This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.mft File: EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.mft (raw, json) Hash identifier: +vPZZLauO2HL2b6vnTmoH0DaNEjhy5PDGz3fjERQ9Sw= Subject key identifier: CA:42:A7:83:B6:72:B0:92:D1:0E:03:68:83:FD:99:A1:0B:BB:BC:7A Authority key identifier: 13:24:04:30:21:BB:45:D7:FF:66:F2:0A:FC:68:39:34:31:30:C3:F2 Certificate issuer: /CN=A917FFB0/serialNumber=1324043021BB45D7FF66F20AFC6839343130C3F2 Certificate serial: 3592 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.mft Manifest number: 3547 Signing time: Fri 19 Dec 2025 11:10:54 +0000 Manifest this update: Fri 19 Dec 2025 11:10:53 +0000 Manifest next update: Fri 26 Dec 2025 11:10:53 +0000 Files and hashes: 1: EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.crl (hash: q093gJBfii1Qz4ITdgJtZ/NU2v0KXq2ohwnSK/C0qMY=) 2: 80B30FA48F5611EA9C04912BC4F9AE02.roa (hash: fT98Wy1t5VScFWJuQupk2LhedSGkV+ojkzEZelCkDWM=) 3: A88A36D0003A11EEB8430127C4F9AE02.roa (hash: dGU6CJvrS/pXM1BPExEcoLwBj3XVO3Qw6BjkQ3c5uZ8=) 4: 50FFD256C9C011F0A362FA0CC4F9AE02.roa (hash: 8U5LwUXBBf5qZfK/6j68GhmYg3VnHRgrSOYkAntiz7U=) 5: 187F92966F0911ED8A7BD268C4F9AE02.roa (hash: d/7DMtiXfQBwX+8qOXb96W9MkSduRe+bpauiOZ+JfzU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.crl rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 11:10:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13714 (0x3592) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FFB0, serialNumber=1324043021BB45D7FF66F20AFC6839343130C3F2 Validity Not Before: Dec 19 11:10:53 2025 GMT Not After : Dec 26 11:10:53 2025 GMT Subject: CN=694532bd-37f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:da:04:36:f3:9c:9c:65:ce:ae:2f:d6:be:dc: e2:a7:26:1d:aa:c4:f8:63:db:ed:31:df:50:16:b5: 6c:fb:7b:42:c8:81:d6:77:71:46:fd:b9:32:bd:1d: e1:fb:5a:2f:13:1a:21:a9:ff:89:53:d6:22:2d:aa: 7a:8c:4c:98:ef:fa:64:a9:f2:57:c7:9e:06:51:48: 5c:f5:11:dd:06:e2:8d:b0:63:19:c2:a5:cd:75:4a: ca:07:7f:f0:bf:7a:98:5b:8f:30:01:d9:2f:58:12: ae:4b:d9:18:89:cf:ff:56:34:1a:ed:f8:fc:32:c3: 7f:4f:ac:d8:a3:0e:93:5a:3e:df:76:5e:a6:b9:ae: 01:a6:bb:5e:d4:e3:45:e0:23:23:0e:01:cc:9c:06: 1a:c1:09:c3:d2:84:06:af:6d:85:42:5a:36:8e:af: b8:bd:f6:59:7a:fa:e6:9e:3e:76:5c:36:0c:69:b0: 80:ec:8f:40:da:9c:3b:84:8d:56:b3:7f:ea:93:cc: 77:06:75:18:2e:04:9e:4c:1c:66:d5:b3:90:bc:e5: 1a:9c:74:48:10:65:8b:d9:d7:37:6e:25:eb:20:0d: 63:09:c7:0c:cc:28:8a:69:da:89:6c:dd:ab:50:85: d3:c1:ae:29:a7:08:f5:94:01:f6:b8:a8:2c:32:a4: 6d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:42:A7:83:B6:72:B0:92:D1:0E:03:68:83:FD:99:A1:0B:BB:BC:7A X509v3 Authority Key Identifier: keyid:13:24:04:30:21:BB:45:D7:FF:66:F2:0A:FC:68:39:34:31:30:C3:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:3b:2e:21:54:a0:89:4f:55:ff:34:b5:22:b2:d8:ea:8f:5c: 3f:ed:77:0d:b4:d0:f8:e1:d9:cb:b9:ec:1a:b2:a6:76:67:64: a8:3b:45:2d:2d:57:9c:64:2e:80:25:e4:2e:73:b2:35:7d:31: 02:8e:28:eb:e6:92:f3:ec:cc:f5:95:13:d4:7c:d6:b4:b0:fc: 7d:b9:13:45:d1:b7:46:77:39:4c:7a:2c:0e:38:89:e6:a3:7e: 2d:57:67:23:a0:98:9c:d2:61:86:12:e2:24:9a:77:87:33:b5: a8:06:b3:02:5e:b8:84:20:ab:54:63:06:2a:b3:64:05:46:6f: e0:ef:f9:dd:69:94:33:a7:99:ae:14:3f:9a:e4:ad:4a:7b:56: b4:c8:cb:5f:21:42:23:b9:be:ec:80:f2:3d:17:1a:bd:e6:cf: 7f:df:00:5e:bd:e2:dd:b8:be:67:fd:5c:db:9c:68:22:b0:d6: 9d:b7:b9:7d:a8:1f:11:4c:00:42:40:a9:bf:72:7b:ff:cd:05: c2:20:09:04:83:0f:b2:87:b1:23:25:69:b9:c8:44:95:e2:cd: d5:9f:67:2d:1a:3b:58:76:fc:1f:f2:f0:d3:d1:a6:6a:7a:e8: 97:ec:f1:a1:69:8f:95:6c:e9:19:31:10:a3:71:7a:a7:50:9c: 9a:e2:4a:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZGQjAxMTAvBgNVBAUTKDEzMjQwNDMwMjFCQjQ1RDdGRjY2RjIwQUZDNjgzOTM0 MzEzMEMzRjIwHhcNMjUxMjE5MTExMDUzWhcNMjUxMjI2MTExMDUzWjAYMRYwFAYD VQQDDA02OTQ1MzJiZC0zN2Y0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7toENvOcnGXOri/WvtzipyYdqsT4Y9vtMd9QFrVs+3tCyIHWd3FG/bkyvR3h +1ovExohqf+JU9YiLap6jEyY7/pkqfJXx54GUUhc9RHdBuKNsGMZwqXNdUrKB3/w v3qYW48wAdkvWBKuS9kYic//VjQa7fj8MsN/T6zYow6TWj7fdl6mua4Bprte1ONF 4CMjDgHMnAYawQnD0oQGr22FQlo2jq+4vfZZevrmnj52XDYMabCA7I9A2pw7hI1W s3/qk8x3BnUYLgSeTBxm1bOQvOUanHRIEGWL2dc3biXrIA1jCccMzCiKadqJbN2r UIXTwa4ppwj1lAH2uKgsMqRtCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMpCp4O2 crCS0Q4DaIP9maELu7x6MB8GA1UdIwQYMBaAFBMkBDAhu0XX/2byCvxoOTQxMMPy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkZCMC9FNTU3QzAwMDFE OTIxMUUyOTMzQTIxRjYwOEIwMkNEMi9FeVFFTUNHN1JkZl9adklLX0dnNU5ERXd3 X0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0V5UUVNQ0c3UmRmX1p2SUtfR2c1TkRFd3dfSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RkZCMC9FNTU3QzAwMDFEOTIxMUUyOTMzQTIxRjYwOEIwMkNEMi9FeVFFTUNHN1Jk Zl9adklLX0dnNU5ERXd3X0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnOy4hVKCJT1X/NLUistjqj1w/7XcNtND44dnLuewasqZ2Z2SoO0Ut LVecZC6AJeQuc7I1fTECjijr5pLz7Mz1lRPUfNa0sPx9uRNF0bdGdzlMeiwOOInm o34tV2cjoJic0mGGEuIkmneHM7WoBrMCXriEIKtUYwYqs2QFRm/g7/ndaZQzp5mu FD+a5K1Ke1a0yMtfIUIjub7sgPI9Fxq95s9/3wBeveLduL5n/VzbnGgisNadt7l9 qB8RTABCQKm/cnv/zQXCIAkEgw+yh7EjJWm5yESV4s3Vn2ctGjtYdvwf8vDT0aZq euiX7PGhaY+VbOkZMRCjcXqnUJya4ko1 -----END CERTIFICATE-----Generated at Fri Dec 19 17:43:47 2025 by rpki-client