This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft File: 2gE-F4NYyzWot2XJvAkK6c8cT74.mft (raw, json) Hash identifier: zztzAmg7yfvFTKpIxtFfVnzKUqHuxKhrg9JD20Tabc4= Subject key identifier: C5:A3:BF:31:BF:D1:1D:44:E8:8C:FA:C0:EF:1C:CF:D7:BA:0F:5E:B3 Authority key identifier: DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE Certificate issuer: /CN=A91B2C88/serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE Certificate serial: 06A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft Manifest number: 069C Signing time: Mon 22 Dec 2025 21:37:53 +0000 Manifest this update: Mon 22 Dec 2025 21:37:52 +0000 Manifest next update: Mon 29 Dec 2025 21:37:52 +0000 Files and hashes: 1: 2gE-F4NYyzWot2XJvAkK6c8cT74.crl (hash: oEtK5TF1yL5mIMgJQ1f52ILyrav8mMr06/Cw3Lx6eHA=) 2: 3C5E55F041A411ECA73C8C0EC4F9AE02.roa (hash: X9cvrVuJPpabRIeX9DHncrs9qYYqY20P3gqoMKcfrPs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:37:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1701 (0x6a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2C88, serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE Validity Not Before: Dec 22 21:37:52 2025 GMT Not After : Dec 29 21:37:52 2025 GMT Subject: CN=6949ba31-20c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:7d:37:cc:1c:ee:08:2c:2e:2f:1f:0d:50:2b: d1:16:b9:c8:ff:58:3b:f2:e7:35:06:49:c7:3c:27: 31:1e:16:9e:ad:cb:e7:d8:72:05:64:8e:4e:dd:48: 78:5f:be:2f:83:2e:50:3c:c2:51:5f:38:03:a9:f0: 07:93:85:23:dc:39:b7:54:7c:ac:97:df:4c:3e:bb: 60:0c:1a:14:3b:ab:9d:68:a9:f0:c4:5f:87:84:af: fd:4d:1a:ae:d4:68:ac:ef:a6:e7:bd:3c:69:fc:c0: 77:2b:4c:4c:cc:09:7b:fb:1e:38:b2:e9:db:1a:7e: 14:e0:43:8e:a8:ec:f9:25:7a:d6:df:1a:dd:a3:9e: 34:9d:07:96:49:0b:a8:f4:6d:8a:1c:9e:ec:93:49: a7:a6:0a:22:30:c2:1f:d3:14:8e:15:58:f1:4f:62: 30:6b:18:6c:64:74:7d:7d:f0:b8:5c:78:73:e6:e4: 13:06:9c:7a:56:e4:62:67:5a:91:e6:0c:fd:6c:2f: 9d:d0:2d:1b:b3:40:a9:c8:dc:78:a4:fd:4f:d4:ad: eb:63:3f:43:55:0f:53:df:d0:20:b3:99:ca:5e:ad: f2:e4:18:53:c6:89:b5:af:2d:c3:a7:59:0a:f9:7b: 6c:f8:4c:92:08:63:35:df:46:08:f5:e7:a6:c6:32: 80:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:A3:BF:31:BF:D1:1D:44:E8:8C:FA:C0:EF:1C:CF:D7:BA:0F:5E:B3 X509v3 Authority Key Identifier: keyid:DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:11:44:a3:12:52:a6:8d:bb:3f:3b:db:b9:2f:de:d8:7d:46: 59:28:5d:9c:0b:fe:3a:59:d8:e6:e1:2d:97:2f:cd:9c:c9:26: b7:50:0e:c9:19:f1:c4:86:73:78:15:ed:f1:60:ab:94:89:51: 9a:72:c2:59:93:67:c6:73:35:80:a7:10:09:d9:b1:5b:f5:1f: 23:47:2a:42:b6:a9:b1:18:2f:61:0f:b3:fa:d0:65:a1:0f:79: a3:cc:fb:77:de:c5:1f:58:aa:c2:3f:8a:c0:d8:f3:09:85:ae: f2:5e:2a:dc:9b:d8:6c:85:fb:61:44:da:fb:81:2a:c4:52:69: 62:74:99:03:47:41:9c:12:44:b8:98:41:cf:36:44:ae:db:d6: f5:c1:0d:0d:01:91:0a:98:b1:e1:2d:a5:a5:41:d0:a4:e1:9b: 48:5c:93:a4:f4:8e:a8:89:e1:42:94:07:eb:1b:ba:58:b1:7d: d3:3b:b1:07:67:da:9c:74:c0:e6:51:c4:24:0a:83:07:6d:d2: f5:47:99:a7:ae:ac:c2:e2:5a:cc:06:4d:5f:eb:5c:1a:d5:8f: 5d:96:ff:6d:60:2d:d2:29:88:f2:92:5f:e0:d2:69:c3:02:26: 38:8b:c7:a5:51:b8:8e:ad:1f:66:32:fe:ce:f3:fb:15:87:a1: c4:db:8f:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJDODgxMTAvBgNVBAUTKERBMDEzRTE3ODM1OENCMzVBOEI3NjVDOUJDMDkwQUU5 Q0YxQzRGQkUwHhcNMjUxMjIyMjEzNzUyWhcNMjUxMjI5MjEzNzUyWjAYMRYwFAYD VQQDDA02OTQ5YmEzMS0yMGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyn03zBzuCCwuLx8NUCvRFrnI/1g78uc1BknHPCcxHhaercvn2HIFZI5O3Uh4 X74vgy5QPMJRXzgDqfAHk4Uj3Dm3VHysl99MPrtgDBoUO6udaKnwxF+HhK/9TRqu 1Gis76bnvTxp/MB3K0xMzAl7+x44sunbGn4U4EOOqOz5JXrW3xrdo540nQeWSQuo 9G2KHJ7sk0mnpgoiMMIf0xSOFVjxT2IwaxhsZHR9ffC4XHhz5uQTBpx6VuRiZ1qR 5gz9bC+d0C0bs0CpyNx4pP1P1K3rYz9DVQ9T39Ags5nKXq3y5BhTxom1ry3Dp1kK +Xts+EySCGM130YI9eemxjKAoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMWjvzG/ 0R1E6Iz6wO8cz9e6D16zMB8GA1UdIwQYMBaAFNoBPheDWMs1qLdlybwJCunPHE++ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkM4OC8yNDI5OURDQTk3 OEUxMUVCQkQ4MUIwNTVDNEY5QUUwMi8yZ0UtRjROWXl6V290MlhKdkFrSzZjOGNU NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnRS1GNE5ZeXpXb3QyWEp2QWtLNmM4Y1Q3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkM4OC8yNDI5OURDQTk3OEUxMUVCQkQ4MUIwNTVDNEY5QUUwMi8yZ0UtRjROWXl6 V290MlhKdkFrSzZjOGNUNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwEUSjElKmjbs/O9u5L97YfUZZKF2cC/46Wdjm4S2XL82cySa3UA7J GfHEhnN4Fe3xYKuUiVGacsJZk2fGczWApxAJ2bFb9R8jRypCtqmxGC9hD7P60GWh D3mjzPt33sUfWKrCP4rA2PMJha7yXircm9hshfthRNr7gSrEUmlidJkDR0GcEkS4 mEHPNkSu29b1wQ0NAZEKmLHhLaWlQdCk4ZtIXJOk9I6oieFClAfrG7pYsX3TO7EH Z9qcdMDmUcQkCoMHbdL1R5mnrqzC4lrMBk1f61wa1Y9dlv9tYC3SKYjykl/g0mnD AiY4i8elUbiOrR9mMv7O8/sVh6HE24/C -----END CERTIFICATE-----Generated at Wed Dec 24 19:33:03 2025 by rpki-client