This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft File: EhrxRNkD4_iJffD-0gcaFkd17U8.mft (raw, json) Hash identifier: NYy3u7+w1SO0IpKWe6psg9t8uPnl7f93FGMxZIB5xUk= Subject key identifier: 3E:9E:81:46:7C:2E:D2:EB:6A:9C:BB:55:DA:F1:EE:F4:19:7C:C2:40 Authority key identifier: 12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F Certificate issuer: /CN=A91E554A/serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Certificate serial: E2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft Manifest number: DD Signing time: Fri 19 Dec 2025 04:44:44 +0000 Manifest this update: Fri 19 Dec 2025 04:44:44 +0000 Manifest next update: Fri 26 Dec 2025 04:44:44 +0000 Files and hashes: 1: EhrxRNkD4_iJffD-0gcaFkd17U8.crl (hash: +K97LurAnnGVNrH69bdIH8l2xiEaTHtT8DrHxhj+NRI=) 2: 7C304160FECB11EFB755BB45C4F9AE02.roa (hash: 96JJ4xS4XL/KIJ4tbueQ63oeM+4CMNy+gkgjGzK0Myk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:44:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E554A, serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Validity Not Before: Dec 19 04:44:44 2025 GMT Not After : Dec 26 04:44:44 2025 GMT Subject: CN=6944d83c-244b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:65:a6:6e:0a:81:b8:ae:64:30:96:a7:6d:6d: 97:4f:80:81:2a:61:b8:49:3b:b5:11:92:2e:40:06: 42:72:c3:70:d9:e7:cd:18:2b:2a:06:00:de:25:37: 61:79:d8:2f:0a:78:de:7a:a4:ea:44:59:b1:d3:26: 7a:d3:bb:04:67:8e:a8:db:a5:f2:96:a3:41:0c:17: af:c4:ee:c0:30:3b:1a:81:81:44:65:95:90:92:d9: a9:51:40:fe:d5:b4:15:7c:c9:57:36:ac:d8:3c:87: 81:a8:bd:f3:d2:0f:08:93:f9:b1:a9:45:bd:71:15: fa:1b:f1:ea:41:e6:b4:98:20:07:eb:49:74:5c:b6: 70:cd:d6:de:93:b3:f7:bf:0d:76:b6:e5:60:36:65: 7f:7b:1c:cd:fa:d1:e9:23:83:f4:d4:0a:c5:85:93: a6:bf:52:e3:d9:93:f3:d5:f5:aa:98:31:d3:95:89: f3:1e:7a:57:32:fe:e4:00:36:83:c7:42:3f:3a:f6: 82:27:5b:d1:b8:89:ff:f5:97:7c:f8:eb:6d:c0:82: 47:9f:e9:ce:24:ab:e3:bd:d2:65:87:93:d2:48:52: 04:4d:d1:36:7c:c7:c7:a7:45:4a:5d:7c:94:32:dd: 31:c7:fd:a1:3d:32:55:48:44:b9:cf:a7:e7:e4:76: dd:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:9E:81:46:7C:2E:D2:EB:6A:9C:BB:55:DA:F1:EE:F4:19:7C:C2:40 X509v3 Authority Key Identifier: keyid:12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:89:6d:b5:ac:c2:8d:d5:c0:a4:fc:39:63:21:ef:79:b6:46: a4:21:e5:18:46:7d:f8:e4:f7:89:ce:9b:31:5f:35:ae:bd:f5: 52:4d:e3:1a:0f:b8:43:f8:16:67:7a:65:f2:08:9f:87:a8:7a: da:30:27:66:f4:ca:15:ce:48:54:19:40:62:98:01:cc:6a:f0: 42:01:e3:af:4d:f3:b1:14:4e:d4:a3:f0:b9:d2:a3:1c:7a:3f: 81:93:d0:0a:23:4d:2b:93:d2:09:5f:ca:59:28:1f:86:a2:b3: d3:a3:ec:c9:fa:1f:49:5d:b8:3b:c6:71:b5:30:cf:b1:50:bc: a1:37:e3:81:00:b0:4c:af:84:bb:45:a9:53:dc:6b:b2:f7:4f: 36:a3:07:80:b3:ef:fa:5c:b0:21:78:40:0c:26:5c:7f:73:24: 98:50:01:98:74:70:7e:66:09:12:b4:19:fe:48:5f:41:1d:7b: 3e:8f:18:1b:08:aa:56:15:d9:41:81:5e:3f:83:8a:bd:6a:8e: ec:3b:e7:44:59:0d:98:0c:b3:f1:ff:8a:38:4b:36:ce:10:da: 51:2b:34:ac:79:e1:12:42:e1:70:2b:ed:02:11:64:f0:41:07: 50:9c:f9:89:ac:59:44:78:54:67:a1:96:32:e7:57:6c:39:e0: fe:d3:51:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU1NEExMTAvBgNVBAUTKDEyMUFGMTQ0RDkwM0UzRjg4OTdERjBGRUQyMDcxQTE2 NDc3NUVENEYwHhcNMjUxMjE5MDQ0NDQ0WhcNMjUxMjI2MDQ0NDQ0WjAYMRYwFAYD VQQDDA02OTQ0ZDgzYy0yNDRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz2WmbgqBuK5kMJanbW2XT4CBKmG4STu1EZIuQAZCcsNw2efNGCsqBgDeJTdh edgvCnjeeqTqRFmx0yZ607sEZ46o26XylqNBDBevxO7AMDsagYFEZZWQktmpUUD+ 1bQVfMlXNqzYPIeBqL3z0g8Ik/mxqUW9cRX6G/HqQea0mCAH60l0XLZwzdbek7P3 vw12tuVgNmV/exzN+tHpI4P01ArFhZOmv1Lj2ZPz1fWqmDHTlYnzHnpXMv7kADaD x0I/OvaCJ1vRuIn/9Zd8+OttwIJHn+nOJKvjvdJlh5PSSFIETdE2fMfHp0VKXXyU Mt0xx/2hPTJVSES5z6fn5HbdLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD6egUZ8 LtLrapy7Vdrx7vQZfMJAMB8GA1UdIwQYMBaAFBIa8UTZA+P4iX3w/tIHGhZHde1P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTU0QS83OTVFNzNEMDkx RjcxMUVGQURFMTEyNjZDNEY5QUUwMi9FaHJ4Uk5rRDRfaUpmZkQtMGdjYUZrZDE3 VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0VocnhSTmtENF9pSmZmRC0wZ2NhRmtkMTdVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTU0QS83OTVFNzNEMDkxRjcxMUVGQURFMTEyNjZDNEY5QUUwMi9FaHJ4Uk5rRDRf aUpmZkQtMGdjYUZrZDE3VTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUiW21rMKN1cCk/DljIe95tkakIeUYRn345PeJzpsxXzWuvfVSTeMa D7hD+BZnemXyCJ+HqHraMCdm9MoVzkhUGUBimAHMavBCAeOvTfOxFE7Uo/C50qMc ej+Bk9AKI00rk9IJX8pZKB+GorPTo+zJ+h9JXbg7xnG1MM+xULyhN+OBALBMr4S7 RalT3Guy9082oweAs+/6XLAheEAMJlx/cySYUAGYdHB+ZgkStBn+SF9BHXs+jxgb CKpWFdlBgV4/g4q9ao7sO+dEWQ2YDLPx/4o4SzbOENpRKzSseeESQuFwK+0CEWTw QQdQnPmJrFlEeFRnoZYy51dsOeD+01Fn -----END CERTIFICATE-----Generated at Sat Dec 20 00:53:30 2025 by rpki-client