This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft File: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft (raw, json) Hash identifier: sB4WgWZwrRl5aDpJnShjudaQJWWUm7Q35P+6Ad982BQ= Subject key identifier: 37:C7:A9:D5:DA:EF:DA:C0:BE:7B:C2:B8:36:9D:AB:17:C7:5E:A9:48 Authority key identifier: D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A Certificate issuer: /CN=A91F0AF0/serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Certificate serial: 0CCE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft Manifest number: 1E45 Signing time: Mon 08 Dec 2025 16:54:28 +0000 Manifest this update: Mon 08 Dec 2025 16:54:28 +0000 Manifest next update: Mon 15 Dec 2025 16:54:28 +0000 Files and hashes: 1: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl (hash: J3LXbFvjWhdaeTbYgyx/QMqNDxRIADvzN1ZpRQmRPMs=) 2: CE3C7EF66FEB11EB91967864C4F9AE02.roa (hash: Ecj4wTVjyUbe05JmkTHE3iJeDcHJFhB138/thNFleyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Dec 2025 16:54:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3278 (0xcce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0AF0, serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Validity Not Before: Dec 8 16:54:28 2025 GMT Not After : Dec 15 16:54:28 2025 GMT Subject: CN=693702c4-32da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2f:f5:68:92:76:9c:68:8a:08:e6:b6:23:04: 42:a0:2e:d7:1e:dc:6d:42:42:41:4f:64:36:6c:b0: 73:3b:2f:1f:c5:bc:fa:9f:99:84:c1:95:89:29:e9: be:ec:9e:cc:80:34:b7:97:5a:e6:a3:94:1d:f0:c1: 97:a4:0c:87:4e:c4:56:dd:7f:0f:8b:81:d4:b2:ab: 5f:df:7e:08:42:2b:64:58:02:43:62:b4:ba:85:ed: 30:b3:07:8e:6c:4d:26:b1:0f:c0:50:74:f9:7b:5d: d3:7b:b7:a4:0a:0b:8f:a2:86:8d:02:85:1b:20:65: 08:61:fa:c1:02:8f:c8:02:97:2e:37:c1:a7:e8:b8: 10:42:b4:79:43:e7:94:02:1f:59:bf:f5:09:c5:fb: 4d:68:31:cb:eb:25:25:09:df:d5:26:43:88:d3:18: 3d:df:07:44:c5:84:d3:7b:88:52:68:84:26:be:7c: d8:9f:4a:80:0d:5d:e5:44:67:52:73:f0:c0:3b:82: 6f:72:78:1d:b7:2f:f8:06:6a:83:43:bb:00:f9:b1: bd:9d:7c:9a:70:d0:46:e4:2b:d0:4b:37:e0:6e:4f: cd:8e:ae:c1:cc:a9:70:63:3b:cb:c7:59:3f:0f:c7: fb:fe:8e:3d:89:e6:2b:ed:86:74:17:94:89:04:f0: 47:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:C7:A9:D5:DA:EF:DA:C0:BE:7B:C2:B8:36:9D:AB:17:C7:5E:A9:48 X509v3 Authority Key Identifier: keyid:D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:a4:7f:e0:9b:47:d0:ad:cb:48:62:27:9e:f8:02:74:86:e6: 41:68:6c:95:ee:b2:ef:c1:5d:fb:96:9d:42:ec:20:d8:ed:b4: b4:fc:a5:86:94:fc:f0:20:65:35:c7:7e:3b:cf:66:1a:76:5c: 8d:e6:b4:36:fc:73:1a:33:57:4b:95:97:22:f0:5b:4e:ad:ff: bf:e9:6f:cd:dd:20:d5:ca:5e:4c:4c:0d:0b:6d:d7:68:18:f8: 26:d1:ac:92:e0:6e:e3:84:65:b3:13:05:3f:43:12:1d:7a:7e: c1:ee:ee:34:39:a2:98:52:b4:4d:c4:bb:47:be:dd:3c:54:af: 8b:c9:56:9b:3e:61:90:26:91:4a:8a:91:d8:7d:f2:58:da:94: 73:1c:0f:82:da:f2:22:e3:46:63:e2:f7:93:c3:f5:ff:24:09: 9b:b9:d2:39:fa:ab:23:b7:66:72:7a:d0:f7:18:be:b7:49:b8: f7:54:1e:7e:bc:24:89:44:f6:23:9a:b8:d9:8e:f4:e0:cf:6a: 28:df:2b:6d:32:9b:b5:ff:3a:46:fb:ca:94:0d:11:6e:81:0f: 43:ff:12:a6:d5:88:33:ae:fd:a6:74:4c:6f:41:3d:36:31:fa: 98:3d:c4:4e:7b:25:d5:3c:24:5e:24:89:94:8c:66:f9:e6:43: e2:e9:62:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBBRjAxMTAvBgNVBAUTKEQ5QkQ3MEU3NzdGODYxQUU1NDM4NTcxNDhFNjMzNTJG REE4NEMwN0EwHhcNMjUxMjA4MTY1NDI4WhcNMjUxMjE1MTY1NDI4WjAYMRYwFAYD VQQDEw02OTM3MDJjNC0zMmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtS/1aJJ2nGiKCOa2IwRCoC7XHtxtQkJBT2Q2bLBzOy8fxbz6n5mEwZWJKem+ 7J7MgDS3l1rmo5Qd8MGXpAyHTsRW3X8Pi4HUsqtf334IQitkWAJDYrS6he0wsweO bE0msQ/AUHT5e13Te7ekCguPooaNAoUbIGUIYfrBAo/IApcuN8Gn6LgQQrR5Q+eU Ah9Zv/UJxftNaDHL6yUlCd/VJkOI0xg93wdExYTTe4hSaIQmvnzYn0qADV3lRGdS c/DAO4Jvcngdty/4BmqDQ7sA+bG9nXyacNBG5CvQSzfgbk/Njq7BzKlwYzvLx1k/ D8f7/o49ieYr7YZ0F5SJBPBH5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDfHqdXa 79rAvnvCuDadqxfHXqlIMB8GA1UdIwQYMBaAFNm9cOd3+GGuVDhXFI5jNS/ahMB6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEFGMC9FMzc2Mjk1MDBG RkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlhNVVPRmNVam1NMUw5cUV3 SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJiMXc1M2Y0WWE1VU9GY1VqbU0xTDlxRXdIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEFGMC9FMzc2Mjk1MDBGRkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlh NVVPRmNVam1NMUw5cUV3SG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAspH/gm0fQrctIYiee+AJ0huZBaGyV7rLvwV37lp1C7CDY7bS0/KWG lPzwIGU1x347z2YadlyN5rQ2/HMaM1dLlZci8FtOrf+/6W/N3SDVyl5MTA0Lbddo GPgm0ayS4G7jhGWzEwU/QxIden7B7u40OaKYUrRNxLtHvt08VK+LyVabPmGQJpFK ipHYffJY2pRzHA+C2vIi40Zj4veTw/X/JAmbudI5+qsjt2ZyetD3GL63Sbj3VB5+ vCSJRPYjmrjZjvTgz2oo3yttMpu1/zpG+8qUDRFugQ9D/xKm1Ygzrv2mdExvQT02 MfqYPcROeyXVPCReJImUjGb55kPi6WIl -----END CERTIFICATE-----Generated at Wed Dec 10 05:01:41 2025 by rpki-client