This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.mft File: 2QTVUsDvMvJJq6RZe9hKFe5VVcE.mft (raw, json) Hash identifier: vsEZphRbX3KI2yyK/qDZ+6EBJk8E4I9GQLKqxQh55is= Subject key identifier: 6E:33:B7:41:E0:13:F5:2D:3D:CD:50:A2:44:EE:E6:64:AC:57:4B:5A Authority key identifier: D9:04:D5:52:C0:EF:32:F2:49:AB:A4:59:7B:D8:4A:15:EE:55:55:C1 Certificate issuer: /CN=A91A5ED2/serialNumber=D904D552C0EF32F249ABA4597BD84A15EE5555C1 Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2QTVUsDvMvJJq6RZe9hKFe5VVcE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.mft Manifest number: 69 Signing time: Sun 07 Dec 2025 05:02:07 +0000 Manifest this update: Sun 07 Dec 2025 05:02:06 +0000 Manifest next update: Sun 14 Dec 2025 05:02:06 +0000 Files and hashes: 1: 2QTVUsDvMvJJq6RZe9hKFe5VVcE.crl (hash: 1uxWU91Rho24LM8Hs4s4KQ3mWCd2gy5Zd214+iLfcgw=) 2: D474730E311C11F08B197B65C4F9AE02.roa (hash: Pu/QPbX6etZqKvOsEtAWX426lG3kK44YjXzpJvX5ecs=) 3: 5A9C0D58311C11F0B91A2E64C4F9AE02.roa (hash: OuYK59uWIga3ZAzcT5ocu0lcjNK1alPA7Ti+SUQJrh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.crl rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2QTVUsDvMvJJq6RZe9hKFe5VVcE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 05:02:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5ED2, serialNumber=D904D552C0EF32F249ABA4597BD84A15EE5555C1 Validity Not Before: Dec 7 05:02:06 2025 GMT Not After : Dec 14 05:02:06 2025 GMT Subject: CN=69350a4f-f555 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e4:64:2f:bd:03:21:83:b4:78:3a:87:3a:6a: dd:9f:27:91:88:af:30:6b:29:a3:a0:d6:f3:da:a5: fd:28:a2:e8:ef:5d:96:ac:65:01:d5:cd:c4:66:af: f4:5a:3d:a8:e6:f3:ab:1b:31:ab:ed:56:ba:e8:85: 99:34:69:c5:53:cd:bc:45:a1:66:ab:d3:67:5b:8b: 49:42:43:3f:b3:89:ad:fd:0d:a6:3c:a5:22:4e:5e: e8:9b:9a:a1:3c:81:8e:8c:f6:ea:87:83:c3:89:7e: 11:25:17:bf:e7:c5:56:72:ff:5f:19:bc:eb:57:37: 2b:31:79:12:fa:c6:cf:10:d6:93:c3:72:d3:a1:5e: af:48:d4:2a:36:af:cd:55:36:a6:17:ce:be:cf:cb: 22:c1:73:e9:ff:39:92:ab:d5:a3:6e:fc:1e:ed:19: 50:42:fb:31:42:ef:5e:b9:ca:bb:58:44:09:c0:73: 4f:44:13:7f:ff:a7:aa:47:ad:2c:0e:a2:1c:f2:10: d2:e0:af:94:73:4f:71:ce:07:6d:22:cc:55:b2:d6: 52:53:a2:51:60:7a:b6:5e:6e:e7:df:c7:ed:38:36: f4:a0:3f:c1:72:e6:31:e6:12:28:22:ce:a4:28:db: 0c:55:22:47:af:cb:a7:89:80:af:fe:8c:f6:bf:ae: 05:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:33:B7:41:E0:13:F5:2D:3D:CD:50:A2:44:EE:E6:64:AC:57:4B:5A X509v3 Authority Key Identifier: keyid:D9:04:D5:52:C0:EF:32:F2:49:AB:A4:59:7B:D8:4A:15:EE:55:55:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2QTVUsDvMvJJq6RZe9hKFe5VVcE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:b3:d6:bc:4e:ea:53:fa:80:7c:5d:f9:9f:67:66:85:cb:2f: 63:41:41:da:74:d5:5e:3f:8f:50:d6:0b:97:9e:c1:b7:39:1e: c1:1d:4d:86:4a:2c:d5:78:4a:4d:96:5d:49:06:9a:32:9a:cd: 34:43:63:1b:88:8b:ca:a7:b7:45:3d:68:77:37:d6:c1:40:d8: b3:69:af:c7:f4:45:a8:f4:bb:8b:b0:25:67:42:d7:ca:e6:2e: 41:c8:26:a8:d0:5d:2b:3b:d2:8b:af:ba:83:61:e4:aa:9e:e2: e6:10:89:51:fa:0c:f5:f3:20:85:1f:ae:30:7e:7e:dd:2e:a1: 50:37:49:d1:d2:af:9c:e9:3d:ee:2a:0b:44:f9:84:d7:3b:1b: 13:f6:08:26:3d:96:90:76:52:a3:7b:5f:39:51:04:94:d6:4b: 62:0b:52:5d:a7:00:7e:bd:94:8c:4a:da:c8:d7:be:46:29:92: 5e:0f:2a:ac:97:c7:2d:f5:2f:59:8e:a2:b8:7f:bc:c6:96:08: 36:64:0a:14:d9:07:a5:31:ed:f9:84:f7:eb:e2:3e:22:1c:5e: e4:de:ec:d1:8c:58:ff:27:67:e3:e6:e9:c5:7c:01:df:08:b7: 1b:d9:0c:f4:d3:22:db:32:b3:19:da:f9:b5:ed:5a:12:d9:20: 7f:af:52:c3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NUVEMjExMC8GA1UEBRMoRDkwNEQ1NTJDMEVGMzJGMjQ5QUJBNDU5N0JEODRBMTVF RTU1NTVDMTAeFw0yNTEyMDcwNTAyMDZaFw0yNTEyMTQwNTAyMDZaMBgxFjAUBgNV BAMTDTY5MzUwYTRmLWY1NTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDS5GQvvQMhg7R4Ooc6at2fJ5GIrzBrKaOg1vPapf0ooujvXZasZQHVzcRmr/Ra Pajm86sbMavtVrrohZk0acVTzbxFoWar02dbi0lCQz+zia39DaY8pSJOXuibmqE8 gY6M9uqHg8OJfhElF7/nxVZy/18ZvOtXNysxeRL6xs8Q1pPDctOhXq9I1Co2r81V NqYXzr7PyyLBc+n/OZKr1aNu/B7tGVBC+zFC7165yrtYRAnAc09EE3//p6pHrSwO ohzyENLgr5RzT3HOB20izFWy1lJTolFgerZebuffx+04NvSgP8Fy5jHmEigizqQo 2wxVIkevy6eJgK/+jPa/rgVDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbjO3QeAT 9S09zVCiRO7mZKxXS1owHwYDVR0jBBgwFoAU2QTVUsDvMvJJq6RZe9hKFe5VVcEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1RUQyL0YyNDVCMkQ2MzEx QjExRjBBMkY1MTE2MEM0RjlBRTAyLzJRVFZVc0R2TXZKSnE2UlplOWhLRmU1VlZj RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMlFUVlVzRHZNdkpKcTZSWmU5aEtGZTVWVmNFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 RUQyL0YyNDVCMkQ2MzExQjExRjBBMkY1MTE2MEM0RjlBRTAyLzJRVFZVc0R2TXZK SnE2UlplOWhLRmU1VlZjRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALCz1rxO6lP6gHxd+Z9nZoXLL2NBQdp01V4/j1DWC5eewbc5HsEdTYZK LNV4Sk2WXUkGmjKazTRDYxuIi8qnt0U9aHc31sFA2LNpr8f0Raj0u4uwJWdC18rm LkHIJqjQXSs70ouvuoNh5Kqe4uYQiVH6DPXzIIUfrjB+ft0uoVA3SdHSr5zpPe4q C0T5hNc7GxP2CCY9lpB2UqN7XzlRBJTWS2ILUl2nAH69lIxK2sjXvkYpkl4PKqyX xy31L1mOorh/vMaWCDZkChTZB6Ux7fmE9+viPiIcXuTe7NGMWP8nZ+Pm6cV8Ad8I txvZDPTTItsysxna+bXtWhLZIH+vUsM= -----END CERTIFICATE-----Generated at Sun Dec 7 13:59:26 2025 by rpki-client