This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft File: 2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft (raw, json) Hash identifier: H96ZwAs1jmgSmdZ3A+eo++m6y3uuDj4/jPrNWCszPTg= Subject key identifier: 63:1B:51:A0:9B:F6:13:89:09:D0:C5:58:6D:1B:27:40:6A:1A:6A:3C Authority key identifier: DB:2C:CC:A8:3D:85:32:88:C5:00:CD:FC:3A:E1:E2:FE:A0:49:F5:14 Certificate issuer: /CN=A91CD00C/serialNumber=DB2CCCA83D853288C500CDFC3AE1E2FEA049F514 Certificate serial: 03A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft Manifest number: 0398 Signing time: Sun 21 Dec 2025 00:00:03 +0000 Manifest this update: Sun 21 Dec 2025 00:00:02 +0000 Manifest next update: Sun 28 Dec 2025 00:00:02 +0000 Files and hashes: 1: 2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl (hash: PjXurIx4Fx8uqH7LBO9HS5/XSjPIiNWl1MFU2vomT6U=) 2: 15D68F5ED55011EFA0564D54C4F9AE02.roa (hash: S/3id5/GrdHISWrodbVNvQaLLsQVLmIkD0brgywz+oo=) 3: 46654408C6CB11ECB185E43EC4F9AE02.roa (hash: 2bcV6GxsWp02/25GPOOyDI2TUUeSbqzzvJgPU+rv3Lc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:00:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 928 (0x3a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD00C, serialNumber=DB2CCCA83D853288C500CDFC3AE1E2FEA049F514 Validity Not Before: Dec 21 00:00:02 2025 GMT Not After : Dec 28 00:00:02 2025 GMT Subject: CN=69473883-9520 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:a5:11:ba:8d:91:66:4b:28:13:d2:3f:90:dc: 67:a2:a5:33:12:7d:91:19:a0:b4:44:7c:ec:79:a5: 09:a2:1a:f4:ef:3c:d8:fd:95:47:3b:0c:ce:89:b1: 40:7b:7b:56:f8:1e:1c:5e:d0:9c:f1:29:2a:d9:b4: d4:18:d9:67:eb:d1:f5:a3:b5:0b:4f:66:cf:cf:55: 78:fa:58:c9:bf:11:08:a9:15:1b:2c:88:0a:cd:29: 8e:51:f5:1c:5c:4c:1d:d7:bf:59:e1:a9:e7:ac:2f: f9:16:95:80:8f:d3:9b:90:eb:42:f8:4a:cc:3f:75: 0e:df:c6:97:d1:3d:77:0f:df:f6:a0:e5:35:c8:16: a8:91:e0:fd:0d:7b:39:4f:83:7c:92:57:04:79:26: 76:f3:bc:d1:72:f2:ab:3a:19:d2:ec:dd:f0:89:bb: 78:79:b2:01:34:7c:6b:3b:67:d4:52:42:38:c7:8b: 86:3f:d8:6b:83:d8:a2:8e:f8:1b:bf:1f:27:2b:66: 12:00:02:06:28:9e:63:b2:f6:56:05:c2:ce:7f:7a: f1:e4:f2:fc:c8:4e:0c:e0:97:71:98:76:4c:c2:65: ce:f4:9e:20:13:db:9d:c7:46:73:67:46:c4:0f:01: 8e:0e:f8:b8:f0:1a:98:df:1f:6c:3c:03:0d:37:11: 13:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:1B:51:A0:9B:F6:13:89:09:D0:C5:58:6D:1B:27:40:6A:1A:6A:3C X509v3 Authority Key Identifier: keyid:DB:2C:CC:A8:3D:85:32:88:C5:00:CD:FC:3A:E1:E2:FE:A0:49:F5:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:f0:a0:03:94:1d:33:8f:9a:bf:88:0b:80:5e:4e:0b:0c:28: ee:48:1a:d0:d6:fd:17:14:d0:ac:56:0a:69:1f:b3:e0:64:4e: a2:8f:f2:ef:99:de:32:f4:30:c8:28:a2:68:1f:0f:11:71:74: 09:ce:ce:84:dc:34:23:46:85:51:f1:3d:36:c9:fd:5d:c1:1e: 08:3e:e0:20:be:01:20:e1:ac:3b:76:1a:18:30:7d:8d:f7:84: 65:01:97:6f:70:f6:18:0d:1f:e4:d4:f6:e1:c8:2e:5a:ea:4b: 2d:f5:40:d4:aa:dd:04:f8:fe:3c:4a:64:01:9f:19:11:87:8a: cb:39:ee:b1:dc:08:39:09:10:a9:34:73:0e:b0:5f:5f:55:b4: d4:b0:b1:00:24:01:27:5c:90:43:a9:b4:f9:90:e7:e7:ac:9d: 37:34:f8:51:3b:5e:1e:14:60:af:f4:49:b5:a6:5c:86:e4:b9: 18:62:81:b1:f6:bf:98:0c:c5:c1:f8:97:b9:56:97:8e:00:67: 2e:c2:fe:1d:11:9c:65:73:8e:a4:c3:68:24:aa:4f:c6:d9:e0: 42:39:64:bb:74:ff:e9:3b:65:34:59:a4:ac:89:d3:bd:19:44: 53:1b:57:32:74:72:e7:2c:4f:a5:11:fd:86:de:49:0e:0a:45: c2:c1:7e:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QwMEMxMTAvBgNVBAUTKERCMkNDQ0E4M0Q4NTMyODhDNTAwQ0RGQzNBRTFFMkZF QTA0OUY1MTQwHhcNMjUxMjIxMDAwMDAyWhcNMjUxMjI4MDAwMDAyWjAYMRYwFAYD VQQDDA02OTQ3Mzg4My05NTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8qURuo2RZksoE9I/kNxnoqUzEn2RGaC0RHzseaUJohr07zzY/ZVHOwzOibFA e3tW+B4cXtCc8Skq2bTUGNln69H1o7ULT2bPz1V4+ljJvxEIqRUbLIgKzSmOUfUc XEwd179Z4annrC/5FpWAj9ObkOtC+ErMP3UO38aX0T13D9/2oOU1yBaokeD9DXs5 T4N8klcEeSZ287zRcvKrOhnS7N3wibt4ebIBNHxrO2fUUkI4x4uGP9hrg9iijvgb vx8nK2YSAAIGKJ5jsvZWBcLOf3rx5PL8yE4M4JdxmHZMwmXO9J4gE9udx0ZzZ0bE DwGODvi48BqY3x9sPAMNNxETmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGMbUaCb 9hOJCdDFWG0bJ0BqGmo8MB8GA1UdIwQYMBaAFNsszKg9hTKIxQDN/Drh4v6gSfUU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDAwQy9DQUE4ODYxRUM2 MDExMUVDOTVGRjFFMTFDNEY5QUUwMi8yeXpNcUQyRk1vakZBTTM4T3VIaV9xQko5 UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ5ek1xRDJGTW9qRkFNMzhPdUhpX3FCSjlSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDAwQy9DQUE4ODYxRUM2MDExMUVDOTVGRjFFMTFDNEY5QUUwMi8yeXpNcUQyRk1v akZBTTM4T3VIaV9xQko5UlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBF8KADlB0zj5q/iAuAXk4LDCjuSBrQ1v0XFNCsVgppH7PgZE6ij/Lv md4y9DDIKKJoHw8RcXQJzs6E3DQjRoVR8T02yf1dwR4IPuAgvgEg4aw7dhoYMH2N 94RlAZdvcPYYDR/k1PbhyC5a6kst9UDUqt0E+P48SmQBnxkRh4rLOe6x3Ag5CRCp NHMOsF9fVbTUsLEAJAEnXJBDqbT5kOfnrJ03NPhRO14eFGCv9Em1plyG5LkYYoGx 9r+YDMXB+Je5VpeOAGcuwv4dEZxlc46kw2gkqk/G2eBCOWS7dP/pO2U0WaSsidO9 GURTG1cydHLnLE+lEf2G3kkOCkXCwX5h -----END CERTIFICATE-----Generated at Mon Dec 22 07:56:38 2025 by rpki-client