This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft File: 2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft (raw, json) Hash identifier: 5r28x/NZedKfGCUa8I1BmmydMv0R1A7YkJbuVzuTspY= Subject key identifier: 4B:5A:61:F2:94:B4:95:CD:71:CD:05:23:70:DC:13:4F:FA:2A:C2:0A Authority key identifier: DA:B4:A5:2A:8E:C1:AA:D6:C9:25:2E:EA:4D:5D:15:69:D2:7A:F4:6B Certificate issuer: /CN=A91D1C7F/serialNumber=DAB4A52A8EC1AAD6C9252EEA4D5D1569D27AF46B Certificate serial: 03D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft Manifest number: 03CF Signing time: Mon 22 Dec 2025 23:39:09 +0000 Manifest this update: Mon 22 Dec 2025 23:39:09 +0000 Manifest next update: Mon 29 Dec 2025 23:39:09 +0000 Files and hashes: 1: 2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl (hash: VwbJ8BMxZOacG/GpVm1wX03Arqg1GhmyzwKGO6R68yQ=) 2: E5B25D84B0D211ECB7B1BA7DC4F9AE02.roa (hash: 5JeHEtG1xdKCrCH6rPS3zOfVRTqBs2fv9GJfMUQ9NfQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:39:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 981 (0x3d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1C7F, serialNumber=DAB4A52A8EC1AAD6C9252EEA4D5D1569D27AF46B Validity Not Before: Dec 22 23:39:09 2025 GMT Not After : Dec 29 23:39:09 2025 GMT Subject: CN=6949d69d-2838 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4e:07:89:35:37:7a:ec:ac:e1:52:e6:35:7d: d3:44:f5:6c:6f:ce:10:f4:31:55:a5:2c:cb:48:fa: 26:e4:ef:b8:9d:37:33:3b:4d:f5:09:91:a4:52:9a: 09:2e:bb:8b:19:d4:a5:69:2e:47:df:ea:fb:3c:80: 44:8e:cf:18:5e:ca:49:67:51:fb:f8:28:c1:a9:ad: 28:8b:9b:5c:61:7a:49:95:7c:cd:c7:60:5c:5d:9f: 89:f8:e7:58:ad:f7:07:41:a3:ee:24:bb:87:f2:c2: 6c:a9:6c:94:81:4d:5c:0e:e8:3d:06:57:61:cf:7e: 6d:f8:1f:57:fb:1a:89:12:cf:24:8c:2a:2f:a0:7f: aa:6e:47:bd:11:b2:c8:1e:ed:90:b8:d0:b2:1b:a6: 03:90:f0:f0:68:2a:19:39:81:ea:c8:71:14:29:af: 4b:28:ab:bf:57:e2:bc:6e:1e:c2:81:69:e3:90:6a: 41:83:de:e9:9b:cd:b0:b5:58:31:2a:b2:1f:ac:d5: 4b:10:a8:d8:d3:e3:90:63:8e:f9:e2:ef:5c:ed:5a: 21:0d:52:af:19:41:d8:b4:05:a2:8e:57:04:90:31: 85:47:74:e7:31:ab:af:fc:d5:f7:87:3b:5f:52:ba: ae:cd:58:d5:07:7e:07:0d:ea:76:fd:c6:5c:4d:eb: 85:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:5A:61:F2:94:B4:95:CD:71:CD:05:23:70:DC:13:4F:FA:2A:C2:0A X509v3 Authority Key Identifier: keyid:DA:B4:A5:2A:8E:C1:AA:D6:C9:25:2E:EA:4D:5D:15:69:D2:7A:F4:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:22:ed:a6:21:13:d6:d2:bc:e3:25:cd:29:e9:32:c0:9e:6f: 48:07:22:a5:84:65:d1:0b:bf:01:2f:77:9d:21:ac:85:ea:f7: d6:2a:98:91:84:b3:91:03:a8:c4:72:46:78:e9:d4:f4:6d:00: 22:56:73:a1:a0:39:bb:ac:74:2a:e7:cf:d8:5a:62:dd:7f:b5: 16:08:e7:13:76:f7:b2:e0:c1:03:8e:56:0f:0e:25:fe:4c:fa: b8:ea:6a:4d:e5:21:84:76:0f:54:fb:cf:4d:3a:30:16:08:6b: db:09:4f:4b:45:58:d0:71:a4:da:c0:4f:b2:0a:e3:e3:c4:78: 10:f5:ac:2d:be:fa:cb:b0:55:61:5c:ef:c0:11:7f:82:a2:c0: 67:d3:a5:69:37:c8:d9:3e:5a:b0:11:e6:d3:87:30:5f:51:31: 7e:0e:c3:97:b4:89:3d:1e:26:7f:91:3c:8e:2c:98:8b:44:01: 18:aa:5e:97:c8:f8:48:93:79:d1:3b:e7:db:6d:82:1d:70:45: 52:23:32:4f:2e:b3:ba:d8:32:0b:9a:d5:26:95:9f:8e:ec:62: b2:0a:fa:79:1a:ec:c7:9a:2d:4e:2c:b7:a0:e7:ec:ac:24:d7: 5f:0b:61:21:55:b4:6b:1d:ad:fa:c9:82:fb:c7:bd:32:af:b7: cd:b0:7b:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFDN0YxMTAvBgNVBAUTKERBQjRBNTJBOEVDMUFBRDZDOTI1MkVFQTRENUQxNTY5 RDI3QUY0NkIwHhcNMjUxMjIyMjMzOTA5WhcNMjUxMjI5MjMzOTA5WjAYMRYwFAYD VQQDDA02OTQ5ZDY5ZC0yODM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxE4HiTU3euys4VLmNX3TRPVsb84Q9DFVpSzLSPom5O+4nTczO031CZGkUpoJ LruLGdSlaS5H3+r7PIBEjs8YXspJZ1H7+CjBqa0oi5tcYXpJlXzNx2BcXZ+J+OdY rfcHQaPuJLuH8sJsqWyUgU1cDug9Bldhz35t+B9X+xqJEs8kjCovoH+qbke9EbLI Hu2QuNCyG6YDkPDwaCoZOYHqyHEUKa9LKKu/V+K8bh7CgWnjkGpBg97pm82wtVgx KrIfrNVLEKjY0+OQY4754u9c7VohDVKvGUHYtAWijlcEkDGFR3TnMauv/NX3hztf UrquzVjVB34HDep2/cZcTeuF0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEtaYfKU tJXNcc0FI3DcE0/6KsIKMB8GA1UdIwQYMBaAFNq0pSqOwarWySUu6k1dFWnSevRr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUM3Ri8wOTFFMUVBQUIw RDAxMUVDQkIwNEEzNzhDNEY5QUUwMi8yclNsS283QnF0YkpKUzdxVFYwVmFkSjY5 R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJyU2xLbzdCcXRiSkpTN3FUVjBWYWRKNjlHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUM3Ri8wOTFFMUVBQUIwRDAxMUVDQkIwNEEzNzhDNEY5QUUwMi8yclNsS283QnF0 YkpKUzdxVFYwVmFkSjY5R3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcIu2mIRPW0rzjJc0p6TLAnm9IByKlhGXRC78BL3edIayF6vfWKpiR hLORA6jEckZ46dT0bQAiVnOhoDm7rHQq58/YWmLdf7UWCOcTdvey4MEDjlYPDiX+ TPq46mpN5SGEdg9U+89NOjAWCGvbCU9LRVjQcaTawE+yCuPjxHgQ9awtvvrLsFVh XO/AEX+CosBn06VpN8jZPlqwEebThzBfUTF+DsOXtIk9HiZ/kTyOLJiLRAEYql6X yPhIk3nRO+fbbYIdcEVSIzJPLrO62DILmtUmlZ+O7GKyCvp5GuzHmi1OLLeg5+ys JNdfC2EhVbRrHa36yYL7x70yr7fNsHtK -----END CERTIFICATE-----Generated at Wed Dec 24 15:45:02 2025 by rpki-client