This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.mft File: 2IDvJluUDjHf7RxCrvUUS2RBNxc.mft (raw, json) Hash identifier: 9CIXjg+NunDzCCM7n/9WKr01zYjUc7t8XLIJ8Dzr3LM= Subject key identifier: F4:66:0A:D4:17:07:0C:BF:53:B1:C1:94:6B:1D:96:50:36:37:86:59 Authority key identifier: D8:80:EF:26:5B:94:0E:31:DF:ED:1C:42:AE:F5:14:4B:64:41:37:17 Certificate issuer: /CN=A91CFA8E/serialNumber=D880EF265B940E31DFED1C42AEF5144B64413717 Certificate serial: 0218 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.mft Manifest number: 0205 Signing time: Sun 07 Dec 2025 01:13:20 +0000 Manifest this update: Sun 07 Dec 2025 01:13:20 +0000 Manifest next update: Sun 14 Dec 2025 01:13:20 +0000 Files and hashes: 1: 2IDvJluUDjHf7RxCrvUUS2RBNxc.crl (hash: Qn6LRbJY8I4u8rzMQIfNfzYFXqHdaQRsfuO2NnE/BWU=) 2: 61663178F88311EDB1DF555DC4F9AE02.roa (hash: FLWPyCCdfmecVu0JHu1esGWqwLx8eepgbZ0pVH/wRzU=) 3: 43E961E013E711EE8ECA2D3CC4F9AE02.roa (hash: +KpPTrvUJ0fhW59fFGMaGeaxnMDX3lJjTA7XrEuSgaw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.crl rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 01:13:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 536 (0x218) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFA8E, serialNumber=D880EF265B940E31DFED1C42AEF5144B64413717 Validity Not Before: Dec 7 01:13:20 2025 GMT Not After : Dec 14 01:13:20 2025 GMT Subject: CN=6934d4b0-6488 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:6b:28:32:4e:ea:22:e2:04:50:7a:10:f8:49: ef:59:99:41:b5:2d:24:2f:5e:b1:bc:18:ef:70:8a: 1e:bc:eb:b0:0b:1c:8f:2b:22:76:82:79:47:c0:29: 24:d2:90:c9:b4:39:1f:17:10:b1:5a:bd:37:7d:b7: e9:45:60:f9:00:42:0c:f6:d6:5d:53:09:c7:4c:ed: f0:77:61:b7:82:f8:d0:f8:31:9a:85:06:7e:f7:8c: f6:40:ac:5b:d6:90:9e:9a:26:3e:e6:46:25:4f:86: 87:48:1a:bd:a6:fc:f6:d8:f0:96:3d:af:2c:c2:c2: 2e:7e:3a:cd:36:e7:8d:61:b4:35:f3:05:ab:0e:37: b0:01:b2:43:39:91:8c:22:99:08:a0:79:62:a6:e6: a8:6d:e0:3d:c0:7a:d3:d5:0c:48:9b:4c:97:41:a8: 8d:b9:1a:c2:2a:fe:26:0d:42:33:a9:e7:3b:ff:bd: 98:62:8c:52:42:2a:89:17:b8:0f:76:e7:ac:f6:4e: 15:6f:c5:9d:0d:07:98:2c:b6:fc:df:d2:83:1c:dc: c2:3c:0a:02:da:25:d9:5d:14:94:8e:88:2a:d7:fd: 46:fe:e7:c6:4d:d0:ad:91:86:65:fd:77:67:d8:e7: 01:9c:b7:96:f8:fd:6a:d2:37:f1:14:7f:d5:76:60: f6:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:66:0A:D4:17:07:0C:BF:53:B1:C1:94:6B:1D:96:50:36:37:86:59 X509v3 Authority Key Identifier: keyid:D8:80:EF:26:5B:94:0E:31:DF:ED:1C:42:AE:F5:14:4B:64:41:37:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:b1:08:c5:9d:d0:4b:54:83:11:67:f9:14:27:10:a7:8d:7a: 76:ee:85:94:59:c5:97:49:a6:07:d6:d5:f8:f2:e1:99:2e:da: db:30:87:91:0f:5d:46:12:6a:30:a6:db:51:3c:73:60:fe:63: f7:c6:f9:94:d1:1d:dd:99:03:7c:ad:b0:c3:f7:4e:ad:0b:34: 79:96:74:e6:4d:2b:52:11:17:08:28:87:ea:6a:ec:de:3a:00: b6:65:0e:5e:a8:13:a1:2f:d8:be:24:d3:33:b0:9c:c7:e9:0a: 62:32:2d:45:98:19:ce:5a:22:99:37:d9:d6:e5:31:95:27:52: d9:96:59:95:05:d9:6d:d7:26:e9:97:3a:13:7d:b0:e0:3e:c6: 5e:ca:6b:8f:b8:61:0e:f3:2c:17:a8:83:52:23:b3:70:77:99: 9d:ac:8d:a8:50:25:7a:ca:8c:e4:85:80:71:5c:96:6b:68:4b: 35:78:c2:a7:f9:6e:c1:a5:c4:84:7b:d5:26:5d:c6:db:eb:34: 08:28:03:3c:16:fd:b8:f6:41:0d:b6:42:66:a2:dc:32:d5:d7: 0f:97:9d:d1:cb:f1:c0:cf:96:ad:12:5f:aa:9a:e4:56:9e:d2: 88:4c:17:a1:cf:26:75:1d:84:83:56:d6:de:60:4b:56:02:81: 7e:1d:0d:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBOEUxMTAvBgNVBAUTKEQ4ODBFRjI2NUI5NDBFMzFERkVEMUM0MkFFRjUxNDRC NjQ0MTM3MTcwHhcNMjUxMjA3MDExMzIwWhcNMjUxMjE0MDExMzIwWjAYMRYwFAYD VQQDEw02OTM0ZDRiMC02NDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzGsoMk7qIuIEUHoQ+EnvWZlBtS0kL16xvBjvcIoevOuwCxyPKyJ2gnlHwCkk 0pDJtDkfFxCxWr03fbfpRWD5AEIM9tZdUwnHTO3wd2G3gvjQ+DGahQZ+94z2QKxb 1pCemiY+5kYlT4aHSBq9pvz22PCWPa8swsIufjrNNueNYbQ18wWrDjewAbJDOZGM IpkIoHlipuaobeA9wHrT1QxIm0yXQaiNuRrCKv4mDUIzqec7/72YYoxSQiqJF7gP dues9k4Vb8WdDQeYLLb839KDHNzCPAoC2iXZXRSUjogq1/1G/ufGTdCtkYZl/Xdn 2OcBnLeW+P1q0jfxFH/VdmD2XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPRmCtQX Bwy/U7HBlGsdllA2N4ZZMB8GA1UdIwQYMBaAFNiA7yZblA4x3+0cQq71FEtkQTcX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkE4RS82MUJBRDhFMEY4 N0UxMUVEOTBEODQ0NUNDNEY5QUUwMi8ySUR2Smx1VURqSGY3UnhDcnZVVVMyUkJO eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJJRHZKbHVVRGpIZjdSeENydlVVUzJSQk54Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkE4RS82MUJBRDhFMEY4N0UxMUVEOTBEODQ0NUNDNEY5QUUwMi8ySUR2Smx1VURq SGY3UnhDcnZVVVMyUkJOeGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAsQjFndBLVIMRZ/kUJxCnjXp27oWUWcWXSaYH1tX48uGZLtrbMIeR D11GEmowpttRPHNg/mP3xvmU0R3dmQN8rbDD906tCzR5lnTmTStSERcIKIfqauze OgC2ZQ5eqBOhL9i+JNMzsJzH6QpiMi1FmBnOWiKZN9nW5TGVJ1LZllmVBdlt1ybp lzoTfbDgPsZeymuPuGEO8ywXqINSI7Nwd5mdrI2oUCV6yozkhYBxXJZraEs1eMKn +W7BpcSEe9UmXcbb6zQIKAM8Fv249kENtkJmotwy1dcPl53Ry/HAz5atEl+qmuRW ntKITBehzyZ1HYSDVtbeYEtWAoF+HQ30 -----END CERTIFICATE-----Generated at Sun Dec 7 10:34:50 2025 by rpki-client