This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft File: 2QhMrcO-yMIAxalrcu2v1KAOrug.mft (raw, json) Hash identifier: eoEDTo3n9PlgxPh4NINDb4lvj2e6DNPSrizhebosOkM= Subject key identifier: E6:63:CC:BB:06:0E:E7:AA:9A:F6:B6:78:62:EE:6C:D7:71:43:83:9D Authority key identifier: D9:08:4C:AD:C3:BE:C8:C2:00:C5:A9:6B:72:ED:AF:D4:A0:0E:AE:E8 Certificate issuer: /CN=A91719F1/serialNumber=D9084CADC3BEC8C200C5A96B72EDAFD4A00EAEE8 Certificate serial: 02B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhMrcO-yMIAxalrcu2v1KAOrug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft Manifest number: 02AE Signing time: Tue 23 Dec 2025 00:27:35 +0000 Manifest this update: Tue 23 Dec 2025 00:27:35 +0000 Manifest next update: Tue 30 Dec 2025 00:27:35 +0000 Files and hashes: 1: 2QhMrcO-yMIAxalrcu2v1KAOrug.crl (hash: JXZrqZPJ7upB4Wsajtx3Dmt2kSUaBjJVPGu6B9ahz4I=) 2: 00724F9621F111ED93774B6EC4F9AE02.roa (hash: 1MS8BgQSeLxFZfjzI2XVs+BA1y3N2nYBN3Uvkoalvq8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.crl rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhMrcO-yMIAxalrcu2v1KAOrug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:27:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 693 (0x2b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91719F1, serialNumber=D9084CADC3BEC8C200C5A96B72EDAFD4A00EAEE8 Validity Not Before: Dec 23 00:27:35 2025 GMT Not After : Dec 30 00:27:35 2025 GMT Subject: CN=6949e1f7-155a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:57:2a:55:d0:35:47:64:33:25:a7:13:e2:56: 96:6b:84:c3:11:b2:5d:ab:2f:f3:92:73:e9:cd:4f: 26:04:9e:a5:2d:a3:78:70:33:f4:f9:b4:f4:81:e1: 8e:a7:09:43:f6:c0:4f:15:93:b1:27:ff:a8:43:bb: de:fd:6c:ec:fc:99:40:d1:1d:22:56:04:c2:b4:7c: b9:eb:72:86:0a:08:93:de:1e:cd:49:fb:10:09:af: f8:af:12:a9:d7:1e:19:06:87:91:ac:c7:e4:d7:3d: 80:1a:dc:7a:56:e4:e5:f4:aa:7c:bf:9c:6d:93:6b: 6d:3e:e7:bf:ae:07:87:18:6f:bd:75:bb:90:27:3a: 13:82:cf:3e:2d:45:f7:c8:94:7b:5f:7f:2b:c3:e0: 54:a6:97:70:15:88:2c:69:9f:69:22:38:6b:54:34: 38:8b:1d:65:8c:9f:07:9b:09:9e:42:43:49:e8:c3: 60:aa:f4:26:f9:69:37:a4:0e:65:30:74:ad:0a:f9: e5:fb:68:88:f7:bc:71:00:fb:54:96:ef:25:2f:88: 7f:21:09:0c:a8:6a:c8:5b:81:6c:67:ad:70:dc:45: 29:7b:c0:c4:f1:1b:4d:93:3e:13:88:48:21:98:30: be:32:78:8c:a5:d4:3f:37:9b:74:0c:02:77:3a:32: 13:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:63:CC:BB:06:0E:E7:AA:9A:F6:B6:78:62:EE:6C:D7:71:43:83:9D X509v3 Authority Key Identifier: keyid:D9:08:4C:AD:C3:BE:C8:C2:00:C5:A9:6B:72:ED:AF:D4:A0:0E:AE:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhMrcO-yMIAxalrcu2v1KAOrug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:e6:09:6e:76:79:05:17:19:07:42:fa:32:8d:01:06:81:19: 3a:b0:c7:63:6d:0d:ea:30:48:4a:40:42:80:9c:72:14:ce:9d: fd:40:ef:e2:51:0b:8d:4f:36:64:0d:2a:c4:6f:91:ac:d6:00: 0a:96:8a:0f:1e:d3:60:91:07:1c:1e:08:a6:d7:2e:fd:82:2d: 88:57:45:45:7b:82:59:6b:52:4f:34:1d:2b:d1:6f:fd:96:79: 0d:db:cf:12:59:6c:b5:5f:93:52:fd:43:68:0a:0b:f4:e1:e9: 82:9e:b8:4b:f9:14:87:82:2b:d3:ce:c4:b5:f1:ae:3d:38:80: e3:22:48:9c:3f:05:3c:4c:36:44:84:a7:76:63:d7:34:37:e5: 51:45:b9:c2:57:53:7c:20:75:af:5a:26:b0:19:83:f0:73:4a: 6d:68:4b:24:e5:eb:0a:c8:27:81:33:07:c4:14:b1:78:cb:bb: a9:30:c6:5c:9e:8b:36:66:94:30:8f:3f:24:3d:09:05:15:a9: 7b:0a:05:62:78:1d:2b:87:e8:94:90:ac:03:88:d0:47:15:d6: f5:79:6d:20:9f:46:df:85:b9:1f:81:9b:17:e1:6a:db:c1:e2: 0c:6b:37:6c:84:a7:36:f6:b8:82:be:74:ac:77:0b:84:c3:58: e7:cc:c7:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE5RjExMTAvBgNVBAUTKEQ5MDg0Q0FEQzNCRUM4QzIwMEM1QTk2QjcyRURBRkQ0 QTAwRUFFRTgwHhcNMjUxMjIzMDAyNzM1WhcNMjUxMjMwMDAyNzM1WjAYMRYwFAYD VQQDDA02OTQ5ZTFmNy0xNTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArVcqVdA1R2QzJacT4laWa4TDEbJdqy/zknPpzU8mBJ6lLaN4cDP0+bT0geGO pwlD9sBPFZOxJ/+oQ7ve/Wzs/JlA0R0iVgTCtHy563KGCgiT3h7NSfsQCa/4rxKp 1x4ZBoeRrMfk1z2AGtx6VuTl9Kp8v5xtk2ttPue/rgeHGG+9dbuQJzoTgs8+LUX3 yJR7X38rw+BUppdwFYgsaZ9pIjhrVDQ4ix1ljJ8HmwmeQkNJ6MNgqvQm+Wk3pA5l MHStCvnl+2iI97xxAPtUlu8lL4h/IQkMqGrIW4FsZ61w3EUpe8DE8RtNkz4TiEgh mDC+MniMpdQ/N5t0DAJ3OjITvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOZjzLsG Dueqmva2eGLubNdxQ4OdMB8GA1UdIwQYMBaAFNkITK3DvsjCAMWpa3Ltr9SgDq7o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTlGMS82OTVGOTNGRTIx RUUxMUVEQjRDOEJENkNDNEY5QUUwMi8yUWhNcmNPLXlNSUF4YWxyY3UydjFLQU9y dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRaE1yY08teU1JQXhhbHJjdTJ2MUtBT3J1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTlGMS82OTVGOTNGRTIxRUUxMUVEQjRDOEJENkNDNEY5QUUwMi8yUWhNcmNPLXlN SUF4YWxyY3UydjFLQU9ydWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA45gludnkFFxkHQvoyjQEGgRk6sMdjbQ3qMEhKQEKAnHIUzp39QO/i UQuNTzZkDSrEb5Gs1gAKlooPHtNgkQccHgim1y79gi2IV0VFe4JZa1JPNB0r0W/9 lnkN288SWWy1X5NS/UNoCgv04emCnrhL+RSHgivTzsS18a49OIDjIkicPwU8TDZE hKd2Y9c0N+VRRbnCV1N8IHWvWiawGYPwc0ptaEsk5esKyCeBMwfEFLF4y7upMMZc nos2ZpQwjz8kPQkFFal7CgVieB0rh+iUkKwDiNBHFdb1eW0gn0bfhbkfgZsX4Wrb weIMazdshKc29riCvnSsdwuEw1jnzMfz -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:32 2025 by rpki-client