This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.mft File: AX2NuKeIdKsvmtl95Xr94b4WfUQ.mft (raw, json) Hash identifier: vV0w0RxR2rmxSjQ38CeAzJt/+6WpEVKmL0uLEsalnT8= Subject key identifier: 9B:2D:0A:7C:8D:DB:36:FF:E6:25:61:E9:0F:45:80:B5:1C:5E:A6:C2 Authority key identifier: 01:7D:8D:B8:A7:88:74:AB:2F:9A:D9:7D:E5:7A:FD:E1:BE:16:7D:44 Certificate issuer: /CN=A91C2F8C/serialNumber=017D8DB8A78874AB2F9AD97DE57AFDE1BE167D44 Certificate serial: E2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AX2NuKeIdKsvmtl95Xr94b4WfUQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.mft Manifest number: E0 Signing time: Fri 19 Dec 2025 04:37:51 +0000 Manifest this update: Fri 19 Dec 2025 04:37:50 +0000 Manifest next update: Fri 26 Dec 2025 04:37:50 +0000 Files and hashes: 1: AX2NuKeIdKsvmtl95Xr94b4WfUQ.crl (hash: 1nMu7ncH4qWQXcwiLr4Go3iPbHOqy3KxuE/uXG9AM+M=) 2: CEB2CA5686E011EF81BE1A7FC4F9AE02.roa (hash: svxCNz/PtUeVtTEkfJI0UGnsP9Tbd78MIluuCyhiaVA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.crl rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AX2NuKeIdKsvmtl95Xr94b4WfUQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2F8C, serialNumber=017D8DB8A78874AB2F9AD97DE57AFDE1BE167D44 Validity Not Before: Dec 19 04:37:50 2025 GMT Not After : Dec 26 04:37:50 2025 GMT Subject: CN=6944d69f-a345 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:42:4b:64:dd:cc:ea:80:59:78:4c:b1:b9:fd: 66:4f:24:f5:bf:f2:a7:ab:99:c4:af:03:88:11:f8: f7:71:3c:7d:d6:ec:8c:13:64:a8:23:db:b9:dd:ab: c6:8a:20:d9:ba:be:08:6d:1e:64:30:41:44:28:40: 74:90:e5:44:e4:c8:2a:ce:76:d4:cb:1d:39:ec:9d: d1:00:b6:e3:9b:f2:ac:08:2a:f3:b5:c8:29:62:50: e0:ac:d3:85:f4:99:89:9d:4c:91:42:9d:8e:8e:b5: b9:31:8a:6b:1c:39:f1:e7:ac:0c:f1:7c:eb:5b:5f: 75:32:05:c2:23:de:76:77:a6:f4:67:60:50:b6:14: 4b:f0:13:64:0b:ad:8c:bb:85:b3:6a:83:1c:ca:bc: 92:02:79:37:43:de:a4:17:f6:a6:f7:43:ca:90:3c: 7c:23:5a:2c:bf:e9:53:0b:58:73:ce:1c:77:13:b6: e5:e6:4c:9b:f7:00:5e:f0:71:7b:74:5f:fc:13:12: 66:75:5e:0e:b7:4b:ff:35:a1:01:73:66:0e:b3:47: 91:ba:1a:2d:8e:08:7b:08:e3:8a:29:b8:c3:af:e6: df:80:8d:ae:57:f7:f1:4d:04:25:dd:eb:e7:19:67: 41:df:d1:48:ae:2b:f6:a4:72:98:7f:76:84:7c:83: fc:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:2D:0A:7C:8D:DB:36:FF:E6:25:61:E9:0F:45:80:B5:1C:5E:A6:C2 X509v3 Authority Key Identifier: keyid:01:7D:8D:B8:A7:88:74:AB:2F:9A:D9:7D:E5:7A:FD:E1:BE:16:7D:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AX2NuKeIdKsvmtl95Xr94b4WfUQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:f8:ab:a1:bc:a2:40:d5:ec:c4:ae:36:77:5c:72:d1:70:97: 44:67:02:a9:3b:32:db:d4:76:dd:c4:a0:b8:c9:e8:1f:cf:04: 87:a9:8e:48:95:b3:5b:a0:a8:e2:f6:b2:56:2d:bc:e0:8d:f9: dd:8c:7f:2e:ac:9c:63:b6:29:d1:ea:91:1a:28:f3:62:78:eb: 14:38:49:d1:06:eb:da:c5:c5:d3:59:32:5d:10:03:e1:20:d1: ac:4c:9a:89:75:d8:6a:fd:80:37:08:fd:10:6e:6e:e0:8d:01: 6f:7f:2a:51:a1:ea:fd:24:00:45:18:dd:c0:88:c8:db:4d:a7: 54:02:0a:68:c2:03:12:bf:ee:08:3f:77:b7:68:7b:95:71:f2: 18:f3:bf:1a:13:1c:45:e0:30:32:9e:f6:bf:4c:30:a8:31:c3: 10:e8:e6:6e:b3:75:72:e5:d7:88:78:68:7d:76:e1:52:e9:a5: fe:1b:97:d5:25:b3:a7:ac:e9:06:b2:f5:96:43:7d:44:2e:c4: 09:8b:e4:f5:e2:50:00:a7:b4:73:4d:14:51:6e:e3:e5:b2:2a: 32:e0:6a:d7:73:7f:75:f7:43:95:99:63:bb:f4:32:b6:b5:75: cd:d0:80:c2:fe:01:3d:7a:de:c1:7c:e6:dc:70:54:38:39:c7: 72:63:c0:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJGOEMxMTAvBgNVBAUTKDAxN0Q4REI4QTc4ODc0QUIyRjlBRDk3REU1N0FGREUx QkUxNjdENDQwHhcNMjUxMjE5MDQzNzUwWhcNMjUxMjI2MDQzNzUwWjAYMRYwFAYD VQQDDA02OTQ0ZDY5Zi1hMzQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUJLZN3M6oBZeEyxuf1mTyT1v/Knq5nErwOIEfj3cTx91uyME2SoI9u53avG iiDZur4IbR5kMEFEKEB0kOVE5MgqznbUyx057J3RALbjm/KsCCrztcgpYlDgrNOF 9JmJnUyRQp2OjrW5MYprHDnx56wM8XzrW191MgXCI952d6b0Z2BQthRL8BNkC62M u4WzaoMcyrySAnk3Q96kF/am90PKkDx8I1osv+lTC1hzzhx3E7bl5kyb9wBe8HF7 dF/8ExJmdV4Ot0v/NaEBc2YOs0eRuhotjgh7COOKKbjDr+bfgI2uV/fxTQQl3evn GWdB39FIriv2pHKYf3aEfIP8pQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJstCnyN 2zb/5iVh6Q9FgLUcXqbCMB8GA1UdIwQYMBaAFAF9jbiniHSrL5rZfeV6/eG+Fn1E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkY4Qy81NTc5QjlCMDg2 RTAxMUVGOUI2QjE3N0VDNEY5QUUwMi9BWDJOdUtlSWRLc3ZtdGw5NVhyOTRiNFdm VVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FYMk51S2VJZEtzdm10bDk1WHI5NGI0V2ZVUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkY4Qy81NTc5QjlCMDg2RTAxMUVGOUI2QjE3N0VDNEY5QUUwMi9BWDJOdUtlSWRL c3ZtdGw5NVhyOTRiNFdmVVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCa+KuhvKJA1ezErjZ3XHLRcJdEZwKpOzLb1HbdxKC4yegfzwSHqY5I lbNboKji9rJWLbzgjfndjH8urJxjtinR6pEaKPNieOsUOEnRBuvaxcXTWTJdEAPh INGsTJqJddhq/YA3CP0Qbm7gjQFvfypRoer9JABFGN3AiMjbTadUAgpowgMSv+4I P3e3aHuVcfIY878aExxF4DAynva/TDCoMcMQ6OZus3Vy5deIeGh9duFS6aX+G5fV JbOnrOkGsvWWQ31ELsQJi+T14lAAp7RzTRRRbuPlsioy4GrXc39190OVmWO79DK2 tXXN0IDC/gE9et7BfObccFQ4OcdyY8Dk -----END CERTIFICATE-----Generated at Sat Dec 20 00:55:37 2025 by rpki-client