This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft File: 2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft (raw, json) Hash identifier: rtJokKliCgBFMPgXdwMtxQYqOltphGq/zHRydudVJCw= Subject key identifier: 3E:E4:1E:9A:2B:44:AD:B9:1B:9F:14:68:6E:79:2A:4F:D6:C4:EC:EB Authority key identifier: DA:B4:A5:2A:8E:C1:AA:D6:C9:25:2E:EA:4D:5D:15:69:D2:7A:F4:6B Certificate issuer: /CN=A91D1C7F/serialNumber=DAB4A52A8EC1AAD6C9252EEA4D5D1569D27AF46B Certificate serial: 03D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft Manifest number: 03CD Signing time: Thu 18 Dec 2025 23:53:23 +0000 Manifest this update: Thu 18 Dec 2025 23:53:23 +0000 Manifest next update: Thu 25 Dec 2025 23:53:23 +0000 Files and hashes: 1: 2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl (hash: RlkIvPnX7xXJHS1X3WYRQj+nn132DzJ9zT6HYL64gVg=) 2: E5B25D84B0D211ECB7B1BA7DC4F9AE02.roa (hash: 5JeHEtG1xdKCrCH6rPS3zOfVRTqBs2fv9GJfMUQ9NfQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:53:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 979 (0x3d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1C7F, serialNumber=DAB4A52A8EC1AAD6C9252EEA4D5D1569D27AF46B Validity Not Before: Dec 18 23:53:23 2025 GMT Not After : Dec 25 23:53:23 2025 GMT Subject: CN=694493f3-21ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:39:05:64:35:8e:ca:d2:15:ff:0e:24:e7:b1: f0:09:31:5b:c0:59:27:9d:fd:32:8a:a6:a5:79:85: 69:ce:fa:11:02:9a:e9:e5:dc:81:fc:5e:9c:7b:39: 36:81:bd:01:0f:f9:1e:65:43:02:bd:dc:03:a8:7b: 48:0f:84:2c:d5:72:69:f5:16:d2:ca:7a:0f:44:0f: 9b:d1:a7:23:13:a9:5d:9a:fa:6e:7e:ef:79:f3:0e: b0:6f:c1:0a:ca:69:ae:55:e5:55:61:90:63:e9:6a: cf:25:4d:aa:2d:d5:1b:94:5e:a1:62:de:1e:65:4c: ac:84:a9:83:a6:f6:65:a3:d1:cb:4f:ca:8e:70:c2: 27:a0:5b:7f:eb:b1:35:58:20:b1:34:06:0c:e2:3b: 5d:ac:9a:aa:2d:e4:3d:ba:44:fa:72:67:ae:11:df: 43:93:91:81:fa:9d:68:29:5a:1f:33:04:dc:0a:ce: c4:5b:54:57:5f:dd:cf:6d:cd:61:6f:96:a3:4f:b3: 1c:48:c8:8f:85:57:b3:d1:3d:19:1b:c4:79:38:d3: 7c:68:db:6c:bf:9d:00:b4:c9:08:c8:8f:f0:11:f5: 1e:2c:a2:d8:e2:12:ab:34:1d:b6:86:cb:30:f5:4e: 3c:b5:26:9a:d7:bd:8d:04:54:87:24:b5:33:5a:ab: 64:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:E4:1E:9A:2B:44:AD:B9:1B:9F:14:68:6E:79:2A:4F:D6:C4:EC:EB X509v3 Authority Key Identifier: keyid:DA:B4:A5:2A:8E:C1:AA:D6:C9:25:2E:EA:4D:5D:15:69:D2:7A:F4:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:54:97:78:5a:7d:ea:a8:82:c1:a3:9f:2a:9f:d2:15:e5:2b: d2:87:35:8f:85:77:aa:8c:5a:32:09:a9:aa:5f:d2:42:e0:93: 43:5e:bc:17:ec:9b:07:11:a9:1d:27:b6:ce:06:ca:63:15:15: e9:c8:f0:92:03:00:e1:94:7f:96:df:ea:94:2f:5c:c1:42:66: 0b:10:fe:b4:de:a3:76:b3:91:c8:3c:48:ab:cb:56:94:9c:0c: ab:48:8c:38:37:68:ed:4f:70:44:e0:02:ff:d8:a2:13:55:2b: 73:a7:e8:e3:e7:0f:ef:8d:18:da:22:44:e3:ff:d9:64:c8:80: 03:4c:c5:78:41:c1:1d:ce:0d:a4:d4:41:f1:8a:fa:02:0c:d5: a6:15:36:a2:56:b5:1d:49:62:c9:2f:d3:0b:fd:2b:14:5d:1e: 04:90:da:05:a3:8d:69:5d:e1:fa:b8:51:e3:ee:65:ea:1f:d1: 2d:f5:ba:17:bd:6d:6b:45:d5:7d:d1:bf:90:40:5f:38:15:81: c5:0c:19:3a:dd:ba:75:49:5f:1e:0e:87:54:d4:92:65:92:1f: 65:02:b9:b0:f4:6f:e8:3a:07:97:69:e4:35:a6:ed:eb:8b:e6: 3d:d5:7d:99:85:31:f7:af:67:79:5b:b7:d7:57:e8:df:5b:1f: 3b:a5:96:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFDN0YxMTAvBgNVBAUTKERBQjRBNTJBOEVDMUFBRDZDOTI1MkVFQTRENUQxNTY5 RDI3QUY0NkIwHhcNMjUxMjE4MjM1MzIzWhcNMjUxMjI1MjM1MzIzWjAYMRYwFAYD VQQDDA02OTQ0OTNmMy0yMWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAojkFZDWOytIV/w4k57HwCTFbwFknnf0yiqaleYVpzvoRAprp5dyB/F6cezk2 gb0BD/keZUMCvdwDqHtID4Qs1XJp9RbSynoPRA+b0acjE6ldmvpufu958w6wb8EK ymmuVeVVYZBj6WrPJU2qLdUblF6hYt4eZUyshKmDpvZlo9HLT8qOcMInoFt/67E1 WCCxNAYM4jtdrJqqLeQ9ukT6cmeuEd9Dk5GB+p1oKVofMwTcCs7EW1RXX93Pbc1h b5ajT7McSMiPhVez0T0ZG8R5ONN8aNtsv50AtMkIyI/wEfUeLKLY4hKrNB22hssw 9U48tSaa172NBFSHJLUzWqtkiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD7kHpor RK25G58UaG55Kk/WxOzrMB8GA1UdIwQYMBaAFNq0pSqOwarWySUu6k1dFWnSevRr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUM3Ri8wOTFFMUVBQUIw RDAxMUVDQkIwNEEzNzhDNEY5QUUwMi8yclNsS283QnF0YkpKUzdxVFYwVmFkSjY5 R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJyU2xLbzdCcXRiSkpTN3FUVjBWYWRKNjlHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUM3Ri8wOTFFMUVBQUIwRDAxMUVDQkIwNEEzNzhDNEY5QUUwMi8yclNsS283QnF0 YkpKUzdxVFYwVmFkSjY5R3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1VJd4Wn3qqILBo58qn9IV5SvShzWPhXeqjFoyCamqX9JC4JNDXrwX 7JsHEakdJ7bOBspjFRXpyPCSAwDhlH+W3+qUL1zBQmYLEP603qN2s5HIPEiry1aU nAyrSIw4N2jtT3BE4AL/2KITVStzp+jj5w/vjRjaIkTj/9lkyIADTMV4QcEdzg2k 1EHxivoCDNWmFTaiVrUdSWLJL9ML/SsUXR4EkNoFo41pXeH6uFHj7mXqH9Et9boX vW1rRdV90b+QQF84FYHFDBk63bp1SV8eDodU1JJlkh9lArmw9G/oOgeXaeQ1pu3r i+Y91X2ZhTH3r2d5W7fXV+jfWx87pZZG -----END CERTIFICATE-----Generated at Fri Dec 19 17:45:09 2025 by rpki-client