This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft File: 2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft (raw, json) Hash identifier: uMba8fGa9jUS63hLFtOhLlyBWXImn/j3zQ3tRAN8ttQ= Subject key identifier: CF:6E:23:53:08:0D:D7:A1:46:89:84:90:46:77:71:86:84:DC:B4:DC Authority key identifier: D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F Certificate issuer: /CN=A91758EC/serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Certificate serial: 57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft Manifest number: 53 Signing time: Fri 19 Dec 2025 06:16:05 +0000 Manifest this update: Fri 19 Dec 2025 06:16:04 +0000 Manifest next update: Fri 26 Dec 2025 06:16:04 +0000 Files and hashes: 1: 2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl (hash: ZuSQqpbnF6yPxDAv0kTMOjnFzxyumLSa+nyr+FUYRag=) 2: 9DA6D1866E1C11F0B7ED1D84C4F9AE02.roa (hash: Ab7z11j/JWV2srLlnZVUsiX2l5YoRDQg2qGXrcUnimg=) 3: 312F0E7E6E1C11F0AB99F682C4F9AE02.roa (hash: TPTw4itouUrT3zWp67Qh/kFVGTIQgN0gjeYV7fEtXi8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 06:16:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91758EC, serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Validity Not Before: Dec 19 06:16:04 2025 GMT Not After : Dec 26 06:16:04 2025 GMT Subject: CN=6944eda5-9968 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:04:ae:40:d0:d9:56:a6:29:a8:9a:b3:9f:2c: 1f:3d:8c:90:9c:2e:e5:1b:70:5f:2d:77:87:3e:bd: a2:c2:72:00:d6:62:bc:a7:11:23:f2:aa:9a:71:d9: 77:1b:9a:e2:7e:a5:a8:b5:86:a0:57:09:35:a3:fd: 18:5e:f2:cb:f7:4d:0d:2a:4d:f9:bb:00:b3:9e:ea: c9:25:ef:2c:a1:74:f1:47:ca:2a:51:1c:85:17:d6: bb:57:c8:0c:cc:e5:94:7e:0b:0d:06:46:ef:46:74: e4:3b:f9:f4:01:e6:a1:95:72:f0:98:88:c2:ff:71: 55:87:fc:4e:da:d4:98:bd:20:91:a8:af:46:d7:47: d8:59:e6:e3:c2:ff:cf:34:d3:2a:6a:e7:fa:61:86: 09:75:ce:17:5a:32:66:8e:fd:5f:56:9c:6d:f5:80: 6e:c5:60:1b:30:3a:3c:a4:fe:33:ca:d5:7e:1f:33: a3:07:7b:9d:af:f6:5b:c8:7c:dc:26:b1:a0:f9:5a: b6:6b:e6:ab:e0:f8:73:ff:d4:51:0a:6d:80:fd:0c: dc:4e:a6:fc:55:5f:82:b8:13:92:32:03:d1:cd:1f: 6d:52:2f:1f:ea:58:db:b3:e8:56:a5:37:98:65:36: 10:51:95:60:4e:e5:eb:41:7b:9d:c6:d0:35:9f:09: 1c:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:6E:23:53:08:0D:D7:A1:46:89:84:90:46:77:71:86:84:DC:B4:DC X509v3 Authority Key Identifier: keyid:D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:af:a6:d3:62:1a:24:fb:af:56:99:a7:ea:04:56:ba:86:eb: 84:5f:17:50:de:c3:41:f3:12:77:60:5d:9d:ba:59:62:11:4b: b1:93:c4:d3:c6:2a:9e:f3:5b:92:57:af:e8:cb:fc:0f:95:8c: 88:a9:70:a6:93:89:37:7c:04:20:96:4e:91:b0:e9:0c:b1:c8: 35:1f:6a:91:27:35:9f:a9:1c:ad:50:2f:5e:3d:78:b8:75:36: 9c:42:83:22:b1:7e:b1:74:20:95:f9:1e:24:79:1a:41:f5:7d: e2:34:d1:20:15:36:5a:7c:8b:a7:6a:29:9b:f7:c5:5a:f3:fd: c4:4b:10:20:81:65:4d:d2:81:34:1d:61:f3:98:b8:4b:80:fb: af:14:9f:c0:9c:a5:cd:09:53:c3:12:13:04:a7:9f:7e:3a:42: 87:50:e6:cc:18:01:db:92:ac:be:94:c0:0e:c6:b8:6f:cd:04: 60:82:02:ad:91:ab:6e:3e:64:70:d6:43:51:44:be:e1:ba:79: 2f:1e:67:9f:8e:eb:67:82:6f:dc:7d:42:90:55:50:b6:dc:09: 1d:0f:c3:8f:a2:5b:10:29:bd:d7:70:1f:69:fc:16:1d:4d:59: e6:97:4f:e5:32:d9:36:6b:8d:b3:ca:f8:62:cd:5a:36:de:b0: 64:04:75:3c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NThFQzExMC8GA1UEBRMoRDgyN0I2ODQzRUI3RjZCOUYwRUQ1RjJGRjcyMzQ0QTUy QzA0QjQ5RjAeFw0yNTEyMTkwNjE2MDRaFw0yNTEyMjYwNjE2MDRaMBgxFjAUBgNV BAMMDTY5NDRlZGE1LTk5NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9BK5A0NlWpimomrOfLB89jJCcLuUbcF8td4c+vaLCcgDWYrynESPyqppx2Xcb muJ+pai1hqBXCTWj/Rhe8sv3TQ0qTfm7ALOe6skl7yyhdPFHyipRHIUX1rtXyAzM 5ZR+Cw0GRu9GdOQ7+fQB5qGVcvCYiML/cVWH/E7a1Ji9IJGor0bXR9hZ5uPC/880 0ypq5/phhgl1zhdaMmaO/V9WnG31gG7FYBswOjyk/jPK1X4fM6MHe52v9lvIfNwm saD5WrZr5qvg+HP/1FEKbYD9DNxOpvxVX4K4E5IyA9HNH21SLx/qWNuz6FalN5hl NhBRlWBO5etBe53G0DWfCRyvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUz24jUwgN 16FGiYSQRndxhoTctNwwHwYDVR0jBBgwFoAU2Ce2hD639rnw7V8v9yNEpSwEtJ8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1OEVDLzZCRjg2Qjg0NjYz MDExRjBCOURDNEU2NEM0RjlBRTAyLzJDZTJoRDYzOXJudzdWOHY5eU5FcFN3RXRK OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMkNlMmhENjM5cm53N1Y4djl5TkVwU3dFdEo4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 OEVDLzZCRjg2Qjg0NjYzMDExRjBCOURDNEU2NEM0RjlBRTAyLzJDZTJoRDYzOXJu dzdWOHY5eU5FcFN3RXRKOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADGvptNiGiT7r1aZp+oEVrqG64RfF1Dew0HzEndgXZ26WWIRS7GTxNPG Kp7zW5JXr+jL/A+VjIipcKaTiTd8BCCWTpGw6QyxyDUfapEnNZ+pHK1QL149eLh1 NpxCgyKxfrF0IJX5HiR5GkH1feI00SAVNlp8i6dqKZv3xVrz/cRLECCBZU3SgTQd YfOYuEuA+68Un8Ccpc0JU8MSEwSnn346QodQ5swYAduSrL6UwA7GuG/NBGCCAq2R q24+ZHDWQ1FEvuG6eS8eZ5+O62eCb9x9QpBVULbcCR0Pw4+iWxApvddwH2n8Fh1N WeaXT+Uy2TZrjbPK+GLNWjbesGQEdTw= -----END CERTIFICATE-----Generated at Sat Dec 20 17:19:18 2025 by rpki-client