This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft File: 2kcELjdqlHP8Dt_IRFc53RMorg4.mft (raw, json) Hash identifier: I36hUo/vhA1oF1+//Jrp/W+QuQiP1isNl0Ew9RS+lgo= Subject key identifier: D4:C1:27:60:DE:14:51:02:CC:F3:CB:66:17:1C:62:C8:82:D6:97:B6 Authority key identifier: DA:47:04:2E:37:6A:94:73:FC:0E:DF:C8:44:57:39:DD:13:28:AE:0E Certificate issuer: /CN=A9191DF4/serialNumber=DA47042E376A9473FC0EDFC8445739DD1328AE0E Certificate serial: 0E76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft Manifest number: 0E5D Signing time: Sun 28 Dec 2025 17:26:49 +0000 Manifest this update: Sun 28 Dec 2025 17:26:48 +0000 Manifest next update: Sun 04 Jan 2026 17:26:48 +0000 Files and hashes: 1: 2kcELjdqlHP8Dt_IRFc53RMorg4.crl (hash: hPuO0DhPOymtBYGCf+ypo5WLoGLyAMWPouEdeb40QVU=) 2: B922DB22E84211EA918B8F09C4F9AE02.roa (hash: WrORF911HLcFuZdH0HRCb0Ilepojo6I2DwL+ZjMpcO0=) 3: B5D4A156598B11EC82C8685CC4F9AE02.roa (hash: 4QYUWAD8mV7goqY2eyB8OTjIn05Ok4IHRMJOhxEL9Q0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.crl rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 17:26:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3702 (0xe76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191DF4, serialNumber=DA47042E376A9473FC0EDFC8445739DD1328AE0E Validity Not Before: Dec 28 17:26:48 2025 GMT Not After : Jan 4 17:26:48 2026 GMT Subject: CN=69516859-942d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c0:37:1c:e5:90:68:c1:0e:12:81:4a:e5:89: 3e:03:37:9d:11:94:61:17:ec:02:1e:e2:dd:eb:70: d0:de:06:da:41:00:4f:2c:57:48:fe:43:d5:ef:74: d0:be:05:32:35:16:8b:e2:16:0f:03:dc:68:70:e0: 71:dd:39:28:b0:be:30:28:3e:3a:88:47:69:9e:5c: 5a:45:62:90:4b:73:86:72:a1:b0:b4:a2:44:1b:6d: 41:e5:43:97:dc:6b:dc:ae:84:d9:16:e4:9b:8a:05: 22:1e:02:47:5c:6a:43:86:b4:84:35:5d:70:11:aa: 14:24:ab:c2:99:38:ee:cd:e1:4e:95:a0:2d:05:61: 32:60:6f:26:8a:98:2a:b0:cc:06:46:b1:16:43:41: 21:1d:02:04:98:25:cd:c0:ca:73:8c:e6:59:97:10: c6:8e:b7:97:0e:c5:75:04:8b:3b:c4:db:18:e8:ce: 86:68:cb:d0:bc:9e:b2:01:0f:49:1a:12:58:c9:c0: 67:a1:1d:2e:43:f5:4d:45:5d:7e:e8:03:a5:0f:d8: 5f:00:83:50:81:c5:75:5b:9d:2d:76:34:94:85:88: cc:28:ca:89:e2:45:9d:7a:a9:16:bd:9c:96:85:ef: 09:d7:d0:14:e0:6a:4b:90:b2:29:ff:01:0b:1a:c9: d1:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:C1:27:60:DE:14:51:02:CC:F3:CB:66:17:1C:62:C8:82:D6:97:B6 X509v3 Authority Key Identifier: keyid:DA:47:04:2E:37:6A:94:73:FC:0E:DF:C8:44:57:39:DD:13:28:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:ee:ee:bf:2d:9a:26:fb:d0:c9:47:1c:65:eb:f0:61:fb:cc: ef:54:4e:d8:f3:69:fb:6f:d3:18:0c:61:bf:68:03:7c:3a:fa: 97:fa:73:02:34:4a:ab:e6:0d:33:98:b2:1d:8e:9b:27:39:a7: f2:34:c1:d8:54:4e:28:34:4f:a9:f8:8e:b8:cc:5c:0f:d3:f2: 79:6a:9c:19:1d:97:fc:33:9c:c5:af:92:02:bb:e3:0e:d3:30: 21:48:ea:c5:e9:99:b4:28:30:34:e2:8a:9d:af:70:6d:07:64: 1d:1c:25:b0:92:85:16:ea:aa:1c:75:ca:b9:6f:6e:9d:62:c1: 4f:d4:78:d3:7f:f9:b0:02:2b:07:36:ac:3b:0c:8f:ea:ca:5e: e6:28:df:73:40:86:1b:ce:03:b9:2a:ce:97:48:08:5a:a6:fd: 8f:b8:ff:8b:95:d0:eb:d4:c1:41:88:d2:85:b0:ad:a2:aa:ed: 9b:26:18:23:8c:80:9e:01:aa:21:02:63:5a:e9:65:74:38:b1: 72:18:e9:26:07:ef:ac:ac:de:d7:86:ee:6a:0d:c8:ec:47:f8: a0:22:a6:58:b7:ec:83:17:73:c0:32:b3:c0:49:b3:d5:d0:95: 56:73:93:6c:20:24:ce:03:e1:8d:73:87:9c:b0:a9:6c:4e:4a: d1:80:ff:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFERjQxMTAvBgNVBAUTKERBNDcwNDJFMzc2QTk0NzNGQzBFREZDODQ0NTczOURE MTMyOEFFMEUwHhcNMjUxMjI4MTcyNjQ4WhcNMjYwMTA0MTcyNjQ4WjAYMRYwFAYD VQQDDA02OTUxNjg1OS05NDJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA08A3HOWQaMEOEoFK5Yk+AzedEZRhF+wCHuLd63DQ3gbaQQBPLFdI/kPV73TQ vgUyNRaL4hYPA9xocOBx3TkosL4wKD46iEdpnlxaRWKQS3OGcqGwtKJEG21B5UOX 3GvcroTZFuSbigUiHgJHXGpDhrSENV1wEaoUJKvCmTjuzeFOlaAtBWEyYG8mipgq sMwGRrEWQ0EhHQIEmCXNwMpzjOZZlxDGjreXDsV1BIs7xNsY6M6GaMvQvJ6yAQ9J GhJYycBnoR0uQ/VNRV1+6AOlD9hfAINQgcV1W50tdjSUhYjMKMqJ4kWdeqkWvZyW he8J19AU4GpLkLIp/wELGsnR2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNTBJ2De FFECzPPLZhccYsiC1pe2MB8GA1UdIwQYMBaAFNpHBC43apRz/A7fyERXOd0TKK4O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MURGNC9GNDFEMUMxOEIz OEUxMUU5ODYyODJCNzNDNEY5QUUwMi8ya2NFTGpkcWxIUDhEdF9JUkZjNTNSTW9y ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY0VMamRxbEhQOER0X0lSRmM1M1JNb3JnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MURGNC9GNDFEMUMxOEIzOEUxMUU5ODYyODJCNzNDNEY5QUUwMi8ya2NFTGpkcWxI UDhEdF9JUkZjNTNSTW9yZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCI7u6/LZom+9DJRxxl6/Bh+8zvVE7Y82n7b9MYDGG/aAN8OvqX+nMC NEqr5g0zmLIdjpsnOafyNMHYVE4oNE+p+I64zFwP0/J5apwZHZf8M5zFr5ICu+MO 0zAhSOrF6Zm0KDA04oqdr3BtB2QdHCWwkoUW6qocdcq5b26dYsFP1HjTf/mwAisH Nqw7DI/qyl7mKN9zQIYbzgO5Ks6XSAhapv2PuP+LldDr1MFBiNKFsK2iqu2bJhgj jICeAaohAmNa6WV0OLFyGOkmB++srN7Xhu5qDcjsR/igIqZYt+yDF3PAMrPASbPV 0JVWc5NsICTOA+GNc4ecsKlsTkrRgP/c -----END CERTIFICATE-----Generated at Mon Dec 29 10:13:00 2025 by rpki-client