This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft File: 2YRcGequkJIocqDK_QUfFmFPhK8.mft (raw, json) Hash identifier: 8gPFhUkoSvdsFNqotAuoRlz4Gl+BxP1HienQg4BXvtY= Subject key identifier: DB:EB:CC:7D:53:14:97:6A:26:70:1B:06:4A:F1:7A:77:73:C2:8E:19 Authority key identifier: D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF Certificate issuer: /CN=A91C6BF0/serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Certificate serial: 0E80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft Manifest number: 106F Signing time: Mon 22 Dec 2025 17:24:48 +0000 Manifest this update: Mon 22 Dec 2025 17:24:47 +0000 Manifest next update: Mon 29 Dec 2025 17:24:47 +0000 Files and hashes: 1: 2YRcGequkJIocqDK_QUfFmFPhK8.crl (hash: oQ8gY4eA2p+e75wcdkSOb7heCt0bmmD9c6/wDeL7YuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:24:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3712 (0xe80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6BF0, serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Validity Not Before: Dec 22 17:24:47 2025 GMT Not After : Dec 29 17:24:47 2025 GMT Subject: CN=69497ee0-b661 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:5c:99:85:85:3d:0f:a8:bb:bc:98:7f:7b:9f: 6c:a9:78:7b:a5:66:b6:11:fd:a2:60:12:42:03:16: ae:ad:39:07:32:0a:55:01:9d:95:23:72:3f:33:9e: 3f:19:02:02:79:21:de:cd:be:3c:8b:fc:62:73:0f: b4:03:52:0a:92:2a:e3:99:f8:b7:ae:53:4f:f1:76: 09:3d:4f:d7:a2:9d:e7:be:c9:39:39:82:55:5e:0d: cc:7a:1c:c5:68:eb:8b:bf:0f:65:e1:b1:4c:ef:30: 7f:fd:35:e5:cd:da:bf:20:2d:a0:87:39:ee:b2:bf: ea:1d:8c:02:14:d3:b6:63:a4:0d:ea:62:49:06:ff: ed:71:9e:9b:db:3a:14:cd:38:c8:b2:a2:7d:cb:c8: 38:81:b2:8f:18:a3:38:24:b6:25:87:7f:e9:d0:f2: bb:fa:3d:99:c9:3a:3b:08:b2:91:1b:79:f5:b9:e7: 26:06:41:1d:a7:e1:50:4b:bb:13:5f:a7:1f:08:da: 1f:16:7f:60:17:fa:84:3d:33:c8:a7:26:c1:a0:02: ae:f8:e3:4e:e6:7d:ce:06:f3:20:e6:b4:db:e2:03: c2:57:83:7b:fb:70:d6:cd:9d:ed:d1:9f:a5:b9:26: c6:5a:69:07:e9:d2:1c:2a:46:30:11:42:dc:bb:b4: 12:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:EB:CC:7D:53:14:97:6A:26:70:1B:06:4A:F1:7A:77:73:C2:8E:19 X509v3 Authority Key Identifier: keyid:D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:cf:44:d1:25:7c:6a:79:7c:df:b4:df:08:2e:6a:72:1c:21: 7a:24:cd:d1:2a:f9:8c:1a:d0:99:ca:e4:2d:3c:85:50:16:67: c9:a6:17:5d:26:78:24:d1:5e:51:79:16:43:3e:c1:6f:70:f5: 84:82:83:4b:31:89:a5:d4:0a:a8:93:2e:eb:c8:0b:ab:a9:b6: 52:9b:b1:cf:34:7d:76:c0:6a:a3:65:33:a1:27:ae:ca:87:48: 77:3a:a4:be:67:6f:01:3b:75:0b:87:51:b0:b2:3c:48:42:b2: 66:89:fc:1a:a0:57:e9:48:4f:73:a4:b6:2d:f1:17:cd:46:a0: 5a:df:17:14:dd:76:36:27:97:f6:85:b6:19:07:b5:95:d4:f4: 56:8a:33:16:72:85:b0:11:24:43:8a:7d:03:69:45:c8:7e:e8: 5e:55:d1:d9:74:14:31:e9:9c:0f:8e:55:fb:c4:d6:e2:33:e0: 2b:9d:3c:05:86:52:47:4d:c1:66:dc:0e:26:9e:bf:91:f5:c7: a8:d7:86:9e:39:80:31:3b:a8:ee:e1:de:8c:46:81:b4:d2:c1: ce:41:e3:5f:67:88:0e:92:d3:0a:0f:62:6a:4a:7f:6b:65:29: bb:b9:17:de:c7:99:ad:46:90:46:28:d5:f9:90:52:23:22:ce: bd:f4:ab:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCRjAxMTAvBgNVBAUTKEQ5ODQ1QzE5RUFBRTkwOTIyODcyQTBDQUZEMDUxRjE2 NjE0Rjg0QUYwHhcNMjUxMjIyMTcyNDQ3WhcNMjUxMjI5MTcyNDQ3WjAYMRYwFAYD VQQDDA02OTQ5N2VlMC1iNjYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2FyZhYU9D6i7vJh/e59sqXh7pWa2Ef2iYBJCAxaurTkHMgpVAZ2VI3I/M54/ GQICeSHezb48i/xicw+0A1IKkirjmfi3rlNP8XYJPU/Xop3nvsk5OYJVXg3MehzF aOuLvw9l4bFM7zB//TXlzdq/IC2ghznusr/qHYwCFNO2Y6QN6mJJBv/tcZ6b2zoU zTjIsqJ9y8g4gbKPGKM4JLYlh3/p0PK7+j2ZyTo7CLKRG3n1uecmBkEdp+FQS7sT X6cfCNofFn9gF/qEPTPIpybBoAKu+ONO5n3OBvMg5rTb4gPCV4N7+3DWzZ3t0Z+l uSbGWmkH6dIcKkYwEULcu7QS/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNvrzH1T FJdqJnAbBkrxendzwo4ZMB8GA1UdIwQYMBaAFNmEXBnqrpCSKHKgyv0FHxZhT4Sv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJGMC8xNDkxOTc0QUFF QkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtKSW9jcURLX1FVZkZtRlBo SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJZUmNHZXF1a0pJb2NxREtfUVVmRm1GUGhLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkJGMC8xNDkxOTc0QUFFQkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtK SW9jcURLX1FVZkZtRlBoSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0z0TRJXxqeXzftN8ILmpyHCF6JM3RKvmMGtCZyuQtPIVQFmfJphdd Jngk0V5ReRZDPsFvcPWEgoNLMYml1Aqoky7ryAurqbZSm7HPNH12wGqjZTOhJ67K h0h3OqS+Z28BO3ULh1GwsjxIQrJmifwaoFfpSE9zpLYt8RfNRqBa3xcU3XY2J5f2 hbYZB7WV1PRWijMWcoWwESRDin0DaUXIfuheVdHZdBQx6ZwPjlX7xNbiM+ArnTwF hlJHTcFm3A4mnr+R9ceo14aeOYAxO6ju4d6MRoG00sHOQeNfZ4gOktMKD2JqSn9r ZSm7uRfex5mtRpBGKNX5kFIjIs699Ktn -----END CERTIFICATE-----Generated at Wed Dec 24 10:56:44 2025 by rpki-client