This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft File: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft (raw, json) Hash identifier: k8+gytIgf95zN1Pit9A33YsF43J4A+xN+2an1vSM8uw= Subject key identifier: 3E:2F:56:88:0C:EF:92:C3:34:22:FF:89:8C:3A:E9:28:13:EA:87:32 Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED Certificate issuer: /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Certificate serial: 143C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft Manifest number: 141C Signing time: Tue 02 Dec 2025 15:20:28 +0000 Manifest this update: Tue 02 Dec 2025 15:20:28 +0000 Manifest next update: Tue 09 Dec 2025 15:20:28 +0000 Files and hashes: 1: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl (hash: cZ69+emjwqwFZPlV2GppUfJgVxpQcdmixY056yT4paU=) 2: 76C6BCF6B72811ECAEFC180DC4F9AE02.roa (hash: rJt9UQ2CbATtEyHk+VO1E6DMoo3w2GSd/mE//3ZqYZU=) 3: B969D2D0BA4A11EC90B53115C4F9AE02.roa (hash: wPO6Es53IcJapHpeuB8nxOotI3FCiSmj/GNfyH8fyQs=) 4: 49678FBCB72B11EC8C8E3017C4F9AE02.roa (hash: Fya/3MhXvM2udSwM4AtG4GxQbuG8VOpcoReRz0Tvy8A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:20:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5180 (0x143c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Validity Not Before: Dec 2 15:20:28 2025 GMT Not After : Dec 9 15:20:28 2025 GMT Subject: CN=692f03bc-1062 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b3:32:41:53:44:8b:39:d5:84:58:bf:2e:0c: 4f:cf:13:22:8e:f2:20:8d:df:7c:eb:34:be:3a:5f: ae:d0:8b:e4:0e:1b:e4:e7:7c:58:39:5c:18:7b:6f: e2:03:27:73:b2:c1:00:12:8c:59:33:56:c7:62:22: 05:51:04:48:3b:20:36:bf:b9:b5:17:91:21:6c:15: bc:89:50:d9:7b:ca:25:ee:34:e7:47:2b:99:8c:ce: c3:32:8c:37:33:51:aa:90:fb:50:0b:99:81:63:97: d2:89:69:b8:d1:98:06:6f:60:57:5c:49:3f:d2:18: 9f:5e:1c:a9:31:73:39:f6:e2:80:fc:9b:88:b7:86: d1:ea:89:d4:71:35:43:be:04:d5:06:b3:50:ab:97: 25:1e:0b:35:2b:25:55:6e:cd:55:9b:ce:73:4d:7f: 14:4f:52:23:83:8f:6e:35:be:bb:f7:5c:fb:34:b2: 88:39:ac:e5:34:90:d9:7e:fb:f6:d0:43:8b:53:84: f5:02:fc:44:be:50:58:97:7e:da:8d:b2:ff:93:fe: e1:54:e6:f4:f3:1b:85:ab:ec:f1:1b:0e:e8:49:ee: 68:59:bc:70:15:e9:7b:55:c3:74:c4:4c:87:9f:49: ca:d2:b1:1d:c0:0f:23:0b:50:48:14:26:f2:58:0c: 72:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:2F:56:88:0C:EF:92:C3:34:22:FF:89:8C:3A:E9:28:13:EA:87:32 X509v3 Authority Key Identifier: keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:ce:cc:68:96:30:75:13:07:56:90:fa:63:64:27:dd:58:84: c3:22:bb:b0:f2:0b:a2:fa:b3:c3:60:65:a7:da:75:3c:1b:f9: 0b:c6:be:a3:61:1d:60:44:1c:8d:ae:96:c6:72:55:2c:2a:bc: d9:ed:3b:f5:7d:b5:14:7d:9d:53:02:28:61:62:93:d1:90:50: a6:2b:2b:b0:2c:0b:e0:9f:85:ad:ed:d8:0e:dc:19:21:06:48: 3c:eb:d4:4a:c1:30:f0:16:55:65:57:c5:1c:fa:4b:63:ae:b7: 89:a3:6b:70:9a:5e:2c:1e:54:06:c8:38:e9:16:7b:05:df:72: 85:23:47:d4:e7:34:54:ab:4c:78:e6:ad:02:07:9c:b4:92:ca: 8e:b9:9c:98:e1:3c:19:ce:1e:f9:36:d4:ae:ba:db:10:0e:80: d1:ab:ff:5f:b3:87:46:26:55:e2:ab:bb:20:bb:27:be:f7:49: 97:db:f2:d3:95:7f:98:6e:48:ec:b1:a0:8f:2d:6d:24:68:68: d3:6d:6e:6d:1f:5d:27:25:2e:6f:e0:32:cc:6c:f0:99:74:6b: 18:cf:35:25:aa:63:10:7b:3d:55:a7:33:1b:a0:74:47:23:2a: 4a:44:c2:31:95:ff:7a:b3:10:3c:88:9c:5f:7a:8e:7a:33:91: 65:8a:4e:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKERBNEI1QzIxMjNCQTlEMEY4MDIzNzhEQURERDQ4MDFC NTY3MEEzRUQwHhcNMjUxMjAyMTUyMDI4WhcNMjUxMjA5MTUyMDI4WjAYMRYwFAYD VQQDEw02OTJmMDNiYy0xMDYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrMyQVNEiznVhFi/LgxPzxMijvIgjd986zS+Ol+u0IvkDhvk53xYOVwYe2/i AydzssEAEoxZM1bHYiIFUQRIOyA2v7m1F5EhbBW8iVDZe8ol7jTnRyuZjM7DMow3 M1GqkPtQC5mBY5fSiWm40ZgGb2BXXEk/0hifXhypMXM59uKA/JuIt4bR6onUcTVD vgTVBrNQq5clHgs1KyVVbs1Vm85zTX8UT1Ijg49uNb6791z7NLKIOazlNJDZfvv2 0EOLU4T1AvxEvlBYl37ajbL/k/7hVOb08xuFq+zxGw7oSe5oWbxwFel7VcN0xEyH n0nK0rEdwA8jC1BIFCbyWAxyDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD4vVogM 75LDNCL/iYw66SgT6ocyMB8GA1UdIwQYMBaAFNpLXCEjup0PgCN42t3UgBtWcKPt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wNzQ5NTg5MDkx ODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5RLUFJM2phM2RTQUcxWndv LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJrdGNJU082blEtQUkzamEzZFNBRzFad28tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wNzQ5NTg5MDkxODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5R LUFJM2phM2RTQUcxWndvLTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5zsxoljB1EwdWkPpjZCfdWITDIruw8gui+rPDYGWn2nU8G/kLxr6j YR1gRByNrpbGclUsKrzZ7Tv1fbUUfZ1TAihhYpPRkFCmKyuwLAvgn4Wt7dgO3Bkh Bkg869RKwTDwFlVlV8Uc+ktjrreJo2twml4sHlQGyDjpFnsF33KFI0fU5zRUq0x4 5q0CB5y0ksqOuZyY4TwZzh75NtSuutsQDoDRq/9fs4dGJlXiq7sguye+90mX2/LT lX+YbkjssaCPLW0kaGjTbW5tH10nJS5v4DLMbPCZdGsYzzUlqmMQez1VpzMboHRH IypKRMIxlf96sxA8iJxfeo56M5Flik5N -----END CERTIFICATE-----Generated at Wed Dec 3 14:46:56 2025 by rpki-client