This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.mft File: l_PsEBRVjghHCgOpR4yE8j5FADo.mft (raw, json) Hash identifier: PZj1W5Wpu41Xex73L7sGfYMHSTFkmoPL1mS0MXHUa2U= Subject key identifier: 38:5B:3A:5B:A4:65:C8:18:25:E6:D7:6D:F1:33:6F:9F:2B:76:84:50 Authority key identifier: 97:F3:EC:10:14:55:8E:08:47:0A:03:A9:47:8C:84:F2:3E:45:00:3A Certificate issuer: /CN=A91E2E92/serialNumber=97F3EC1014558E08470A03A9478C84F23E45003A Certificate serial: 01FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_PsEBRVjghHCgOpR4yE8j5FADo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.mft Manifest number: 01EB Signing time: Sun 21 Dec 2025 01:59:57 +0000 Manifest this update: Sun 21 Dec 2025 01:59:56 +0000 Manifest next update: Sun 28 Dec 2025 01:59:56 +0000 Files and hashes: 1: l_PsEBRVjghHCgOpR4yE8j5FADo.crl (hash: ULkcMmGKSvPvZWoxxGvgNgFTHA6HGuvTkhkCfNv0RPg=) 2: B7D34CC444ED11EE8D931624C4F9AE02.roa (hash: ROkkzatt5V9Pz+AtU25/WOuwZ/bxAOBTVtr/gp1mTRQ=) 3: D78EA2DE44ED11EEA6685324C4F9AE02.roa (hash: gvjJNiO9vqYIhsYjJBaQQlt1G1Z/kYCgfliXikgsWHQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.crl rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_PsEBRVjghHCgOpR4yE8j5FADo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 01:59:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 508 (0x1fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2E92, serialNumber=97F3EC1014558E08470A03A9478C84F23E45003A Validity Not Before: Dec 21 01:59:56 2025 GMT Not After : Dec 28 01:59:56 2025 GMT Subject: CN=6947549d-c6ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:25:f8:3d:56:49:f0:a9:49:1f:6c:20:c2:b9: af:9c:67:3d:25:27:b6:f2:55:46:12:75:bd:8a:0c: 6a:a3:cf:c2:b3:bc:81:ad:f2:23:d0:4f:e1:11:4c: ef:df:bd:75:a3:44:08:d6:28:5a:fa:40:30:1f:8f: f3:70:af:fb:6a:e8:12:a8:e5:43:70:b8:53:3b:2a: 2d:0c:d4:b8:2d:42:c0:32:9a:fc:f3:20:31:ae:f2: 8e:ec:59:5e:80:64:12:c0:2a:d2:18:4c:d2:a8:ac: 50:3e:4d:f1:b8:1a:ad:c1:d1:25:04:f6:47:ea:2e: 0c:89:7c:90:bb:09:d5:45:40:eb:ed:2b:4c:57:84: 9d:a0:9a:ee:46:e9:f8:3e:59:79:ef:2e:c1:3c:3c: 46:86:b6:9f:65:84:3e:4a:b3:3d:fc:02:55:18:c0: be:60:0e:48:06:56:ad:00:ef:2e:0d:97:26:76:a4: c3:49:9b:17:0f:6c:cd:37:fb:cf:e1:fb:89:70:41: 86:2c:b5:0a:ab:ab:15:5a:e8:e4:a2:df:55:e8:46: 46:81:59:6e:69:ec:dd:41:6a:9d:56:1a:8e:a8:ed: e8:97:14:4f:ef:e8:04:8a:88:fc:e6:f0:ce:69:ce: 12:72:f2:7a:ca:5d:9a:99:4a:20:83:bb:3a:45:2a: dc:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:5B:3A:5B:A4:65:C8:18:25:E6:D7:6D:F1:33:6F:9F:2B:76:84:50 X509v3 Authority Key Identifier: keyid:97:F3:EC:10:14:55:8E:08:47:0A:03:A9:47:8C:84:F2:3E:45:00:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_PsEBRVjghHCgOpR4yE8j5FADo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2E92/1885A6D206CF11EE9C97127BC4F9AE02/l_PsEBRVjghHCgOpR4yE8j5FADo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:f9:6d:ec:6e:ec:ef:07:8d:61:09:a6:e6:9a:5f:07:72:b9: 61:44:05:22:0f:e4:a0:a4:a2:82:d0:b0:8b:ff:aa:e8:10:4a: 35:f7:8e:4a:9b:a2:60:64:ce:f0:58:c3:c2:fe:11:6f:d9:6d: d6:34:ce:83:34:5f:3c:fc:eb:f0:e8:99:37:67:c1:7f:bd:c8: bf:33:50:68:81:fd:a0:8d:d1:0b:4b:76:ca:40:10:6f:4d:74: d8:3f:23:f8:a2:18:51:48:87:36:be:0d:65:4f:f9:cb:91:b6: db:f4:80:b6:d3:01:c0:bf:2a:4e:5c:ff:0b:91:d1:2b:a4:fb: 82:6c:5d:56:ed:36:08:5b:e0:df:bf:87:e6:3a:d1:d1:8b:1c: 71:09:11:33:c9:f9:3b:fe:83:9f:9c:59:79:76:30:7d:6a:e1: fd:55:83:05:68:a8:04:8b:cc:06:b9:0b:75:35:2e:a3:4e:45: 71:3d:f4:ce:ae:7a:cd:4b:89:80:cd:f1:99:28:5e:4c:2d:d5: 79:ae:3a:43:f4:10:c5:1b:0a:bc:43:f1:79:31:18:67:d0:be: 01:a4:a2:cf:ad:f7:34:10:9e:9e:69:ca:3c:cb:f6:c5:3e:06: 6a:49:6a:06:45:31:44:59:45:b0:a1:d1:e8:5e:51:a9:8f:30: cc:51:96:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJFOTIxMTAvBgNVBAUTKDk3RjNFQzEwMTQ1NThFMDg0NzBBMDNBOTQ3OEM4NEYy M0U0NTAwM0EwHhcNMjUxMjIxMDE1OTU2WhcNMjUxMjI4MDE1OTU2WjAYMRYwFAYD VQQDDA02OTQ3NTQ5ZC1jNmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqCX4PVZJ8KlJH2wgwrmvnGc9JSe28lVGEnW9igxqo8/Cs7yBrfIj0E/hEUzv 3711o0QI1iha+kAwH4/zcK/7augSqOVDcLhTOyotDNS4LULAMpr88yAxrvKO7Fle gGQSwCrSGEzSqKxQPk3xuBqtwdElBPZH6i4MiXyQuwnVRUDr7StMV4SdoJruRun4 Pll57y7BPDxGhrafZYQ+SrM9/AJVGMC+YA5IBlatAO8uDZcmdqTDSZsXD2zNN/vP 4fuJcEGGLLUKq6sVWujkot9V6EZGgVluaezdQWqdVhqOqO3olxRP7+gEioj85vDO ac4ScvJ6yl2amUogg7s6RSrcKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDhbOluk ZcgYJebXbfEzb58rdoRQMB8GA1UdIwQYMBaAFJfz7BAUVY4IRwoDqUeMhPI+RQA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkU5Mi8xODg1QTZEMjA2 Q0YxMUVFOUM5NzEyN0JDNEY5QUUwMi9sX1BzRUJSVmpnaEhDZ09wUjR5RThqNUZB RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xfUHNFQlJWamdoSENnT3BSNHlFOGo1RkFEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkU5Mi8xODg1QTZEMjA2Q0YxMUVFOUM5NzEyN0JDNEY5QUUwMi9sX1BzRUJSVmpn aEhDZ09wUjR5RThqNUZBRG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6+W3sbuzvB41hCabmml8HcrlhRAUiD+SgpKKC0LCL/6roEEo1945K m6JgZM7wWMPC/hFv2W3WNM6DNF88/Ovw6Jk3Z8F/vci/M1Bogf2gjdELS3bKQBBv TXTYPyP4ohhRSIc2vg1lT/nLkbbb9IC20wHAvypOXP8LkdErpPuCbF1W7TYIW+Df v4fmOtHRixxxCREzyfk7/oOfnFl5djB9auH9VYMFaKgEi8wGuQt1NS6jTkVxPfTO rnrNS4mAzfGZKF5MLdV5rjpD9BDFGwq8Q/F5MRhn0L4BpKLPrfc0EJ6eaco8y/bF PgZqSWoGRTFEWUWwodHoXlGpjzDMUZZM -----END CERTIFICATE-----Generated at Sun Dec 21 09:54:13 2025 by rpki-client