This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft File: tDpaYNRoBqaf_vfGdiGexLqLo20.mft (raw, json) Hash identifier: FsDmnJDJv61WV3m5tc5H4VGzoLvdGonp3kSOt8OyRLo= Subject key identifier: B5:EB:E2:85:BB:5D:59:A5:92:F3:58:E3:CB:AD:FD:D7:5B:C2:38:F3 Authority key identifier: B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D Certificate issuer: /CN=A91E2AE5/serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Certificate serial: 2BF9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft Manifest number: 2BD5 Signing time: Mon 22 Dec 2025 15:24:02 +0000 Manifest this update: Mon 22 Dec 2025 15:24:01 +0000 Manifest next update: Mon 29 Dec 2025 15:24:01 +0000 Files and hashes: 1: tDpaYNRoBqaf_vfGdiGexLqLo20.crl (hash: zPZGUvOEeal0c/466Naqua4LQGJcZgGJw1BwbySiBQc=) 2: 2815E7D4BF4211E9A93A3957C4F9AE02.roa (hash: q2QK7nleDfVKJdydH1BhBELt50ggXZGsQHTMsb+GgzQ=) 3: 43487B18BF1811E9A2C00E63C4F9AE02.roa (hash: R7GiqDFWTFG5/KzmRDTnU8CgA9M5hlMTeWah7zEstzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 14:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11257 (0x2bf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2AE5, serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Validity Not Before: Dec 22 15:24:01 2025 GMT Not After : Dec 29 15:24:01 2025 GMT Subject: CN=69496292-64d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:eb:25:2c:f9:3f:14:b2:67:8c:ec:03:67:07: 9b:a6:51:8d:df:5e:18:ae:77:65:6d:df:cb:6c:2c: 5c:1e:64:42:3a:9c:af:62:84:b9:eb:60:1a:83:79: a0:00:69:7d:2e:1a:5e:92:96:61:08:32:2f:1d:9f: 0b:7b:30:de:e7:97:57:66:9a:31:2c:ed:02:5e:b6: 9a:ce:6a:66:ca:79:8a:81:ad:56:70:47:be:ab:23: 4d:eb:28:9d:d7:28:33:df:c8:b3:c3:5e:7b:25:b2: d7:19:c6:b7:e7:73:51:2e:41:0b:d4:4c:02:ec:ce: d3:b2:9a:69:8c:ed:4d:59:7b:6a:20:94:60:b9:8a: ad:0c:4f:b1:cb:8b:51:e6:ef:cc:60:27:b7:1b:7a: 6d:e0:ea:df:15:c9:da:b9:d8:7d:e7:67:35:47:64: f4:99:f9:6b:5b:6c:f2:13:26:cd:78:cf:be:18:37: b2:b1:d0:2e:07:02:ff:54:b0:ba:53:33:27:4f:06: 85:06:76:bc:a8:8d:59:74:47:9d:01:6c:bf:c2:76: f1:56:79:5c:f8:e2:13:9a:93:66:b6:12:f0:6b:67: d4:a8:28:63:a6:29:b5:2d:ee:46:cc:55:d3:a0:44: 9f:0a:72:de:07:7d:50:8e:11:8e:bb:79:f5:c5:64: ba:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:EB:E2:85:BB:5D:59:A5:92:F3:58:E3:CB:AD:FD:D7:5B:C2:38:F3 X509v3 Authority Key Identifier: keyid:B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:fe:3e:11:2a:19:9f:e3:68:53:5a:64:e5:dd:78:16:cc:c3: d0:c2:be:e0:75:02:dd:f7:e6:a4:f7:ad:ca:12:9d:d6:8e:a2: 3c:ef:8d:bc:e9:ba:b6:b3:82:80:5f:c9:c8:2b:ed:12:76:fc: a5:d4:a5:11:38:f4:6e:87:35:a8:e9:5d:44:fd:b6:e3:80:2c: cd:0d:ec:85:55:8e:67:4f:56:af:05:b3:10:3e:d5:ab:0d:0c: 93:8c:c9:33:80:40:e3:bc:05:c0:e6:0d:d8:df:65:2d:d1:49: cf:ff:16:a5:3c:2a:fb:22:30:ac:2a:bd:79:48:e6:c6:65:0b: b5:c0:11:da:45:b0:d5:3a:87:1d:07:ac:9a:d8:4b:cf:cc:9e: 31:e6:d7:80:6f:86:6a:79:9b:f1:8e:38:3f:16:8f:e2:49:9f: 03:f2:42:15:e3:1c:5a:af:e3:9f:05:1f:82:3a:7e:c2:51:87: 28:ca:02:9b:cf:5c:20:d8:92:fa:30:ca:40:bd:3c:64:78:04: 2b:05:13:29:80:3e:32:09:17:3a:04:39:7a:42:d4:6f:87:07: 21:c3:cd:f1:cb:c0:da:3c:f9:c4:01:57:d4:ec:a7:8c:08:8c: ef:f5:27:41:c0:24:55:8e:7a:f6:5d:4e:99:de:48:56:98:46: c8:62:26:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK/kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBRTUxMTAvBgNVBAUTKEI0M0E1QTYwRDQ2ODA2QTY5RkZFRjdDNjc2MjE5RUM0 QkE4QkEzNkQwHhcNMjUxMjIyMTUyNDAxWhcNMjUxMjI5MTUyNDAxWjAYMRYwFAYD VQQDDA02OTQ5NjI5Mi02NGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0+slLPk/FLJnjOwDZwebplGN314Yrndlbd/LbCxcHmRCOpyvYoS562Aag3mg AGl9LhpekpZhCDIvHZ8LezDe55dXZpoxLO0CXraazmpmynmKga1WcEe+qyNN6yid 1ygz38izw157JbLXGca353NRLkEL1EwC7M7TspppjO1NWXtqIJRguYqtDE+xy4tR 5u/MYCe3G3pt4OrfFcnaudh952c1R2T0mflrW2zyEybNeM++GDeysdAuBwL/VLC6 UzMnTwaFBna8qI1ZdEedAWy/wnbxVnlc+OITmpNmthLwa2fUqChjpim1Le5GzFXT oESfCnLeB31QjhGOu3n1xWS66QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLXr4oW7 XVmlkvNY48ut/ddbwjjzMB8GA1UdIwQYMBaAFLQ6WmDUaAamn/73xnYhnsS6i6Nt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkFFNS84RDNFNTRFQUVE NTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0JxYWZfdmZHZGlHZXhMcUxv MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3REcGFZTlJvQnFhZl92ZkdkaUdleExxTG8yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkFFNS84RDNFNTRFQUVENTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0Jx YWZfdmZHZGlHZXhMcUxvMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCO/j4RKhmf42hTWmTl3XgWzMPQwr7gdQLd9+ak963KEp3WjqI87428 6bq2s4KAX8nIK+0Sdvyl1KUROPRuhzWo6V1E/bbjgCzNDeyFVY5nT1avBbMQPtWr DQyTjMkzgEDjvAXA5g3Y32Ut0UnP/xalPCr7IjCsKr15SObGZQu1wBHaRbDVOocd B6ya2EvPzJ4x5teAb4ZqeZvxjjg/Fo/iSZ8D8kIV4xxar+OfBR+COn7CUYcoygKb z1wg2JL6MMpAvTxkeAQrBRMpgD4yCRc6BDl6QtRvhwchw83xy8DaPPnEAVfU7KeM CIzv9SdBwCRVjnr2XU6Z3khWmEbIYibX -----END CERTIFICATE-----Generated at Mon Dec 22 17:32:03 2025 by rpki-client