This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6B73/EA809FF26ED211ECAE2EB829C4F9AE02/2qqxLpL6DuBDwg7q8r5GlqLDeHc.mft File: 2qqxLpL6DuBDwg7q8r5GlqLDeHc.mft (raw, json) Hash identifier: uPoU5OV9w3BHLfBavQJGyCyXIHLNADjHncGCkeERHVQ= Subject key identifier: 31:51:54:86:E1:63:63:73:A0:6E:6F:D0:BD:43:DF:7D:83:72:AF:6D Authority key identifier: DA:AA:B1:2E:92:FA:0E:E0:43:C2:0E:EA:F2:BE:46:96:A2:C3:78:77 Certificate issuer: /CN=A91E6B73/serialNumber=DAAAB12E92FA0EE043C20EEAF2BE4696A2C37877 Certificate serial: 0482 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2qqxLpL6DuBDwg7q8r5GlqLDeHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6B73/EA809FF26ED211ECAE2EB829C4F9AE02/2qqxLpL6DuBDwg7q8r5GlqLDeHc.mft Manifest number: 047B Signing time: Sun 28 Dec 2025 23:14:01 +0000 Manifest this update: Sun 28 Dec 2025 23:14:01 +0000 Manifest next update: Sun 04 Jan 2026 23:14:01 +0000 Files and hashes: 1: 2qqxLpL6DuBDwg7q8r5GlqLDeHc.crl (hash: 95013FhwguW5AhdcGJy7PZyWf21bUZXxjS1BK3P7Hno=) 2: 4F12B4886EEB11EC8699607FC4F9AE02.roa (hash: oZqrtJQlT3Kbcps4JCliN7dRzvuckdjDLLEfBNjz0jM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6B73/EA809FF26ED211ECAE2EB829C4F9AE02/2qqxLpL6DuBDwg7q8r5GlqLDeHc.crl rsync://rpki.apnic.net/member_repository/A91E6B73/EA809FF26ED211ECAE2EB829C4F9AE02/2qqxLpL6DuBDwg7q8r5GlqLDeHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2qqxLpL6DuBDwg7q8r5GlqLDeHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 23:14:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1154 (0x482) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6B73, serialNumber=DAAAB12E92FA0EE043C20EEAF2BE4696A2C37877 Validity Not Before: Dec 28 23:14:01 2025 GMT Not After : Jan 4 23:14:01 2026 GMT Subject: CN=6951b9b9-1275 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:89:9b:ba:bd:91:b5:64:1a:3a:8a:70:cc:94: c8:9e:e9:5a:60:ac:0d:de:64:d1:a5:e2:45:e7:32: a4:43:8d:1d:01:bf:a8:8e:80:07:f3:fa:7b:c6:06: 06:97:46:a5:1e:e7:e5:ad:be:41:24:57:21:6f:c4: 2d:fc:99:81:93:33:ea:07:99:3f:5e:c4:9f:43:9c: 4a:49:d4:fb:69:ed:a9:fc:bc:9e:ac:63:93:2a:4b: cd:87:54:54:e5:09:9c:a3:07:e7:24:df:b8:24:12: 84:0d:db:45:50:9e:5b:a3:47:a3:c1:55:a0:12:bf: 20:1f:ee:b5:02:3b:3d:cf:91:5b:a2:c5:eb:e2:ee: 84:34:c4:c4:74:b7:ee:2d:a4:9f:46:58:b1:e0:ca: aa:45:a2:b1:a0:3a:82:c7:34:3f:04:d8:73:91:31: 41:35:64:d6:58:cf:fc:3e:7c:5d:74:fd:08:56:d9: 8b:d4:7e:7a:f8:61:df:a8:f1:29:3e:6f:26:10:44: bc:e9:96:91:b5:0e:3f:74:98:f6:df:e1:95:8a:ca: c5:cd:4d:57:db:7c:fd:11:ec:2b:c0:87:28:69:a6: c2:4f:db:c3:fb:b5:2e:55:71:b8:26:f6:3c:fe:ea: f8:2e:cb:3a:5a:5e:de:e8:24:45:70:59:b3:68:6b: 65:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:51:54:86:E1:63:63:73:A0:6E:6F:D0:BD:43:DF:7D:83:72:AF:6D X509v3 Authority Key Identifier: keyid:DA:AA:B1:2E:92:FA:0E:E0:43:C2:0E:EA:F2:BE:46:96:A2:C3:78:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6B73/EA809FF26ED211ECAE2EB829C4F9AE02/2qqxLpL6DuBDwg7q8r5GlqLDeHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2qqxLpL6DuBDwg7q8r5GlqLDeHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6B73/EA809FF26ED211ECAE2EB829C4F9AE02/2qqxLpL6DuBDwg7q8r5GlqLDeHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:3b:35:85:b5:b0:48:ea:08:67:b3:cf:c8:37:a5:9a:f5:9a: 3a:b3:c7:b3:d3:dd:d1:99:99:77:1e:db:bc:8d:b9:6d:ed:09: 78:8d:67:3b:6b:d8:e3:b6:4a:20:de:81:0e:f4:90:3d:61:a4: e6:da:93:df:93:3d:dd:b5:9b:7d:b2:9d:53:3f:e8:19:c9:c1: 4f:6d:16:00:28:e3:cf:74:ea:d6:58:a5:3a:9d:a1:c3:3d:08: 85:2c:15:63:97:c8:65:52:92:33:70:bc:ef:58:b7:80:bc:61: 4b:d3:2c:16:a6:be:c5:f0:5b:63:23:33:d6:96:06:87:b6:c7: 95:37:1e:45:92:55:5f:b4:27:e0:70:c1:c4:98:52:be:2b:e0: 2a:d4:88:4f:f8:78:7b:53:0f:2a:1c:04:97:ae:ee:05:4f:bd: b8:2d:89:ba:1c:5b:40:82:ca:f0:b2:48:a0:bf:11:71:d3:98: 6e:8d:ef:63:b6:24:0c:cd:cd:f2:00:d7:98:1b:fe:d5:02:26: 0d:7a:13:41:67:67:4b:0a:dd:62:66:26:9d:14:1a:af:2f:61: 4d:d5:11:08:e6:72:8a:bb:bb:a6:76:2d:9b:69:79:93:85:bd: a0:fa:d7:dd:33:b8:84:da:6e:17:e0:de:bc:b2:81:a2:e6:eb: 61:5d:03:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZCNzMxMTAvBgNVBAUTKERBQUFCMTJFOTJGQTBFRTA0M0MyMEVFQUYyQkU0Njk2 QTJDMzc4NzcwHhcNMjUxMjI4MjMxNDAxWhcNMjYwMTA0MjMxNDAxWjAYMRYwFAYD VQQDDA02OTUxYjliOS0xMjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4mbur2RtWQaOopwzJTInulaYKwN3mTRpeJF5zKkQ40dAb+ojoAH8/p7xgYG l0alHuflrb5BJFchb8Qt/JmBkzPqB5k/XsSfQ5xKSdT7ae2p/LyerGOTKkvNh1RU 5QmcowfnJN+4JBKEDdtFUJ5bo0ejwVWgEr8gH+61Ajs9z5FbosXr4u6ENMTEdLfu LaSfRlix4MqqRaKxoDqCxzQ/BNhzkTFBNWTWWM/8PnxddP0IVtmL1H56+GHfqPEp Pm8mEES86ZaRtQ4/dJj23+GVisrFzU1X23z9EewrwIcoaabCT9vD+7UuVXG4JvY8 /ur4Lss6Wl7e6CRFcFmzaGtlLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDFRVIbh Y2NzoG5v0L1D332Dcq9tMB8GA1UdIwQYMBaAFNqqsS6S+g7gQ8IO6vK+Rpaiw3h3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkI3My9FQTgwOUZGMjZF RDIxMUVDQUUyRUI4MjlDNEY5QUUwMi8ycXF4THBMNkR1QkR3ZzdxOHI1R2xxTERl SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJxcXhMcEw2RHVCRHdnN3E4cjVHbHFMRGVIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkI3My9FQTgwOUZGMjZFRDIxMUVDQUUyRUI4MjlDNEY5QUUwMi8ycXF4THBMNkR1 QkR3ZzdxOHI1R2xxTERlSGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWOzWFtbBI6ghns8/IN6Wa9Zo6s8ez093RmZl3Htu8jblt7Ql4jWc7 a9jjtkog3oEO9JA9YaTm2pPfkz3dtZt9sp1TP+gZycFPbRYAKOPPdOrWWKU6naHD PQiFLBVjl8hlUpIzcLzvWLeAvGFL0ywWpr7F8FtjIzPWlgaHtseVNx5FklVftCfg cMHEmFK+K+Aq1IhP+Hh7Uw8qHASXru4FT724LYm6HFtAgsrwskigvxFx05huje9j tiQMzc3yANeYG/7VAiYNehNBZ2dLCt1iZiadFBqvL2FN1REI5nKKu7umdi2baXmT hb2g+tfdM7iE2m4X4N68soGi5uthXQMu -----END CERTIFICATE-----Generated at Tue Dec 30 08:01:16 2025 by rpki-client