This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft File: 2iwTK47FBxr425BJG63bwPCntEU.mft (raw, json) Hash identifier: giXVJmrp6yqFNn6HIha+0UYOo+TjLCqPoU2i+DRHNr8= Subject key identifier: 99:A2:D3:EB:EC:ED:03:71:67:73:B0:62:CD:28:A7:FD:08:F9:3D:3A Authority key identifier: DA:2C:13:2B:8E:C5:07:1A:F8:DB:90:49:1B:AD:DB:C0:F0:A7:B4:45 Certificate issuer: /CN=A91534B8/serialNumber=DA2C132B8EC5071AF8DB90491BADDBC0F0A7B445 Certificate serial: 02EA Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft Manifest number: 02EA Signing time: Sat 06 Dec 2025 23:51:21 +0000 Manifest this update: Sat 06 Dec 2025 23:51:20 +0000 Manifest next update: Sat 13 Dec 2025 23:51:20 +0000 Files and hashes: 1: 2iwTK47FBxr425BJG63bwPCntEU.crl (hash: 1eEbEisnc9cD5ax8D+lq3nPSBKPe84hExoRZP4whF8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.crl rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:11:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 746 (0x2ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8, serialNumber=DA2C132B8EC5071AF8DB90491BADDBC0F0A7B445 Validity Not Before: Dec 6 23:51:20 2025 GMT Not After : Dec 13 23:51:20 2025 GMT Subject: CN=6934c178-368c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b7:52:26:a6:01:1a:23:91:02:c4:1c:c1:76: f4:ff:db:7c:19:63:a1:6a:30:81:d6:2b:f2:7c:99: c7:28:d1:c9:02:94:85:c8:79:71:57:40:4c:c3:0f: 2e:b2:f2:06:81:2f:22:f0:ef:77:5e:04:8a:23:e2: 6e:a3:f2:b5:24:8d:08:1a:50:a5:83:c7:4e:a5:1d: 95:d3:5e:ab:87:9c:32:83:ba:72:53:eb:1e:c8:14: bb:7b:c2:69:05:97:94:85:ad:24:c3:be:03:1d:8e: 42:0d:4a:71:c0:b9:7d:1a:4f:9f:d3:5e:0d:ab:d3: 6e:6c:f2:c0:e4:f1:cf:f8:93:23:3e:36:57:4f:98: fa:fc:26:94:a3:9e:3c:a6:ce:b4:6c:1e:a2:ce:67: 03:d1:f6:6e:4e:9b:8f:cd:bb:f1:7e:27:2d:a3:7e: 2d:41:50:ff:1b:68:17:9e:52:9c:fa:2f:bb:9c:1c: 2c:95:7b:bf:00:dd:49:3e:1d:e6:c3:d8:4c:a2:56: a5:88:e5:e7:d8:b2:98:63:79:ce:59:34:19:9e:d7: 91:6a:44:e9:bd:eb:bf:e3:d1:3b:86:03:c7:0c:83: cb:23:1e:b3:b3:82:8a:99:0d:ab:b0:d4:97:ff:81: ba:bc:b1:92:fc:e8:07:fe:a7:79:20:9e:b6:be:78: e2:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:A2:D3:EB:EC:ED:03:71:67:73:B0:62:CD:28:A7:FD:08:F9:3D:3A X509v3 Authority Key Identifier: keyid:DA:2C:13:2B:8E:C5:07:1A:F8:DB:90:49:1B:AD:DB:C0:F0:A7:B4:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:30:27:67:1d:83:61:2e:ee:c2:66:84:51:4d:d7:71:30:b7: 63:72:c6:8d:e2:cb:dc:68:ce:e7:f9:d2:78:69:28:4c:36:50: 76:d4:be:6d:55:ca:d2:eb:22:ec:18:ce:5f:45:e2:3a:c3:de: c3:49:94:77:e0:b7:98:e5:45:1b:73:59:54:ea:ac:d9:2c:93: 7f:c3:f3:fd:e9:3b:8f:e8:a4:ab:ce:bc:f9:65:b1:ea:91:39: e8:de:cb:79:c9:7b:88:1c:b2:81:74:8e:16:17:b0:45:b9:73: 1c:65:a3:7a:4b:85:66:b6:e4:cd:0b:eb:b9:19:3b:a8:62:80: 13:16:63:e0:d3:eb:8e:b4:19:16:ed:1b:23:0e:75:8f:85:0b: 1e:9a:94:56:76:ef:8b:0f:92:37:0a:92:80:74:76:25:8f:2f: 02:ad:d7:3a:f6:fb:e5:bb:0a:03:39:b0:c0:84:c4:c9:bc:df: cb:9d:30:d3:b1:ff:a8:79:b4:95:51:44:7c:89:ac:62:b9:1f: 3d:f8:d6:b3:92:67:8f:e7:82:5d:39:9e:48:3f:ca:8d:19:b0: 79:db:cf:97:97:10:ca:c1:f3:2d:0c:35:c7:2b:f9:74:41:b0: 84:a3:5b:b5:10:28:72:d7:ec:25:68:b1:22:8e:f3:19:fc:e6: 26:44:e6:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKERBMkMxMzJCOEVDNTA3MUFGOERCOTA0OTFCQUREQkMw RjBBN0I0NDUwHhcNMjUxMjA2MjM1MTIwWhcNMjUxMjEzMjM1MTIwWjAYMRYwFAYD VQQDEw02OTM0YzE3OC0zNjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1rdSJqYBGiORAsQcwXb0/9t8GWOhajCB1ivyfJnHKNHJApSFyHlxV0BMww8u svIGgS8i8O93XgSKI+Juo/K1JI0IGlClg8dOpR2V016rh5wyg7pyU+seyBS7e8Jp BZeUha0kw74DHY5CDUpxwLl9Gk+f014Nq9NubPLA5PHP+JMjPjZXT5j6/CaUo548 ps60bB6izmcD0fZuTpuPzbvxficto34tQVD/G2gXnlKc+i+7nBwslXu/AN1JPh3m w9hMolaliOXn2LKYY3nOWTQZnteRakTpveu/49E7hgPHDIPLIx6zs4KKmQ2rsNSX /4G6vLGS/OgH/qd5IJ62vnjiVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJmi0+vs 7QNxZ3OwYs0op/0I+T06MB8GA1UdIwQYMBaAFNosEyuOxQca+NuQSRut28Dwp7RF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC85NjY1OTk3RTA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8yaXdUSzQ3RkJ4cjQyNUJKRzYzYndQQ250 RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzJpd1RLNDdGQnhyNDI1QkpHNjNid1BDbnRFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzRCOC85NjY1OTk3RTA5NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8yaXdUSzQ3RkJ4 cjQyNUJKRzYzYndQQ250RVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoMCdnHYNhLu7CZoRRTddxMLdjcsaN4svcaM7n+dJ4aShMNlB21L5t VcrS6yLsGM5fReI6w97DSZR34LeY5UUbc1lU6qzZLJN/w/P96TuP6KSrzrz5ZbHq kTno3st5yXuIHLKBdI4WF7BFuXMcZaN6S4VmtuTNC+u5GTuoYoATFmPg0+uOtBkW 7RsjDnWPhQsempRWdu+LD5I3CpKAdHYljy8Crdc69vvluwoDObDAhMTJvN/LnTDT sf+oebSVUUR8iaxiuR89+NazkmeP54JdOZ5IP8qNGbB528+XlxDKwfMtDDXHK/l0 QbCEo1u1EChy1+wlaLEijvMZ/OYmRObC -----END CERTIFICATE-----Generated at Sun Dec 7 02:09:25 2025 by rpki-client