This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft File: 2cZrDkILkTQXPVU9FqoLFGt3R3M.mft (raw, json) Hash identifier: 223vCoKHfgcj0ECLWw4dN0JCf4etEx/upoefxBRqyXY= Subject key identifier: 88:12:0F:2B:50:CF:D7:55:7A:C1:E5:10:4C:89:DF:2F:4B:64:F3:E9 Authority key identifier: D9:C6:6B:0E:42:0B:91:34:17:3D:55:3D:16:AA:0B:14:6B:77:47:73 Certificate issuer: /CN=A91B9B0D/serialNumber=D9C66B0E420B9134173D553D16AA0B146B774773 Certificate serial: 06C0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cZrDkILkTQXPVU9FqoLFGt3R3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft Manifest number: 06B9 Signing time: Wed 24 Dec 2025 21:32:39 +0000 Manifest this update: Wed 24 Dec 2025 21:32:39 +0000 Manifest next update: Wed 31 Dec 2025 21:32:39 +0000 Files and hashes: 1: 2cZrDkILkTQXPVU9FqoLFGt3R3M.crl (hash: cWM4/GF+Vx3x9SRALqX9DSlJQQZH5HhzRLgwDdp5BT4=) 2: E0147FC48AB811EB92252D18C4F9AE02.roa (hash: 7XRpzi2cKsozsds402vZG1Qa9TevGqVQRP3rG1+mDlM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.crl rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cZrDkILkTQXPVU9FqoLFGt3R3M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 21:32:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1728 (0x6c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9B0D, serialNumber=D9C66B0E420B9134173D553D16AA0B146B774773 Validity Not Before: Dec 24 21:32:39 2025 GMT Not After : Dec 31 21:32:39 2025 GMT Subject: CN=694c5bf7-a990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:df:2f:dc:74:8b:c3:9f:b8:64:4d:2f:cb:62: bb:f7:0b:0b:e5:34:89:42:c1:b3:40:38:42:74:09: 92:4e:68:37:b1:93:05:70:8a:d5:3c:d1:8c:fd:f3: 8a:c5:96:e8:0d:ea:97:11:f5:30:7a:ea:fc:5b:f6: bd:b0:24:29:b3:be:6b:95:17:fd:b4:fc:f7:2c:e9: be:76:b8:84:3f:d8:e3:93:36:c8:29:d5:32:7f:63: 85:e4:7b:4c:cb:ca:63:68:c5:1b:7d:6d:a2:39:48: 79:ef:e0:6c:86:54:78:66:0e:20:10:34:60:ff:d5: 95:b9:9f:69:bb:14:8d:30:0c:93:1d:fb:35:82:95: 6b:a5:e8:33:9e:76:0c:8d:fb:79:c1:55:69:a9:20: c0:c5:11:34:78:22:86:2f:71:0d:13:42:78:78:bd: 28:42:a3:20:4a:f8:17:c8:2e:c8:33:73:62:bb:ce: 57:ca:f3:fd:9a:62:e4:a4:83:79:a5:66:6d:9e:63: b4:38:df:da:dc:88:94:4a:85:19:62:82:a7:fc:16: 92:d4:9a:10:f7:81:f8:9c:04:cb:72:fe:bd:cc:07: 8f:29:19:3e:71:5d:8b:6a:45:24:54:f4:03:e1:e1: 3a:a1:65:32:27:6a:b9:c0:86:43:2e:23:99:02:5c: 15:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:12:0F:2B:50:CF:D7:55:7A:C1:E5:10:4C:89:DF:2F:4B:64:F3:E9 X509v3 Authority Key Identifier: keyid:D9:C6:6B:0E:42:0B:91:34:17:3D:55:3D:16:AA:0B:14:6B:77:47:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cZrDkILkTQXPVU9FqoLFGt3R3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:e1:8c:af:08:5b:92:7c:1c:49:35:f4:37:85:bd:2d:2a:46: 52:c2:8a:ab:ee:79:3b:ee:b2:ac:5d:96:9e:2a:28:b6:63:d6: 1f:10:40:f4:70:23:37:58:14:6e:93:5a:e5:ca:44:4c:64:9e: 42:2c:8a:60:f0:8f:1b:99:6e:5c:32:44:75:aa:a8:f0:2a:87: 99:66:76:dc:88:64:d0:fa:df:0d:c2:52:22:6c:9d:c5:4c:f8: d1:d0:fa:07:7f:26:af:1e:bd:79:a6:85:c5:5a:8d:5f:67:1d: 3e:2b:fb:ca:12:10:6f:70:1b:a8:3a:48:b4:bd:f2:fe:ab:12: 2c:8e:e2:1e:44:9d:a8:52:a5:bb:6b:e2:46:56:05:7b:36:ff: 14:ee:a3:81:75:e5:65:e1:5e:d0:ca:ac:5f:91:bb:51:34:62: 3f:5e:bf:2b:56:2d:3d:98:c5:1c:4c:aa:e3:df:04:71:58:ca: e5:82:33:37:88:49:e8:03:33:85:0e:95:08:92:50:c3:81:77: 5f:98:57:25:7f:2e:12:b7:a8:37:3b:2f:9f:9c:c5:6f:c5:a3: aa:f4:ef:93:8f:dd:1d:e6:c4:44:cd:6b:b0:af:1b:a3:53:34: 33:ad:64:9d:cb:92:6c:89:67:92:87:f9:c1:c4:3f:26:2f:c9: 9c:4c:20:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlCMEQxMTAvBgNVBAUTKEQ5QzY2QjBFNDIwQjkxMzQxNzNENTUzRDE2QUEwQjE0 NkI3NzQ3NzMwHhcNMjUxMjI0MjEzMjM5WhcNMjUxMjMxMjEzMjM5WjAYMRYwFAYD VQQDDA02OTRjNWJmNy1hOTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt98v3HSLw5+4ZE0vy2K79wsL5TSJQsGzQDhCdAmSTmg3sZMFcIrVPNGM/fOK xZboDeqXEfUweur8W/a9sCQps75rlRf9tPz3LOm+driEP9jjkzbIKdUyf2OF5HtM y8pjaMUbfW2iOUh57+BshlR4Zg4gEDRg/9WVuZ9puxSNMAyTHfs1gpVrpegznnYM jft5wVVpqSDAxRE0eCKGL3ENE0J4eL0oQqMgSvgXyC7IM3Niu85XyvP9mmLkpIN5 pWZtnmO0ON/a3IiUSoUZYoKn/BaS1JoQ94H4nATLcv69zAePKRk+cV2LakUkVPQD 4eE6oWUyJ2q5wIZDLiOZAlwVdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIgSDytQ z9dVesHlEEyJ3y9LZPPpMB8GA1UdIwQYMBaAFNnGaw5CC5E0Fz1VPRaqCxRrd0dz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUIwRC85OEI3MjgwRThB QjYxMUVCODIzN0Q0MTRDNEY5QUUwMi8yY1pyRGtJTGtUUVhQVlU5RnFvTEZHdDNS M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJjWnJEa0lMa1RRWFBWVTlGcW9MRkd0M1IzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUIwRC85OEI3MjgwRThBQjYxMUVCODIzN0Q0MTRDNEY5QUUwMi8yY1pyRGtJTGtU UVhQVlU5RnFvTEZHdDNSM00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCx4YyvCFuSfBxJNfQ3hb0tKkZSwoqr7nk77rKsXZaeKii2Y9YfEED0 cCM3WBRuk1rlykRMZJ5CLIpg8I8bmW5cMkR1qqjwKoeZZnbciGTQ+t8NwlIibJ3F TPjR0PoHfyavHr15poXFWo1fZx0+K/vKEhBvcBuoOki0vfL+qxIsjuIeRJ2oUqW7 a+JGVgV7Nv8U7qOBdeVl4V7QyqxfkbtRNGI/Xr8rVi09mMUcTKrj3wRxWMrlgjM3 iEnoAzOFDpUIklDDgXdfmFclfy4St6g3Oy+fnMVvxaOq9O+Tj90d5sREzWuwrxuj UzQzrWSdy5JsiWeSh/nBxD8mL8mcTCDM -----END CERTIFICATE-----Generated at Wed Dec 24 23:18:43 2025 by rpki-client