This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft File: F2vOFchi1HunYKH2ZTj4HVxJO4E.mft (raw, json) Hash identifier: OtgG/zU0Li0xtuUyaYtsfDio0+Pe0ERgskE7idt8c9s= Subject key identifier: FF:62:71:3D:D5:98:14:F8:03:6F:AA:B1:CE:B1:41:DA:CC:67:5C:AB Authority key identifier: 17:6B:CE:15:C8:62:D4:7B:A7:60:A1:F6:65:38:F8:1D:5C:49:3B:81 Certificate issuer: /CN=A91706E4/serialNumber=176BCE15C862D47BA760A1F66538F81D5C493B81 Certificate serial: C3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F2vOFchi1HunYKH2ZTj4HVxJO4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft Manifest number: C2 Signing time: Fri 05 Dec 2025 03:52:11 +0000 Manifest this update: Fri 05 Dec 2025 03:52:10 +0000 Manifest next update: Fri 12 Dec 2025 03:52:10 +0000 Files and hashes: 1: F2vOFchi1HunYKH2ZTj4HVxJO4E.crl (hash: 26WcQvosdEfT+0yUNKub6pLEufPcxA9N3CwVMdj8DjA=) 2: 2CE10886A68511EFB0CF9981C4F9AE02.roa (hash: veK+ihHT7rgGehPtR5m7GK/hbNWI81sjRNiKcGQwWGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.crl rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F2vOFchi1HunYKH2ZTj4HVxJO4E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:52:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91706E4, serialNumber=176BCE15C862D47BA760A1F66538F81D5C493B81 Validity Not Before: Dec 5 03:52:10 2025 GMT Not After : Dec 12 03:52:10 2025 GMT Subject: CN=693256eb-a120 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b0:fc:42:39:21:c4:8e:43:21:b2:26:0f:c2: fa:5e:80:44:1b:37:9d:61:94:f3:4b:69:c1:2e:58: 7e:99:2a:6b:4b:50:3b:85:3f:a8:ac:93:24:ed:2f: 16:32:3a:f1:06:1c:6c:8d:72:51:d5:74:4c:17:62: a5:15:e9:d5:d8:6a:66:fc:3a:70:5d:17:d8:34:f1: 11:3d:78:05:a4:07:4c:ff:ab:b4:f3:a3:c1:63:f5: ea:a1:51:2c:7b:7a:bc:c3:4a:d8:2d:78:08:34:32: e2:07:e2:c5:26:a0:00:34:f9:5c:50:e1:fb:00:86: 0a:1f:14:a7:42:2a:5a:18:00:fc:a1:d6:af:19:52: 0b:34:4e:26:7c:c5:96:ed:da:82:44:1e:e5:d0:31: 8d:7f:6f:8c:c5:4a:37:7f:17:92:8a:f7:6c:9b:78: 2c:87:24:c6:ea:f0:2e:d3:94:bb:41:bf:ac:e3:03: e1:49:66:9a:31:c7:41:af:66:cb:ba:34:1a:77:54: 62:1e:64:db:89:23:82:3a:93:96:e1:2b:f1:f1:2b: ab:c3:37:5d:84:34:93:82:d1:44:39:2e:ef:06:24: c7:73:4d:35:1d:50:c6:53:fc:11:29:0a:17:dc:a4: 29:2d:c3:46:29:5d:8c:f2:bc:f9:7f:cb:ab:90:c8: 9f:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:62:71:3D:D5:98:14:F8:03:6F:AA:B1:CE:B1:41:DA:CC:67:5C:AB X509v3 Authority Key Identifier: keyid:17:6B:CE:15:C8:62:D4:7B:A7:60:A1:F6:65:38:F8:1D:5C:49:3B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F2vOFchi1HunYKH2ZTj4HVxJO4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:b1:ce:f7:b0:de:01:dd:b9:30:ef:d4:95:1e:b9:61:f0:8c: 3f:8e:80:68:d3:62:55:85:1b:68:1c:d8:5b:4f:98:ff:b6:63: cf:12:42:68:a1:84:b8:1e:f8:58:14:66:07:97:41:0f:27:0a: 08:cd:d8:85:0c:d9:41:e5:af:f2:77:50:89:f7:d1:39:f5:19: 81:42:23:1d:bf:7b:a5:58:66:ab:ef:98:8f:66:eb:f2:fa:0b: 23:ac:75:d8:e1:be:91:f7:0e:54:ce:8a:e4:a1:38:dd:0a:df: 5a:44:65:39:a7:d7:55:08:c3:fe:33:73:ea:10:cc:3f:ab:6d: 68:0b:4b:d9:81:ee:4e:fc:ea:01:83:3d:d8:05:e8:a7:32:5c: 92:f2:2b:91:62:19:ff:79:99:0a:71:5c:69:77:09:8d:bc:3a: 40:d9:e9:e4:e0:9e:dd:a0:43:b0:34:b4:9d:13:ff:a1:48:48: f0:57:f7:e7:c1:db:f2:e3:a1:0b:4d:aa:0c:e6:9a:1e:41:d3: 29:15:32:71:d8:cf:f4:bb:80:71:a3:ba:2b:5a:14:86:0a:d6: e5:91:10:f1:38:d4:24:1a:83:27:32:a2:ca:34:23:27:89:07: 55:71:bb:e6:82:9d:21:aa:6d:22:a8:dd:16:c8:9e:e5:03:5f: 30:7d:5f:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA2RTQxMTAvBgNVBAUTKDE3NkJDRTE1Qzg2MkQ0N0JBNzYwQTFGNjY1MzhGODFE NUM0OTNCODEwHhcNMjUxMjA1MDM1MjEwWhcNMjUxMjEyMDM1MjEwWjAYMRYwFAYD VQQDEw02OTMyNTZlYi1hMTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrD8QjkhxI5DIbImD8L6XoBEGzedYZTzS2nBLlh+mSprS1A7hT+orJMk7S8W MjrxBhxsjXJR1XRMF2KlFenV2Gpm/DpwXRfYNPERPXgFpAdM/6u086PBY/XqoVEs e3q8w0rYLXgINDLiB+LFJqAANPlcUOH7AIYKHxSnQipaGAD8odavGVILNE4mfMWW 7dqCRB7l0DGNf2+MxUo3fxeSivdsm3gshyTG6vAu05S7Qb+s4wPhSWaaMcdBr2bL ujQad1RiHmTbiSOCOpOW4Svx8SurwzddhDSTgtFEOS7vBiTHc001HVDGU/wRKQoX 3KQpLcNGKV2M8rz5f8urkMif9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9icT3V mBT4A2+qsc6xQdrMZ1yrMB8GA1UdIwQYMBaAFBdrzhXIYtR7p2Ch9mU4+B1cSTuB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDZFNC8zMkU5OTNDMEE2 ODQxMUVGOEY1RUQzN0ZDNEY5QUUwMi9GMnZPRmNoaTFIdW5ZS0gyWlRqNEhWeEpP NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Yydk9GY2hpMUh1bllLSDJaVGo0SFZ4Sk80RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDZFNC8zMkU5OTNDMEE2ODQxMUVGOEY1RUQzN0ZDNEY5QUUwMi9GMnZPRmNoaTFI dW5ZS0gyWlRqNEhWeEpPNEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAsc73sN4B3bkw79SVHrlh8Iw/joBo02JVhRtoHNhbT5j/tmPPEkJo oYS4HvhYFGYHl0EPJwoIzdiFDNlB5a/yd1CJ99E59RmBQiMdv3ulWGar75iPZuvy +gsjrHXY4b6R9w5UzorkoTjdCt9aRGU5p9dVCMP+M3PqEMw/q21oC0vZge5O/OoB gz3YBeinMlyS8iuRYhn/eZkKcVxpdwmNvDpA2enk4J7doEOwNLSdE/+hSEjwV/fn wdvy46ELTaoM5poeQdMpFTJx2M/0u4Bxo7orWhSGCtblkRDxONQkGoMnMqLKNCMn iQdVcbvmgp0hqm0iqN0WyJ7lA18wfV8P -----END CERTIFICATE-----Generated at Sat Dec 6 18:19:56 2025 by rpki-client