This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft File: m2fIchTtmWVAcRkL688LjZ-hr04.mft (raw, json) Hash identifier: Jp2O1BOPsFb1KhclM3W37MwSx4P+eHJXEeJRz1HM7HM= Subject key identifier: 44:83:99:25:4F:4F:C1:6E:4D:F8:7D:78:A5:30:33:03:2E:B5:8B:8F Authority key identifier: 9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E Certificate issuer: /CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Certificate serial: 0C7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft Manifest number: 0C63 Signing time: Mon 22 Dec 2025 18:13:05 +0000 Manifest this update: Mon 22 Dec 2025 18:13:05 +0000 Manifest next update: Mon 29 Dec 2025 18:13:05 +0000 Files and hashes: 1: m2fIchTtmWVAcRkL688LjZ-hr04.crl (hash: GvP9hjPwl8fkNGyGPmERWuCIGk62Juqz4vm4XkRoOow=) 2: 988741FEDB8111F0B008B5AB60D3641D.roa (hash: +cWhXgmvXqt9a6ZqEZBrdto9E96GIgUY7aVDt14B1Zw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:13:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3197 (0xc7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBDC8, serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Validity Not Before: Dec 22 18:13:05 2025 GMT Not After : Dec 29 18:13:05 2025 GMT Subject: CN=69498a31-aa6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:34:0d:0b:fe:e0:df:f6:96:51:ba:7e:c4:e5: d2:69:18:f4:81:6f:f1:9a:ed:b5:3f:21:33:1e:7c: 78:c3:24:23:d8:59:f4:bb:04:62:13:2f:fe:65:e3: 97:88:c7:f7:68:02:2f:20:8b:6e:2b:1c:1d:e2:c2: eb:65:35:07:b1:f6:75:42:b0:01:5b:82:70:cb:c7: 15:d3:23:67:4a:42:1d:cf:ea:7c:db:dd:ac:07:97: c5:8b:c8:6e:3e:c5:fa:b7:5f:70:22:3e:2f:db:d6: 2d:d4:f9:67:ed:1b:46:eb:f5:4a:c2:14:6c:e7:7d: 55:49:88:aa:71:11:2c:73:79:0c:49:c1:41:f9:56: 15:d5:00:11:2c:50:6c:c4:4f:d0:8d:25:1b:84:ff: ad:32:b2:d3:7d:11:e9:1d:81:d0:1b:3a:9a:c1:ed: 99:fc:1a:a1:f9:52:ef:1a:b3:68:fa:2f:30:2e:ab: 3c:f1:e6:a9:8d:59:ec:43:a0:ae:f2:6a:6f:2f:18: e1:2b:3b:19:8c:ac:d3:7e:89:f0:bc:4a:e6:8f:0b: 6d:6b:5c:49:a8:bd:c5:48:33:09:75:46:8b:2e:37: 1c:3f:19:fa:bf:a7:b8:b7:f1:05:09:03:54:a1:45: 66:41:6c:ca:cb:73:24:c3:7c:87:46:95:ee:e4:3a: f3:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:83:99:25:4F:4F:C1:6E:4D:F8:7D:78:A5:30:33:03:2E:B5:8B:8F X509v3 Authority Key Identifier: keyid:9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:7d:3a:87:89:aa:74:a9:8a:9d:61:7c:08:21:f8:20:0d:af: 8d:b0:0f:c7:cb:35:cb:5e:ff:dd:48:ec:82:e5:29:6c:18:54: 63:c2:a7:33:47:75:da:52:89:7f:f1:b2:b4:1a:37:6d:af:00: 15:b6:09:25:6f:10:9e:72:25:d0:8e:c7:45:86:1a:2c:43:33: 51:06:f8:19:fa:6d:2a:b0:4e:53:91:bf:9f:06:4f:ec:8c:66: 84:83:f6:43:2e:59:04:d3:61:9e:6d:60:9b:89:5b:9d:21:ef: 97:84:b6:dc:10:89:0d:88:4d:5b:b3:11:e0:00:16:03:44:ad: 93:97:16:7a:06:8a:eb:1b:90:1f:04:37:8f:89:71:70:c9:f4: 1f:68:36:99:8f:24:2c:8c:d5:f8:e2:5e:2c:69:04:6b:d3:f9: da:39:a6:9f:6f:6d:02:7a:de:92:ed:ce:09:d4:a2:25:d8:e7: e1:5f:4b:3e:db:ae:4c:66:04:46:33:16:dc:8e:4e:03:4e:1d: b5:00:a6:ae:c3:fd:ef:69:59:54:22:3f:f1:37:cd:0b:7f:2a: 7a:aa:64:b0:93:e5:08:00:f7:d7:58:04:c4:62:a3:96:fe:9c: 2c:94:ed:a1:7c:e4:7f:b7:15:03:cc:d7:da:7d:eb:4f:7c:f5: b0:8e:b2:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JEQzgxMTAvBgNVBAUTKDlCNjdDODcyMTRFRDk5NjU0MDcxMTkwQkVCQ0YwQjhE OUZBMUFGNEUwHhcNMjUxMjIyMTgxMzA1WhcNMjUxMjI5MTgxMzA1WjAYMRYwFAYD VQQDDA02OTQ5OGEzMS1hYTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujQNC/7g3/aWUbp+xOXSaRj0gW/xmu21PyEzHnx4wyQj2Fn0uwRiEy/+ZeOX iMf3aAIvIItuKxwd4sLrZTUHsfZ1QrABW4Jwy8cV0yNnSkIdz+p8292sB5fFi8hu PsX6t19wIj4v29Yt1Pln7RtG6/VKwhRs531VSYiqcREsc3kMScFB+VYV1QARLFBs xE/QjSUbhP+tMrLTfRHpHYHQGzqawe2Z/Bqh+VLvGrNo+i8wLqs88eapjVnsQ6Cu 8mpvLxjhKzsZjKzTfonwvErmjwtta1xJqL3FSDMJdUaLLjccPxn6v6e4t/EFCQNU oUVmQWzKy3Mkw3yHRpXu5DrzkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFESDmSVP T8FuTfh9eKUwMwMutYuPMB8GA1UdIwQYMBaAFJtnyHIU7ZllQHEZC+vPC42foa9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkRDOC82Njk3NjNGMDE4 RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1XVkFjUmtMNjg4TGpaLWhy MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20yZkljaFR0bVdWQWNSa0w2ODhMalotaHIwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkRDOC82Njk3NjNGMDE4RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1X VkFjUmtMNjg4TGpaLWhyMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlfTqHiap0qYqdYXwIIfggDa+NsA/HyzXLXv/dSOyC5SlsGFRjwqcz R3XaUol/8bK0GjdtrwAVtgklbxCeciXQjsdFhhosQzNRBvgZ+m0qsE5Tkb+fBk/s jGaEg/ZDLlkE02GebWCbiVudIe+XhLbcEIkNiE1bsxHgABYDRK2TlxZ6BorrG5Af BDePiXFwyfQfaDaZjyQsjNX44l4saQRr0/naOaafb20Cet6S7c4J1KIl2OfhX0s+ 265MZgRGMxbcjk4DTh21AKauw/3vaVlUIj/xN80Lfyp6qmSwk+UIAPfXWATEYqOW /pwslO2hfOR/txUDzNfafetPfPWwjrKR -----END CERTIFICATE-----Generated at Wed Dec 24 12:25:19 2025 by rpki-client