This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft File: 2QDd8konYiv5ZDdX7byv-u4yHDc.mft (raw, json) Hash identifier: iacWor1Ugv3scbRUJJkIUx/N5Qh1xyuLX3M0mgpZkPQ= Subject key identifier: 27:6F:1F:F7:0D:C5:74:4B:45:53:95:5C:79:F5:F9:D0:D5:98:58:72 Authority key identifier: D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 Certificate issuer: /CN=A91C7773/serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Certificate serial: 0ED3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft Manifest number: 0EB8 Signing time: Sun 28 Dec 2025 17:21:34 +0000 Manifest this update: Sun 28 Dec 2025 17:21:34 +0000 Manifest next update: Sun 04 Jan 2026 17:21:34 +0000 Files and hashes: 1: 2QDd8konYiv5ZDdX7byv-u4yHDc.crl (hash: eG+nYot/F3J71wKBktnwSg0byA6vEIPgrayY0BIOAEU=) 2: A47D2EC84C1E11EEBA8CDB4BC4F9AE02.roa (hash: k08HrzQA4orJaDMpNJ4cYiGD96bVzWAF2REZWm3ObQ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 17:21:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3795 (0xed3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7773, serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Validity Not Before: Dec 28 17:21:34 2025 GMT Not After : Jan 4 17:21:34 2026 GMT Subject: CN=6951671e-f1d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:21:02:43:2a:5b:7b:a9:cd:1a:88:9c:bb:34: d3:4d:ef:11:30:2c:1c:25:b3:43:dd:34:f9:57:a9: 07:0f:2c:88:62:1d:76:cc:1f:32:e5:34:60:f5:96: 9f:50:21:d2:21:24:ec:2b:2c:15:63:b9:4c:7a:07: e6:31:d6:20:e7:ae:bf:ef:00:eb:73:06:5f:5b:9f: 36:76:d5:2b:bd:e4:52:5e:8d:b6:e6:8b:ee:c6:1c: 27:21:b6:fc:23:5e:91:85:43:b0:a0:bb:3f:38:2e: 02:3e:60:38:f2:f2:ea:81:98:02:c4:3a:93:09:be: eb:53:d6:c5:71:3c:dd:e3:3d:ba:48:3b:2e:e9:bd: e2:fb:1f:ac:6d:a5:d3:c8:71:59:28:36:c8:cd:e2: ed:35:2b:63:0a:61:e3:c4:00:77:af:ec:c8:68:15: 59:fc:7d:c9:60:42:cf:14:a5:fd:77:88:61:e8:d0: 10:5d:7b:4a:18:04:88:e7:65:92:d4:06:47:6a:30: e3:26:f5:b1:6f:d3:3e:d7:6e:a9:16:65:eb:64:97: b9:24:73:49:3d:14:f4:fc:90:19:5f:5b:bc:b3:c5: ee:9a:9a:13:75:d3:a3:5e:c1:30:83:7c:34:f8:3a: 8f:0a:9c:a9:99:e9:f7:62:28:8a:0d:4a:0b:87:24: 29:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:6F:1F:F7:0D:C5:74:4B:45:53:95:5C:79:F5:F9:D0:D5:98:58:72 X509v3 Authority Key Identifier: keyid:D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:ea:bd:df:f6:0b:29:f8:24:6a:ef:e2:ff:3b:2a:e2:ad:b0: 96:b0:5e:62:94:92:72:6f:7d:ea:61:5a:37:ea:48:48:79:f2: 47:7c:54:c4:bb:19:27:48:56:a9:85:1e:46:c4:b1:f4:b2:a6: 4c:cc:02:73:24:be:b0:a0:21:e6:7a:fa:8d:c0:92:4c:25:11: da:54:de:70:10:31:fa:95:9e:b3:4c:f3:32:3b:5c:67:4e:56: 6a:7c:d1:9e:15:c3:b4:ce:57:92:10:5c:9d:b2:c8:fe:b1:98: 69:3b:fd:b9:20:a7:75:ab:a3:ea:6f:b4:d1:f3:73:48:e5:ff: 15:94:d3:c4:6f:8e:b0:37:b8:c9:ed:b1:74:3e:40:bd:89:75: 38:a3:a8:0e:91:be:c8:df:5d:57:8f:65:a4:69:3e:d1:f6:92: 71:31:47:10:57:f1:4d:40:f5:83:b4:83:9a:68:91:5d:28:b4: a4:fa:04:6d:36:30:2f:1f:b0:1f:c3:c4:a1:a1:cb:0a:a3:5c: 86:9a:7d:20:4c:65:96:b3:2a:55:f6:09:82:ad:b7:11:bf:cc: d4:24:87:e3:a5:06:3a:ba:71:fa:45:43:50:b3:9f:67:8a:c4: 7f:e6:89:7c:d9:cd:22:ec:cd:f1:11:4e:5f:4c:5d:ff:31:37: b1:e6:ac:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3NzMxMTAvBgNVBAUTKEQ5MDBEREYyNEEyNzYyMkJGOTY0Mzc1N0VEQkNBRkZB RUUzMjFDMzcwHhcNMjUxMjI4MTcyMTM0WhcNMjYwMTA0MTcyMTM0WjAYMRYwFAYD VQQDDA02OTUxNjcxZS1mMWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjyECQypbe6nNGoicuzTTTe8RMCwcJbND3TT5V6kHDyyIYh12zB8y5TRg9Zaf UCHSISTsKywVY7lMegfmMdYg566/7wDrcwZfW582dtUrveRSXo225ovuxhwnIbb8 I16RhUOwoLs/OC4CPmA48vLqgZgCxDqTCb7rU9bFcTzd4z26SDsu6b3i+x+sbaXT yHFZKDbIzeLtNStjCmHjxAB3r+zIaBVZ/H3JYELPFKX9d4hh6NAQXXtKGASI52WS 1AZHajDjJvWxb9M+126pFmXrZJe5JHNJPRT0/JAZX1u8s8XumpoTddOjXsEwg3w0 +DqPCpypmen3YiiKDUoLhyQpMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCdvH/cN xXRLRVOVXHn1+dDVmFhyMB8GA1UdIwQYMBaAFNkA3fJKJ2Ir+WQ3V+28r/ruMhw3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc3My9BRDMyMjM3Q0Ey RTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllpdjVaRGRYN2J5di11NHlI RGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRRGQ4a29uWWl2NVpEZFg3Ynl2LXU0eUhEYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzc3My9BRDMyMjM3Q0EyRTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllp djVaRGRYN2J5di11NHlIRGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJ6r3f9gsp+CRq7+L/OyrirbCWsF5ilJJyb33qYVo36khIefJHfFTE uxknSFaphR5GxLH0sqZMzAJzJL6woCHmevqNwJJMJRHaVN5wEDH6lZ6zTPMyO1xn TlZqfNGeFcO0zleSEFydssj+sZhpO/25IKd1q6Pqb7TR83NI5f8VlNPEb46wN7jJ 7bF0PkC9iXU4o6gOkb7I311Xj2WkaT7R9pJxMUcQV/FNQPWDtIOaaJFdKLSk+gRt NjAvH7Afw8ShocsKo1yGmn0gTGWWsypV9gmCrbcRv8zUJIfjpQY6unH6RUNQs59n isR/5ol82c0i7M3xEU5fTF3/MTex5qyP -----END CERTIFICATE-----Generated at Mon Dec 29 06:08:10 2025 by rpki-client