This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.mft File: ep7epfyIL4Z-ujeIm807O7SsYjE.mft (raw, json) Hash identifier: k8UMm0/1xrH/X5n6XiQhLhzOVmKAx0EcSwLB+WBCrtY= Subject key identifier: FF:B9:91:B8:5F:24:B8:44:C0:8E:58:10:DB:D8:23:C2:00:A1:00:D8 Authority key identifier: 7A:9E:DE:A5:FC:88:2F:86:7E:BA:37:88:9B:CD:3B:3B:B4:AC:62:31 Certificate issuer: /CN=A91EBBAF/serialNumber=7A9EDEA5FC882F867EBA37889BCD3B3BB4AC6231 Certificate serial: 6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep7epfyIL4Z-ujeIm807O7SsYjE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.mft Manifest number: 6F Signing time: Sat 27 Dec 2025 05:43:54 +0000 Manifest this update: Sat 27 Dec 2025 05:43:53 +0000 Manifest next update: Sat 03 Jan 2026 05:43:53 +0000 Files and hashes: 1: ep7epfyIL4Z-ujeIm807O7SsYjE.crl (hash: Qw54pwIHaxCxfBzppjJFQsRHX5DzY0eWVpTV0As//x8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.crl rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep7epfyIL4Z-ujeIm807O7SsYjE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 Jan 2026 05:43:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBBAF, serialNumber=7A9EDEA5FC882F867EBA37889BCD3B3BB4AC6231 Validity Not Before: Dec 27 05:43:53 2025 GMT Not After : Jan 3 05:43:53 2026 GMT Subject: CN=694f721a-27e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:10:23:b8:20:2d:bc:37:1b:4d:80:8f:c9:31: 5f:6b:f1:90:4f:2e:df:d6:07:31:2f:43:a7:7c:a0: 7d:97:a3:01:f5:75:3a:ef:94:c3:37:2f:d0:86:da: aa:3b:f0:23:a5:dc:88:a3:d7:e3:91:1e:fc:88:a4: 0f:94:c5:81:1d:31:51:54:2a:af:71:c1:df:94:b5: 68:c5:3b:e2:f3:80:3d:10:ad:f8:4b:fb:23:6a:c5: 84:85:55:e5:9a:f5:c8:3c:ea:3a:db:3a:85:34:22: e9:f6:48:ae:7c:06:67:cf:43:58:7c:5b:3f:eb:25: 56:e2:5e:19:02:d0:c1:e1:60:f3:52:92:14:fe:13: 4f:78:71:e6:22:e5:3e:dd:f9:81:6d:0f:10:62:cc: 50:17:a0:93:87:68:2c:8a:09:47:92:43:75:d8:e3: 23:c9:d2:cb:e2:fe:d6:61:99:b9:00:13:a9:b5:69: 80:4d:b9:be:48:fd:19:8c:dd:ff:a5:b6:5c:23:c0: 8e:eb:ae:54:b1:10:c1:88:06:2f:aa:2c:11:80:86: dd:be:46:72:b3:07:86:d8:75:29:75:86:38:9f:ee: 8d:c7:33:c6:1f:f9:07:21:78:a1:c8:ee:21:2e:6a: e3:55:57:ba:6c:13:c4:5d:2a:5b:35:ec:90:77:77: 28:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:B9:91:B8:5F:24:B8:44:C0:8E:58:10:DB:D8:23:C2:00:A1:00:D8 X509v3 Authority Key Identifier: keyid:7A:9E:DE:A5:FC:88:2F:86:7E:BA:37:88:9B:CD:3B:3B:B4:AC:62:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep7epfyIL4Z-ujeIm807O7SsYjE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:c0:ad:88:8d:01:86:24:eb:65:b5:1b:40:05:4e:6a:fe:9b: da:12:90:d2:cb:3c:6e:cc:d1:d0:26:14:21:88:c3:25:77:e2: 23:b4:1a:cb:84:0f:53:0d:07:dc:15:ac:97:bf:a3:64:b1:53: f3:47:70:04:a5:f9:84:30:73:ac:fe:16:f3:9a:14:f2:2f:1b: bb:54:21:e6:71:4a:41:c2:60:c9:4e:51:f1:10:a3:6b:02:27: 14:3c:5e:06:0f:42:2c:67:88:39:98:f5:80:b8:d9:b1:bf:f6: af:4c:95:15:14:e3:88:f2:f5:23:d1:b1:5b:ea:6e:a2:97:00: dc:6f:34:b2:0f:c4:1d:8f:cf:4b:d2:23:18:42:f6:9e:7c:80: 84:1f:6e:89:9b:07:a8:07:2b:64:78:ad:9a:2e:e8:2e:ee:b8: d1:78:89:da:df:c9:a7:c9:08:75:5c:eb:e4:3e:ef:b6:53:a2: a0:cc:2c:91:a1:9d:6c:89:df:8b:a1:f9:31:1c:50:28:40:c5: f3:5d:8c:b7:ed:4c:79:ee:b2:ce:82:c9:52:e3:d5:8b:a0:bf: 99:38:a7:22:c3:06:63:d0:41:6e:93:d9:78:2f:1e:2e:80:f4: 3f:a5:00:7e:f2:ea:65:59:41:12:74:96:44:e0:6d:ba:2d:5b: 90:d3:3c:3a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QkJBRjExMC8GA1UEBRMoN0E5RURFQTVGQzg4MkY4NjdFQkEzNzg4OUJDRDNCM0JC NEFDNjIzMTAeFw0yNTEyMjcwNTQzNTNaFw0yNjAxMDMwNTQzNTNaMBgxFjAUBgNV BAMMDTY5NGY3MjFhLTI3ZTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCKECO4IC28NxtNgI/JMV9r8ZBPLt/WBzEvQ6d8oH2XowH1dTrvlMM3L9CG2qo7 8COl3Iij1+ORHvyIpA+UxYEdMVFUKq9xwd+UtWjFO+LzgD0QrfhL+yNqxYSFVeWa 9cg86jrbOoU0Iun2SK58BmfPQ1h8Wz/rJVbiXhkC0MHhYPNSkhT+E094ceYi5T7d +YFtDxBizFAXoJOHaCyKCUeSQ3XY4yPJ0svi/tZhmbkAE6m1aYBNub5I/RmM3f+l tlwjwI7rrlSxEMGIBi+qLBGAht2+RnKzB4bYdSl1hjif7o3HM8Yf+QcheKHI7iEu auNVV7psE8RdKls17JB3dygNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/7mRuF8k uETAjlgQ29gjwgChANgwHwYDVR0jBBgwFoAUep7epfyIL4Z+ujeIm807O7SsYjEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVCQkFGLzE5MUE2Mzg2MzZE RDExRjA5Njg2MjE2NkM0RjlBRTAyL2VwN2VwZnlJTDRaLXVqZUltODA3TzdTc1lq RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZXA3ZXBmeUlMNFotdWplSW04MDdPN1NzWWpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVC QkFGLzE5MUE2Mzg2MzZERDExRjA5Njg2MjE2NkM0RjlBRTAyL2VwN2VwZnlJTDRa LXVqZUltODA3TzdTc1lqRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAXArYiNAYYk62W1G0AFTmr+m9oSkNLLPG7M0dAmFCGIwyV34iO0GsuE D1MNB9wVrJe/o2SxU/NHcASl+YQwc6z+FvOaFPIvG7tUIeZxSkHCYMlOUfEQo2sC JxQ8XgYPQixniDmY9YC42bG/9q9MlRUU44jy9SPRsVvqbqKXANxvNLIPxB2Pz0vS IxhC9p58gIQfbombB6gHK2R4rZou6C7uuNF4idrfyafJCHVc6+Q+77ZToqDMLJGh nWyJ34uh+TEcUChAxfNdjLftTHnuss6CyVLj1Yugv5k4pyLDBmPQQW6T2XgvHi6A 9D+lAH7y6mVZQRJ0lkTgbbotW5DTPDo= -----END CERTIFICATE-----Generated at Sun Dec 28 06:21:59 2025 by rpki-client