This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft File: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft (raw, json) Hash identifier: 489QHAXvNqIG9dKzY7Hq8EWGhll6Hlhxpul9XdcQEvM= Subject key identifier: 7A:E1:10:F6:1B:1F:EE:ED:13:28:CC:56:DA:F3:E3:A1:81:93:C1:6F Authority key identifier: D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D Certificate issuer: /CN=A91C2B93/serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Certificate serial: 0137 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft Manifest number: 0131 Signing time: Tue 09 Dec 2025 02:38:45 +0000 Manifest this update: Tue 09 Dec 2025 02:38:44 +0000 Manifest next update: Tue 16 Dec 2025 02:38:44 +0000 Files and hashes: 1: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl (hash: sv545gX+28XuLX8EOSM2F3f74XGz+qPDzpqBf1Ixy/M=) 2: B00A68E6014A11EFA8F03B5BC4F9AE02.roa (hash: F6IB2oLxhpfXXQwj/Kl3IJNncyOBKEOTP7G3C5XwQrk=) 3: E2037F8C019911EFAFFEEC5DC4F9AE02.roa (hash: yyKQJp3Cor943Y25Ya+6ME8Xl4xDZuaYL1jQZ9UiIZI=) 4: B0BE3042014A11EFA8F03B5BC4F9AE02.roa (hash: kGlkPBXGhK2HbK8wICTx12rG9bb9NpN/Iy7FI3DGEGY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Dec 2025 02:38:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2B93, serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Validity Not Before: Dec 9 02:38:44 2025 GMT Not After : Dec 16 02:38:44 2025 GMT Subject: CN=69378bb5-1817 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:40:9b:43:66:25:46:72:b5:f0:18:da:2e:a5: 37:50:54:fc:b4:50:a8:b6:a0:d5:ff:c9:8f:82:55: 66:dd:68:38:d8:c2:93:94:32:4f:e6:03:a3:c1:0a: 03:79:fe:86:af:c8:54:e9:1c:6e:27:44:5e:fd:ac: d1:02:05:bc:8a:d6:0f:30:58:df:d4:1a:35:8c:72: 80:2f:02:26:a1:e0:da:1a:3d:d4:ed:de:7c:33:b1: 41:d7:ca:b8:32:a1:63:3c:1e:8b:92:d1:73:87:31: 30:46:61:49:5b:df:a8:59:b3:63:c9:2e:c6:0e:44: a6:3e:74:40:8f:a3:f8:36:de:ad:68:9a:b1:cb:98: ce:8b:18:0a:9e:73:9e:12:e1:f7:6c:77:cd:ac:4b: d3:b0:67:fb:41:56:3b:c5:0c:84:24:88:46:76:a5: b0:39:ed:3a:24:5a:e3:7b:50:87:ab:ec:d7:4c:3f: de:74:b0:c4:80:40:38:3c:d4:d7:10:ce:1b:93:3a: 53:73:31:77:84:13:79:06:0a:a2:c0:19:ac:39:0e: e9:b3:9f:dd:22:4e:4e:db:6b:bc:9b:b5:34:76:88: 2a:92:08:53:02:65:48:44:0d:e2:5f:c8:21:fb:3a: 58:fa:d7:82:de:9b:f5:d5:52:a2:1d:97:b0:46:43: 46:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:E1:10:F6:1B:1F:EE:ED:13:28:CC:56:DA:F3:E3:A1:81:93:C1:6F X509v3 Authority Key Identifier: keyid:D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:90:ae:4a:c3:bf:24:9a:6a:7c:a6:9e:f4:c6:f0:a8:28:13: 02:af:da:dc:e5:78:98:79:ec:a1:38:36:a5:72:5f:8c:54:a6: 6f:e8:83:6f:7f:35:a9:31:f7:bd:2a:89:6d:da:0a:b4:9d:fe: c9:3c:78:77:c6:4d:b6:58:55:8e:f0:df:49:30:f8:f3:d7:60: 41:c6:d4:2e:83:2f:f9:15:39:79:a1:54:9a:97:aa:50:5e:2f: da:e8:71:00:c0:ef:4a:97:5a:94:bd:c3:b8:52:6d:6e:9c:fb: fe:9f:8f:3d:5a:af:77:d1:4f:00:f5:0f:6a:e9:2a:5d:34:3e: 2b:67:1e:2c:6e:05:42:c5:06:03:5d:23:3c:99:d3:12:3c:9f: 23:4b:a8:ab:b0:da:a8:65:21:80:34:17:4e:bc:00:32:e3:8c: 27:6f:b9:c0:25:77:6b:8e:02:10:9b:84:a0:ee:14:ac:6b:23: a8:4b:4c:87:4f:c2:2a:49:93:5f:b0:3f:dc:dd:f7:37:b7:24: 51:1f:60:a2:da:d7:30:e0:0a:07:60:2c:0e:43:a9:7b:c6:e8: 6d:d7:2f:f0:ee:cf:b0:a8:5a:ca:d8:ea:80:58:c2:e7:e1:c7: 78:3b:fd:a0:02:c8:48:a3:d8:f1:97:2c:fd:24:ce:ce:11:9f: 0d:aa:ab:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJCOTMxMTAvBgNVBAUTKEQ5RDY1RjdGMzYwOTBDNDAxQkNGMjBENEJDODBDNDNG MERDNTkzM0QwHhcNMjUxMjA5MDIzODQ0WhcNMjUxMjE2MDIzODQ0WjAYMRYwFAYD VQQDEw02OTM3OGJiNS0xODE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0UCbQ2YlRnK18BjaLqU3UFT8tFCotqDV/8mPglVm3Wg42MKTlDJP5gOjwQoD ef6Gr8hU6RxuJ0Re/azRAgW8itYPMFjf1Bo1jHKALwImoeDaGj3U7d58M7FB18q4 MqFjPB6LktFzhzEwRmFJW9+oWbNjyS7GDkSmPnRAj6P4Nt6taJqxy5jOixgKnnOe EuH3bHfNrEvTsGf7QVY7xQyEJIhGdqWwOe06JFrje1CHq+zXTD/edLDEgEA4PNTX EM4bkzpTczF3hBN5BgqiwBmsOQ7ps5/dIk5O22u8m7U0dogqkghTAmVIRA3iX8gh +zpY+teC3pv11VKiHZewRkNGHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHrhEPYb H+7tEyjMVtrz46GBk8FvMB8GA1UdIwQYMBaAFNnWX382CQxAG88g1LyAxD8NxZM9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkI5My8zQUM4NzRFRTAx NDMxMUVGODI1QTY0NjVDNEY5QUUwMi8yZFpmZnpZSkRFQWJ6eURVdklERVB3M0Zr ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJkWmZmellKREVBYnp5RFV2SURFUHczRmt6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkI5My8zQUM4NzRFRTAxNDMxMUVGODI1QTY0NjVDNEY5QUUwMi8yZFpmZnpZSkRF QWJ6eURVdklERVB3M0ZrejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJkK5Kw78kmmp8pp70xvCoKBMCr9rc5XiYeeyhODalcl+MVKZv6INv fzWpMfe9Kolt2gq0nf7JPHh3xk22WFWO8N9JMPjz12BBxtQugy/5FTl5oVSal6pQ Xi/a6HEAwO9Kl1qUvcO4Um1unPv+n489Wq930U8A9Q9q6SpdND4rZx4sbgVCxQYD XSM8mdMSPJ8jS6irsNqoZSGANBdOvAAy44wnb7nAJXdrjgIQm4Sg7hSsayOoS0yH T8IqSZNfsD/c3fc3tyRRH2Ci2tcw4AoHYCwOQ6l7xuht1y/w7s+wqFrK2OqAWMLn 4cd4O/2gAshIo9jxlyz9JM7OEZ8Nqqsy -----END CERTIFICATE-----Generated at Wed Dec 10 05:54:28 2025 by rpki-client