This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3876/262F7ACA977211EBBF6A5368C4F9AE02/EnvYBqI30MrekRgrn8cmZZvi73E.mft
File:                     EnvYBqI30MrekRgrn8cmZZvi73E.mft (raw, json)
Hash identifier:          Y8qGh5jAE4euqfNxN+Fqmn9YA8aWucYc72/4t5EeAgs=
Subject key identifier:   2B:8B:EE:DA:1F:77:6D:67:12:B7:1B:A6:69:E9:4A:E0:56:6B:00:6E
Authority key identifier: 12:7B:D8:06:A2:37:D0:CA:DE:91:18:2B:9F:C7:26:65:9B:E2:EF:71
Certificate issuer:       /CN=A91D3876/serialNumber=127BD806A237D0CADE91182B9FC726659BE2EF71
Certificate serial:       065B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EnvYBqI30MrekRgrn8cmZZvi73E.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91D3876/262F7ACA977211EBBF6A5368C4F9AE02/EnvYBqI30MrekRgrn8cmZZvi73E.mft
Manifest number:          0655
Signing time:             Thu 31 Jul 2025 23:38:52 +0000
Manifest this update:     Thu 31 Jul 2025 23:38:52 +0000
Manifest next update:     Thu 07 Aug 2025 23:38:52 +0000
Files and hashes:         1: EnvYBqI30MrekRgrn8cmZZvi73E.crl (hash: twP2BV6Z1BMX43LewLNZ+dwYcKxgVaadvsxohs2+8nM=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1627 (0x65b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91D3876, serialNumber=127BD806A237D0CADE91182B9FC726659BE2EF71
        Validity
            Not Before: Jul 31 23:38:52 2025 GMT
            Not After : Aug  7 23:38:52 2025 GMT
        Subject: CN=688bfe8c-38ee
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:9d:a3:3a:bc:89:8e:61:20:a8:79:f2:f7:2d:
                    13:40:1a:eb:d0:df:b0:b8:ee:49:2d:de:06:9c:2f:
                    04:4f:8b:30:0a:6d:18:db:5f:82:2d:7a:61:e8:5f:
                    23:cf:2a:c0:4a:07:cb:98:7a:75:c3:78:b4:f3:a2:
                    ad:b1:2b:1b:63:18:33:b2:68:a2:14:b5:b4:c9:30:
                    30:07:e2:53:23:a2:29:be:fb:74:ed:61:63:c4:b2:
                    2b:34:86:e9:83:ee:da:03:c9:d6:ef:77:b0:6d:92:
                    c4:ff:ce:f5:44:67:20:64:16:4f:27:7b:67:d3:95:
                    e3:77:ed:dc:e1:73:f6:4e:5a:79:a3:95:8b:f9:0e:
                    aa:4f:09:7e:fd:df:c2:b3:f2:d3:9c:e2:f7:6d:b3:
                    b3:ba:13:73:47:bd:df:48:e4:1b:21:06:54:ef:2c:
                    9b:5a:1a:df:aa:ec:dc:16:52:f1:11:b2:b1:16:93:
                    3a:4b:a5:76:93:9a:80:70:4d:d2:a8:87:a8:ba:35:
                    b9:21:3f:1d:85:86:96:31:0d:77:8a:90:b5:b1:5d:
                    07:d4:07:6d:2a:96:e2:4e:75:7b:ac:2d:7c:3f:3b:
                    8b:90:9d:4d:73:5a:b1:74:95:68:7f:76:fe:5f:e7:
                    45:78:51:13:2e:b8:e4:1d:15:9e:d7:c8:4d:d3:29:
                    87:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2B:8B:EE:DA:1F:77:6D:67:12:B7:1B:A6:69:E9:4A:E0:56:6B:00:6E
            X509v3 Authority Key Identifier:
                keyid:12:7B:D8:06:A2:37:D0:CA:DE:91:18:2B:9F:C7:26:65:9B:E2:EF:71

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91D3876/262F7ACA977211EBBF6A5368C4F9AE02/EnvYBqI30MrekRgrn8cmZZvi73E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EnvYBqI30MrekRgrn8cmZZvi73E.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3876/262F7ACA977211EBBF6A5368C4F9AE02/EnvYBqI30MrekRgrn8cmZZvi73E.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         58:c0:27:d8:e5:1b:45:df:bb:56:4f:bb:90:d1:f0:d5:79:de:
         1c:0e:61:dd:a3:45:93:0c:d8:8d:a7:ad:7b:ad:4f:e0:c3:57:
         26:48:d3:fb:f0:54:44:56:1e:28:f6:19:0b:14:00:84:e3:c1:
         06:1e:da:eb:1d:b2:ed:c4:fe:67:2e:e6:49:6e:f4:2d:0b:97:
         07:50:31:5c:4d:17:69:08:d0:72:2e:51:27:81:94:af:1d:7b:
         f7:83:93:20:a6:06:c5:f6:86:1a:21:06:4c:df:b3:45:95:0b:
         0f:06:63:b2:51:83:28:27:e1:8c:2d:73:d4:30:22:35:d7:a8:
         c6:17:db:8f:6e:e7:b4:6c:23:13:d9:8a:a1:a7:cc:4d:05:58:
         a1:55:53:70:06:f2:a7:e5:86:74:aa:1d:36:59:f4:39:20:9e:
         18:c6:83:a5:c5:06:68:3f:1a:74:80:ab:f7:e2:37:f3:e6:fb:
         cd:41:cb:4e:6c:9c:a5:f1:76:05:33:86:15:f4:c1:3f:5a:3e:
         fb:65:3d:73:a8:34:27:bd:e5:89:53:0e:88:72:b5:78:08:3a:
         38:2c:3b:12:29:f5:00:75:3d:dc:ba:0c:8a:71:a3:43:bc:95:
         5a:d4:6f:f3:84:c0:fe:cc:1d:fd:46:d7:49:7b:fe:a5:e4:d7:
         8f:70:be:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----