This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft File: 2iwTK47FBxr425BJG63bwPCntEU.mft (raw, json) Hash identifier: DMsAyYqqRVpoTVJpJGwRzGhWsbnZWJuP/NoE1+JzAbM= Subject key identifier: 1A:C8:80:CA:D1:E9:4D:CA:FD:97:52:7D:2F:50:C5:25:B1:BE:DD:13 Authority key identifier: DA:2C:13:2B:8E:C5:07:1A:F8:DB:90:49:1B:AD:DB:C0:F0:A7:B4:45 Certificate issuer: /CN=A91534B8/serialNumber=DA2C132B8EC5071AF8DB90491BADDBC0F0A7B445 Certificate serial: 02F1 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft Manifest number: 02F1 Signing time: Sun 21 Dec 2025 00:29:46 +0000 Manifest this update: Sun 21 Dec 2025 00:29:46 +0000 Manifest next update: Sun 28 Dec 2025 00:29:46 +0000 Files and hashes: 1: 2iwTK47FBxr425BJG63bwPCntEU.crl (hash: uRcQfXMAl4kyPkPrC3IzJ8Ct1AxMmBVnNv/mTAZ3iLg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.crl rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:29:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 753 (0x2f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8, serialNumber=DA2C132B8EC5071AF8DB90491BADDBC0F0A7B445 Validity Not Before: Dec 21 00:29:46 2025 GMT Not After : Dec 28 00:29:46 2025 GMT Subject: CN=69473f7a-ea3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7f:58:ff:bd:88:ac:69:5a:23:b7:4c:c3:7b: d9:4d:a6:f5:d6:bf:66:e2:7f:02:ce:27:97:5b:f8: 62:ed:16:b3:5f:e7:b1:00:7f:59:b9:75:51:ff:5f: 4e:d2:08:14:97:a2:4c:8b:60:67:14:fd:06:9b:b0: 5d:fb:3b:12:48:c0:1e:52:29:28:f6:7b:ee:35:6d: fc:17:9c:0f:84:c5:3a:d1:af:95:4f:07:e7:e6:86: e5:70:67:bb:9f:64:bb:8f:fe:16:ef:d5:ad:ee:40: 85:bc:a6:e9:e1:3d:43:4b:d9:d0:8a:1b:84:a2:5d: ba:e3:60:84:96:d2:51:79:fa:8c:f4:05:86:cd:dc: 90:80:68:06:8b:5c:08:46:11:01:9c:1c:6f:98:a5: 60:cd:ee:ea:ae:31:97:b8:aa:7f:68:84:48:26:30: bb:d4:54:c8:62:8a:f5:76:98:cc:80:8c:a1:15:b3: 92:cc:74:8d:5b:35:d1:30:ea:6a:01:d5:70:4c:6f: 73:0e:59:6e:dd:da:bb:5e:4f:e1:74:75:5f:21:61: 52:82:e9:b7:f1:af:c4:c8:b3:c2:08:69:c3:93:35: 0d:41:72:b7:20:2c:a4:6e:71:44:6e:df:0a:05:34: 43:a7:b0:6d:a6:d8:84:0c:51:33:89:0a:35:1b:26: e9:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:C8:80:CA:D1:E9:4D:CA:FD:97:52:7D:2F:50:C5:25:B1:BE:DD:13 X509v3 Authority Key Identifier: keyid:DA:2C:13:2B:8E:C5:07:1A:F8:DB:90:49:1B:AD:DB:C0:F0:A7:B4:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:ad:cd:53:54:2d:cf:b2:b8:e1:e3:a5:9e:48:03:c1:3e:94: 19:2f:52:93:8a:5c:50:af:79:a7:2f:2d:b4:6a:df:34:e0:31: 4b:0c:42:67:99:2e:ad:0b:b9:9c:61:1c:b4:79:14:68:5e:98: 2f:47:a5:a4:7c:87:f4:1d:b7:aa:5f:8e:5c:39:fc:20:b0:2c: 50:32:77:00:f1:b0:d3:48:45:1f:2b:b3:c9:ff:76:bf:99:78: 8e:1f:93:f1:10:8b:57:c5:44:62:78:83:af:70:44:82:65:99: cd:2e:28:ab:2b:3b:f5:00:9e:12:28:c5:75:c5:50:67:3b:b0: 60:9d:54:12:d9:01:e9:e0:5c:2a:ce:3a:4f:6a:0d:21:c7:ec: c5:53:ba:ce:fc:2a:ed:35:f0:bd:f3:f6:55:ee:6e:12:41:20: 6f:0a:e6:27:07:86:5a:b0:fd:ed:70:0e:66:19:db:c9:86:c1: f1:d6:63:56:08:34:58:c9:aa:e0:2b:30:d1:ac:22:1d:7f:8c: c4:41:38:53:87:89:0e:e3:ea:dc:1d:47:db:41:91:76:13:a3: c2:be:f5:55:d7:57:ae:27:86:39:26:52:3b:f8:6f:a5:90:24: 9d:4d:78:74:e7:34:97:79:b8:72:71:55:b7:fd:a6:b5:5a:08: 6e:d0:dc:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKERBMkMxMzJCOEVDNTA3MUFGOERCOTA0OTFCQUREQkMw RjBBN0I0NDUwHhcNMjUxMjIxMDAyOTQ2WhcNMjUxMjI4MDAyOTQ2WjAYMRYwFAYD VQQDDA02OTQ3M2Y3YS1lYTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvn9Y/72IrGlaI7dMw3vZTab11r9m4n8CzieXW/hi7RazX+exAH9ZuXVR/19O 0ggUl6JMi2BnFP0Gm7Bd+zsSSMAeUiko9nvuNW38F5wPhMU60a+VTwfn5oblcGe7 n2S7j/4W79Wt7kCFvKbp4T1DS9nQihuEol2642CEltJRefqM9AWGzdyQgGgGi1wI RhEBnBxvmKVgze7qrjGXuKp/aIRIJjC71FTIYor1dpjMgIyhFbOSzHSNWzXRMOpq AdVwTG9zDllu3dq7Xk/hdHVfIWFSgum38a/EyLPCCGnDkzUNQXK3ICykbnFEbt8K BTRDp7BtptiEDFEziQo1GybprwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBrIgMrR 6U3K/ZdSfS9QxSWxvt0TMB8GA1UdIwQYMBaAFNosEyuOxQca+NuQSRut28Dwp7RF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC85NjY1OTk3RTA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8yaXdUSzQ3RkJ4cjQyNUJKRzYzYndQQ250 RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzJpd1RLNDdGQnhyNDI1QkpHNjNid1BDbnRFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzRCOC85NjY1OTk3RTA5NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8yaXdUSzQ3RkJ4 cjQyNUJKRzYzYndQQ250RVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLrc1TVC3Psrjh46WeSAPBPpQZL1KTilxQr3mnLy20at804DFLDEJn mS6tC7mcYRy0eRRoXpgvR6WkfIf0HbeqX45cOfwgsCxQMncA8bDTSEUfK7PJ/3a/ mXiOH5PxEItXxURieIOvcESCZZnNLiirKzv1AJ4SKMV1xVBnO7BgnVQS2QHp4Fwq zjpPag0hx+zFU7rO/CrtNfC98/ZV7m4SQSBvCuYnB4ZasP3tcA5mGdvJhsHx1mNW CDRYyargKzDRrCIdf4zEQThTh4kO4+rcHUfbQZF2E6PCvvVV11euJ4Y5JlI7+G+l kCSdTXh05zSXebhycVW3/aa1Wghu0NwM -----END CERTIFICATE-----Generated at Sun Dec 21 19:31:45 2025 by rpki-client