This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft File: 2fwVW2_aEGxpmlabEgOEkJWKoy8.mft (raw, json) Hash identifier: RGRYBh1UK1Peu4HJST50sE+vUwBVmoflmrcp9Hr+hw4= Subject key identifier: C2:2E:99:A4:C2:5E:74:87:69:6B:49:E7:C7:13:E2:D1:F0:2C:7D:91 Authority key identifier: D9:FC:15:5B:6F:DA:10:6C:69:9A:56:9B:12:03:84:90:95:8A:A3:2F Certificate issuer: /CN=A91B53A5/serialNumber=D9FC155B6FDA106C699A569B12038490958AA32F Certificate serial: 1AB9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft Manifest number: 1A9E Signing time: Wed 24 Dec 2025 16:07:59 +0000 Manifest this update: Wed 24 Dec 2025 16:07:59 +0000 Manifest next update: Wed 31 Dec 2025 16:07:59 +0000 Files and hashes: 1: 2fwVW2_aEGxpmlabEgOEkJWKoy8.crl (hash: uZKuTby2hFLjv+Ew6TvBo2O/O2lbJD48fnN2Do9ekbQ=) 2: A9286C0E6D4411E7AF539270C4F9AE02.roa (hash: BhjSntJM5KeISAX/AXFVMKFsUVqLH2ibjtVSQJsKXQw=) 3: C443D86A55A311E7896BED09C4F9AE02.roa (hash: iAz8qRk3/H7vOgPRojw19iFmTjtRy8EuUxq8QG7UtTs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.crl rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 16:07:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6841 (0x1ab9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B53A5, serialNumber=D9FC155B6FDA106C699A569B12038490958AA32F Validity Not Before: Dec 24 16:07:59 2025 GMT Not After : Dec 31 16:07:59 2025 GMT Subject: CN=694c0fdf-13e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:1a:ac:9e:a1:46:04:27:7d:28:4f:3c:8d:43: 7a:fb:35:89:9b:12:87:5a:ba:ca:b6:f3:d4:75:3e: 24:53:fd:93:5b:f1:07:f5:49:44:55:71:77:81:e7: 43:3a:13:01:80:8e:4e:ac:1c:c6:c8:b2:9f:07:15: 4b:05:37:a4:e0:95:85:74:bb:a1:c6:85:e3:53:05: 90:40:56:c4:70:e7:9e:9b:75:67:73:da:cb:24:2a: d7:85:33:fb:38:2a:d9:f7:da:2f:f1:c2:a7:2f:7a: 36:2e:f0:57:fb:b7:d9:43:06:1a:73:9f:b2:25:d8: 9b:94:47:6e:8e:94:2e:40:5b:26:b0:56:93:2c:fa: 30:b6:b8:9c:1b:18:b6:64:4b:7f:02:8b:dc:e9:7f: 1f:d7:4a:62:cd:1f:cf:bd:6f:16:7d:07:c9:e1:3a: 32:86:c4:7c:c2:77:a5:9d:c0:3a:5f:c1:f2:9b:15: 4f:37:d0:da:59:d5:7f:b2:89:d5:25:c1:95:e3:b4: 2a:60:b9:83:8f:3c:e7:72:3f:56:d2:65:ba:24:2c: d0:5b:9d:12:b3:9c:9d:32:5e:81:f4:72:10:0e:40: 22:ae:5d:12:b7:e3:36:86:e8:8c:76:c2:79:18:a7: f8:53:1d:2a:0b:56:ab:79:e2:a0:1e:e4:fd:02:bd: 32:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:2E:99:A4:C2:5E:74:87:69:6B:49:E7:C7:13:E2:D1:F0:2C:7D:91 X509v3 Authority Key Identifier: keyid:D9:FC:15:5B:6F:DA:10:6C:69:9A:56:9B:12:03:84:90:95:8A:A3:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dc:15:d9:f3:31:9e:aa:a6:df:d6:30:46:4a:c2:85:46:37:c6: 7b:6f:46:28:44:0a:cb:21:32:aa:31:a4:67:14:56:bc:b4:86: e7:17:9a:a4:4a:d0:7f:0c:33:3d:33:98:d5:5b:0f:5a:f9:f7: 23:06:03:d8:78:3d:cb:08:f9:6e:b6:22:f4:de:63:16:61:11: 9a:b6:71:e4:d2:03:0c:37:a6:a8:c7:ce:20:34:0e:2e:50:e0: 0c:12:cf:2e:97:5e:2a:02:8e:2f:0e:a6:47:e9:51:14:e3:1d: 02:e5:57:18:7f:eb:92:b6:80:d3:1a:59:0a:c9:90:eb:53:3c: b8:b7:8d:a5:8c:82:64:fa:c7:e2:3f:fb:13:f8:f1:60:a3:0c: 52:9c:84:2a:74:59:4a:ac:e3:ed:4d:e2:c5:c7:3c:16:de:55: 46:3a:dd:50:e3:0c:72:7c:3a:0c:aa:66:41:d8:a3:6a:97:3f: 0e:5d:46:38:a1:bb:ad:fb:80:13:47:68:7c:b1:43:a8:8e:a1: 42:f7:5a:27:69:c7:5e:7d:54:04:63:2e:44:47:cd:a8:24:53: ff:6b:17:11:18:cd:f0:3e:6d:6f:71:6a:a6:33:29:8c:8f:05: 75:14:bd:b3:e8:9c:68:e3:3d:0a:53:bf:7a:19:b2:cd:6f:e6: f8:7f:10:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGrkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjUzQTUxMTAvBgNVBAUTKEQ5RkMxNTVCNkZEQTEwNkM2OTlBNTY5QjEyMDM4NDkw OTU4QUEzMkYwHhcNMjUxMjI0MTYwNzU5WhcNMjUxMjMxMTYwNzU5WjAYMRYwFAYD VQQDDA02OTRjMGZkZi0xM2U3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+hqsnqFGBCd9KE88jUN6+zWJmxKHWrrKtvPUdT4kU/2TW/EH9UlEVXF3gedD OhMBgI5OrBzGyLKfBxVLBTek4JWFdLuhxoXjUwWQQFbEcOeem3Vnc9rLJCrXhTP7 OCrZ99ov8cKnL3o2LvBX+7fZQwYac5+yJdiblEdujpQuQFsmsFaTLPowtricGxi2 ZEt/Aovc6X8f10pizR/PvW8WfQfJ4ToyhsR8wnelncA6X8HymxVPN9DaWdV/sonV JcGV47QqYLmDjzzncj9W0mW6JCzQW50Ss5ydMl6B9HIQDkAirl0St+M2huiMdsJ5 GKf4Ux0qC1areeKgHuT9Ar0yWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMIumaTC XnSHaWtJ58cT4tHwLH2RMB8GA1UdIwQYMBaAFNn8FVtv2hBsaZpWmxIDhJCViqMv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTNBNS8yNTgwQThENjRC NjUxMUU3QjQ2OUMwN0FDNEY5QUUwMi8yZndWVzJfYUVHeHBtbGFiRWdPRWtKV0tv eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJmd1ZXMl9hRUd4cG1sYWJFZ09Fa0pXS295OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTNBNS8yNTgwQThENjRCNjUxMUU3QjQ2OUMwN0FDNEY5QUUwMi8yZndWVzJfYUVH eHBtbGFiRWdPRWtKV0tveTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDcFdnzMZ6qpt/WMEZKwoVGN8Z7b0YoRArLITKqMaRnFFa8tIbnF5qk StB/DDM9M5jVWw9a+fcjBgPYeD3LCPlutiL03mMWYRGatnHk0gMMN6aox84gNA4u UOAMEs8ul14qAo4vDqZH6VEU4x0C5VcYf+uStoDTGlkKyZDrUzy4t42ljIJk+sfi P/sT+PFgowxSnIQqdFlKrOPtTeLFxzwW3lVGOt1Q4wxyfDoMqmZB2KNqlz8OXUY4 obut+4ATR2h8sUOojqFC91onacdefVQEYy5ER82oJFP/axcRGM3wPm1vcWqmMymM jwV1FL2z6Jxo4z0KU796GbLNb+b4fxDB -----END CERTIFICATE-----Generated at Wed Dec 24 19:33:17 2025 by rpki-client