This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft File: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft (raw, json) Hash identifier: Mklxf18tgn2T8y/XujCBHzVX+3pxtTeyDO/lCN/xNIU= Subject key identifier: 33:B8:72:53:D2:30:DD:B3:A1:92:EB:DE:BB:50:5A:67:D9:BB:C9:B3 Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED Certificate issuer: /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Certificate serial: 1444 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft Manifest number: 1424 Signing time: Thu 18 Dec 2025 15:23:33 +0000 Manifest this update: Thu 18 Dec 2025 15:23:32 +0000 Manifest next update: Thu 25 Dec 2025 15:23:32 +0000 Files and hashes: 1: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl (hash: 1omHQ1LDdEOZnUxc/jdclhSVNRgbr/oXl/scwkub1JI=) 2: B969D2D0BA4A11EC90B53115C4F9AE02.roa (hash: wPO6Es53IcJapHpeuB8nxOotI3FCiSmj/GNfyH8fyQs=) 3: 76C6BCF6B72811ECAEFC180DC4F9AE02.roa (hash: rJt9UQ2CbATtEyHk+VO1E6DMoo3w2GSd/mE//3ZqYZU=) 4: 49678FBCB72B11EC8C8E3017C4F9AE02.roa (hash: Fya/3MhXvM2udSwM4AtG4GxQbuG8VOpcoReRz0Tvy8A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 15:23:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5188 (0x1444) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Validity Not Before: Dec 18 15:23:32 2025 GMT Not After : Dec 25 15:23:32 2025 GMT Subject: CN=69441c75-6736 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b7:93:27:43:68:94:7d:d2:28:8d:5d:21:b7: db:da:fa:a1:aa:5e:d3:81:6e:45:08:56:2b:dd:97: 74:ce:cd:86:8e:18:d9:7e:ee:e6:fa:fe:21:04:64: c6:30:35:c9:2e:5d:8c:85:13:be:c5:43:8e:00:24: 89:e1:08:be:77:4a:f4:d1:9a:f6:cb:6f:9b:fa:fd: 28:df:a5:06:e9:26:2f:be:57:cc:22:50:f5:33:24: 6d:76:3f:3a:43:b8:60:e9:cf:ab:ec:85:51:fa:b2: 47:9a:9e:58:b7:3b:bc:58:97:f5:f9:16:3e:f4:98: 37:83:17:4d:fd:1a:75:c8:16:0a:c4:c4:18:7a:cf: 80:61:74:c6:12:be:81:9b:51:77:d3:ff:fe:21:bb: 3b:bf:f6:d1:f3:30:c6:06:a8:65:95:81:1c:fa:14: a2:55:94:89:27:33:57:a5:e0:b0:7a:90:20:df:2b: c6:fe:01:c9:82:e0:f9:71:52:c5:2f:ec:21:cb:5b: 88:a5:b2:8d:3e:ea:9a:05:99:44:4f:45:5f:36:b6: 07:ce:b0:24:ea:29:e4:0d:a5:0f:17:34:f6:16:eb: 7c:c1:46:d7:97:c9:47:5e:a1:ca:33:66:98:ed:b4: 36:f1:38:b1:fb:ec:44:af:69:78:b3:1c:2b:7f:23: 45:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:B8:72:53:D2:30:DD:B3:A1:92:EB:DE:BB:50:5A:67:D9:BB:C9:B3 X509v3 Authority Key Identifier: keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:c0:94:09:ec:cf:84:f0:00:85:95:78:a2:4b:f1:aa:e7:64: 37:7a:e0:0c:f5:a3:fe:98:21:1d:a5:c6:4c:31:67:88:18:8d: 1e:d8:02:cd:08:00:c2:af:a9:71:46:3b:50:78:29:6d:ed:fa: 68:aa:76:ec:7b:e5:f9:23:53:90:93:7e:dc:61:ca:32:d9:01: 2f:09:01:5f:1d:60:06:e7:53:7f:8d:b4:fd:d9:a9:5d:6c:9a: 3c:39:c5:b9:05:02:f1:7f:ca:66:50:9a:02:a4:a6:18:9f:26: bf:63:6c:1b:f6:97:ac:2b:d1:62:ff:80:dc:ca:92:e0:f8:1d: a5:e4:00:3c:95:6b:94:58:96:0a:29:92:95:8b:54:ea:68:b5: 95:e9:2f:9d:e5:b4:91:44:99:48:47:99:13:b8:10:d3:42:47: d6:62:13:fc:9e:af:0f:7c:38:31:69:d7:ca:03:cc:c0:79:cb: 4e:4a:cc:62:e9:d8:63:43:c2:5f:6a:76:7e:26:8a:f7:29:6b: fc:0d:75:a3:4d:66:10:bf:d6:4a:02:18:82:71:35:72:6e:b3: 34:f2:91:c4:f3:40:1e:e3:f3:18:11:b6:20:3e:91:5f:96:f6: 60:60:4e:94:2a:54:5f:a5:4e:83:d1:53:84:11:6a:ce:d7:34: c2:6c:d3:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFEQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKERBNEI1QzIxMjNCQTlEMEY4MDIzNzhEQURERDQ4MDFC NTY3MEEzRUQwHhcNMjUxMjE4MTUyMzMyWhcNMjUxMjI1MTUyMzMyWjAYMRYwFAYD VQQDDA02OTQ0MWM3NS02NzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAureTJ0NolH3SKI1dIbfb2vqhql7TgW5FCFYr3Zd0zs2GjhjZfu7m+v4hBGTG MDXJLl2MhRO+xUOOACSJ4Qi+d0r00Zr2y2+b+v0o36UG6SYvvlfMIlD1MyRtdj86 Q7hg6c+r7IVR+rJHmp5Ytzu8WJf1+RY+9Jg3gxdN/Rp1yBYKxMQYes+AYXTGEr6B m1F30//+Ibs7v/bR8zDGBqhllYEc+hSiVZSJJzNXpeCwepAg3yvG/gHJguD5cVLF L+why1uIpbKNPuqaBZlET0VfNrYHzrAk6inkDaUPFzT2Fut8wUbXl8lHXqHKM2aY 7bQ28Tix++xEr2l4sxwrfyNFeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDO4clPS MN2zoZLr3rtQWmfZu8mzMB8GA1UdIwQYMBaAFNpLXCEjup0PgCN42t3UgBtWcKPt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wNzQ5NTg5MDkx ODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5RLUFJM2phM2RTQUcxWndv LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJrdGNJU082blEtQUkzamEzZFNBRzFad28tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wNzQ5NTg5MDkxODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5R LUFJM2phM2RTQUcxWndvLTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRwJQJ7M+E8ACFlXiiS/Gq52Q3euAM9aP+mCEdpcZMMWeIGI0e2ALN CADCr6lxRjtQeClt7fpoqnbse+X5I1OQk37cYcoy2QEvCQFfHWAG51N/jbT92ald bJo8OcW5BQLxf8pmUJoCpKYYnya/Y2wb9pesK9Fi/4DcypLg+B2l5AA8lWuUWJYK KZKVi1TqaLWV6S+d5bSRRJlIR5kTuBDTQkfWYhP8nq8PfDgxadfKA8zAectOSsxi 6dhjQ8JfanZ+Jor3KWv8DXWjTWYQv9ZKAhiCcTVybrM08pHE80Ae4/MYEbYgPpFf lvZgYE6UKlRfpU6D0VOEEWrO1zTCbNNZ -----END CERTIFICATE-----Generated at Fri Dec 19 23:58:05 2025 by rpki-client