This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft File: 2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft (raw, json) Hash identifier: H4+a0b+GYulAuZYLghOfrIWaPohYNp3cZqOAAjpmU5k= Subject key identifier: 66:32:B7:21:5D:00:94:57:8B:0B:D8:34:E3:1E:CE:6A:A0:84:48:E1 Authority key identifier: D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F Certificate issuer: /CN=A91758EC/serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Certificate serial: 4F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft Manifest number: 4B Signing time: Wed 03 Dec 2025 05:35:31 +0000 Manifest this update: Wed 03 Dec 2025 05:35:30 +0000 Manifest next update: Wed 10 Dec 2025 05:35:30 +0000 Files and hashes: 1: 2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl (hash: iflhnJShmNyCJKJniUD5v7dK1K1bODd2wml9yBcofFo=) 2: 9DA6D1866E1C11F0B7ED1D84C4F9AE02.roa (hash: Ab7z11j/JWV2srLlnZVUsiX2l5YoRDQg2qGXrcUnimg=) 3: 312F0E7E6E1C11F0AB99F682C4F9AE02.roa (hash: TPTw4itouUrT3zWp67Qh/kFVGTIQgN0gjeYV7fEtXi8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 05:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91758EC, serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Validity Not Before: Dec 3 05:35:30 2025 GMT Not After : Dec 10 05:35:30 2025 GMT Subject: CN=692fcc22-5188 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:19:93:bb:ca:6b:b0:16:5c:7b:5f:f9:8a:c6: 4f:6d:57:b3:bb:86:45:98:3b:bb:45:15:80:7b:dd: 9f:d4:f6:d6:53:84:94:cf:7d:06:07:81:b3:61:8a: 2c:3d:59:74:aa:34:43:4f:7b:21:21:e5:10:31:9f: 62:22:8f:1a:64:f4:6b:97:00:3d:71:b1:a3:59:bc: e6:4f:01:14:32:c7:f6:49:98:4d:e2:35:41:8d:c5: 94:ab:0b:07:6b:c0:c6:8e:52:4c:98:db:ac:96:63: d6:4c:5c:7b:71:a9:ef:6d:5d:56:2a:3b:50:2e:8c: 59:7b:cb:6f:e1:ae:fc:71:7a:d2:d9:41:eb:b4:51: e7:79:d2:2a:9c:c4:b8:d6:21:7b:a3:46:bc:5f:1b: 04:33:67:17:8d:8a:bf:04:b8:dd:b7:84:af:2f:a2: d9:7e:3b:28:61:b2:87:79:5e:e2:d2:cf:04:3c:92: 2e:d1:2d:79:43:72:73:b7:a6:58:25:67:95:f0:91: d6:96:fa:71:74:ca:ab:29:09:71:42:69:ae:83:05: 3d:c8:3b:80:19:ac:3a:b9:f7:a0:d3:23:c4:36:60: 44:a8:00:64:80:2c:d8:60:3a:b1:34:48:43:17:83: 9a:7c:67:82:9b:f7:8f:4b:34:b4:48:cc:a1:5f:d4: d0:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:32:B7:21:5D:00:94:57:8B:0B:D8:34:E3:1E:CE:6A:A0:84:48:E1 X509v3 Authority Key Identifier: keyid:D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:7b:f2:04:fa:c0:b4:1b:1c:52:5d:bc:c2:4f:45:c7:e6:17: f4:de:77:bb:62:b2:78:92:ea:27:7b:92:72:42:d2:b3:76:4e: e0:f1:a0:af:7a:67:b9:ee:a7:28:f2:5b:0e:c2:cf:0f:8a:d1: 65:f4:4a:f0:3f:f2:3d:fe:1f:06:cd:a5:d1:3d:54:b5:29:ab: 7d:20:c6:e4:48:b5:95:a0:11:dc:b9:f1:8f:28:f8:9e:f6:27: 5a:4c:63:7a:cd:d6:40:61:59:ca:71:35:bf:d4:8d:c2:45:33: 00:4a:39:25:b6:7c:c4:1e:a6:ff:2c:d8:c2:65:d0:b4:a4:59: 08:fd:bb:81:a5:d2:0a:55:6e:9d:4b:70:49:e1:cf:f2:bc:bf: 21:b0:aa:b7:2b:13:e9:35:da:6b:57:b6:b2:a5:b1:99:d2:b0: 91:77:39:d3:de:fa:69:dd:e6:2a:c2:22:a4:ea:bd:8f:ba:2d: cb:7f:91:d2:fa:0d:5b:a2:c2:01:ca:dc:43:c5:96:24:05:fb: 29:9c:41:16:6f:13:ce:e9:e2:d6:ea:5d:92:d0:c2:5f:33:1f: 96:fe:9f:c1:f4:7f:8c:46:40:68:25:e8:c9:98:01:a3:20:2c: aa:98:aa:3d:46:a8:75:90:03:c5:b0:7f:07:c2:30:ee:50:51: e2:22:fb:59 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NThFQzExMC8GA1UEBRMoRDgyN0I2ODQzRUI3RjZCOUYwRUQ1RjJGRjcyMzQ0QTUy QzA0QjQ5RjAeFw0yNTEyMDMwNTM1MzBaFw0yNTEyMTAwNTM1MzBaMBgxFjAUBgNV BAMTDTY5MmZjYzIyLTUxODgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxGZO7ymuwFlx7X/mKxk9tV7O7hkWYO7tFFYB73Z/U9tZThJTPfQYHgbNhiiw9 WXSqNENPeyEh5RAxn2Iijxpk9GuXAD1xsaNZvOZPARQyx/ZJmE3iNUGNxZSrCwdr wMaOUkyY26yWY9ZMXHtxqe9tXVYqO1AujFl7y2/hrvxxetLZQeu0Ued50iqcxLjW IXujRrxfGwQzZxeNir8EuN23hK8votl+Oyhhsod5XuLSzwQ8ki7RLXlDcnO3plgl Z5XwkdaW+nF0yqspCXFCaa6DBT3IO4AZrDq596DTI8Q2YESoAGSALNhgOrE0SEMX g5p8Z4Kb949LNLRIzKFf1NBrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZjK3IV0A lFeLC9g04x7OaqCESOEwHwYDVR0jBBgwFoAU2Ce2hD639rnw7V8v9yNEpSwEtJ8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1OEVDLzZCRjg2Qjg0NjYz MDExRjBCOURDNEU2NEM0RjlBRTAyLzJDZTJoRDYzOXJudzdWOHY5eU5FcFN3RXRK OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMkNlMmhENjM5cm53N1Y4djl5TkVwU3dFdEo4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 OEVDLzZCRjg2Qjg0NjYzMDExRjBCOURDNEU2NEM0RjlBRTAyLzJDZTJoRDYzOXJu dzdWOHY5eU5FcFN3RXRKOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHB78gT6wLQbHFJdvMJPRcfmF/Ted7tisniS6id7knJC0rN2TuDxoK96 Z7nupyjyWw7Czw+K0WX0SvA/8j3+HwbNpdE9VLUpq30gxuRItZWgEdy58Y8o+J72 J1pMY3rN1kBhWcpxNb/UjcJFMwBKOSW2fMQepv8s2MJl0LSkWQj9u4Gl0gpVbp1L cEnhz/K8vyGwqrcrE+k12mtXtrKlsZnSsJF3OdPe+mnd5irCIqTqvY+6Lct/kdL6 DVuiwgHK3EPFliQF+ymcQRZvE87p4tbqXZLQwl8zH5b+n8H0f4xGQGgl6MmYAaMg LKqYqj1GqHWQA8WwfwfCMO5QUeIi+1k= -----END CERTIFICATE-----Generated at Wed Dec 3 13:58:19 2025 by rpki-client