This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/N2A9suBywKj9cROOJUCZ9MrYwW8.mft File: N2A9suBywKj9cROOJUCZ9MrYwW8.mft (raw, json) Hash identifier: ZTdfvkL6tKAt7OiJgqclDZ34n8FHMRM9c2a/C/jm1iA= Subject key identifier: D6:DD:8A:A7:74:59:3D:DA:90:AF:7F:6A:C7:B8:69:11:C0:63:71:A0 Authority key identifier: 37:60:3D:B2:E0:72:C0:A8:FD:71:13:8E:25:40:99:F4:CA:D8:C1:6F Certificate issuer: /CN=A91FD47F/serialNumber=37603DB2E072C0A8FD71138E254099F4CAD8C16F Certificate serial: 029E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2A9suBywKj9cROOJUCZ9MrYwW8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/N2A9suBywKj9cROOJUCZ9MrYwW8.mft Manifest number: 0289 Signing time: Mon 15 Dec 2025 00:53:19 +0000 Manifest this update: Mon 15 Dec 2025 00:53:19 +0000 Manifest next update: Mon 22 Dec 2025 00:53:19 +0000 Files and hashes: 1: N2A9suBywKj9cROOJUCZ9MrYwW8.crl (hash: yNd5Bx+6kPFmPqKQezgBPf6WTdXR5oLkgT0y0HN7b2g=) 2: AB68CE76346511EDAC41E081C4F9AE02.roa (hash: ENwpRdEuucpLR199wMX1ovh0yufktlvsonosnrFa6n4=) 3: 14B312EC3AE711EDBF700472C4F9AE02.roa (hash: hpkK6ksOTaD7mDbT56x2zJ1eza3vKxeFROPXP1u/0+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/N2A9suBywKj9cROOJUCZ9MrYwW8.crl rsync://rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/N2A9suBywKj9cROOJUCZ9MrYwW8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2A9suBywKj9cROOJUCZ9MrYwW8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 00:53:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 670 (0x29e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD47F, serialNumber=37603DB2E072C0A8FD71138E254099F4CAD8C16F Validity Not Before: Dec 15 00:53:19 2025 GMT Not After : Dec 22 00:53:19 2025 GMT Subject: CN=693f5bff-56c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:27:78:a9:cf:d9:67:4a:8c:e8:f3:c5:da:73: fa:dc:92:c5:7b:a5:94:81:24:51:23:74:86:04:96: ad:6e:91:5c:ce:0f:08:51:96:1e:7f:af:c7:ed:30: 92:bd:b4:7d:c4:09:e5:81:e5:32:70:d4:d1:3c:6b: a9:79:4e:bb:f5:1d:83:5e:59:e1:0e:8e:21:91:6f: e3:90:d6:22:9c:d3:68:88:8b:1d:4d:d6:cf:f0:24: b3:9c:c9:7b:82:5e:7e:46:a6:9c:db:bb:c4:f6:3d: 6e:d5:dc:88:44:52:d0:33:22:3d:a6:31:5b:7b:ad: 42:1b:a2:80:fc:e3:c9:c3:14:84:96:9e:fb:7a:dd: 48:9c:2d:1e:dd:22:ba:08:69:01:01:04:fe:bc:d6: db:20:38:8e:87:00:2b:f0:f3:86:8e:3b:cb:46:f8: b2:c9:fc:ca:eb:48:a0:50:51:51:74:de:22:94:c1: 3e:91:70:48:49:aa:ec:eb:71:1d:c4:bc:cb:d5:68: 25:ca:1c:94:06:10:6f:b8:9f:06:ff:33:46:4d:63: ed:b6:f5:3c:64:37:2c:01:78:c4:c9:ad:8c:f4:3c: d6:18:b8:64:28:bf:31:88:61:c6:2d:76:79:07:c2: 2b:ae:b3:3f:54:4d:fc:fd:2d:29:0f:04:27:5a:67: 51:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:DD:8A:A7:74:59:3D:DA:90:AF:7F:6A:C7:B8:69:11:C0:63:71:A0 X509v3 Authority Key Identifier: keyid:37:60:3D:B2:E0:72:C0:A8:FD:71:13:8E:25:40:99:F4:CA:D8:C1:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/N2A9suBywKj9cROOJUCZ9MrYwW8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2A9suBywKj9cROOJUCZ9MrYwW8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/N2A9suBywKj9cROOJUCZ9MrYwW8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:ac:16:f2:50:84:c3:c1:ce:30:47:bd:71:e2:bb:b9:7d:67: b4:eb:ad:72:d4:72:56:d8:cb:fb:13:bc:59:bd:6b:f5:16:e3: 13:c4:d4:fe:cc:91:ec:3f:d1:25:9e:b1:ce:9a:64:a7:8c:85: a3:44:62:ca:c3:ef:57:18:cd:21:3b:34:28:40:f5:dc:5f:6e: 07:04:fd:79:7a:b9:15:07:c1:d6:85:6f:3f:65:74:36:aa:89: 6b:b8:23:a3:9a:6c:3e:2f:78:d0:20:d2:2d:22:89:8b:d8:ca: 68:2e:5f:0c:ce:65:ea:4f:b0:ad:0b:12:77:17:4f:2b:b3:a4: a5:5e:c2:1a:6c:1b:27:6b:50:44:78:ae:40:d4:a7:a6:61:8f: 7a:c5:37:c3:13:4b:30:2e:e2:43:a3:50:34:97:7a:9a:cb:55: ea:aa:e0:12:44:90:83:94:14:33:ef:aa:ec:6c:f4:a6:14:5f: 5a:3f:58:a4:ee:fb:60:5e:68:62:c3:8f:d8:84:a8:9e:12:bf: 23:4d:9b:74:13:82:f9:de:a4:3c:4a:ae:9a:5a:31:f9:cc:25: a0:41:8c:6a:fc:8f:1c:d1:7a:fa:51:50:8c:50:95:5d:28:63: a6:b0:06:18:31:b6:6f:b4:e4:69:97:d2:07:70:8f:4c:b8:ed: d4:a3:83:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAp4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ0N0YxMTAvBgNVBAUTKDM3NjAzREIyRTA3MkMwQThGRDcxMTM4RTI1NDA5OUY0 Q0FEOEMxNkYwHhcNMjUxMjE1MDA1MzE5WhcNMjUxMjIyMDA1MzE5WjAYMRYwFAYD VQQDDA02OTNmNWJmZi01NmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtid4qc/ZZ0qM6PPF2nP63JLFe6WUgSRRI3SGBJatbpFczg8IUZYef6/H7TCS vbR9xAnlgeUycNTRPGupeU679R2DXlnhDo4hkW/jkNYinNNoiIsdTdbP8CSznMl7 gl5+Rqac27vE9j1u1dyIRFLQMyI9pjFbe61CG6KA/OPJwxSElp77et1InC0e3SK6 CGkBAQT+vNbbIDiOhwAr8POGjjvLRviyyfzK60igUFFRdN4ilME+kXBISars63Ed xLzL1WglyhyUBhBvuJ8G/zNGTWPttvU8ZDcsAXjEya2M9DzWGLhkKL8xiGHGLXZ5 B8IrrrM/VE38/S0pDwQnWmdRFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNbdiqd0 WT3akK9/ase4aRHAY3GgMB8GA1UdIwQYMBaAFDdgPbLgcsCo/XETjiVAmfTK2MFv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDQ3Ri9ENUNFNjI2QTM0 NjExMUVEOURFRThFN0FDNEY5QUUwMi9OMkE5c3VCeXdLajljUk9PSlVDWjlNcll3 VzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL04yQTlzdUJ5d0tqOWNST09KVUNaOU1yWXdXOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDQ3Ri9ENUNFNjI2QTM0NjExMUVEOURFRThFN0FDNEY5QUUwMi9OMkE5c3VCeXdL ajljUk9PSlVDWjlNcll3VzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATrBbyUITDwc4wR71x4ru5fWe0661y1HJW2Mv7E7xZvWv1FuMTxNT+ zJHsP9ElnrHOmmSnjIWjRGLKw+9XGM0hOzQoQPXcX24HBP15erkVB8HWhW8/ZXQ2 qolruCOjmmw+L3jQINItIomL2MpoLl8MzmXqT7CtCxJ3F08rs6SlXsIabBsna1BE eK5A1KemYY96xTfDE0swLuJDo1A0l3qay1XqquASRJCDlBQz76rsbPSmFF9aP1ik 7vtgXmhiw4/YhKieEr8jTZt0E4L53qQ8Sq6aWjH5zCWgQYxq/I8c0Xr6UVCMUJVd KGOmsAYYMbZvtORpl9IHcI9MuO3Uo4M5 -----END CERTIFICATE-----Generated at Mon Dec 15 19:58:04 2025 by rpki-client