This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.mft File: 2S2tTXbh9aAmwn8tuRxE-62OSHw.mft (raw, json) Hash identifier: ibUePh3lsI0cRkBqqEE61NTlmhr02Ol1rPjJth53lp4= Subject key identifier: 76:E7:66:C6:4F:FC:64:EB:DF:9B:79:77:ED:83:7C:01:A9:86:BB:2B Authority key identifier: D9:2D:AD:4D:76:E1:F5:A0:26:C2:7F:2D:B9:1C:44:FB:AD:8E:48:7C Certificate issuer: /CN=A91F5143/serialNumber=D92DAD4D76E1F5A026C27F2DB91C44FBAD8E487C Certificate serial: 0E8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2S2tTXbh9aAmwn8tuRxE-62OSHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.mft Manifest number: 0E85 Signing time: Sat 20 Dec 2025 17:25:24 +0000 Manifest this update: Sat 20 Dec 2025 17:25:23 +0000 Manifest next update: Sat 27 Dec 2025 17:25:23 +0000 Files and hashes: 1: 2S2tTXbh9aAmwn8tuRxE-62OSHw.crl (hash: g0lZcpUr6pKduzkXnczgocMYYn6OPn8UBD1Q5/PsvSM=) 2: FBBFC6D8A86B11E9A1385758C4F9AE02.roa (hash: XTPvOUtwwqNSor3+lvQAUp+XHkA+OuKa7+XgiPm/si4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.crl rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2S2tTXbh9aAmwn8tuRxE-62OSHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 17:25:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3726 (0xe8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5143, serialNumber=D92DAD4D76E1F5A026C27F2DB91C44FBAD8E487C Validity Not Before: Dec 20 17:25:23 2025 GMT Not After : Dec 27 17:25:23 2025 GMT Subject: CN=6946dc03-a582 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:cb:ea:ac:20:8f:3b:fd:99:3c:a5:53:97:c1: 02:e2:7d:ed:68:48:5b:51:58:71:fa:a3:84:b8:94: a4:1f:99:39:73:84:cb:2b:6a:9e:43:91:41:51:70: 28:ad:d9:47:e3:fb:36:76:12:2c:80:d2:13:d6:dd: 20:a3:07:47:ce:be:e8:83:b2:67:5d:51:e6:ad:a4: aa:24:77:48:88:1f:11:19:ba:6d:74:00:8a:fd:0d: f9:3e:2c:64:c4:6d:a3:61:56:4f:9d:81:a4:02:d1: 67:74:d8:23:40:2d:f9:2f:3a:e8:a7:6f:43:63:38: 57:16:2e:df:21:73:1c:84:9e:b0:f0:ee:ae:82:11: 67:3c:72:2a:57:c5:da:26:fe:18:88:47:96:67:99: 65:99:02:2b:f6:1e:08:f9:fb:b0:30:9b:04:46:dc: 34:40:ab:89:ab:d0:ac:6c:26:3c:af:3a:a1:44:ca: b8:89:d2:4d:d6:54:e2:1f:4b:92:e1:13:4b:55:7f: db:14:a5:a4:86:86:19:03:44:7d:e9:4d:22:db:59: 02:7a:5d:90:07:fd:4e:88:60:d7:6b:1d:b8:df:bc: e5:a4:78:6b:46:eb:03:98:3d:af:c2:7a:45:32:80: 94:ba:fb:0c:75:6f:05:44:79:c0:aa:ef:21:20:a9: 5a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:E7:66:C6:4F:FC:64:EB:DF:9B:79:77:ED:83:7C:01:A9:86:BB:2B X509v3 Authority Key Identifier: keyid:D9:2D:AD:4D:76:E1:F5:A0:26:C2:7F:2D:B9:1C:44:FB:AD:8E:48:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2S2tTXbh9aAmwn8tuRxE-62OSHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:33:3f:d7:4d:98:3f:c9:43:7f:17:4c:e8:ae:95:f6:a2:ea: a9:de:e3:d8:f5:12:74:c9:eb:f2:4e:44:f3:f0:6a:a0:49:96: e2:2c:46:49:c9:9f:88:c5:81:22:34:10:c0:38:97:e2:3e:22: 69:ac:2c:62:f0:31:45:82:09:98:79:18:c8:6e:e6:e4:c9:07: 81:db:50:59:41:d4:4b:aa:35:5b:a7:ec:ff:f2:d2:2f:49:cc: 13:e3:81:e7:17:14:e9:57:bf:37:5e:57:fc:1f:f8:96:9c:6a: d9:cd:c9:b3:62:c0:57:e8:1c:a4:fe:35:11:31:7c:d0:1b:8b: 9f:5a:60:bf:c4:88:7b:d8:21:12:33:b3:3d:19:d9:73:36:da: 78:3f:b9:bf:21:05:49:57:d1:de:a6:1e:84:2b:e1:f4:e1:0d: 2e:4f:65:ec:db:73:3e:a1:e8:e7:4d:7f:9d:ee:26:b5:4e:17: 7f:65:53:bb:93:96:92:02:67:0d:b1:13:c7:34:c6:24:01:94: 06:e1:28:47:51:6d:d0:b3:e1:fc:cd:40:8b:5e:ea:ff:c3:55: 43:c2:98:c4:5b:67:8d:6c:df:f8:58:42:5c:de:19:09:21:41: e1:f2:f2:ad:34:6d:56:93:19:6c:76:e7:64:ca:c9:32:41:44: 4d:83:e1:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUxNDMxMTAvBgNVBAUTKEQ5MkRBRDRENzZFMUY1QTAyNkMyN0YyREI5MUM0NEZC QUQ4RTQ4N0MwHhcNMjUxMjIwMTcyNTIzWhcNMjUxMjI3MTcyNTIzWjAYMRYwFAYD VQQDDA02OTQ2ZGMwMy1hNTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjcvqrCCPO/2ZPKVTl8EC4n3taEhbUVhx+qOEuJSkH5k5c4TLK2qeQ5FBUXAo rdlH4/s2dhIsgNIT1t0gowdHzr7og7JnXVHmraSqJHdIiB8RGbptdACK/Q35Pixk xG2jYVZPnYGkAtFndNgjQC35Lzrop29DYzhXFi7fIXMchJ6w8O6ughFnPHIqV8Xa Jv4YiEeWZ5llmQIr9h4I+fuwMJsERtw0QKuJq9CsbCY8rzqhRMq4idJN1lTiH0uS 4RNLVX/bFKWkhoYZA0R96U0i21kCel2QB/1OiGDXax2437zlpHhrRusDmD2vwnpF MoCUuvsMdW8FRHnAqu8hIKlaKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHbnZsZP /GTr35t5d+2DfAGphrsrMB8GA1UdIwQYMBaAFNktrU124fWgJsJ/LbkcRPutjkh8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTE0My8wREU5Rjc3NkE4 NkIxMUU5QTcwMUM4NTZDNEY5QUUwMi8yUzJ0VFhiaDlhQW13bjh0dVJ4RS02Mk9T SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJTMnRUWGJoOWFBbXduOHR1UnhFLTYyT1NIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTE0My8wREU5Rjc3NkE4NkIxMUU5QTcwMUM4NTZDNEY5QUUwMi8yUzJ0VFhiaDlh QW13bjh0dVJ4RS02Mk9TSHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2Mz/XTZg/yUN/F0zorpX2ouqp3uPY9RJ0yevyTkTz8GqgSZbiLEZJ yZ+IxYEiNBDAOJfiPiJprCxi8DFFggmYeRjIbubkyQeB21BZQdRLqjVbp+z/8tIv ScwT44HnFxTpV783Xlf8H/iWnGrZzcmzYsBX6Byk/jURMXzQG4ufWmC/xIh72CES M7M9GdlzNtp4P7m/IQVJV9Heph6EK+H04Q0uT2Xs23M+oejnTX+d7ia1Thd/ZVO7 k5aSAmcNsRPHNMYkAZQG4ShHUW3Qs+H8zUCLXur/w1VDwpjEW2eNbN/4WEJc3hkJ IUHh8vKtNG1WkxlsdudkyskyQURNg+F3 -----END CERTIFICATE-----Generated at Mon Dec 22 09:08:09 2025 by rpki-client