This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft File: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft (raw, json) Hash identifier: OUH+Re7RJokR9dlHBeBPcB7LKsqVlDC647q+JpEPh28= Subject key identifier: D4:11:B8:85:3C:81:3E:CB:FF:A0:3C:34:CA:C4:BF:AA:36:C1:11:58 Authority key identifier: D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A Certificate issuer: /CN=A91F0AF0/serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Certificate serial: 0CD3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft Manifest number: 1E4F Signing time: Thu 18 Dec 2025 17:03:37 +0000 Manifest this update: Thu 18 Dec 2025 17:03:36 +0000 Manifest next update: Thu 25 Dec 2025 17:03:36 +0000 Files and hashes: 1: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl (hash: M6YXKeIr7RoCm/qUZ7cKc/hYZOGT0XDZk6pSFdXpvnU=) 2: CE3C7EF66FEB11EB91967864C4F9AE02.roa (hash: Ecj4wTVjyUbe05JmkTHE3iJeDcHJFhB138/thNFleyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:03:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3283 (0xcd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0AF0, serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Validity Not Before: Dec 18 17:03:36 2025 GMT Not After : Dec 25 17:03:36 2025 GMT Subject: CN=694433e9-d09c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:25:5a:eb:b2:b8:62:9f:0e:b0:d1:1b:d5:d6: 57:d7:9b:36:00:32:18:82:0d:0f:4c:66:93:0c:82: de:f6:8f:40:77:11:eb:00:6e:2a:b7:b4:73:da:8f: 8b:69:ea:f6:61:fa:25:ad:2a:3a:d4:b2:79:15:e0: 7c:97:a0:fb:6d:e5:d7:2b:31:0d:1d:84:47:54:dc: 41:95:f6:a7:a4:88:db:25:94:d5:a4:f8:81:33:8d: a9:d1:ec:f5:93:44:51:e9:13:33:d6:3c:8f:4f:84: 37:7e:ff:13:06:44:2d:dd:c1:c2:ef:50:bb:69:b6: 67:fe:d4:17:c7:c8:4f:d9:74:0d:10:e5:18:68:6e: 71:4e:e9:5b:a5:0b:a5:8a:c6:1b:87:ac:21:84:a7: 77:a0:58:b8:d6:11:32:85:dd:ea:e3:93:f8:83:80: 24:47:b0:e5:c4:da:f4:76:0f:90:98:e8:50:ec:87: b4:11:9d:0b:bf:94:8c:2a:57:0e:9d:fb:ce:52:58: 03:a5:a2:30:53:76:db:4e:15:06:fc:69:ca:b1:9c: 28:7b:6a:36:86:ed:df:f0:70:56:c3:bc:75:71:ee: 78:69:53:a0:db:23:d7:14:f4:30:b9:64:a6:69:f0: cd:fa:ee:97:a4:fe:d9:b3:7f:2f:e8:b7:4e:d8:68: 0c:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:11:B8:85:3C:81:3E:CB:FF:A0:3C:34:CA:C4:BF:AA:36:C1:11:58 X509v3 Authority Key Identifier: keyid:D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:42:99:b2:1c:3f:2e:5d:57:50:e3:56:ac:63:f4:6f:32:16: f0:d6:a5:d0:8f:01:a8:3b:e9:4e:94:97:cb:de:a0:0b:84:3f: a6:5e:76:03:e7:a2:e6:70:91:7a:d2:b6:90:23:2c:f2:b3:33: b9:90:54:2c:74:dc:70:7c:81:7a:f4:7f:3c:64:51:5b:6b:44: b3:8c:1f:1d:a9:ae:4f:e8:d2:e2:c4:61:84:4f:36:4f:e7:6a: 7e:2d:4c:dd:de:d7:cc:8c:f5:a3:76:b2:6e:a1:11:94:75:3c: c0:dd:27:39:6c:66:7e:0b:12:c3:92:7d:ca:b7:a3:35:ab:7f: 61:dd:df:10:f5:19:04:1b:90:74:88:7c:40:d1:b0:29:be:6e: a7:81:14:38:92:db:1c:77:b3:8a:8a:0e:2d:11:6a:24:c4:45: 42:84:97:f1:f9:81:e5:a0:70:47:32:d7:94:64:0d:28:09:ae: 3e:e1:50:a7:57:cc:d3:20:36:5c:52:f5:2b:de:89:c2:11:ce: 09:98:a1:43:91:86:f2:40:01:c2:76:90:56:51:cd:cb:5f:cf: e6:97:a0:c9:97:77:b5:da:69:91:ca:19:44:9b:4c:6b:95:ae: 51:df:ab:c1:63:a1:46:ff:d1:0d:e6:fa:ce:60:8a:ef:0a:28: 93:24:32:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBBRjAxMTAvBgNVBAUTKEQ5QkQ3MEU3NzdGODYxQUU1NDM4NTcxNDhFNjMzNTJG REE4NEMwN0EwHhcNMjUxMjE4MTcwMzM2WhcNMjUxMjI1MTcwMzM2WjAYMRYwFAYD VQQDDA02OTQ0MzNlOS1kMDljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1SVa67K4Yp8OsNEb1dZX15s2ADIYgg0PTGaTDILe9o9AdxHrAG4qt7Rz2o+L aer2YfolrSo61LJ5FeB8l6D7beXXKzENHYRHVNxBlfanpIjbJZTVpPiBM42p0ez1 k0RR6RMz1jyPT4Q3fv8TBkQt3cHC71C7abZn/tQXx8hP2XQNEOUYaG5xTulbpQul isYbh6whhKd3oFi41hEyhd3q45P4g4AkR7DlxNr0dg+QmOhQ7Ie0EZ0Lv5SMKlcO nfvOUlgDpaIwU3bbThUG/GnKsZwoe2o2hu3f8HBWw7x1ce54aVOg2yPXFPQwuWSm afDN+u6XpP7Zs38v6LdO2GgM5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNQRuIU8 gT7L/6A8NMrEv6o2wRFYMB8GA1UdIwQYMBaAFNm9cOd3+GGuVDhXFI5jNS/ahMB6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEFGMC9FMzc2Mjk1MDBG RkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlhNVVPRmNVam1NMUw5cUV3 SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJiMXc1M2Y0WWE1VU9GY1VqbU0xTDlxRXdIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEFGMC9FMzc2Mjk1MDBGRkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlh NVVPRmNVam1NMUw5cUV3SG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEQpmyHD8uXVdQ41asY/RvMhbw1qXQjwGoO+lOlJfL3qALhD+mXnYD 56LmcJF60raQIyzyszO5kFQsdNxwfIF69H88ZFFba0SzjB8dqa5P6NLixGGETzZP 52p+LUzd3tfMjPWjdrJuoRGUdTzA3Sc5bGZ+CxLDkn3Kt6M1q39h3d8Q9RkEG5B0 iHxA0bApvm6ngRQ4ktscd7OKig4tEWokxEVChJfx+YHloHBHMteUZA0oCa4+4VCn V8zTIDZcUvUr3onCEc4JmKFDkYbyQAHCdpBWUc3LX8/ml6DJl3e12mmRyhlEm0xr la5R36vBY6FG/9EN5vrOYIrvCiiTJDKU -----END CERTIFICATE-----Generated at Fri Dec 19 17:35:59 2025 by rpki-client