This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft File: 2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft (raw, json) Hash identifier: z5LB5dMw/HC8oNO4J72zrS284BAa+WNVYgUNIPfIBzc= Subject key identifier: D9:7D:33:1C:13:45:4E:57:CC:F1:5D:75:14:FB:95:0B:40:B3:08:A4 Authority key identifier: DB:03:27:14:43:E7:5D:6D:19:50:50:ED:C8:B6:13:ED:5F:FB:D8:38 Certificate issuer: /CN=A91889B6/serialNumber=DB03271443E75D6D195050EDC8B613ED5FFBD838 Certificate serial: 34F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft Manifest number: 34ED Signing time: Mon 08 Dec 2025 14:44:36 +0000 Manifest this update: Mon 08 Dec 2025 14:44:35 +0000 Manifest next update: Mon 15 Dec 2025 14:44:35 +0000 Files and hashes: 1: 2wMnFEPnXW0ZUFDtyLYT7V_72Dg.crl (hash: pcTE5FTgReZHXNqVDwz0vWvCd+7AGYBN/uzjF9P63Fc=) 2: 10E0F1884D0C11EE81002274C4F9AE02.roa (hash: 0/8Hj8JGllFpFJtLO8M2e+60zSKfijAxsvrqYMK0zA8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.crl rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Dec 2025 14:44:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13553 (0x34f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91889B6, serialNumber=DB03271443E75D6D195050EDC8B613ED5FFBD838 Validity Not Before: Dec 8 14:44:35 2025 GMT Not After : Dec 15 14:44:35 2025 GMT Subject: CN=6936e454-dd34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:33:1a:e3:84:bd:ca:e9:cb:d3:9a:c9:88:9a: 6a:b9:26:93:c1:87:69:5b:96:d4:82:e1:b1:36:be: 8c:1b:30:28:e9:fa:50:f2:a0:fe:25:f3:15:b3:ae: 70:d2:1a:fb:5c:6f:10:74:e2:51:8c:ea:4d:e1:5a: b6:68:10:81:7e:c2:a3:26:f1:80:8d:7a:b4:d4:bb: 18:f8:ac:a0:7b:4b:a2:f4:e9:44:f5:ad:25:42:cb: a7:aa:da:22:ec:4e:bc:65:8a:35:6f:4f:32:51:0c: 11:cf:ea:40:5d:44:46:4b:d8:10:bf:d3:91:5e:f8: 81:ed:65:26:d2:a7:6c:7a:ff:e1:32:f6:6c:20:3d: ef:30:94:60:9a:6f:52:dc:82:05:a6:bc:65:1a:aa: 61:6b:77:5d:28:fb:2c:de:ee:b6:89:b8:88:86:60: ee:4c:9f:ca:6a:a7:ac:89:88:e1:4d:dc:72:75:03: 5a:aa:af:3b:42:f8:e5:93:25:ff:fe:74:fc:90:f2: 69:00:e9:1b:6c:6f:f4:5f:99:8d:82:7a:f1:e4:ca: d1:dd:97:a6:2b:26:dd:62:b6:02:2a:7b:5d:ae:a7: 2b:46:df:db:74:09:28:50:18:6f:fb:e5:b7:b7:3c: 4a:c6:f7:cc:8e:a6:8c:23:1d:67:26:c1:7d:e6:55: f4:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:7D:33:1C:13:45:4E:57:CC:F1:5D:75:14:FB:95:0B:40:B3:08:A4 X509v3 Authority Key Identifier: keyid:DB:03:27:14:43:E7:5D:6D:19:50:50:ED:C8:B6:13:ED:5F:FB:D8:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:cc:6d:ee:89:5c:b1:00:68:bc:2b:ec:5d:03:a8:53:af:ef: 2f:fa:e9:e4:21:a7:d4:ff:c0:c0:f6:e0:53:a7:3e:68:36:06: b6:7a:60:0d:53:3d:67:e7:f0:b2:3f:8b:df:c4:6f:2d:ed:f5: 9a:7d:af:b9:91:21:34:58:48:7e:26:3f:cf:ab:c6:2a:37:9f: 83:c4:ef:59:59:3f:a2:8f:69:17:1b:84:d8:53:c8:e8:21:8c: 1c:0e:51:cf:10:a0:98:10:da:60:f6:ba:b0:25:7e:7d:d2:2a: 5a:0d:6b:75:4f:4c:2f:d3:02:87:8a:95:b1:36:23:1a:ae:fe: de:65:5a:32:04:b3:1e:aa:3f:92:4d:2c:9c:1c:ce:3e:e9:d7: 2d:11:93:bf:d3:64:74:8a:b8:62:91:a3:88:aa:cd:26:a3:ac: fb:0d:cd:37:bb:78:b9:82:02:1b:c4:e8:d4:86:8f:e9:73:14: e2:1c:b9:c7:1c:a0:38:f4:e2:bd:fb:01:0f:5f:12:35:b3:53: 09:17:5c:37:de:82:cb:51:27:a0:38:d6:d5:46:d2:a4:cc:bb: 72:52:55:dd:c0:0c:9b:a8:6f:50:c2:1a:07:f4:94:c9:62:ef: da:9d:9a:3a:37:e8:2f:0b:b8:6b:0c:db:a1:1e:75:4f:6d:2a: aa:a0:ac:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg5QjYxMTAvBgNVBAUTKERCMDMyNzE0NDNFNzVENkQxOTUwNTBFREM4QjYxM0VE NUZGQkQ4MzgwHhcNMjUxMjA4MTQ0NDM1WhcNMjUxMjE1MTQ0NDM1WjAYMRYwFAYD VQQDEw02OTM2ZTQ1NC1kZDM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApDMa44S9yunL05rJiJpquSaTwYdpW5bUguGxNr6MGzAo6fpQ8qD+JfMVs65w 0hr7XG8QdOJRjOpN4Vq2aBCBfsKjJvGAjXq01LsY+Kyge0ui9OlE9a0lQsunqtoi 7E68ZYo1b08yUQwRz+pAXURGS9gQv9ORXviB7WUm0qdsev/hMvZsID3vMJRgmm9S 3IIFprxlGqpha3ddKPss3u62ibiIhmDuTJ/KaqesiYjhTdxydQNaqq87QvjlkyX/ /nT8kPJpAOkbbG/0X5mNgnrx5MrR3ZemKybdYrYCKntdrqcrRt/bdAkoUBhv++W3 tzxKxvfMjqaMIx1nJsF95lX0FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNl9MxwT RU5XzPFddRT7lQtAswikMB8GA1UdIwQYMBaAFNsDJxRD511tGVBQ7ci2E+1f+9g4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODlCNi8zOUFBMEEwMjFE OTYxMUUyQTY1NDhFN0UwOEIwMkNEMi8yd01uRkVQblhXMFpVRkR0eUxZVDdWXzcy RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ3TW5GRVBuWFcwWlVGRHR5TFlUN1ZfNzJEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 ODlCNi8zOUFBMEEwMjFEOTYxMUUyQTY1NDhFN0UwOEIwMkNEMi8yd01uRkVQblhX MFpVRkR0eUxZVDdWXzcyRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYzG3uiVyxAGi8K+xdA6hTr+8v+unkIafU/8DA9uBTpz5oNga2emAN Uz1n5/CyP4vfxG8t7fWafa+5kSE0WEh+Jj/Pq8YqN5+DxO9ZWT+ij2kXG4TYU8jo IYwcDlHPEKCYENpg9rqwJX590ipaDWt1T0wv0wKHipWxNiMarv7eZVoyBLMeqj+S TSycHM4+6dctEZO/02R0irhikaOIqs0mo6z7Dc03u3i5ggIbxOjUho/pcxTiHLnH HKA49OK9+wEPXxI1s1MJF1w33oLLUSegONbVRtKkzLtyUlXdwAybqG9QwhoH9JTJ Yu/anZo6N+gvC7hrDNuhHnVPbSqqoKzL -----END CERTIFICATE-----Generated at Wed Dec 10 05:56:36 2025 by rpki-client