This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft File: 2WQZRdW0z31j_JExr89yeuNtkCA.mft (raw, json) Hash identifier: iJURk3blhZe4vnpr4812KIpJu5lmA3ceVkXVm9IgYHk= Subject key identifier: 4D:6E:49:FB:5C:CA:64:45:55:E5:41:EC:FE:DA:76:96:C6:97:C3:BA Authority key identifier: D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 Certificate issuer: /CN=A911F316/serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Certificate serial: 023B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft Manifest number: 0231 Signing time: Fri 05 Dec 2025 00:20:03 +0000 Manifest this update: Fri 05 Dec 2025 00:20:02 +0000 Manifest next update: Fri 12 Dec 2025 00:20:02 +0000 Files and hashes: 1: 2WQZRdW0z31j_JExr89yeuNtkCA.crl (hash: 4DrA/AtNkF9W0iCpBkDy5F9x6CbyYVcslmQL/tf0dI4=) 2: 15714ED2776A11ED98AF7341C4F9AE02.roa (hash: WBxu67wj7qK+1XHnF6Gm/tpT83HjDxcRJ+5R7dbCf7I=) 3: 77490C9A792F11EEBF849942C4F9AE02.roa (hash: +qSb4R4TGVMwO8UibifLnyUfy5g07BZr/1fOfOFiaKg=) 4: 590A6A9A792E11EEA5AAB840C4F9AE02.roa (hash: TjgZvd8NTyfnTIYx+SMzczM6IMYvFc5scP1aWMMbHyE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:20:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 571 (0x23b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F316, serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Validity Not Before: Dec 5 00:20:02 2025 GMT Not After : Dec 12 00:20:02 2025 GMT Subject: CN=69322533-52b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:fc:58:61:81:7b:b6:d1:b0:6e:49:33:66:b4: f9:ae:74:85:04:98:a0:12:36:5d:9e:fa:f7:55:2d: 22:7e:90:33:21:8c:42:5d:d4:90:64:f9:29:6f:b9: df:b7:01:65:4e:62:90:b9:a2:41:c1:9c:d5:59:e3: a3:8e:d3:71:df:3e:28:96:40:4f:16:45:0b:c8:2f: 35:e2:8e:36:00:c9:9c:34:a3:b8:7b:c8:87:e2:8c: c3:55:32:62:f9:f6:01:5a:c6:2b:94:c0:6a:01:11: 9c:89:cb:55:ce:d3:20:b2:ae:f8:d5:f3:31:b8:22: 6f:4f:6b:38:88:a6:67:fb:54:9d:cf:70:db:99:e9: e5:95:6b:fe:62:42:cd:ca:78:03:5f:7b:bd:43:1f: 32:a8:1d:71:44:fd:84:92:04:99:55:2a:a7:ef:17: f4:d1:3d:c7:43:a3:b3:4b:8d:42:f5:ae:35:49:f5: f5:fe:2b:0f:f0:09:0f:6c:58:68:22:c1:f5:1c:05: c1:35:18:34:7a:a4:fd:c0:9f:ed:71:28:aa:c3:56: 30:a9:25:de:76:7e:ae:66:69:d9:7b:31:f1:d8:b4: a1:13:85:c0:f4:b5:88:03:78:74:6e:38:34:b0:1c: 07:df:fe:b5:b0:84:8c:02:1b:e9:be:b6:a0:dc:0c: 2f:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:6E:49:FB:5C:CA:64:45:55:E5:41:EC:FE:DA:76:96:C6:97:C3:BA X509v3 Authority Key Identifier: keyid:D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:87:0f:01:ff:60:37:87:c4:d2:71:b2:99:5a:24:82:2e:0d: 08:3d:69:17:f2:6d:79:70:4d:41:c6:d8:b8:3b:b3:db:32:c8: 01:8f:8c:0e:da:9f:c0:dd:61:71:34:cc:19:32:54:b1:98:b1: 74:1f:ef:02:8a:f7:97:f2:74:2f:86:b3:02:59:8f:1b:50:ec: cb:77:ce:57:97:01:0b:5a:38:66:45:46:5b:18:a9:dd:14:32: 5f:8f:53:11:01:4b:07:b2:68:e4:2c:88:5b:9d:bd:ee:99:75: a0:db:08:7f:d7:7d:f6:e6:25:ae:bc:24:88:22:c5:3d:61:fc: 53:52:16:4b:7e:c0:ee:46:cd:4b:49:4c:a7:ee:ad:30:5b:29: 17:25:2c:5a:eb:32:97:33:6a:d4:f0:60:bb:9e:48:73:67:85: b8:1d:33:6a:b6:91:7e:34:3d:65:ce:8e:97:3d:4f:d0:05:bd: 08:f1:88:a1:93:00:28:22:ae:f0:08:12:20:5d:0f:e5:34:d5: 7e:7a:ca:5d:f5:e4:c7:81:0b:61:a9:ce:89:f7:da:7c:48:21: 6c:df:5e:ba:63:50:88:39:96:02:47:cc:01:5e:10:72:23:8b: cf:6b:98:c4:c2:eb:7a:82:48:58:0f:58:db:0d:fa:b4:db:61: 03:e6:6b:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYzMTYxMTAvBgNVBAUTKEQ5NjQxOTQ1RDVCNENGN0Q2M0ZDOTEzMUFGQ0Y3MjdB RTM2RDkwMjAwHhcNMjUxMjA1MDAyMDAyWhcNMjUxMjEyMDAyMDAyWjAYMRYwFAYD VQQDEw02OTMyMjUzMy01MmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz/xYYYF7ttGwbkkzZrT5rnSFBJigEjZdnvr3VS0ifpAzIYxCXdSQZPkpb7nf twFlTmKQuaJBwZzVWeOjjtNx3z4olkBPFkULyC814o42AMmcNKO4e8iH4ozDVTJi +fYBWsYrlMBqARGcictVztMgsq741fMxuCJvT2s4iKZn+1Sdz3DbmenllWv+YkLN yngDX3u9Qx8yqB1xRP2EkgSZVSqn7xf00T3HQ6OzS41C9a41SfX1/isP8AkPbFho IsH1HAXBNRg0eqT9wJ/tcSiqw1YwqSXedn6uZmnZezHx2LShE4XA9LWIA3h0bjg0 sBwH3/61sISMAhvpvrag3AwvAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE1uSftc ymRFVeVB7P7adpbGl8O6MB8GA1UdIwQYMBaAFNlkGUXVtM99Y/yRMa/PcnrjbZAg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjMxNi9BMURGMTUyMDc3 NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHozMWpfSkV4cjg5eWV1TnRr Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJXUVpSZFcwejMxal9KRXhyODl5ZXVOdGtDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjMxNi9BMURGMTUyMDc3NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHoz MWpfSkV4cjg5eWV1TnRrQ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAchw8B/2A3h8TScbKZWiSCLg0IPWkX8m15cE1Bxti4O7PbMsgBj4wO 2p/A3WFxNMwZMlSxmLF0H+8CiveX8nQvhrMCWY8bUOzLd85XlwELWjhmRUZbGKnd FDJfj1MRAUsHsmjkLIhbnb3umXWg2wh/13325iWuvCSIIsU9YfxTUhZLfsDuRs1L SUyn7q0wWykXJSxa6zKXM2rU8GC7nkhzZ4W4HTNqtpF+ND1lzo6XPU/QBb0I8Yih kwAoIq7wCBIgXQ/lNNV+espd9eTHgQthqc6J99p8SCFs3166Y1CIOZYCR8wBXhBy I4vPa5jEwut6gkhYD1jbDfq022ED5mtk -----END CERTIFICATE-----Generated at Sun Dec 7 00:04:31 2025 by rpki-client