This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft File: 2gNU-zgfRSHBCxY-y9IqCD-3omw.mft (raw, json) Hash identifier: Rg9o54wf70pFzfNTnMNj8DyMnKxwGlQyBRSb7YcjeLY= Subject key identifier: 9F:72:18:6C:19:8E:9A:F9:AD:71:09:10:FF:BF:CA:3E:90:DB:14:1E Authority key identifier: DA:03:54:FB:38:1F:45:21:C1:0B:16:3E:CB:D2:2A:08:3F:B7:A2:6C Certificate issuer: /CN=A91B2CDA/serialNumber=DA0354FB381F4521C10B163ECBD22A083FB7A26C Certificate serial: 1653 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft Manifest number: 1642 Signing time: Wed 24 Dec 2025 16:30:49 +0000 Manifest this update: Wed 24 Dec 2025 16:30:48 +0000 Manifest next update: Wed 31 Dec 2025 16:30:48 +0000 Files and hashes: 1: 2gNU-zgfRSHBCxY-y9IqCD-3omw.crl (hash: 8irLmQdBmEBdtabh8lQZRuR779kbp+7ImD51NUbv4s4=) 2: 7F3ED5DE9C4411ECBD85CE4FC4F9AE02.roa (hash: IzneJg8uANhMNifeTA7mpjTNJJeW/3cdEs9nqqZnnZs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.crl rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5715 (0x1653) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2CDA, serialNumber=DA0354FB381F4521C10B163ECBD22A083FB7A26C Validity Not Before: Dec 24 16:30:48 2025 GMT Not After : Dec 31 16:30:48 2025 GMT Subject: CN=694c1539-b211 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:db:3b:08:60:4b:bb:d0:27:c7:e2:a5:04:78: 1f:9d:4a:99:5d:6a:1a:a7:4c:1a:4e:8f:fa:9f:a6: e6:da:0a:c1:8d:07:a9:2f:64:a7:2f:89:35:b6:a8: 35:a9:86:f2:40:ae:1f:cf:ed:b5:db:af:38:46:55: e7:fe:a4:80:64:3d:6d:af:b5:95:b0:94:52:d7:2e: d8:5e:83:36:1a:33:83:b9:b5:c6:52:94:3a:89:5f: 86:99:6b:49:82:8b:bf:27:4f:b3:df:25:68:ee:8f: 88:f2:1e:ee:b9:70:05:97:ba:f1:90:aa:ff:4c:7c: f8:2d:be:0c:c2:c8:1e:63:8b:a9:6b:ed:fb:40:7b: d2:8e:8e:5f:f9:82:8e:71:18:fc:a8:f1:81:0d:5c: 0f:58:8f:cf:8f:a0:66:ba:a4:a4:54:fb:07:55:ec: 7f:b4:ac:c3:59:dc:14:28:63:d7:a9:4e:d2:ca:e5: f6:5e:82:6f:01:4b:59:5a:b1:7c:4c:bd:1a:d5:7e: 2d:55:38:82:03:1f:84:45:73:1f:d6:53:6c:99:7b: 84:db:0c:20:7d:f0:11:7d:d9:23:06:84:bb:fb:89: 92:82:92:4d:53:75:1f:b9:31:38:4a:67:01:cc:8a: dc:cd:4f:73:f6:cf:be:b2:8c:74:7c:e8:6e:80:eb: d0:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:72:18:6C:19:8E:9A:F9:AD:71:09:10:FF:BF:CA:3E:90:DB:14:1E X509v3 Authority Key Identifier: keyid:DA:03:54:FB:38:1F:45:21:C1:0B:16:3E:CB:D2:2A:08:3F:B7:A2:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:ac:b8:85:ef:d0:f7:e2:38:0c:e8:0d:af:12:42:67:f3:37: d1:02:3b:6e:b4:22:19:04:93:a1:cc:32:59:9a:42:23:44:4d: 05:8b:05:eb:a4:f5:6d:01:e0:83:73:52:cf:88:85:38:40:50: be:3f:f9:3e:91:56:ba:2b:07:d7:84:85:42:5e:26:d0:5f:f3: 82:7a:41:68:74:eb:8e:aa:5f:e3:f7:35:07:50:c7:e9:a8:16: ec:20:f3:a0:83:2f:32:42:11:d5:fc:08:b0:fa:56:ef:d0:19: e4:f8:18:8f:21:7d:fd:be:a2:2b:46:86:e8:d2:75:e7:6e:be: 17:b0:19:5f:04:71:f7:80:1a:8d:22:e8:2d:dc:42:88:0d:12: 2d:f6:16:47:93:dd:ba:20:13:74:7f:dd:e4:a1:a1:c1:5f:c9: 09:13:e8:de:8a:97:a0:54:1d:b6:df:f0:ab:b2:46:cb:c6:38: 56:8b:c2:8f:fe:3a:37:73:26:6b:5a:23:15:73:70:bb:ec:41: 89:ed:b5:9a:aa:de:34:7d:0b:1d:73:91:72:68:e9:a1:43:1c: 02:0d:90:99:66:4a:d3:57:03:4a:50:22:08:65:a8:e9:27:c9: 9c:d3:b3:32:87:35:53:7d:46:fb:24:f0:88:e4:56:c7:1e:91: e8:39:d5:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJDREExMTAvBgNVBAUTKERBMDM1NEZCMzgxRjQ1MjFDMTBCMTYzRUNCRDIyQTA4 M0ZCN0EyNkMwHhcNMjUxMjI0MTYzMDQ4WhcNMjUxMjMxMTYzMDQ4WjAYMRYwFAYD VQQDDA02OTRjMTUzOS1iMjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmNs7CGBLu9Anx+KlBHgfnUqZXWoap0waTo/6n6bm2grBjQepL2SnL4k1tqg1 qYbyQK4fz+212684RlXn/qSAZD1tr7WVsJRS1y7YXoM2GjODubXGUpQ6iV+GmWtJ gou/J0+z3yVo7o+I8h7uuXAFl7rxkKr/THz4Lb4MwsgeY4upa+37QHvSjo5f+YKO cRj8qPGBDVwPWI/Pj6BmuqSkVPsHVex/tKzDWdwUKGPXqU7SyuX2XoJvAUtZWrF8 TL0a1X4tVTiCAx+ERXMf1lNsmXuE2wwgffARfdkjBoS7+4mSgpJNU3UfuTE4SmcB zIrczU9z9s++sox0fOhugOvQbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ9yGGwZ jpr5rXEJEP+/yj6Q2xQeMB8GA1UdIwQYMBaAFNoDVPs4H0UhwQsWPsvSKgg/t6Js MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkNEQS9GNEUyQkFCODI1 QzMxMUU4QTA3MTRBMzRDNEY5QUUwMi8yZ05VLXpnZlJTSEJDeFkteTlJcUNELTNv bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnTlUtemdmUlNIQkN4WS15OUlxQ0QtM29tdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkNEQS9GNEUyQkFCODI1QzMxMUU4QTA3MTRBMzRDNEY5QUUwMi8yZ05VLXpnZlJT SEJDeFkteTlJcUNELTNvbXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcrLiF79D34jgM6A2vEkJn8zfRAjtutCIZBJOhzDJZmkIjRE0FiwXr pPVtAeCDc1LPiIU4QFC+P/k+kVa6KwfXhIVCXibQX/OCekFodOuOql/j9zUHUMfp qBbsIPOggy8yQhHV/Aiw+lbv0Bnk+BiPIX39vqIrRobo0nXnbr4XsBlfBHH3gBqN Iugt3EKIDRIt9hZHk926IBN0f93koaHBX8kJE+jeipegVB223/CrskbLxjhWi8KP /jo3cyZrWiMVc3C77EGJ7bWaqt40fQsdc5FyaOmhQxwCDZCZZkrTVwNKUCIIZajp J8mc07MyhzVTfUb7JPCI5FbHHpHoOdXf -----END CERTIFICATE-----Generated at Wed Dec 24 19:32:26 2025 by rpki-client