This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft File: 2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json) Hash identifier: tQ/Xp3llNKHzGmk/I/VbLWcS+5q4ssyZKrRtiNTp9ho= Subject key identifier: 1C:85:E4:20:EB:DC:DD:59:B2:FC:8B:84:BB:00:BC:30:F4:7E:44:2F Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Certificate serial: 01F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft Manifest number: 01F0 Signing time: Sun 21 Dec 2025 01:49:27 +0000 Manifest this update: Sun 21 Dec 2025 01:49:27 +0000 Manifest next update: Sun 28 Dec 2025 01:49:27 +0000 Files and hashes: 1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: +MGfRFCIYYYUZJzcn1povIr03yyOG8F3p4BVmL28IDk=) 2: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: HkCOmQRPg+yDDZPtodRzZcHCpOQoTEGcVWS7eV1BiSA=) 3: 881C3F9CABD311EFBFED7130C4F9AE02.roa (hash: 4Vu2iECkKD+oqedLfhjWXd7CHOWEQhszvHID7EwF+IE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 01:49:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 504 (0x1f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEFBB, serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Validity Not Before: Dec 21 01:49:27 2025 GMT Not After : Dec 28 01:49:27 2025 GMT Subject: CN=69475227-f74c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a4:4a:5f:f4:4c:c3:fa:52:58:d4:3e:45:88: 72:5c:cc:2b:58:27:f5:e3:d2:c3:d1:bd:6e:53:03: 80:e4:79:2f:22:ee:79:80:d3:81:98:38:9e:27:f8: 1a:c0:69:43:01:f7:ff:8b:bc:6b:05:25:70:e6:55: c3:7e:be:44:5b:97:7f:68:9f:f3:cf:38:ca:43:fc: 52:a2:87:dd:e1:a4:e8:a2:62:49:7f:1b:10:16:06: 32:e5:bc:36:35:43:a3:42:7e:a4:79:f5:6f:f3:29: 65:06:64:71:af:e7:7f:2f:2d:e1:38:bf:9b:ed:4d: 90:9c:b8:74:c9:bc:f4:2f:10:b7:d1:85:74:2f:47: 1f:9d:01:c4:dd:8d:18:f5:e4:a5:c5:ce:68:44:2f: 41:eb:99:77:7e:05:1b:52:09:fe:69:d3:a9:b0:19: 69:11:f6:bf:13:77:c5:ed:0e:e9:38:9f:bb:00:95: 2e:92:bd:b2:02:ce:82:e7:6b:91:c7:43:2e:85:50: 37:50:9a:1a:0a:2a:9f:b7:15:ae:08:df:79:83:39: df:ab:94:95:8f:36:74:49:f4:d3:06:bc:00:a7:48: 59:a2:98:03:05:a2:97:be:09:a9:ce:25:42:d4:c7: 56:37:6c:1f:2c:85:a6:b8:e1:33:37:51:73:59:4d: 59:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:85:E4:20:EB:DC:DD:59:B2:FC:8B:84:BB:00:BC:30:F4:7E:44:2F X509v3 Authority Key Identifier: keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:ca:c6:d2:41:fb:6f:07:3f:12:84:cf:a3:41:2a:95:bf:64: 2e:c3:b1:db:6d:dc:14:0e:65:e3:84:de:e8:90:99:03:17:86: 68:d6:11:fd:42:ce:79:3d:ff:2d:28:da:83:e5:c5:8c:5c:d3: 5a:62:5e:90:1d:fe:04:b4:bf:cc:cb:bf:dd:6d:a4:26:5e:47: 45:38:31:f9:b0:a4:73:ff:4d:7e:5e:d1:86:b0:e4:6e:1c:00: be:d1:ca:ca:81:86:ab:40:20:2e:23:4a:d5:8d:3a:c1:09:9f: 6b:27:a9:ff:53:da:3f:ec:f7:70:08:06:52:3c:7a:33:e0:ba: 4a:fd:8a:d0:8d:70:a1:c7:b3:ba:57:58:0b:7f:1b:81:17:ec: 80:58:32:18:e7:86:8a:ac:27:96:df:5b:ee:e5:2f:2a:5f:88: 26:49:45:21:aa:f6:ed:1a:a9:7c:b8:bb:9d:f1:1f:f9:d1:bc: e7:95:cd:2b:17:64:84:3b:be:35:df:87:5f:81:42:ca:65:f4: a5:28:dc:bd:26:67:65:af:f5:bd:a5:a8:8b:73:d0:cd:c4:1a: 06:72:ca:a1:0d:5f:d3:3f:7b:98:c6:e4:7e:18:5a:ad:fd:2e: a6:2e:d8:f7:eb:02:cc:98:36:ca:5c:cc:f1:a8:49:04:e2:3c: 82:e9:bf:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGQkIxMTAvBgNVBAUTKERBNzVBQjBGQjNBQTg3NUFGQURGNUEzOEY4NTJCREND MUREODI2RjcwHhcNMjUxMjIxMDE0OTI3WhcNMjUxMjI4MDE0OTI3WjAYMRYwFAYD VQQDDA02OTQ3NTIyNy1mNzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2aRKX/RMw/pSWNQ+RYhyXMwrWCf149LD0b1uUwOA5HkvIu55gNOBmDieJ/ga wGlDAff/i7xrBSVw5lXDfr5EW5d/aJ/zzzjKQ/xSoofd4aToomJJfxsQFgYy5bw2 NUOjQn6kefVv8yllBmRxr+d/Ly3hOL+b7U2QnLh0ybz0LxC30YV0L0cfnQHE3Y0Y 9eSlxc5oRC9B65l3fgUbUgn+adOpsBlpEfa/E3fF7Q7pOJ+7AJUukr2yAs6C52uR x0MuhVA3UJoaCiqftxWuCN95gznfq5SVjzZ0SfTTBrwAp0hZopgDBaKXvgmpziVC 1MdWN2wfLIWmuOEzN1FzWU1ZkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFByF5CDr 3N1ZsvyLhLsAvDD0fkQvMB8GA1UdIwQYMBaAFNp1qw+zqoda+t9aOPhSvcwd2Cb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUZCQi9EODk2QjVDOEVB NkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgxcjYzMW80LUZLOXpCM1lK dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuV3JEN09xaDFyNjMxbzQtRks5ekIzWUp2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUZCQi9EODk2QjVDOEVBNkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgx cjYzMW80LUZLOXpCM1lKdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsysbSQftvBz8ShM+jQSqVv2Quw7HbbdwUDmXjhN7okJkDF4Zo1hH9 Qs55Pf8tKNqD5cWMXNNaYl6QHf4EtL/My7/dbaQmXkdFODH5sKRz/01+XtGGsORu HAC+0crKgYarQCAuI0rVjTrBCZ9rJ6n/U9o/7PdwCAZSPHoz4LpK/YrQjXChx7O6 V1gLfxuBF+yAWDIY54aKrCeW31vu5S8qX4gmSUUhqvbtGql8uLud8R/50bznlc0r F2SEO74134dfgULKZfSlKNy9Jmdlr/W9paiLc9DNxBoGcsqhDV/TP3uYxuR+GFqt /S6mLtj36wLMmDbKXMzxqEkE4jyC6b9T -----END CERTIFICATE-----Generated at Mon Dec 22 16:08:41 2025 by rpki-client