This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft File: ehMEShEYWGwP2hOLs-vdSEiRTjc.mft (raw, json) Hash identifier: 5u5hLiVlC5Cfm7+jf2aQBxhn9YDCl8TcjRCaQdUsLRE= Subject key identifier: 00:4E:45:E7:27:7E:8A:5F:2E:A4:2E:9B:73:32:CC:04:B6:61:C5:12 Authority key identifier: 7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 Certificate issuer: /CN=A9154EAF/serialNumber=7A13044A1118586C0FDA138BB3EBDD4848914E37 Certificate serial: 02CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft Manifest number: 02CA Signing time: Sat 27 Dec 2025 00:24:19 +0000 Manifest this update: Sat 27 Dec 2025 00:24:18 +0000 Manifest next update: Sat 03 Jan 2026 00:24:18 +0000 Files and hashes: 1: ehMEShEYWGwP2hOLs-vdSEiRTjc.crl (hash: ZreZH0mm0pQvOlH0lGK9jyY4i9v6ZS16eLtm4hrN9r0=) 2: 62A0C17A16C511ED91E80F56C4F9AE02.roa (hash: JJX6OI5aam7BC0uvlTdjVV9SQAAwhFakRzY5oiIX9Uk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 Jan 2026 00:24:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 718 (0x2ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154EAF, serialNumber=7A13044A1118586C0FDA138BB3EBDD4848914E37 Validity Not Before: Dec 27 00:24:18 2025 GMT Not After : Jan 3 00:24:18 2026 GMT Subject: CN=694f2733-ac10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:48:f8:ef:e5:46:a4:35:9f:58:b4:ff:d7:9c: eb:d2:2e:cb:96:a5:79:75:b1:f8:fb:99:36:04:d1: e6:9b:c2:20:a3:6f:dd:c4:38:d5:b3:c0:76:a3:5d: dd:65:a1:78:fc:df:e1:d9:dd:f2:de:be:a9:70:ea: 3d:48:87:68:2a:52:6d:6d:39:99:38:a8:51:82:9a: 49:ff:dc:14:87:8b:4a:75:01:c5:9c:62:46:09:5c: a2:6c:bf:3b:98:9d:1e:11:e4:cb:5f:73:71:69:90: 62:e6:58:0c:ff:5f:53:10:df:f5:fc:8d:78:22:3a: cd:e0:48:e6:00:b1:52:c2:d1:42:cd:de:f7:9e:e9: 1e:73:2d:05:fe:47:36:88:88:33:90:da:44:15:2f: 00:20:f4:d0:92:14:11:d6:f5:37:92:bf:3e:de:50: 93:04:99:c0:af:6c:59:a5:ff:11:4d:7b:dc:4a:65: 3f:f0:f3:19:77:bd:62:3e:20:e6:f6:67:c2:52:ac: d5:fa:0d:99:d8:46:3c:45:24:3e:16:16:9e:ef:26: 93:21:04:2e:fb:dd:2b:29:ba:50:b1:bf:a4:c5:90: b4:e5:08:b5:e4:fe:03:48:2f:73:ce:62:04:9d:74: e7:40:76:a5:dd:9f:9a:a2:a0:03:0e:c3:20:77:be: 3f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:4E:45:E7:27:7E:8A:5F:2E:A4:2E:9B:73:32:CC:04:B6:61:C5:12 X509v3 Authority Key Identifier: keyid:7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:eb:3f:d5:b2:dd:a2:9b:81:a6:28:ec:9f:2f:56:ab:92:31: a4:a1:16:f4:ff:21:28:3e:b7:eb:78:c8:19:d9:f5:bc:11:92: 56:4f:d3:21:9e:f5:3c:5d:b9:08:84:26:e3:9a:20:c4:92:52: 45:cf:9e:46:53:6a:1e:bb:eb:24:d9:ae:36:5d:f9:36:63:28: 83:cc:b6:00:a2:71:e7:f7:a8:d8:f9:a7:5e:91:13:a5:da:49: 64:e9:36:00:79:6c:49:83:cc:29:cf:4c:60:bc:4b:33:b3:4a: 55:c3:a0:96:8f:07:7d:4b:2c:2f:46:45:b0:82:99:b2:0d:f8: 3e:57:43:58:4b:13:ca:0e:d1:66:e1:d7:76:ed:b2:a2:c0:7b: 8f:93:34:df:dd:12:f2:7b:e5:25:ea:39:50:de:75:ab:d2:dd: ad:38:47:24:b9:2b:cf:11:9a:05:f2:dc:3c:a6:c8:7d:c6:a6: 61:f2:8b:ee:2a:33:cd:00:65:89:ce:cd:b5:20:c6:7f:e2:ff: 9c:d3:1c:7e:d8:f9:86:3f:68:b0:f0:e3:15:84:40:e9:35:37: 34:50:90:59:72:fe:79:f0:85:71:33:88:0a:3d:af:06:b5:a3: 22:c0:1f:eb:51:ee:79:20:c8:65:e0:75:96:26:e3:50:3a:6e: 8e:70:dd:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRFQUYxMTAvBgNVBAUTKDdBMTMwNDRBMTExODU4NkMwRkRBMTM4QkIzRUJERDQ4 NDg5MTRFMzcwHhcNMjUxMjI3MDAyNDE4WhcNMjYwMTAzMDAyNDE4WjAYMRYwFAYD VQQDDA02OTRmMjczMy1hYzEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu0j47+VGpDWfWLT/15zr0i7LlqV5dbH4+5k2BNHmm8Igo2/dxDjVs8B2o13d ZaF4/N/h2d3y3r6pcOo9SIdoKlJtbTmZOKhRgppJ/9wUh4tKdQHFnGJGCVyibL87 mJ0eEeTLX3NxaZBi5lgM/19TEN/1/I14IjrN4EjmALFSwtFCzd73nukecy0F/kc2 iIgzkNpEFS8AIPTQkhQR1vU3kr8+3lCTBJnAr2xZpf8RTXvcSmU/8PMZd71iPiDm 9mfCUqzV+g2Z2EY8RSQ+Fhae7yaTIQQu+90rKbpQsb+kxZC05Qi15P4DSC9zzmIE nXTnQHal3Z+aoqADDsMgd74/IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFABORecn fopfLqQum3MyzAS2YcUSMB8GA1UdIwQYMBaAFHoTBEoRGFhsD9oTi7Pr3UhIkU43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEVBRi80N0Q1QTdFMDE2 QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdHd1AyaE9Mcy12ZFNFaVJU amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VoTUVTaEVZV0d3UDJoT0xzLXZkU0VpUlRqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEVBRi80N0Q1QTdFMDE2QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdH d1AyaE9Mcy12ZFNFaVJUamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBr6z/Vst2im4GmKOyfL1arkjGkoRb0/yEoPrfreMgZ2fW8EZJWT9Mh nvU8XbkIhCbjmiDEklJFz55GU2oeu+sk2a42Xfk2YyiDzLYAonHn96jY+adekROl 2klk6TYAeWxJg8wpz0xgvEszs0pVw6CWjwd9SywvRkWwgpmyDfg+V0NYSxPKDtFm 4dd27bKiwHuPkzTf3RLye+Ul6jlQ3nWr0t2tOEckuSvPEZoF8tw8psh9xqZh8ovu KjPNAGWJzs21IMZ/4v+c0xx+2PmGP2iw8OMVhEDpNTc0UJBZcv558IVxM4gKPa8G taMiwB/rUe55IMhl4HWWJuNQOm6OcN1G -----END CERTIFICATE-----Generated at Sun Dec 28 23:39:07 2025 by rpki-client