This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft File: r2ctqMXR1sgNUGF4yefLdE9uOOY.mft (raw, json) Hash identifier: 2OuznfGUIrGoDmh2luM/Nlr64H4bbOpmwjQRxkhC9O4= Subject key identifier: 76:80:69:D7:D3:50:71:FF:2C:21:1B:ED:7D:65:A4:07:22:5D:EC:40 Authority key identifier: AF:67:2D:A8:C5:D1:D6:C8:0D:50:61:78:C9:E7:CB:74:4F:6E:38:E6 Certificate issuer: /CN=A91A6F2D/serialNumber=AF672DA8C5D1D6C80D506178C9E7CB744F6E38E6 Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft Manifest number: CA Signing time: Sat 20 Dec 2025 22:02:35 +0000 Manifest this update: Sat 20 Dec 2025 22:02:34 +0000 Manifest next update: Sat 27 Dec 2025 22:02:34 +0000 Files and hashes: 1: r2ctqMXR1sgNUGF4yefLdE9uOOY.crl (hash: ThPytU4770wzR201DZ7nT69QbBKu3AAmK1uziVNTpi0=) 2: FBE0AB56AC6511EFAEAA8A3CC4F9AE02.roa (hash: 05N/6Qhw5iJe1Qr/JCmwvRl4veGMACl1Zh2wsIyWrXw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.crl rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 22:02:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F2D, serialNumber=AF672DA8C5D1D6C80D506178C9E7CB744F6E38E6 Validity Not Before: Dec 20 22:02:34 2025 GMT Not After : Dec 27 22:02:34 2025 GMT Subject: CN=69471cfb-c2de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:14:3e:01:e3:c4:f0:0d:83:8d:84:95:e2:e9: a6:f6:b4:06:18:1a:92:83:62:83:c0:42:0a:7b:1d: 05:43:f7:bd:cb:c9:a4:ea:db:5e:25:ea:32:78:fe: b1:62:e2:00:e3:29:18:9c:18:0e:1d:55:09:0e:90: 7e:96:d8:02:be:33:6f:76:99:a2:fd:c8:07:25:31: bc:ac:bb:40:ab:11:ca:31:41:09:2d:d5:5d:2d:31: 4d:1f:71:31:17:62:ce:9a:10:e8:9f:1e:0b:a6:ca: e8:76:b9:4a:cc:18:bd:17:ae:3e:55:13:fb:6e:77: 90:87:34:6d:6d:45:72:ce:11:f4:5c:4d:48:de:4f: b1:34:1c:62:5c:e1:c7:57:80:dc:54:5b:c6:47:a4: 86:c7:25:c9:ae:fa:e5:f9:17:1b:1e:ce:c8:29:c3: 08:41:92:6a:ff:b9:f9:81:0f:3d:13:46:0a:08:17: 2b:9f:e5:1b:a2:3d:df:f3:60:a7:64:34:a7:13:63: d2:db:a7:61:1f:88:09:89:42:75:97:f5:99:b2:ff: a1:d4:6c:3d:13:f4:91:23:39:60:92:10:85:28:38: dd:ba:85:22:7d:05:e6:5d:e4:99:cf:f7:0b:94:37: 43:8c:cb:b0:53:ee:2c:52:93:f1:a0:83:e5:3c:ba: d2:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:80:69:D7:D3:50:71:FF:2C:21:1B:ED:7D:65:A4:07:22:5D:EC:40 X509v3 Authority Key Identifier: keyid:AF:67:2D:A8:C5:D1:D6:C8:0D:50:61:78:C9:E7:CB:74:4F:6E:38:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:9e:27:3d:53:03:67:99:3f:b4:fb:b9:07:5f:62:d8:a6:a5: e4:1e:6e:10:d1:cc:07:03:f8:be:51:67:bc:c8:33:cb:03:43: ea:f8:9f:43:25:44:79:ec:67:3a:08:9c:33:e6:9a:bc:a6:44: 6e:96:3f:ee:50:cd:d2:6f:ed:ae:44:84:5e:d7:09:e8:64:ae: 39:a5:ba:1b:ce:b9:c9:47:7a:41:af:bf:ee:e6:66:91:0a:0a: 1a:82:57:3c:50:8b:93:1f:e3:40:76:41:8d:94:8a:5e:b0:73: fd:35:26:87:cc:8e:c0:05:3e:21:f4:82:c0:4d:6e:1b:43:6d: 9d:20:6f:9b:45:c3:cd:f8:df:0b:5e:9d:ce:c1:68:ee:84:fb: 91:b3:bf:26:60:bf:d1:ae:91:d1:70:3b:5f:3a:9d:46:92:e0: 75:26:e1:d4:04:9c:67:f3:8f:4c:7d:52:fa:3e:5b:14:00:09: 9f:36:a1:91:44:c7:b3:13:8d:b3:a4:d6:e1:14:9f:6c:5b:71: cc:f8:ce:07:a7:c6:22:ee:85:9a:b0:fe:78:ac:81:80:c6:ea: 18:f0:ef:ae:4b:bb:67:2c:c8:32:88:95:48:a9:6a:8c:9d:bd: ce:39:66:67:15:91:92:cd:95:6d:34:f7:49:a5:e0:06:ba:1f: 29:a0:f4:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZGMkQxMTAvBgNVBAUTKEFGNjcyREE4QzVEMUQ2QzgwRDUwNjE3OEM5RTdDQjc0 NEY2RTM4RTYwHhcNMjUxMjIwMjIwMjM0WhcNMjUxMjI3MjIwMjM0WjAYMRYwFAYD VQQDDA02OTQ3MWNmYi1jMmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuhQ+AePE8A2DjYSV4umm9rQGGBqSg2KDwEIKex0FQ/e9y8mk6tteJeoyeP6x YuIA4ykYnBgOHVUJDpB+ltgCvjNvdpmi/cgHJTG8rLtAqxHKMUEJLdVdLTFNH3Ex F2LOmhDonx4LpsrodrlKzBi9F64+VRP7bneQhzRtbUVyzhH0XE1I3k+xNBxiXOHH V4DcVFvGR6SGxyXJrvrl+RcbHs7IKcMIQZJq/7n5gQ89E0YKCBcrn+Uboj3f82Cn ZDSnE2PS26dhH4gJiUJ1l/WZsv+h1Gw9E/SRIzlgkhCFKDjduoUifQXmXeSZz/cL lDdDjMuwU+4sUpPxoIPlPLrSUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHaAadfT UHH/LCEb7X1lpAciXexAMB8GA1UdIwQYMBaAFK9nLajF0dbIDVBheMnny3RPbjjm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkYyRC82RjgyMTE3OEFC ODgxMUVGODBDNzVBNzRDNEY5QUUwMi9yMmN0cU1YUjFzZ05VR0Y0eWVmTGRFOXVP T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3IyY3RxTVhSMXNnTlVHRjR5ZWZMZEU5dU9PWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkYyRC82RjgyMTE3OEFCODgxMUVGODBDNzVBNzRDNEY5QUUwMi9yMmN0cU1YUjFz Z05VR0Y0eWVmTGRFOXVPT1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/nic9UwNnmT+0+7kHX2LYpqXkHm4Q0cwHA/i+UWe8yDPLA0Pq+J9D JUR57Gc6CJwz5pq8pkRulj/uUM3Sb+2uRIRe1wnoZK45pbobzrnJR3pBr7/u5maR Cgoaglc8UIuTH+NAdkGNlIpesHP9NSaHzI7ABT4h9ILATW4bQ22dIG+bRcPN+N8L Xp3OwWjuhPuRs78mYL/RrpHRcDtfOp1GkuB1JuHUBJxn849MfVL6PlsUAAmfNqGR RMezE42zpNbhFJ9sW3HM+M4Hp8Yi7oWasP54rIGAxuoY8O+uS7tnLMgyiJVIqWqM nb3OOWZnFZGSzZVtNPdJpeAGuh8poPQ3 -----END CERTIFICATE-----Generated at Sun Dec 21 12:16:27 2025 by rpki-client