This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft File: 2kdUAUEh0yaH2X05LZBgSagU_MM.mft (raw, json) Hash identifier: BC9fsjhe0YlGF6EYKCm9ZWMSOIckQ9cNalk4b3ccGXk= Subject key identifier: 2D:CA:8B:26:C1:E5:CC:A9:5C:7F:05:11:2B:A2:9B:28:33:90:7B:B3 Authority key identifier: DA:47:54:01:41:21:D3:26:87:D9:7D:39:2D:90:60:49:A8:14:FC:C3 Certificate issuer: /CN=A91777A6/serialNumber=DA4754014121D32687D97D392D906049A814FCC3 Certificate serial: 02AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft Manifest number: 02A9 Signing time: Tue 23 Dec 2025 00:28:59 +0000 Manifest this update: Tue 23 Dec 2025 00:28:59 +0000 Manifest next update: Tue 30 Dec 2025 00:28:59 +0000 Files and hashes: 1: 2kdUAUEh0yaH2X05LZBgSagU_MM.crl (hash: bjDBZbSlBafvcJpBBnyKyA/oY0MLKF4XMn29rP/G7rQ=) 2: 930770F4244C11ED95AA5569C4F9AE02.roa (hash: ULGKwEOFyOrsmtR9RLcNHZ1T/UHrIBp7ZTGPrjal32s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.crl rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 686 (0x2ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91777A6, serialNumber=DA4754014121D32687D97D392D906049A814FCC3 Validity Not Before: Dec 23 00:28:59 2025 GMT Not After : Dec 30 00:28:59 2025 GMT Subject: CN=6949e24b-465a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:83:f3:00:43:e0:3b:e6:97:7c:32:0d:fd:d8: 89:a4:75:41:37:15:31:a8:4c:a4:0a:b2:42:32:6f: 47:0d:ef:e9:bc:60:58:b7:7f:de:57:bf:6c:c3:45: 61:01:03:14:0a:f6:b6:36:1f:03:8e:3a:7b:84:b2: ba:4a:21:3a:bf:af:ee:23:56:d7:33:e2:f7:84:92: be:29:91:bf:e0:f9:6d:fa:4b:32:6a:bb:0b:6d:53: b7:04:31:08:80:07:0a:eb:f5:cb:de:f9:9d:95:e1: 76:c8:ee:57:f5:95:47:d7:c9:c7:32:57:93:f7:ab: 43:bb:f0:3c:49:85:dd:6f:9e:f0:1f:d2:d9:fc:06: 38:2a:ec:04:e1:6c:02:bc:ed:c5:3f:ee:82:10:dc: e0:8a:da:1b:4b:34:0d:17:b8:86:07:40:52:be:24: 50:46:f2:84:b6:9e:04:dd:5c:32:65:44:22:4e:21: 07:b9:50:2a:a2:41:3a:1a:60:bf:4c:7a:ec:cf:fa: 0f:4d:36:88:fb:dd:03:7a:95:b3:65:2d:8e:e2:2e: d3:16:db:51:e1:5c:c5:da:dc:3a:36:42:4a:a7:43: 59:66:b3:10:c4:8f:c0:8f:0f:01:53:33:f6:f2:2e: d5:a6:c3:22:3a:75:75:45:26:e4:f9:68:4b:bf:da: 87:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:CA:8B:26:C1:E5:CC:A9:5C:7F:05:11:2B:A2:9B:28:33:90:7B:B3 X509v3 Authority Key Identifier: keyid:DA:47:54:01:41:21:D3:26:87:D9:7D:39:2D:90:60:49:A8:14:FC:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:59:9d:8c:ba:fb:9b:17:17:ce:d7:d7:3b:06:d0:3e:0b:51: 21:b6:d6:b3:33:7b:5b:b8:fd:ca:ff:20:50:d9:28:1b:ff:bf: b9:9b:99:09:81:9e:c4:5e:f0:fe:51:2a:8a:ef:85:79:37:9c: 47:8a:fa:75:17:c7:7d:53:cd:23:9d:0d:2b:ab:26:75:1b:11: 4d:ce:75:14:30:0d:1c:81:81:8e:1a:55:9c:5e:46:52:88:9d: d2:86:4b:ff:8d:ef:cc:f8:70:80:e2:c1:c1:de:71:e6:25:f4: a8:35:9d:9d:71:59:c6:80:b2:a2:0b:d8:14:74:b3:11:38:44: f6:0b:61:ac:b5:dd:0d:4d:5e:eb:0b:b2:5d:fe:a8:e5:04:0f: 50:ac:85:ed:b4:04:e6:fd:90:31:4b:69:f9:a1:54:14:7e:aa: 9f:99:84:03:37:8b:d6:d6:07:dc:21:4f:6e:99:3c:c7:ce:cc: 3b:f1:1b:f6:32:71:c0:22:82:61:c1:32:df:ce:e9:4e:d1:88: 94:c3:6f:2f:1f:33:e4:69:00:04:5f:88:a5:37:68:0b:82:3f: 6c:64:95:68:15:6a:6a:ea:47:fb:0e:b6:0a:b8:26:cc:0d:43: 21:0f:09:98:e8:81:12:e0:c3:b7:45:07:4b:45:cd:16:a8:87: d7:15:7b:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc3QTYxMTAvBgNVBAUTKERBNDc1NDAxNDEyMUQzMjY4N0Q5N0QzOTJEOTA2MDQ5 QTgxNEZDQzMwHhcNMjUxMjIzMDAyODU5WhcNMjUxMjMwMDAyODU5WjAYMRYwFAYD VQQDDA02OTQ5ZTI0Yi00NjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA24PzAEPgO+aXfDIN/diJpHVBNxUxqEykCrJCMm9HDe/pvGBYt3/eV79sw0Vh AQMUCva2Nh8Djjp7hLK6SiE6v6/uI1bXM+L3hJK+KZG/4Plt+ksyarsLbVO3BDEI gAcK6/XL3vmdleF2yO5X9ZVH18nHMleT96tDu/A8SYXdb57wH9LZ/AY4KuwE4WwC vO3FP+6CENzgitobSzQNF7iGB0BSviRQRvKEtp4E3VwyZUQiTiEHuVAqokE6GmC/ THrsz/oPTTaI+90DepWzZS2O4i7TFttR4VzF2tw6NkJKp0NZZrMQxI/Ajw8BUzP2 8i7VpsMiOnV1RSbk+WhLv9qHJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC3KiybB 5cypXH8FESuimygzkHuzMB8GA1UdIwQYMBaAFNpHVAFBIdMmh9l9OS2QYEmoFPzD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzdBNi9DOEE3OTlEMjI0 NDcxMUVEQjE2NTUwNTNDNEY5QUUwMi8ya2RVQVVFaDB5YUgyWDA1TFpCZ1NhZ1Vf TU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrZFVBVUVoMHlhSDJYMDVMWkJnU2FnVV9NTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzdBNi9DOEE3OTlEMjI0NDcxMUVEQjE2NTUwNTNDNEY5QUUwMi8ya2RVQVVFaDB5 YUgyWDA1TFpCZ1NhZ1VfTU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcWZ2MuvubFxfO19c7BtA+C1EhttazM3tbuP3K/yBQ2Sgb/7+5m5kJ gZ7EXvD+USqK74V5N5xHivp1F8d9U80jnQ0rqyZ1GxFNznUUMA0cgYGOGlWcXkZS iJ3Shkv/je/M+HCA4sHB3nHmJfSoNZ2dcVnGgLKiC9gUdLMROET2C2Gstd0NTV7r C7Jd/qjlBA9QrIXttATm/ZAxS2n5oVQUfqqfmYQDN4vW1gfcIU9umTzHzsw78Rv2 MnHAIoJhwTLfzulO0YiUw28vHzPkaQAEX4ilN2gLgj9sZJVoFWpq6kf7DrYKuCbM DUMhDwmY6IES4MO3RQdLRc0WqIfXFXt7 -----END CERTIFICATE-----Generated at Tue Dec 23 10:13:37 2025 by rpki-client