This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.mft File: ep7epfyIL4Z-ujeIm807O7SsYjE.mft (raw, json) Hash identifier: t/q/l93HTRXAFanHQNX6QfzNjR9fy1tRxYt5mwNekg4= Subject key identifier: 99:EC:C6:C5:0C:75:A8:B4:9F:52:E5:6C:F6:C1:90:32:76:C2:5D:D5 Authority key identifier: 7A:9E:DE:A5:FC:88:2F:86:7E:BA:37:88:9B:CD:3B:3B:B4:AC:62:31 Certificate issuer: /CN=A91EBBAF/serialNumber=7A9EDEA5FC882F867EBA37889BCD3B3BB4AC6231 Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep7epfyIL4Z-ujeIm807O7SsYjE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.mft Manifest number: 6B Signing time: Fri 19 Dec 2025 05:55:57 +0000 Manifest this update: Fri 19 Dec 2025 05:55:56 +0000 Manifest next update: Fri 26 Dec 2025 05:55:56 +0000 Files and hashes: 1: ep7epfyIL4Z-ujeIm807O7SsYjE.crl (hash: Eu2kibqspYvTR13TOCR2gwmi6paHMaMS8H7NUPNOzbk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.crl rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep7epfyIL4Z-ujeIm807O7SsYjE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:55:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBBAF, serialNumber=7A9EDEA5FC882F867EBA37889BCD3B3BB4AC6231 Validity Not Before: Dec 19 05:55:56 2025 GMT Not After : Dec 26 05:55:56 2025 GMT Subject: CN=6944e8ed-dd9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:39:78:38:e9:62:fb:ee:3d:34:59:9a:11:02: 60:90:4f:ef:81:0d:84:05:94:ee:a7:fb:55:45:af: 38:d1:1b:00:28:86:17:c3:42:49:25:1b:e7:11:6d: 7f:01:fe:3f:84:9f:de:77:fb:8e:c8:ed:e9:49:be: e9:fe:8e:44:dd:c0:6f:ba:46:67:5b:99:2e:c0:4a: 8c:c0:0d:6c:e7:bb:4a:68:21:b3:b3:5b:56:3d:5e: 51:c3:36:d2:e5:ad:d8:58:60:e6:51:2e:06:36:80: 0a:21:48:f5:32:b5:3b:b0:6a:37:b9:a1:d7:a6:8d: ac:50:d5:ec:ce:53:1a:70:ea:eb:12:92:5b:d7:77: 78:8d:c1:2d:5f:f2:db:69:6e:63:40:4a:0d:8b:ec: 1b:2d:b5:96:70:c6:e8:83:4f:c3:e5:ee:7d:66:d4: 48:31:73:19:11:e3:60:e4:38:0c:31:ea:5a:f0:1e: 77:81:05:73:ef:f8:47:4b:ca:43:08:c4:ff:e8:24: 7b:66:a4:3f:a2:7b:3d:7c:a1:03:44:56:a0:7d:68: ea:2c:15:13:3b:d8:d0:b2:f6:5b:eb:f0:33:4e:f5: 04:af:7d:c8:81:e3:5b:b9:bd:ab:8c:4f:c6:ea:b0: ce:68:5d:68:82:dd:e4:1c:ad:05:6a:d6:f5:7c:42: 02:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:EC:C6:C5:0C:75:A8:B4:9F:52:E5:6C:F6:C1:90:32:76:C2:5D:D5 X509v3 Authority Key Identifier: keyid:7A:9E:DE:A5:FC:88:2F:86:7E:BA:37:88:9B:CD:3B:3B:B4:AC:62:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep7epfyIL4Z-ujeIm807O7SsYjE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBBAF/191A638636DD11F096862166C4F9AE02/ep7epfyIL4Z-ujeIm807O7SsYjE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:80:5e:29:80:64:db:50:40:c9:b7:fc:ab:97:a3:37:c2:dd: 33:d1:5a:96:8d:55:57:58:b1:17:23:b0:63:20:3d:ea:be:02: d4:e5:0a:89:bf:bb:4a:65:86:1b:52:52:2a:20:6e:2d:11:01: e5:42:50:b5:e7:b6:0a:fa:e1:d0:48:1d:10:30:86:23:5b:46: 81:e7:3d:f7:e9:26:c8:72:54:99:92:bc:1e:b0:bc:ee:de:1f: 60:86:2d:1c:44:13:86:d4:84:40:3c:dc:b7:ea:a7:76:4c:e9: ce:29:2c:9b:34:d7:f5:a3:ae:2f:18:71:bf:e9:ef:db:7c:4b: 72:9b:12:da:41:fa:f6:40:b8:11:3f:3a:b3:4d:a5:f0:d9:b6: 26:97:8b:68:bf:51:7b:0a:cb:49:a6:f6:dd:16:c5:d7:43:31: 30:2e:7d:c5:9a:cf:a7:5d:d8:a3:ce:69:b2:24:e4:e2:16:e6: 7d:b0:84:e5:e8:96:5f:cf:4d:a3:ce:95:42:a4:8a:1e:8a:ed: c1:bf:6a:63:ca:bf:7c:33:20:a7:76:e2:a8:25:31:ca:2d:cb: a0:29:d3:b6:54:5e:69:82:c2:35:d3:3b:9a:fb:18:0d:29:ba: 68:0b:a8:9a:42:40:2c:00:40:c8:3b:3f:f3:02:d7:1b:04:d9: 9f:82:01:97 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QkJBRjExMC8GA1UEBRMoN0E5RURFQTVGQzg4MkY4NjdFQkEzNzg4OUJDRDNCM0JC NEFDNjIzMTAeFw0yNTEyMTkwNTU1NTZaFw0yNTEyMjYwNTU1NTZaMBgxFjAUBgNV BAMMDTY5NDRlOGVkLWRkOWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8OXg46WL77j00WZoRAmCQT++BDYQFlO6n+1VFrzjRGwAohhfDQkklG+cRbX8B /j+En953+47I7elJvun+jkTdwG+6RmdbmS7ASozADWznu0poIbOzW1Y9XlHDNtLl rdhYYOZRLgY2gAohSPUytTuwaje5odemjaxQ1ezOUxpw6usSklvXd3iNwS1f8ttp bmNASg2L7BsttZZwxuiDT8Pl7n1m1EgxcxkR42DkOAwx6lrwHneBBXPv+EdLykMI xP/oJHtmpD+iez18oQNEVqB9aOosFRM72NCy9lvr8DNO9QSvfciB41u5vauMT8bq sM5oXWiC3eQcrQVq1vV8QgInAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmezGxQx1 qLSfUuVs9sGQMnbCXdUwHwYDVR0jBBgwFoAUep7epfyIL4Z+ujeIm807O7SsYjEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVCQkFGLzE5MUE2Mzg2MzZE RDExRjA5Njg2MjE2NkM0RjlBRTAyL2VwN2VwZnlJTDRaLXVqZUltODA3TzdTc1lq RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZXA3ZXBmeUlMNFotdWplSW04MDdPN1NzWWpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVC QkFGLzE5MUE2Mzg2MzZERDExRjA5Njg2MjE2NkM0RjlBRTAyL2VwN2VwZnlJTDRa LXVqZUltODA3TzdTc1lqRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJGAXimAZNtQQMm3/KuXozfC3TPRWpaNVVdYsRcjsGMgPeq+AtTlCom/ u0plhhtSUiogbi0RAeVCULXntgr64dBIHRAwhiNbRoHnPffpJshyVJmSvB6wvO7e H2CGLRxEE4bUhEA83Lfqp3ZM6c4pLJs01/Wjri8Ycb/p79t8S3KbEtpB+vZAuBE/ OrNNpfDZtiaXi2i/UXsKy0mm9t0WxddDMTAufcWaz6dd2KPOabIk5OIW5n2whOXo ll/PTaPOlUKkih6K7cG/amPKv3wzIKd24qglMcoty6Ap07ZUXmmCwjXTO5r7GA0p umgLqJpCQCwAQMg7P/MC1xsE2Z+CAZc= -----END CERTIFICATE-----Generated at Fri Dec 19 23:57:27 2025 by rpki-client