This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft File: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft (raw, json) Hash identifier: z4EjsyUgGaFBmxcQcp80JslbWw4/qjOuL/4AaNHLXgQ= Subject key identifier: AB:A5:0C:F0:83:64:F7:F6:3A:F9:6A:EF:D4:7D:07:D5:06:FE:77:56 Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED Certificate issuer: /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Certificate serial: 144A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft Manifest number: 142A Signing time: Tue 30 Dec 2025 15:21:14 +0000 Manifest this update: Tue 30 Dec 2025 15:21:14 +0000 Manifest next update: Tue 06 Jan 2026 15:21:14 +0000 Files and hashes: 1: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl (hash: Opw3kroHL/b8ulgGiMqwF2MTvoXgK9jSGA456gCZGDA=) 2: 49678FBCB72B11EC8C8E3017C4F9AE02.roa (hash: Fya/3MhXvM2udSwM4AtG4GxQbuG8VOpcoReRz0Tvy8A=) 3: B969D2D0BA4A11EC90B53115C4F9AE02.roa (hash: wPO6Es53IcJapHpeuB8nxOotI3FCiSmj/GNfyH8fyQs=) 4: 76C6BCF6B72811ECAEFC180DC4F9AE02.roa (hash: rJt9UQ2CbATtEyHk+VO1E6DMoo3w2GSd/mE//3ZqYZU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 Jan 2026 15:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5194 (0x144a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Validity Not Before: Dec 30 15:21:14 2025 GMT Not After : Jan 6 15:21:14 2026 GMT Subject: CN=6953edea-dcd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b1:43:f1:b6:f2:e9:c6:a7:30:54:01:b6:aa: bb:6c:73:81:56:f6:80:d8:f1:5b:89:d0:06:79:6a: f1:74:da:ac:33:51:92:52:54:39:d6:b9:e1:74:6d: 87:d4:34:6a:5b:12:73:7f:5d:41:9a:10:de:43:47: 60:f5:de:0e:7c:e3:8f:4b:03:d5:54:63:d5:37:10: ac:b9:4d:95:8d:00:e1:b8:ab:d7:64:3a:c9:7d:a2: d6:61:28:3c:6f:76:7e:88:77:77:de:0e:39:11:4c: ba:7d:30:4c:9d:91:40:e9:ed:fa:80:90:99:07:6d: 79:97:91:0f:8b:40:db:b1:52:bb:59:ec:ec:2a:8f: dd:ce:57:0b:c9:fa:94:45:9e:ea:58:fd:1e:8f:fb: e6:2e:77:6f:37:c0:f5:57:1b:ef:95:fa:62:2b:1b: 5c:e0:c6:49:24:38:e3:63:1c:52:45:60:bb:8a:64: 17:37:49:b1:d7:db:37:ef:3e:90:63:8c:e6:ab:81: 2c:c0:f2:fa:7a:21:0a:f2:db:2a:5b:19:11:cc:05: d2:83:38:e6:bb:cc:48:e2:13:77:93:03:ea:8c:8a: 9e:8a:41:9c:ba:f5:e9:9c:b5:50:5f:b1:9e:bd:0b: a1:9f:1f:04:28:be:61:59:32:fb:9f:78:cd:4f:9d: 00:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:A5:0C:F0:83:64:F7:F6:3A:F9:6A:EF:D4:7D:07:D5:06:FE:77:56 X509v3 Authority Key Identifier: keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:2f:b6:8d:4e:3c:67:7c:aa:ac:c6:af:fc:69:d6:68:5b:94: 0d:8d:a8:71:5e:01:c4:a6:43:91:bf:6c:0a:99:15:4a:98:07: b7:a2:6f:7c:dd:54:4a:3f:2d:d2:44:e7:b2:2a:06:7a:02:21: b8:49:e9:c4:e5:44:94:24:20:62:df:1d:d3:c4:19:9d:3d:c9: 91:f2:1d:4e:90:21:a9:50:8e:60:ad:63:dc:56:3d:d2:12:6e: 3a:75:73:0d:bf:a6:c8:26:75:7a:c2:9c:3b:e2:a9:9d:e8:63: ee:ce:df:27:b6:72:0a:ac:33:c8:bb:60:5c:fe:ac:af:d5:38: 2e:6b:5b:bd:b1:45:eb:99:01:98:d9:0f:32:fb:ab:f8:be:e6: 19:fd:72:5c:45:9e:f3:38:6b:bd:e0:b0:7f:98:7f:c1:9f:c9: 5d:ae:f2:51:fa:98:0f:aa:10:97:f2:a3:28:1f:e4:aa:e9:31: 41:ef:79:b8:26:26:3d:b9:ed:1d:c8:39:83:a2:97:04:61:67: 47:a6:21:8a:2b:61:0e:1a:51:fc:56:8a:5d:81:bf:2d:67:cb: cc:6d:09:cf:1b:b9:84:db:b1:32:f9:9c:f2:95:38:08:d3:10: a3:f2:a0:c1:73:60:f3:f7:24:e5:0f:ac:df:d2:5c:18:73:fd: d9:0d:ad:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFEowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKERBNEI1QzIxMjNCQTlEMEY4MDIzNzhEQURERDQ4MDFC NTY3MEEzRUQwHhcNMjUxMjMwMTUyMTE0WhcNMjYwMTA2MTUyMTE0WjAYMRYwFAYD VQQDDA02OTUzZWRlYS1kY2Q0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsrFD8bby6canMFQBtqq7bHOBVvaA2PFbidAGeWrxdNqsM1GSUlQ51rnhdG2H 1DRqWxJzf11BmhDeQ0dg9d4OfOOPSwPVVGPVNxCsuU2VjQDhuKvXZDrJfaLWYSg8 b3Z+iHd33g45EUy6fTBMnZFA6e36gJCZB215l5EPi0DbsVK7WezsKo/dzlcLyfqU RZ7qWP0ej/vmLndvN8D1VxvvlfpiKxtc4MZJJDjjYxxSRWC7imQXN0mx19s37z6Q Y4zmq4EswPL6eiEK8tsqWxkRzAXSgzjmu8xI4hN3kwPqjIqeikGcuvXpnLVQX7Ge vQuhnx8EKL5hWTL7n3jNT50AOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKulDPCD ZPf2Ovlq79R9B9UG/ndWMB8GA1UdIwQYMBaAFNpLXCEjup0PgCN42t3UgBtWcKPt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wNzQ5NTg5MDkx ODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5RLUFJM2phM2RTQUcxWndv LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJrdGNJU082blEtQUkzamEzZFNBRzFad28tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wNzQ5NTg5MDkxODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5R LUFJM2phM2RTQUcxWndvLTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABL7aNTjxnfKqsxq/8adZoW5QNjahxXgHEpkORv2wKmRVKmAe3om98 3VRKPy3SROeyKgZ6AiG4SenE5USUJCBi3x3TxBmdPcmR8h1OkCGpUI5grWPcVj3S Em46dXMNv6bIJnV6wpw74qmd6GPuzt8ntnIKrDPIu2Bc/qyv1Tgua1u9sUXrmQGY 2Q8y+6v4vuYZ/XJcRZ7zOGu94LB/mH/Bn8ldrvJR+pgPqhCX8qMoH+Sq6TFB73m4 JiY9ue0dyDmDopcEYWdHpiGKK2EOGlH8Vopdgb8tZ8vMbQnPG7mE27Ey+ZzylTgI 0xCj8qDBc2Dz9yTlD6zf0lwYc/3ZDa09 -----END CERTIFICATE-----Generated at Wed Dec 31 02:00:50 2025 by rpki-client