This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft File: 2fwVW2_aEGxpmlabEgOEkJWKoy8.mft (raw, json) Hash identifier: fnXpPrmjRa1VacF/Ur+wSAV5qxd9ZzclZX3WT1G5uQs= Subject key identifier: 68:BB:E4:A8:36:58:0B:CE:EF:CC:68:FD:26:D5:13:AE:24:55:5E:84 Authority key identifier: D9:FC:15:5B:6F:DA:10:6C:69:9A:56:9B:12:03:84:90:95:8A:A3:2F Certificate issuer: /CN=A91B53A5/serialNumber=D9FC155B6FDA106C699A569B12038490958AA32F Certificate serial: 1AB7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft Manifest number: 1A9C Signing time: Sat 20 Dec 2025 16:07:43 +0000 Manifest this update: Sat 20 Dec 2025 16:07:43 +0000 Manifest next update: Sat 27 Dec 2025 16:07:43 +0000 Files and hashes: 1: 2fwVW2_aEGxpmlabEgOEkJWKoy8.crl (hash: LD9VtecS7dL0QcIzXT9W4/EXfPF+u12VPKHyWCQoHjs=) 2: C443D86A55A311E7896BED09C4F9AE02.roa (hash: iAz8qRk3/H7vOgPRojw19iFmTjtRy8EuUxq8QG7UtTs=) 3: A9286C0E6D4411E7AF539270C4F9AE02.roa (hash: BhjSntJM5KeISAX/AXFVMKFsUVqLH2ibjtVSQJsKXQw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.crl rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 16:07:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6839 (0x1ab7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B53A5, serialNumber=D9FC155B6FDA106C699A569B12038490958AA32F Validity Not Before: Dec 20 16:07:43 2025 GMT Not After : Dec 27 16:07:43 2025 GMT Subject: CN=6946c9cf-5907 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:2e:8e:57:ea:2e:7f:f3:c6:26:bc:9a:64:62: 94:7b:6f:61:21:1a:6d:7d:6e:a0:b4:e6:87:35:3d: 10:39:b8:d3:9c:9b:0d:1c:db:5d:c8:5a:8f:8c:d3: b5:e6:d4:ba:37:c9:84:7b:cd:71:85:20:f3:24:d5: d4:ae:21:66:3e:07:a3:e8:3f:8c:c3:70:c6:cc:38: 70:cc:1f:9a:6f:68:31:b7:47:62:13:84:bd:33:6e: c2:9b:f2:b4:d9:87:b7:5e:ff:e9:8d:86:5e:63:40: de:91:ee:ce:28:26:6d:2a:a3:2f:9e:30:20:1b:94: 81:f6:ca:39:ff:a1:9f:49:e9:3a:4e:5a:52:10:21: 5a:53:09:4e:b5:03:88:c5:cb:43:21:e1:f1:09:22: ae:d6:c9:36:88:cd:2b:d2:80:25:66:45:d3:ce:db: 33:91:ae:9e:9a:96:79:bd:ab:99:32:c2:83:a5:de: a7:20:7e:28:96:4d:c3:f6:94:4a:4f:14:8c:09:cf: 27:f9:92:c2:04:94:42:b5:ee:3a:5d:56:89:19:d6: b9:3c:16:9b:ea:c5:65:21:0f:0b:bd:4d:bf:ed:65: 09:9a:f1:3e:98:f3:f9:3b:fb:41:6f:e9:4a:68:3e: c7:81:7e:0c:cb:95:2a:0a:09:e7:6d:fd:d4:73:2d: ea:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:BB:E4:A8:36:58:0B:CE:EF:CC:68:FD:26:D5:13:AE:24:55:5E:84 X509v3 Authority Key Identifier: keyid:D9:FC:15:5B:6F:DA:10:6C:69:9A:56:9B:12:03:84:90:95:8A:A3:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption da:80:52:06:ab:e8:cc:a5:e5:69:b0:e4:d9:08:56:e5:77:7c: 00:74:0c:fb:c9:29:d3:35:5c:09:58:e7:0a:a3:50:63:12:7c: 13:44:1e:26:10:66:21:51:b2:e7:01:8a:5e:6e:e5:a3:c1:ec: ac:0f:00:a2:db:f8:41:02:32:df:12:5b:58:01:3e:03:9d:e9: 30:c4:b7:e9:37:fb:cf:5c:6c:85:2b:17:7d:fe:ea:44:24:98: 5e:34:25:2b:5c:b4:dc:96:3f:fd:a4:c1:33:6a:56:96:4c:10: 7f:8a:1b:fc:43:3b:7a:63:7a:60:64:4a:c4:a2:21:54:86:82: e4:0c:48:37:df:5e:34:39:78:32:a2:0c:bf:7d:4c:b5:1b:89: 87:6d:3e:a8:6e:06:6f:ca:8b:56:e1:f2:62:f6:61:11:12:b5: cb:ee:2a:31:fa:97:58:56:c5:85:db:ea:45:f0:32:26:07:a7: 96:21:7c:68:3d:d6:ea:37:ab:cf:b0:a4:de:35:4d:15:7a:67: 02:e2:39:a6:d0:7a:d9:bd:e9:d0:66:63:59:6f:98:0d:a0:8b: c5:92:ba:0e:a1:57:b1:07:56:d9:1b:80:44:3f:c8:30:e9:6e: e2:10:8b:f7:e2:86:70:ac:5b:2b:01:79:5e:56:34:43:f4:ac: 93:cd:e9:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGrcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjUzQTUxMTAvBgNVBAUTKEQ5RkMxNTVCNkZEQTEwNkM2OTlBNTY5QjEyMDM4NDkw OTU4QUEzMkYwHhcNMjUxMjIwMTYwNzQzWhcNMjUxMjI3MTYwNzQzWjAYMRYwFAYD VQQDDA02OTQ2YzljZi01OTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3C6OV+ouf/PGJryaZGKUe29hIRptfW6gtOaHNT0QObjTnJsNHNtdyFqPjNO1 5tS6N8mEe81xhSDzJNXUriFmPgej6D+Mw3DGzDhwzB+ab2gxt0diE4S9M27Cm/K0 2Ye3Xv/pjYZeY0Deke7OKCZtKqMvnjAgG5SB9so5/6GfSek6TlpSECFaUwlOtQOI xctDIeHxCSKu1sk2iM0r0oAlZkXTztszka6empZ5vauZMsKDpd6nIH4olk3D9pRK TxSMCc8n+ZLCBJRCte46XVaJGda5PBab6sVlIQ8LvU2/7WUJmvE+mPP5O/tBb+lK aD7HgX4My5UqCgnnbf3Ucy3qWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGi75Kg2 WAvO78xo/SbVE64kVV6EMB8GA1UdIwQYMBaAFNn8FVtv2hBsaZpWmxIDhJCViqMv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTNBNS8yNTgwQThENjRC NjUxMUU3QjQ2OUMwN0FDNEY5QUUwMi8yZndWVzJfYUVHeHBtbGFiRWdPRWtKV0tv eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJmd1ZXMl9hRUd4cG1sYWJFZ09Fa0pXS295OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTNBNS8yNTgwQThENjRCNjUxMUU3QjQ2OUMwN0FDNEY5QUUwMi8yZndWVzJfYUVH eHBtbGFiRWdPRWtKV0tveTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDagFIGq+jMpeVpsOTZCFbld3wAdAz7ySnTNVwJWOcKo1BjEnwTRB4m EGYhUbLnAYpebuWjweysDwCi2/hBAjLfEltYAT4DnekwxLfpN/vPXGyFKxd9/upE JJheNCUrXLTclj/9pMEzalaWTBB/ihv8Qzt6Y3pgZErEoiFUhoLkDEg33140OXgy ogy/fUy1G4mHbT6obgZvyotW4fJi9mERErXL7iox+pdYVsWF2+pF8DImB6eWIXxo PdbqN6vPsKTeNU0VemcC4jmm0HrZvenQZmNZb5gNoIvFkroOoVexB1bZG4BEP8gw 6W7iEIv34oZwrFsrAXleVjRD9KyTzenN -----END CERTIFICATE-----Generated at Sun Dec 21 09:47:04 2025 by rpki-client