24:7c:56:c3:32:6f:2e:b8:83:a8:b0:fb:4a:e1:54: a5:e2:3a:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1QjAxMTAvBgNVBAUTKDdBOTYxNzY5NTQ5RTBBQUQwQTlCRjk5MjU2ODNCQUVG NzMzQTJGMUEwHhcNMjUxMjIwMTQyMjE1WhcNMjUxMjI3MTQyMjE1WjAYMRYwFAYD VQQDDA02OTQ2YjExNy02MTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4gpSZP+92Jfln+xiBlrkfgcchVrIcbn7Cjzi3SDtT5nIY+YlFRlJ5B77kQvP vfm56TNP5m6ktnlUTvRNFiFGyhpwGi9BXDHc3MtxJ4qvz6O7nLnAqjHWVVEXR3i6 ngr2ymIART7wp16R3synF75VJe/Rw+E/4RtY1aS8snvhOX3781/FhPHIA+5dlDdp dn7Hqzq9OaQJOmfE3mJmi3RNUVMojPe+WECTz62wS2+Bn6qK7IwgtzPDQqq5QB24 BEAybpIrn8+pR4Lphvll07q5H6UMRvqLRKIPbhl/ARRCdjpZ29Gt6+ZjyVsDE4BO cR4srOHuy3kKN0jdGZVFRf2MIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFJgezrk WSE9RME8O6yKOGpLqZw5MB8GA1UdIwQYMBaAFHqWF2lUngqtCpv5klaDuu9zOi8a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzVCMC80MEM4RDVBNjFE ODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNxMEttX21TVm9PNjczTTZM eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VwWVhhVlNlQ3EwS21fbVNWb082NzNNNkx4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzVCMC80MEM4RDVBNjFEODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNx MEttX21TVm9PNjczTTZMeG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSKFsfX+QF5sbebDuwbzY008Ro/TgN3Rs84SY/47yOKNEe/dvvT3CE N8e/fkVpnha+m3fS00nZ+X53bLGhe00bRH65U8/uHLud+ijDuKE1GmG6f/c+U3++ 3VUPerKLR8alLVoR6vNdmasWHWC6WdKq69qvjigIbNMs0bmJ6Sg99yFGXyjtHH5N ukC12Gszdk1XX+9Z5C+ywO8h+eJL06Xpe7VGBkfxvYB1oLp1JjbB4tmPITFrDir4 yzW4jB2CaTk2f3pZ/HN5zkStUutecleUMH+piz0WIeVh72Xhl6WAajhS118VbL1/ 4Z22cG0kfFbDMm8uuIOosPtK4VSl4jov -----END CERTIFICATE-----Generated at Sun Dec 21 09:04:33 2025 by rpki-client