This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft File: 2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json) Hash identifier: DxSGlUwy2nUNlj5NVviMDgkZKhXd6DequKmZsNxMeKc= Subject key identifier: 53:80:92:B9:39:BA:53:FC:80:18:69:2B:10:1E:1C:92:22:98:5E:C4 Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Certificate serial: 01F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft Manifest number: 01EF Signing time: Fri 19 Dec 2025 01:47:25 +0000 Manifest this update: Fri 19 Dec 2025 01:47:24 +0000 Manifest next update: Fri 26 Dec 2025 01:47:24 +0000 Files and hashes: 1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: D3HMBUoUL0MCoNO09ztNmJQJaxTlbGw+UAE4whi7PLo=) 2: 881C3F9CABD311EFBFED7130C4F9AE02.roa (hash: 4Vu2iECkKD+oqedLfhjWXd7CHOWEQhszvHID7EwF+IE=) 3: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: HkCOmQRPg+yDDZPtodRzZcHCpOQoTEGcVWS7eV1BiSA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:47:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 503 (0x1f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEFBB, serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Validity Not Before: Dec 19 01:47:24 2025 GMT Not After : Dec 26 01:47:24 2025 GMT Subject: CN=6944aead-c873 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:90:73:eb:a5:e4:1a:a2:14:b1:c9:af:bf:f3: 84:14:85:fc:30:7b:3a:22:a4:42:01:3f:77:cd:52: 73:54:2c:f9:32:80:24:ab:c7:f5:46:2e:3c:ef:88: 42:97:f9:22:a4:e3:3f:4a:70:84:78:70:cb:6f:ac: 01:5b:89:9b:d8:62:19:f6:7f:75:ac:27:6a:70:a7: 8c:0a:4a:5a:90:a0:8b:e8:ae:73:95:f9:f5:93:ca: 10:39:f6:4d:55:90:d6:a8:f0:66:0c:e4:1e:24:5d: ae:bd:49:3a:09:ee:70:bd:92:9e:03:86:36:b2:bf: 27:da:21:2d:f7:8e:54:c7:ac:78:18:de:27:90:31: 22:8c:34:9d:1a:f6:cf:c4:3f:b1:c3:fc:b2:95:9b: 6f:5c:db:1f:16:1f:22:54:4c:1d:62:75:f2:bf:c1: ef:3d:a5:ef:7f:28:f9:27:c1:ff:10:54:5f:c4:81: 3d:d6:5b:12:c6:12:7e:28:51:43:38:f1:7d:c6:03: 1d:a0:ab:39:b9:9c:f1:76:e9:70:67:4d:b0:99:cb: 2b:32:9c:7e:47:a5:71:29:2e:e3:80:6a:79:02:21: 06:05:93:48:d3:6f:90:f7:69:03:e4:34:31:ac:5f: 16:29:c2:96:cd:52:10:d6:9b:46:30:e8:a8:fb:38: c4:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:80:92:B9:39:BA:53:FC:80:18:69:2B:10:1E:1C:92:22:98:5E:C4 X509v3 Authority Key Identifier: keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:8d:75:a3:ca:5c:d3:d6:0c:c7:ec:db:0a:34:79:10:15:cd: 54:c1:87:33:da:9d:57:59:c1:d9:df:81:c9:02:86:52:55:1d: f3:16:5a:c2:71:47:b9:6f:70:7e:89:43:28:c1:3c:d2:49:e4: d8:76:45:dd:5d:e1:43:4b:05:a8:ba:1f:43:6d:5a:c2:91:61: ca:a2:3d:ee:b2:f5:86:83:c1:9b:85:bd:31:08:e7:8f:58:4c: fb:ff:94:1f:2a:e0:5d:77:66:e7:d9:6e:bf:b4:84:32:7b:86: 9b:6e:ff:2c:62:3e:e8:e0:20:f7:e3:f2:45:96:30:ff:90:94: 71:dc:0d:8d:35:0b:eb:bc:4b:4d:d9:51:92:d6:76:a8:74:71: d3:d7:ae:94:fb:5d:c6:8d:c6:b7:35:2a:f1:69:60:a9:3c:72: 3c:ca:9b:d1:98:3a:e5:ce:49:41:05:18:b4:b8:12:ac:e8:1c: d8:84:3a:54:e1:6a:69:ac:d2:b0:49:02:ed:08:29:ef:d8:4a: 46:70:00:30:b6:5f:d1:3b:cb:1f:69:f1:bb:7a:37:4b:ad:c0: 35:69:3b:2f:25:d9:98:63:af:13:d1:ec:21:21:55:ac:fa:35: 6f:77:9b:b7:75:37:c2:0b:1f:6b:00:ae:1d:b3:b4:08:2d:d2: 00:35:2f:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGQkIxMTAvBgNVBAUTKERBNzVBQjBGQjNBQTg3NUFGQURGNUEzOEY4NTJCREND MUREODI2RjcwHhcNMjUxMjE5MDE0NzI0WhcNMjUxMjI2MDE0NzI0WjAYMRYwFAYD VQQDDA02OTQ0YWVhZC1jODczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZBz66XkGqIUscmvv/OEFIX8MHs6IqRCAT93zVJzVCz5MoAkq8f1Ri4874hC l/kipOM/SnCEeHDLb6wBW4mb2GIZ9n91rCdqcKeMCkpakKCL6K5zlfn1k8oQOfZN VZDWqPBmDOQeJF2uvUk6Ce5wvZKeA4Y2sr8n2iEt945Ux6x4GN4nkDEijDSdGvbP xD+xw/yylZtvXNsfFh8iVEwdYnXyv8HvPaXvfyj5J8H/EFRfxIE91lsSxhJ+KFFD OPF9xgMdoKs5uZzxdulwZ02wmcsrMpx+R6VxKS7jgGp5AiEGBZNI02+Q92kD5DQx rF8WKcKWzVIQ1ptGMOio+zjEQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFOAkrk5 ulP8gBhpKxAeHJIimF7EMB8GA1UdIwQYMBaAFNp1qw+zqoda+t9aOPhSvcwd2Cb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUZCQi9EODk2QjVDOEVB NkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgxcjYzMW80LUZLOXpCM1lK dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuV3JEN09xaDFyNjMxbzQtRks5ekIzWUp2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUZCQi9EODk2QjVDOEVBNkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgx cjYzMW80LUZLOXpCM1lKdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5jXWjylzT1gzH7NsKNHkQFc1UwYcz2p1XWcHZ34HJAoZSVR3zFlrC cUe5b3B+iUMowTzSSeTYdkXdXeFDSwWouh9DbVrCkWHKoj3usvWGg8Gbhb0xCOeP WEz7/5QfKuBdd2bn2W6/tIQye4abbv8sYj7o4CD34/JFljD/kJRx3A2NNQvrvEtN 2VGS1naodHHT166U+13Gjca3NSrxaWCpPHI8ypvRmDrlzklBBRi0uBKs6BzYhDpU 4WpprNKwSQLtCCnv2EpGcAAwtl/RO8sfafG7ejdLrcA1aTsvJdmYY68T0ewhIVWs +jVvd5u3dTfCCx9rAK4ds7QILdIANS8w -----END CERTIFICATE-----Generated at Sun Dec 21 02:04:56 2025 by rpki-client