This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.mft File: C2PmOl-jsuPMuZMOj2yM7MJFi0U.mft (raw, json) Hash identifier: rUAFjU6xtdGtbFp9nAKohiFI68alnTI6oioMu3p+EPg= Subject key identifier: 95:26:7A:BE:1C:28:EC:DC:C8:E1:3D:A2:9C:59:90:5D:57:AE:A9:3E Authority key identifier: 0B:63:E6:3A:5F:A3:B2:E3:CC:B9:93:0E:8F:6C:8C:EC:C2:45:8B:45 Certificate issuer: /CN=A91B43F4/serialNumber=0B63E63A5FA3B2E3CCB9930E8F6C8CECC2458B45 Certificate serial: 2512 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2PmOl-jsuPMuZMOj2yM7MJFi0U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.mft Manifest number: 24FC Signing time: Sat 06 Dec 2025 15:31:16 +0000 Manifest this update: Sat 06 Dec 2025 15:31:15 +0000 Manifest next update: Sat 13 Dec 2025 15:31:15 +0000 Files and hashes: 1: C2PmOl-jsuPMuZMOj2yM7MJFi0U.crl (hash: LeCrhoI4m732x94/kigF1DLHuSA1mMRbNgiBEiaBGbw=) 2: EBC23D9A041E11ECA959B779C4F9AE02.roa (hash: gjGyoU6UehPX0w4evr1O57YIj1TJSqlSY6y93UsHPOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.crl rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2PmOl-jsuPMuZMOj2yM7MJFi0U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:31:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9490 (0x2512) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B43F4, serialNumber=0B63E63A5FA3B2E3CCB9930E8F6C8CECC2458B45 Validity Not Before: Dec 6 15:31:15 2025 GMT Not After : Dec 13 15:31:15 2025 GMT Subject: CN=69344c44-fde0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c2:e1:b3:f2:85:bd:86:7b:68:e9:e7:68:54: 8e:6e:93:79:f4:31:bb:cc:89:5c:3c:4b:8e:11:dc: 96:d8:1d:40:2c:04:74:b3:58:4f:38:04:ef:f1:dc: 8c:9e:66:1e:65:93:ae:7c:22:22:6d:16:e3:ed:a5: 3a:12:65:6b:c2:a6:2d:1a:6b:d0:6e:9b:f8:09:bc: 4d:e0:26:01:9c:22:dd:10:3b:01:84:be:7a:3f:c1: 33:b0:a4:58:5e:3f:2b:07:b5:31:a2:33:1f:a4:df: 6c:f7:ff:e1:1a:8b:ea:03:93:8a:96:4f:43:a5:61: 9f:b9:22:dd:59:ef:3f:33:dc:d4:86:af:08:6c:07: eb:a0:df:8b:03:a9:68:af:e8:e6:fd:54:70:78:6c: 16:34:17:e8:b8:bb:80:89:9a:65:41:d3:b1:ff:d2: 87:08:c5:81:d0:71:dc:60:d1:50:85:f0:31:23:4f: b8:91:29:7a:e7:cf:5b:d3:93:c7:e8:55:be:b7:ea: ad:1a:04:2c:ff:40:75:fe:ce:30:78:77:de:c1:78: cf:dd:95:44:fe:ed:68:97:32:41:2d:c6:a0:61:e9: 68:da:37:cd:50:ba:ad:46:d6:e3:68:c0:aa:c0:32: 7e:13:d0:28:d0:a9:50:87:84:38:1d:8b:f3:25:ad: 93:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:26:7A:BE:1C:28:EC:DC:C8:E1:3D:A2:9C:59:90:5D:57:AE:A9:3E X509v3 Authority Key Identifier: keyid:0B:63:E6:3A:5F:A3:B2:E3:CC:B9:93:0E:8F:6C:8C:EC:C2:45:8B:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2PmOl-jsuPMuZMOj2yM7MJFi0U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:e9:58:9b:b4:1a:cf:67:71:9e:45:a2:56:65:ac:c6:cd:b9: d3:d7:9c:6f:03:32:71:f4:cc:16:00:a4:4a:4e:50:31:59:fe: 0a:63:d1:05:c1:5a:f7:7e:52:52:a1:74:32:cd:b4:42:52:18: 01:24:b7:cc:53:b8:7c:ec:fc:f7:7b:ae:11:85:77:d8:ef:f7: 2c:1e:4d:75:35:16:bf:09:9a:9e:5a:41:d1:78:d1:d6:29:bb: 08:e1:64:a5:c8:d4:3c:8a:35:c6:c2:7b:ab:91:df:27:57:27: fe:1a:7a:1e:d6:33:f7:2f:f9:73:9c:4c:26:d2:9e:84:0c:e3: 3b:38:a6:7a:ba:d2:62:fe:ad:32:9f:32:b1:78:37:aa:e3:97: 82:01:7a:53:65:0f:38:f5:b3:68:aa:f2:64:fe:9c:aa:0a:03: c1:29:c2:4a:60:3d:c1:01:94:a4:5d:49:1c:79:63:ff:17:8e: 6e:9d:68:86:6b:66:37:e7:d2:ed:f2:69:4c:f2:36:aa:ff:99: b4:4e:f5:9d:cc:24:7a:f9:e8:c6:c9:ae:ef:6b:2b:5a:2a:33: 1a:bd:5a:0d:ca:a6:6a:a6:83:60:13:0b:71:6a:53:54:29:95: 81:28:4b:48:02:4f:10:15:55:db:7c:7e:c0:c3:59:0e:6f:3c: e4:32:f7:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJRIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzRjQxMTAvBgNVBAUTKDBCNjNFNjNBNUZBM0IyRTNDQ0I5OTMwRThGNkM4Q0VD QzI0NThCNDUwHhcNMjUxMjA2MTUzMTE1WhcNMjUxMjEzMTUzMTE1WjAYMRYwFAYD VQQDEw02OTM0NGM0NC1mZGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtsLhs/KFvYZ7aOnnaFSObpN59DG7zIlcPEuOEdyW2B1ALAR0s1hPOATv8dyM nmYeZZOufCIibRbj7aU6EmVrwqYtGmvQbpv4CbxN4CYBnCLdEDsBhL56P8EzsKRY Xj8rB7UxojMfpN9s9//hGovqA5OKlk9DpWGfuSLdWe8/M9zUhq8IbAfroN+LA6lo r+jm/VRweGwWNBfouLuAiZplQdOx/9KHCMWB0HHcYNFQhfAxI0+4kSl6589b05PH 6FW+t+qtGgQs/0B1/s4weHfewXjP3ZVE/u1olzJBLcagYelo2jfNULqtRtbjaMCq wDJ+E9Ao0KlQh4Q4HYvzJa2TbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJUmer4c KOzcyOE9opxZkF1Xrqk+MB8GA1UdIwQYMBaAFAtj5jpfo7LjzLmTDo9sjOzCRYtF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDNGNC8xN0FDMkE3MDQx OUMxMUU1ODM1RkQxODNDNEY5QUUwMi9DMlBtT2wtanN1UE11Wk1PajJ5TTdNSkZp MFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MyUG1PbC1qc3VQTXVaTU9qMnlNN01KRmkwVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDNGNC8xN0FDMkE3MDQxOUMxMUU1ODM1RkQxODNDNEY5QUUwMi9DMlBtT2wtanN1 UE11Wk1PajJ5TTdNSkZpMFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/6VibtBrPZ3GeRaJWZazGzbnT15xvAzJx9MwWAKRKTlAxWf4KY9EF wVr3flJSoXQyzbRCUhgBJLfMU7h87Pz3e64RhXfY7/csHk11NRa/CZqeWkHReNHW KbsI4WSlyNQ8ijXGwnurkd8nVyf+Gnoe1jP3L/lznEwm0p6EDOM7OKZ6utJi/q0y nzKxeDeq45eCAXpTZQ849bNoqvJk/pyqCgPBKcJKYD3BAZSkXUkceWP/F45unWiG a2Y359Lt8mlM8jaq/5m0TvWdzCR6+ejGya7vaytaKjMavVoNyqZqpoNgEwtxalNU KZWBKEtIAk8QFVXbfH7Aw1kObzzkMvfj -----END CERTIFICATE-----Generated at Mon Dec 8 06:07:39 2025 by rpki-client