This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft File: 2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft (raw, json) Hash identifier: kE2hC2AzZ+WnDL+dDbDLz8UAcXcLfoLWlJkFbPBl2qQ= Subject key identifier: EC:F5:1B:19:B4:A5:36:33:29:65:BB:79:0C:A2:92:90:7B:C2:8A:FF Authority key identifier: D9:C5:D8:2A:BD:30:FD:D2:0F:A9:CA:F3:D1:ED:86:7D:B0:76:95:6B Certificate issuer: /CN=A91A5A57/serialNumber=D9C5D82ABD30FDD20FA9CAF3D1ED867DB076956B Certificate serial: 0104 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cXYKr0w_dIPqcrz0e2GfbB2lWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft Manifest number: 0102 Signing time: Tue 23 Dec 2025 04:03:13 +0000 Manifest this update: Tue 23 Dec 2025 04:03:13 +0000 Manifest next update: Tue 30 Dec 2025 04:03:13 +0000 Files and hashes: 1: 2cXYKr0w_dIPqcrz0e2GfbB2lWs.crl (hash: VHy4JH7BKsXZBR7Ighl2sXZI01E7gPsRrQUiEHSeezM=) 2: F6382C7A56EC11EF85879C50C4F9AE02.roa (hash: yG8pJzZvCKmicDw0dwhTP12v3DvDJugGeiv6wIDOe9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.crl rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cXYKr0w_dIPqcrz0e2GfbB2lWs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:03:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5A57, serialNumber=D9C5D82ABD30FDD20FA9CAF3D1ED867DB076956B Validity Not Before: Dec 23 04:03:13 2025 GMT Not After : Dec 30 04:03:13 2025 GMT Subject: CN=694a1481-1772 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:bb:34:6b:6b:f2:9f:5f:8f:14:75:50:0a:dc: d2:87:73:91:e9:67:62:42:b2:18:6e:96:a8:74:92: 0e:21:b4:21:52:76:77:a0:28:67:c2:b9:d2:b5:36: c9:d9:b5:d5:f8:89:3c:d6:49:28:ed:e1:c4:a8:d2: b0:ff:24:53:e1:b7:47:c8:d8:6f:05:76:b7:22:74: b6:6c:d4:f9:50:01:c1:84:fd:7f:92:de:cf:e1:d5: 51:54:37:fd:d6:dd:94:e8:e0:94:e3:87:f4:e6:e6: 24:ee:86:ff:41:93:d5:85:be:00:8b:69:dc:f1:e5: c7:af:86:2a:46:6a:82:b1:7f:51:55:df:f6:8d:e8: 66:80:4b:f8:89:4a:84:f6:de:b8:2e:ab:41:b0:db: b0:ef:63:b0:cb:71:3b:ba:c1:35:dd:c4:9a:6b:32: e6:cd:ae:8c:e7:c3:b1:de:99:0e:67:76:0d:a5:8a: 82:80:d2:93:56:7b:33:a3:dc:77:54:4e:13:f1:0f: a8:64:f5:e6:f0:82:94:c0:1b:43:02:1b:a3:1e:8b: a3:71:05:76:46:0c:d9:2b:00:49:58:2e:40:6c:02: 84:96:da:35:68:87:7f:7c:7e:a8:25:7c:28:1d:61: ed:18:75:fa:fe:7b:19:58:a2:72:ed:a4:63:09:27: 5d:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:F5:1B:19:B4:A5:36:33:29:65:BB:79:0C:A2:92:90:7B:C2:8A:FF X509v3 Authority Key Identifier: keyid:D9:C5:D8:2A:BD:30:FD:D2:0F:A9:CA:F3:D1:ED:86:7D:B0:76:95:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cXYKr0w_dIPqcrz0e2GfbB2lWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:79:67:f2:ae:f5:f2:ff:aa:ed:05:8f:3d:14:24:0a:2c:9f: b4:81:cf:4a:93:3e:8b:14:92:6a:85:b5:31:49:a6:04:07:06: 5e:8a:45:5d:11:8d:8f:d4:35:3b:72:8e:0c:46:7e:5d:6c:85: b4:f3:ed:4a:be:c3:80:e2:8c:97:40:da:18:89:5a:57:93:19: 93:26:6b:cc:75:34:c5:82:51:54:35:24:0e:32:dd:90:21:66: 02:89:e1:50:75:45:de:75:44:a0:31:2e:3d:60:52:af:f3:98: a0:2f:f2:c5:e4:74:1c:25:fe:de:be:70:25:ba:a4:13:8f:cb: 66:c2:20:69:c7:01:2b:71:b5:0e:1c:c6:0f:65:90:d0:a2:fb: c9:e1:7f:07:6a:53:df:f6:8a:f4:a4:3e:d1:81:27:c9:95:68: 88:dc:16:4a:08:09:fb:fa:00:fe:c6:19:77:af:74:0f:e0:61: f9:0f:be:4c:82:08:4d:e6:95:0d:84:b1:4f:b5:09:32:c2:60: 9e:4b:2b:8b:47:8c:29:2d:07:d7:21:5e:21:0d:2a:a9:32:74: 44:74:79:22:3f:b7:67:f2:6e:dd:86:26:1e:f5:f6:9c:7d:e3: 31:1e:ba:b3:50:1d:96:1f:2b:2a:30:54:33:53:c1:74:73:e6: 06:e1:44:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVBNTcxMTAvBgNVBAUTKEQ5QzVEODJBQkQzMEZERDIwRkE5Q0FGM0QxRUQ4NjdE QjA3Njk1NkIwHhcNMjUxMjIzMDQwMzEzWhcNMjUxMjMwMDQwMzEzWjAYMRYwFAYD VQQDDA02OTRhMTQ4MS0xNzcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA27s0a2vyn1+PFHVQCtzSh3OR6WdiQrIYbpaodJIOIbQhUnZ3oChnwrnStTbJ 2bXV+Ik81kko7eHEqNKw/yRT4bdHyNhvBXa3InS2bNT5UAHBhP1/kt7P4dVRVDf9 1t2U6OCU44f05uYk7ob/QZPVhb4Ai2nc8eXHr4YqRmqCsX9RVd/2jehmgEv4iUqE 9t64LqtBsNuw72Owy3E7usE13cSaazLmza6M58Ox3pkOZ3YNpYqCgNKTVnszo9x3 VE4T8Q+oZPXm8IKUwBtDAhujHoujcQV2RgzZKwBJWC5AbAKElto1aId/fH6oJXwo HWHtGHX6/nsZWKJy7aRjCSddjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOz1Gxm0 pTYzKWW7eQyikpB7wor/MB8GA1UdIwQYMBaAFNnF2Cq9MP3SD6nK89Hthn2wdpVr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUE1Ny82RTc0ODMxMDU2 RUMxMUVGOEEwQ0IyNEZDNEY5QUUwMi8yY1hZS3Iwd19kSVBxY3J6MGUyR2ZiQjJs V3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJjWFlLcjB3X2RJUHFjcnowZTJHZmJCMmxXcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUE1Ny82RTc0ODMxMDU2RUMxMUVGOEEwQ0IyNEZDNEY5QUUwMi8yY1hZS3Iwd19k SVBxY3J6MGUyR2ZiQjJsV3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLeWfyrvXy/6rtBY89FCQKLJ+0gc9Kkz6LFJJqhbUxSaYEBwZeikVd EY2P1DU7co4MRn5dbIW08+1KvsOA4oyXQNoYiVpXkxmTJmvMdTTFglFUNSQOMt2Q IWYCieFQdUXedUSgMS49YFKv85igL/LF5HQcJf7evnAluqQTj8tmwiBpxwErcbUO HMYPZZDQovvJ4X8HalPf9or0pD7RgSfJlWiI3BZKCAn7+gD+xhl3r3QP4GH5D75M gghN5pUNhLFPtQkywmCeSyuLR4wpLQfXIV4hDSqpMnREdHkiP7dn8m7dhiYe9fac feMxHrqzUB2WHysqMFQzU8F0c+YG4URs -----END CERTIFICATE-----Generated at Wed Dec 24 23:18:23 2025 by rpki-client