This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.mft File: 2r-ztZ99cW_VLUWnQa8Vmvfq97o.mft (raw, json) Hash identifier: pYguZdJhZBwNk0fvpNtSm5g5T/8SplPwdv1PD/eiAC0= Subject key identifier: 68:75:F2:07:A4:35:E2:02:D7:F6:BB:60:30:1D:89:94:AD:2D:EB:94 Authority key identifier: DA:BF:B3:B5:9F:7D:71:6F:D5:2D:45:A7:41:AF:15:9A:F7:EA:F7:BA Certificate issuer: /CN=A91AEAE7/serialNumber=DABFB3B59F7D716FD52D45A741AF159AF7EAF7BA Certificate serial: 06C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2r-ztZ99cW_VLUWnQa8Vmvfq97o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.mft Manifest number: 06A8 Signing time: Mon 08 Dec 2025 21:09:33 +0000 Manifest this update: Mon 08 Dec 2025 21:09:33 +0000 Manifest next update: Mon 15 Dec 2025 21:09:33 +0000 Files and hashes: 1: 2r-ztZ99cW_VLUWnQa8Vmvfq97o.crl (hash: q7mZUuJTv2Dr4kFBmtX6QEXDlRsDOQqP2c5pZ+QoIR8=) 2: 0A7BC528913611EBBD9B811AC4F9AE02.roa (hash: DKoblK5lkDlg393T5vUSz/bUNAmg6kRhnho0GJWAXGo=) 3: 09A1853E913611EBBD9B811AC4F9AE02.roa (hash: QfTXksLsnvWn2u6qVVyuZrMLJTunajCx7VZ4v7hk3x8=) 4: 8A345D2891A111EB87E23C38C4F9AE02.roa (hash: PJBGucBNe+y5CEoelo9yZQl/uFHtEEbEgNPmtVFCuUI=) 5: 08DCE5BC913611EBBD9B811AC4F9AE02.roa (hash: ouNUkoSY8dwG8BI8+dkSNATBcxm08nNGfTAfHpRe5eA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.crl rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2r-ztZ99cW_VLUWnQa8Vmvfq97o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Dec 2025 21:09:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1736 (0x6c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEAE7, serialNumber=DABFB3B59F7D716FD52D45A741AF159AF7EAF7BA Validity Not Before: Dec 8 21:09:33 2025 GMT Not After : Dec 15 21:09:33 2025 GMT Subject: CN=69373e8d-0725 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:37:ed:94:6f:c1:2e:44:86:a6:af:df:dd:ef: 25:08:0e:d1:5e:96:e6:e7:82:44:fa:e1:57:f3:c6: 44:b1:01:90:66:b9:d1:61:e0:99:66:c6:c5:73:b8: b7:87:29:2b:50:94:8e:a0:cb:60:14:32:78:4d:d0: 47:79:07:d7:fd:d9:96:5a:2c:a1:36:07:1b:c1:3d: 07:32:24:b5:75:db:5f:fb:cb:45:6c:be:fe:f9:5f: 5a:39:48:de:2c:6c:74:af:25:e8:a3:7a:d6:1c:bf: 82:90:bd:73:a8:3d:55:b5:1c:2d:6b:a0:62:d8:9f: 34:27:ed:bb:77:05:a4:b6:21:e2:1c:ec:c0:20:c0: 4a:bf:bb:38:1f:38:dd:f2:c1:0c:b5:c4:83:87:31: 14:06:c9:8b:0a:ae:b9:74:26:48:71:98:89:1e:1e: 97:c7:0c:94:36:c6:8f:01:d2:2d:1d:72:14:2d:f3: 87:b0:43:97:e1:6b:9e:50:72:36:f2:ab:25:77:45: 4b:b5:4a:98:ac:c1:1f:e0:61:2c:c8:56:6d:35:fe: 7b:a3:43:7d:7d:a9:56:94:9f:68:12:a2:b6:cd:8c: c4:fb:6d:a3:39:5d:89:43:02:5a:3e:23:fc:af:5b: 40:22:55:c2:ca:4d:db:2e:d4:75:1f:3f:dd:91:6c: b5:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:75:F2:07:A4:35:E2:02:D7:F6:BB:60:30:1D:89:94:AD:2D:EB:94 X509v3 Authority Key Identifier: keyid:DA:BF:B3:B5:9F:7D:71:6F:D5:2D:45:A7:41:AF:15:9A:F7:EA:F7:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2r-ztZ99cW_VLUWnQa8Vmvfq97o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:5d:51:14:6f:44:ed:62:aa:b3:c6:f9:15:e0:08:47:e0:8e: ff:36:1a:60:47:70:e2:75:ee:9f:83:22:c1:89:db:b9:34:c2: 30:39:c0:cf:76:68:1b:1d:12:d3:3b:b3:82:4c:59:34:3d:cf: d7:39:30:35:58:3b:31:e9:bc:bf:4d:47:e1:e4:6a:95:16:92: 39:40:62:45:9f:a8:96:d6:91:ec:44:70:c0:5f:d5:28:a4:ef: 87:b6:6e:09:e2:c8:2f:69:8c:e8:fa:99:9b:d3:e3:74:2f:97: c5:6c:1b:4a:d0:f6:74:82:2e:ac:87:4c:44:b8:73:c3:e5:f2: b0:fa:b6:6a:68:2e:cf:0f:a8:5a:96:a8:6f:05:7c:ef:1e:22: c7:6b:a5:01:8a:4b:71:24:c2:2a:9c:bf:7e:7b:f6:7e:61:fe: fd:a7:98:18:b9:57:93:1a:41:62:75:c9:6f:43:fc:18:3a:02: 47:47:5f:0a:9e:d1:f8:c0:11:2b:82:a6:91:16:5c:a9:c0:96: 36:3a:40:67:ac:fc:0c:98:eb:8e:e3:6f:33:5c:c4:e1:b2:1a: df:91:d2:ab:0a:af:d4:69:25:e3:49:55:bb:81:7a:2a:f8:c4: 76:aa:9b:37:4f:7e:e5:86:db:5f:cd:e6:2a:c8:b6:d1:9f:90: 59:71:3a:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVBRTcxMTAvBgNVBAUTKERBQkZCM0I1OUY3RDcxNkZENTJENDVBNzQxQUYxNTlB RjdFQUY3QkEwHhcNMjUxMjA4MjEwOTMzWhcNMjUxMjE1MjEwOTMzWjAYMRYwFAYD VQQDEw02OTM3M2U4ZC0wNzI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApTftlG/BLkSGpq/f3e8lCA7RXpbm54JE+uFX88ZEsQGQZrnRYeCZZsbFc7i3 hykrUJSOoMtgFDJ4TdBHeQfX/dmWWiyhNgcbwT0HMiS1ddtf+8tFbL7++V9aOUje LGx0ryXoo3rWHL+CkL1zqD1VtRwta6Bi2J80J+27dwWktiHiHOzAIMBKv7s4Hzjd 8sEMtcSDhzEUBsmLCq65dCZIcZiJHh6XxwyUNsaPAdItHXIULfOHsEOX4WueUHI2 8qsld0VLtUqYrMEf4GEsyFZtNf57o0N9falWlJ9oEqK2zYzE+22jOV2JQwJaPiP8 r1tAIlXCyk3bLtR1Hz/dkWy1jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGh18gek NeIC1/a7YDAdiZStLeuUMB8GA1UdIwQYMBaAFNq/s7WffXFv1S1Fp0GvFZr36ve6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUFFNy9FMTgyNTc5Njkw RjMxMUVCOUQyRTBFNEZDNEY5QUUwMi8yci16dFo5OWNXX1ZMVVduUWE4Vm12ZnE5 N28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJyLXp0Wjk5Y1dfVkxVV25RYThWbXZmcTk3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RUFFNy9FMTgyNTc5NjkwRjMxMUVCOUQyRTBFNEZDNEY5QUUwMi8yci16dFo5OWNX X1ZMVVduUWE4Vm12ZnE5N28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7XVEUb0TtYqqzxvkV4AhH4I7/NhpgR3Dide6fgyLBidu5NMIwOcDP dmgbHRLTO7OCTFk0Pc/XOTA1WDsx6by/TUfh5GqVFpI5QGJFn6iW1pHsRHDAX9Uo pO+Htm4J4sgvaYzo+pmb0+N0L5fFbBtK0PZ0gi6sh0xEuHPD5fKw+rZqaC7PD6ha lqhvBXzvHiLHa6UBiktxJMIqnL9+e/Z+Yf79p5gYuVeTGkFidclvQ/wYOgJHR18K ntH4wBErgqaRFlypwJY2OkBnrPwMmOuO428zXMThshrfkdKrCq/UaSXjSVW7gXoq +MR2qps3T37lhttfzeYqyLbRn5BZcTqK -----END CERTIFICATE-----Generated at Wed Dec 10 05:07:03 2025 by rpki-client