This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft File: 2CVmixrBt_OBXwe82lfnSMSWSpo.mft (raw, json) Hash identifier: endrY7WZyArEGfKfXU4534wUNlukBScLH6weL81pC5k= Subject key identifier: E3:DE:CA:95:6F:9A:EB:E4:25:23:34:DE:A0:89:E0:85:FE:47:29:FF Authority key identifier: D8:25:66:8B:1A:C1:B7:F3:81:5F:07:BC:DA:57:E7:48:C4:96:4A:9A Certificate issuer: /CN=A91756C3/serialNumber=D825668B1AC1B7F3815F07BCDA57E748C4964A9A Certificate serial: A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft Manifest number: A7 Signing time: Tue 23 Dec 2025 05:10:48 +0000 Manifest this update: Tue 23 Dec 2025 05:10:47 +0000 Manifest next update: Tue 30 Dec 2025 05:10:47 +0000 Files and hashes: 1: 2CVmixrBt_OBXwe82lfnSMSWSpo.crl (hash: l8bNcGn1LklmpgrbeahjJKQuVY5WXnA1Je/RyL6lHNk=) 2: 00078764E06811EF8716401DC4F9AE02.roa (hash: LbImQdZW2RSWgtVHcpBhymJAYl7D/59tKMuTPJC97Bo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.crl rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:10:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91756C3, serialNumber=D825668B1AC1B7F3815F07BCDA57E748C4964A9A Validity Not Before: Dec 23 05:10:47 2025 GMT Not After : Dec 30 05:10:47 2025 GMT Subject: CN=694a2458-aa97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:66:a3:17:2c:22:b5:3c:6a:37:41:43:f4:70: 20:43:62:32:a6:09:47:37:76:27:fb:d0:ad:d4:9e: ad:76:23:97:53:50:92:4e:af:36:53:79:ab:97:01: 41:f7:05:8b:4e:af:ec:db:cc:a6:10:52:a8:8b:91: 7b:78:fb:aa:2a:80:85:8b:ec:6d:13:65:aa:36:5c: 53:04:a6:ac:20:0b:7c:14:6f:45:43:e8:3c:2c:aa: c2:cd:00:e6:d0:12:23:54:5c:c0:4a:68:c9:af:cc: b6:0e:03:35:db:5b:3e:a8:56:92:9d:bc:fd:32:90: b6:67:c6:67:02:a9:a1:08:bb:78:8b:4c:c3:7d:2b: 04:e1:be:f4:ac:a5:37:68:3c:07:fc:52:cc:47:51: 14:20:57:57:a2:ee:d3:0c:3d:67:70:4b:08:7c:db: ca:66:16:a0:2e:7b:9a:74:fb:a3:cf:72:31:9d:ea: c6:8b:db:4e:42:7d:45:9c:a7:09:b4:66:d1:a0:7b: ee:c0:42:35:53:e8:e7:66:2f:aa:0a:f8:28:52:ce: 57:7c:5c:3c:85:98:b2:03:43:46:28:3f:a9:73:11: eb:91:64:19:02:b4:7e:19:a0:d1:b3:58:7e:58:fa: 4e:5d:6c:ff:59:4b:7b:41:44:4b:26:db:a2:3f:69: 82:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:DE:CA:95:6F:9A:EB:E4:25:23:34:DE:A0:89:E0:85:FE:47:29:FF X509v3 Authority Key Identifier: keyid:D8:25:66:8B:1A:C1:B7:F3:81:5F:07:BC:DA:57:E7:48:C4:96:4A:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:19:0a:b4:43:f9:4e:de:51:84:52:2a:d8:55:c8:97:3e:cd: aa:f3:ca:29:d7:e1:7a:d4:5d:4a:21:bf:bd:43:6d:db:c5:67: ae:0d:91:36:9f:43:cc:60:70:ef:0a:72:39:ff:be:c9:71:a3: 00:de:33:03:b9:c3:66:46:f2:08:f8:94:27:4e:cb:57:47:c9: 1d:14:f3:7e:61:1c:7c:69:fb:08:c7:c6:15:48:13:66:f3:02: 64:29:f2:08:cf:c6:bf:34:73:0b:ac:ca:58:e3:e5:7b:0a:23: 6a:d4:16:cc:d5:58:b3:62:a9:d2:59:e5:1f:d7:52:cb:d3:c0: 50:cc:08:58:17:fe:9e:2c:70:2b:d6:39:62:a0:01:40:fb:13: 3c:b8:4a:09:09:6e:2f:f3:65:f1:5e:86:de:cc:4c:0a:ed:8e: d3:d5:91:01:3b:10:a4:96:bf:8d:69:82:9d:56:09:16:3b:75: bd:92:79:1b:35:25:a5:33:8e:3d:d2:21:0d:e1:64:7b:92:59: 8a:3b:b3:0b:22:fb:7b:42:86:1c:14:7f:fa:82:a6:9f:5a:08: aa:ba:98:04:8e:12:18:b6:75:63:62:7c:1e:27:39:24:d2:39: 13:2e:d2:07:63:c8:d9:09:bf:96:4f:2e:6d:50:af:ef:8b:4b: 72:a3:d0:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU2QzMxMTAvBgNVBAUTKEQ4MjU2NjhCMUFDMUI3RjM4MTVGMDdCQ0RBNTdFNzQ4 QzQ5NjRBOUEwHhcNMjUxMjIzMDUxMDQ3WhcNMjUxMjMwMDUxMDQ3WjAYMRYwFAYD VQQDDA02OTRhMjQ1OC1hYTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArmajFywitTxqN0FD9HAgQ2IypglHN3Yn+9Ct1J6tdiOXU1CSTq82U3mrlwFB 9wWLTq/s28ymEFKoi5F7ePuqKoCFi+xtE2WqNlxTBKasIAt8FG9FQ+g8LKrCzQDm 0BIjVFzASmjJr8y2DgM121s+qFaSnbz9MpC2Z8ZnAqmhCLt4i0zDfSsE4b70rKU3 aDwH/FLMR1EUIFdXou7TDD1ncEsIfNvKZhagLnuadPujz3IxnerGi9tOQn1FnKcJ tGbRoHvuwEI1U+jnZi+qCvgoUs5XfFw8hZiyA0NGKD+pcxHrkWQZArR+GaDRs1h+ WPpOXWz/WUt7QURLJtuiP2mCAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOPeypVv muvkJSM03qCJ4IX+Ryn/MB8GA1UdIwQYMBaAFNglZosawbfzgV8HvNpX50jElkqa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTZDMy81QkY1MTkyQUUw NjcxMUVGQkMzRDE3MUJDNEY5QUUwMi8yQ1ZtaXhyQnRfT0JYd2U4MmxmblNNU1dT cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDVm1peHJCdF9PQlh3ZTgybGZuU01TV1Nwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTZDMy81QkY1MTkyQUUwNjcxMUVGQkMzRDE3MUJDNEY5QUUwMi8yQ1ZtaXhyQnRf T0JYd2U4MmxmblNNU1dTcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDCGQq0Q/lO3lGEUirYVciXPs2q88op1+F61F1KIb+9Q23bxWeuDZE2 n0PMYHDvCnI5/77JcaMA3jMDucNmRvII+JQnTstXR8kdFPN+YRx8afsIx8YVSBNm 8wJkKfIIz8a/NHMLrMpY4+V7CiNq1BbM1VizYqnSWeUf11LL08BQzAhYF/6eLHAr 1jlioAFA+xM8uEoJCW4v82XxXobezEwK7Y7T1ZEBOxCklr+NaYKdVgkWO3W9knkb NSWlM4490iEN4WR7klmKO7MLIvt7QoYcFH/6gqafWgiqupgEjhIYtnVjYnweJzkk 0jkTLtIHY8jZCb+WTy5tUK/vi0tyo9B6 -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:33 2025 by rpki-client