This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft File: 2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft (raw, json) Hash identifier: g/AdN6mvXzOgXC+7yRJ76o6WibKLmXbXVQKDxJPA+EA= Subject key identifier: B5:76:0A:32:40:08:E5:A7:C7:86:44:78:95:BD:CA:3B:20:FB:2F:99 Authority key identifier: D8:FC:79:5B:63:CC:42:57:3F:D5:DB:44:F0:A8:38:6C:8D:64:3B:84 Certificate issuer: /CN=A91F89A2/serialNumber=D8FC795B63CC42573FD5DB44F0A8386C8D643B84 Certificate serial: 0164 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft Manifest number: 0161 Signing time: Tue 23 Dec 2025 03:03:59 +0000 Manifest this update: Tue 23 Dec 2025 03:03:59 +0000 Manifest next update: Tue 30 Dec 2025 03:03:59 +0000 Files and hashes: 1: 2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.crl (hash: WcjmNLOFDyTCoavkmp/CjeptvKo1oNkMyLGKDFKaw0c=) 2: 6C363C0CF85911EE9EAE731BC4F9AE02.roa (hash: G8LAWFDM7ySLTe/ZJTkJCLPXRoKFmaYaIusDW3bZoi0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.crl rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 356 (0x164) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89A2, serialNumber=D8FC795B63CC42573FD5DB44F0A8386C8D643B84 Validity Not Before: Dec 23 03:03:59 2025 GMT Not After : Dec 30 03:03:59 2025 GMT Subject: CN=694a069f-d6ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:da:a7:13:fa:15:5a:4d:25:81:bf:22:b5:5e: 6f:f1:b6:74:5c:3e:fe:e2:ee:2d:91:31:c6:1c:6a: f1:3b:25:32:64:37:e2:6d:a6:ae:7f:c8:88:50:c5: b8:0d:eb:b3:39:80:2f:d1:2c:c9:b5:88:51:6b:9c: e3:bc:b3:0f:2d:27:14:17:5e:f5:9e:0c:d6:e9:d1: eb:02:79:c6:2e:aa:29:39:ec:ab:d8:07:2d:e1:ff: c8:7a:8c:9d:b3:77:7b:65:72:86:23:0d:05:1b:d1: b6:f1:96:45:13:1b:7a:c0:01:fa:66:f9:b7:50:d8: 0f:4c:e6:9b:7d:17:88:00:09:9b:5d:b8:90:22:2c: be:b0:87:9e:02:07:bc:c6:cf:6e:1b:48:09:9a:9d: b7:37:8e:96:77:2d:d4:62:4d:df:75:76:43:a5:a2: 93:73:ef:81:32:91:ff:98:82:fe:a5:8b:b5:e6:0d: 28:be:5d:b1:ff:d3:4c:4a:e6:f5:1b:4c:15:53:a9: 31:7d:17:28:00:33:04:6c:da:fb:e4:6b:f6:e5:65: ab:20:9f:22:c6:48:8f:b8:9a:ed:ed:fa:ae:78:54: c0:94:18:e3:de:12:fc:fb:c6:e2:6b:4a:76:6a:2c: fb:2d:3f:7d:5a:1e:53:24:f7:b0:a2:3b:0b:d9:b7: 7b:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:76:0A:32:40:08:E5:A7:C7:86:44:78:95:BD:CA:3B:20:FB:2F:99 X509v3 Authority Key Identifier: keyid:D8:FC:79:5B:63:CC:42:57:3F:D5:DB:44:F0:A8:38:6C:8D:64:3B:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:f3:d3:82:a4:f6:ca:cf:04:6a:ca:48:b0:7d:a1:f4:0e:cc: 54:7d:cb:b3:a0:f8:93:a9:76:6a:2e:1b:d7:f3:ba:b7:78:82: 9b:aa:0e:c7:e2:05:36:f7:a7:f7:ac:35:75:b6:ab:5c:31:ff: d1:d7:76:c0:76:d7:d8:8f:ae:8e:6a:6c:43:f5:0c:3b:13:b5: 22:55:ef:15:13:04:8b:d1:1f:0f:60:32:5d:a3:5e:01:33:3c: 4d:ed:f6:18:f8:cf:a8:b7:71:2d:9f:ab:28:87:fc:c4:87:cb: 0e:4d:56:93:fb:57:a8:44:b4:03:e0:eb:96:61:a9:e2:98:6b: 03:2e:76:01:42:c1:e9:2a:1c:f4:5f:35:0b:70:5a:8b:db:b1: b7:0e:1b:87:ec:aa:5a:d4:06:46:3d:e6:0a:15:24:c0:f7:a0: 5c:f4:29:65:1a:9c:af:61:d2:79:6e:bf:17:b4:7c:03:8e:73: bb:d2:5d:bb:04:31:13:0f:0f:81:49:c6:cb:d9:26:e8:1a:2b: 45:e5:4a:76:53:67:dc:10:be:37:91:74:3e:f8:30:61:06:b9: 14:45:f3:f8:64:1e:25:a7:98:17:1c:be:5a:ee:56:29:61:7e: 16:b4:ae:94:3c:a1:6d:29:61:f9:bc:13:f7:fc:7b:9a:ee:80: c4:ab:98:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5QTIxMTAvBgNVBAUTKEQ4RkM3OTVCNjNDQzQyNTczRkQ1REI0NEYwQTgzODZD OEQ2NDNCODQwHhcNMjUxMjIzMDMwMzU5WhcNMjUxMjMwMDMwMzU5WjAYMRYwFAYD VQQDDA02OTRhMDY5Zi1kNmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz9qnE/oVWk0lgb8itV5v8bZ0XD7+4u4tkTHGHGrxOyUyZDfibaauf8iIUMW4 DeuzOYAv0SzJtYhRa5zjvLMPLScUF171ngzW6dHrAnnGLqopOeyr2Act4f/Ieoyd s3d7ZXKGIw0FG9G28ZZFExt6wAH6Zvm3UNgPTOabfReIAAmbXbiQIiy+sIeeAge8 xs9uG0gJmp23N46Wdy3UYk3fdXZDpaKTc++BMpH/mIL+pYu15g0ovl2x/9NMSub1 G0wVU6kxfRcoADMEbNr75Gv25WWrIJ8ixkiPuJrt7fqueFTAlBjj3hL8+8bia0p2 aiz7LT99Wh5TJPewojsL2bd7BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLV2CjJA COWnx4ZEeJW9yjsg+y+ZMB8GA1UdIwQYMBaAFNj8eVtjzEJXP9XbRPCoOGyNZDuE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlBMi9CMzk2RjNDMEM1 NDExMUVFQUJDMkMzODVDNEY5QUUwMi8yUHg1VzJQTVFsY18xZHRFOEtnNGJJMWtP NFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJQeDVXMlBNUWxjXzFkdEU4S2c0Ykkxa080US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlBMi9CMzk2RjNDMEM1NDExMUVFQUJDMkMzODVDNEY5QUUwMi8yUHg1VzJQTVFs Y18xZHRFOEtnNGJJMWtPNFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB189OCpPbKzwRqykiwfaH0DsxUfcuzoPiTqXZqLhvX87q3eIKbqg7H 4gU296f3rDV1tqtcMf/R13bAdtfYj66OamxD9Qw7E7UiVe8VEwSL0R8PYDJdo14B MzxN7fYY+M+ot3Etn6soh/zEh8sOTVaT+1eoRLQD4OuWYanimGsDLnYBQsHpKhz0 XzULcFqL27G3DhuH7Kpa1AZGPeYKFSTA96Bc9CllGpyvYdJ5br8XtHwDjnO70l27 BDETDw+BScbL2SboGitF5Up2U2fcEL43kXQ++DBhBrkURfP4ZB4lp5gXHL5a7lYp YX4WtK6UPKFtKWH5vBP3/Hua7oDEq5i8 -----END CERTIFICATE-----Generated at Tue Dec 23 07:05:56 2025 by rpki-client