This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91487B2/746DB6F25D6511ECBB40D135C4F9AE02/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.mft File: 2Wv1arY_rvAWnA0p1kpUeBwGsuQ.mft (raw, json) Hash identifier: Cg06kJv9n8N4TE49pGNY2VAP9th42sxwEguCreIkbOo= Subject key identifier: 30:57:A3:93:B6:47:05:A0:F9:05:91:7E:FD:6E:80:AC:D6:06:EE:F2 Authority key identifier: D9:6B:F5:6A:B6:3F:AE:F0:16:9C:0D:29:D6:4A:54:78:1C:06:B2:E4 Certificate issuer: /CN=A91487B2/serialNumber=D96BF56AB63FAEF0169C0D29D64A54781C06B2E4 Certificate serial: 049E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91487B2/746DB6F25D6511ECBB40D135C4F9AE02/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.mft Manifest number: 049D Signing time: Mon 22 Dec 2025 23:03:27 +0000 Manifest this update: Mon 22 Dec 2025 23:03:27 +0000 Manifest next update: Mon 29 Dec 2025 23:03:27 +0000 Files and hashes: 1: 2Wv1arY_rvAWnA0p1kpUeBwGsuQ.crl (hash: CPt5N4RkXbzmEOT9RGSUEQwL9yvs4pfB9e6Oqq0T+tk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91487B2/746DB6F25D6511ECBB40D135C4F9AE02/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.crl rsync://rpki.apnic.net/member_repository/A91487B2/746DB6F25D6511ECBB40D135C4F9AE02/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:03:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1182 (0x49e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91487B2, serialNumber=D96BF56AB63FAEF0169C0D29D64A54781C06B2E4 Validity Not Before: Dec 22 23:03:27 2025 GMT Not After : Dec 29 23:03:27 2025 GMT Subject: CN=6949ce3f-8a75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:64:38:c8:75:14:4d:dc:d7:b0:e8:bf:37:12: ab:c8:35:dc:fc:96:a0:47:7a:0e:39:31:56:77:d5: ac:62:5d:f3:bf:e9:12:8a:77:03:6f:a8:2c:24:97: 4c:d0:b2:52:c4:5a:db:3a:0e:ec:4f:62:48:43:a2: 46:28:ff:f8:11:f0:42:02:e3:8e:c7:99:99:79:b2: 9f:3c:09:b4:1a:5f:60:56:27:37:a7:c4:d9:4e:cd: 71:04:39:61:a0:13:46:4b:40:77:e5:0e:f6:77:0b: c6:cf:78:59:f9:01:cf:a2:ed:0d:06:ee:22:48:e1: c3:ba:4d:44:17:0b:bb:af:6b:4b:dc:ea:89:0b:d0: e1:bc:58:ff:c6:af:e1:24:c3:79:d9:44:e5:01:a2: f1:c6:0d:f6:a4:82:40:7b:a7:4d:d3:98:8c:f1:4d: 73:f7:0c:1b:4a:d3:43:44:fa:b0:68:05:19:6c:b6: 91:e1:52:7f:19:7d:33:65:bf:47:35:9f:ef:45:e7: f2:fe:6c:37:46:84:2e:db:b5:00:b3:b9:37:e3:c7: e4:27:ba:9e:6a:7d:85:8a:b9:1f:2f:88:92:ed:f6: 0a:dc:4c:44:58:a3:cf:8d:ed:60:b0:69:4d:5c:16: 95:49:d3:36:f8:d2:d5:59:3d:e9:4a:1f:29:82:91: 04:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:57:A3:93:B6:47:05:A0:F9:05:91:7E:FD:6E:80:AC:D6:06:EE:F2 X509v3 Authority Key Identifier: keyid:D9:6B:F5:6A:B6:3F:AE:F0:16:9C:0D:29:D6:4A:54:78:1C:06:B2:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91487B2/746DB6F25D6511ECBB40D135C4F9AE02/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91487B2/746DB6F25D6511ECBB40D135C4F9AE02/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:b4:15:14:80:d6:3e:d6:81:d3:50:ed:7a:30:b7:8a:79:fb: 94:3c:16:e9:d7:56:91:51:f4:48:8a:32:8e:00:53:ec:32:2f: 31:d4:e5:f1:52:e1:ca:aa:a6:4f:0d:f9:2b:3b:2c:61:f8:b7: bb:03:64:dd:8d:f7:c5:44:bc:32:d7:3d:a2:54:60:65:76:2d: d2:be:0b:0b:ad:4b:d5:c9:4b:ea:7b:1e:38:d8:81:6a:eb:59: 85:7b:28:37:1f:c1:bb:a6:77:12:2d:1d:68:a0:32:7d:05:d8: 11:2b:4f:d7:4c:0f:88:fb:37:6d:aa:99:1f:e7:4a:21:c4:7c: 59:68:5d:b4:fe:cc:8c:f6:eb:a2:e1:bf:32:50:f4:3e:e9:c6: 26:e0:80:c2:57:64:16:be:09:79:4f:28:ea:e2:cd:9e:8c:c6: 5b:fe:46:0f:29:b3:a1:0f:62:8f:15:55:4d:b2:75:3f:28:33: 77:49:32:a3:32:88:fd:bd:4d:52:30:cc:00:dc:86:de:4e:04: 18:ae:e1:51:45:f0:21:04:14:c2:7f:fa:c3:23:04:2c:a5:9a: 7d:26:8f:20:a4:f9:bd:77:3c:ca:25:ac:c4:06:34:62:fc:66: 34:92:49:57:3a:46:28:b2:b9:2c:ff:a0:61:2f:c5:ba:ac:a3: c1:59:76:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg3QjIxMTAvBgNVBAUTKEQ5NkJGNTZBQjYzRkFFRjAxNjlDMEQyOUQ2NEE1NDc4 MUMwNkIyRTQwHhcNMjUxMjIyMjMwMzI3WhcNMjUxMjI5MjMwMzI3WjAYMRYwFAYD VQQDDA02OTQ5Y2UzZi04YTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjGQ4yHUUTdzXsOi/NxKryDXc/JagR3oOOTFWd9WsYl3zv+kSincDb6gsJJdM 0LJSxFrbOg7sT2JIQ6JGKP/4EfBCAuOOx5mZebKfPAm0Gl9gVic3p8TZTs1xBDlh oBNGS0B35Q72dwvGz3hZ+QHPou0NBu4iSOHDuk1EFwu7r2tL3OqJC9DhvFj/xq/h JMN52UTlAaLxxg32pIJAe6dN05iM8U1z9wwbStNDRPqwaAUZbLaR4VJ/GX0zZb9H NZ/vRefy/mw3RoQu27UAs7k348fkJ7qean2FirkfL4iS7fYK3ExEWKPPje1gsGlN XBaVSdM2+NLVWT3pSh8pgpEEYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDBXo5O2 RwWg+QWRfv1ugKzWBu7yMB8GA1UdIwQYMBaAFNlr9Wq2P67wFpwNKdZKVHgcBrLk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODdCMi83NDZEQjZGMjVE NjUxMUVDQkI0MEQxMzVDNEY5QUUwMi8yV3YxYXJZX3J2QVduQTBwMWtwVWVCd0dz dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJXdjFhcllfcnZBV25BMHAxa3BVZUJ3R3N1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODdCMi83NDZEQjZGMjVENjUxMUVDQkI0MEQxMzVDNEY5QUUwMi8yV3YxYXJZX3J2 QVduQTBwMWtwVWVCd0dzdVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCutBUUgNY+1oHTUO16MLeKefuUPBbp11aRUfRIijKOAFPsMi8x1OXx UuHKqqZPDfkrOyxh+Le7A2TdjffFRLwy1z2iVGBldi3SvgsLrUvVyUvqex442IFq 61mFeyg3H8G7pncSLR1ooDJ9BdgRK0/XTA+I+zdtqpkf50ohxHxZaF20/syM9uui 4b8yUPQ+6cYm4IDCV2QWvgl5Tyjq4s2ejMZb/kYPKbOhD2KPFVVNsnU/KDN3STKj Moj9vU1SMMwA3IbeTgQYruFRRfAhBBTCf/rDIwQspZp9Jo8gpPm9dzzKJazEBjRi /GY0kklXOkYosrks/6BhL8W6rKPBWXbc -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:19 2025 by rpki-client