This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft File: 2QhMrcO-yMIAxalrcu2v1KAOrug.mft (raw, json) Hash identifier: VipHehj+poO4WJ0GW7lHJsexdUfN2mKM/o0mRir2fFc= Subject key identifier: 10:4F:7E:C8:D1:13:BE:44:A8:6D:17:37:D5:62:80:C7:1E:72:4F:99 Authority key identifier: D9:08:4C:AD:C3:BE:C8:C2:00:C5:A9:6B:72:ED:AF:D4:A0:0E:AE:E8 Certificate issuer: /CN=A91719F1/serialNumber=D9084CADC3BEC8C200C5A96B72EDAFD4A00EAEE8 Certificate serial: 02AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhMrcO-yMIAxalrcu2v1KAOrug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft Manifest number: 02A6 Signing time: Sun 07 Dec 2025 00:02:06 +0000 Manifest this update: Sun 07 Dec 2025 00:02:06 +0000 Manifest next update: Sun 14 Dec 2025 00:02:06 +0000 Files and hashes: 1: 2QhMrcO-yMIAxalrcu2v1KAOrug.crl (hash: cHH0QEHQtxvjegCREr6wuWNwd+rwa5+4TewaXVXeFPo=) 2: 00724F9621F111ED93774B6EC4F9AE02.roa (hash: 1MS8BgQSeLxFZfjzI2XVs+BA1y3N2nYBN3Uvkoalvq8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.crl rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhMrcO-yMIAxalrcu2v1KAOrug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:02:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 685 (0x2ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91719F1, serialNumber=D9084CADC3BEC8C200C5A96B72EDAFD4A00EAEE8 Validity Not Before: Dec 7 00:02:06 2025 GMT Not After : Dec 14 00:02:06 2025 GMT Subject: CN=6934c3fe-348b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e1:e7:ca:cb:0a:fe:b5:27:33:a6:ea:eb:ab: a7:52:43:a7:3e:73:be:ee:30:a8:66:16:0c:d2:ab: c2:69:fe:47:fa:61:23:46:62:37:83:22:81:8c:21: b2:87:60:93:2d:bd:40:c8:a2:0f:d0:ee:00:0a:3d: 02:94:81:fd:c2:78:e9:52:77:11:02:a5:c6:20:f5: 45:af:49:57:cd:ff:74:fa:49:09:40:70:31:6e:e2: a9:d1:58:a6:95:bb:0d:74:b4:1e:7b:f2:b4:47:d6: 74:ca:8f:5f:06:19:6b:64:fe:73:aa:09:0f:b9:2a: 3b:dc:70:79:71:36:9c:88:05:05:2f:a0:35:16:ea: 2a:4d:6e:d1:58:5c:71:65:fc:78:44:c5:fe:72:0a: 49:0e:4c:4f:da:20:6c:38:3f:d0:38:2c:96:5a:8e: 30:3a:ec:40:30:df:01:2d:ee:aa:a5:3a:05:76:6a: c8:33:ae:6b:b0:b2:a7:d5:f9:b9:d1:87:f4:99:f6: 8e:8e:01:52:5d:07:c3:a2:4b:4d:73:8e:0d:b9:12: aa:6e:d4:79:c9:fd:41:80:d7:9e:17:51:39:ab:dc: af:be:2f:f4:d2:46:6e:82:71:d5:27:de:7d:c6:ee: 93:97:31:2f:df:ae:db:94:e4:91:99:7b:ae:fb:d9: 07:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:4F:7E:C8:D1:13:BE:44:A8:6D:17:37:D5:62:80:C7:1E:72:4F:99 X509v3 Authority Key Identifier: keyid:D9:08:4C:AD:C3:BE:C8:C2:00:C5:A9:6B:72:ED:AF:D4:A0:0E:AE:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhMrcO-yMIAxalrcu2v1KAOrug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:1e:0c:a3:84:9b:b6:d1:8f:31:00:91:82:2a:03:4b:49:b9: 71:b6:8f:b3:0b:34:32:2f:7c:30:14:61:c0:7f:87:48:ef:8e: ed:b0:ef:d6:fb:bf:f8:08:38:17:84:91:1a:fc:d5:40:1c:8c: 3a:d4:16:8d:a4:97:7b:3c:fc:44:28:f5:a9:f5:e8:7e:af:6b: ed:25:b2:cc:5f:dd:3b:49:c4:ce:45:b3:a0:42:aa:fe:11:e2: 1e:b3:a2:ca:af:ca:87:67:c1:f9:9a:e2:67:41:ac:22:0d:a2: aa:16:55:f5:cc:f3:67:0a:54:19:50:92:d8:ca:47:7a:b8:c3: 4c:12:de:1d:84:96:ae:b1:57:78:0d:44:b1:83:6a:fb:2a:d6: 79:ca:64:96:15:a8:b3:ec:4f:4f:4b:6f:d5:00:d7:23:79:d4: 37:f5:df:72:02:17:d6:2e:9c:37:d6:d2:54:54:54:1e:26:ba: 09:93:56:89:1f:18:f5:ba:17:50:03:14:28:be:2f:90:67:3a: ee:89:14:ac:47:4a:76:51:e9:ed:76:82:2d:fd:52:7f:36:95: b7:ce:f4:58:92:58:37:af:29:85:e8:b9:1b:f6:d6:63:13:91: 75:3c:60:77:1d:25:eb:ce:28:47:b2:ff:20:60:74:62:ab:40: 5c:b5:b1:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE5RjExMTAvBgNVBAUTKEQ5MDg0Q0FEQzNCRUM4QzIwMEM1QTk2QjcyRURBRkQ0 QTAwRUFFRTgwHhcNMjUxMjA3MDAwMjA2WhcNMjUxMjE0MDAwMjA2WjAYMRYwFAYD VQQDEw02OTM0YzNmZS0zNDhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOHnyssK/rUnM6bq66unUkOnPnO+7jCoZhYM0qvCaf5H+mEjRmI3gyKBjCGy h2CTLb1AyKIP0O4ACj0ClIH9wnjpUncRAqXGIPVFr0lXzf90+kkJQHAxbuKp0Vim lbsNdLQee/K0R9Z0yo9fBhlrZP5zqgkPuSo73HB5cTaciAUFL6A1FuoqTW7RWFxx Zfx4RMX+cgpJDkxP2iBsOD/QOCyWWo4wOuxAMN8BLe6qpToFdmrIM65rsLKn1fm5 0Yf0mfaOjgFSXQfDoktNc44NuRKqbtR5yf1BgNeeF1E5q9yvvi/00kZugnHVJ959 xu6TlzEv367blOSRmXuu+9kHwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBBPfsjR E75EqG0XN9VigMceck+ZMB8GA1UdIwQYMBaAFNkITK3DvsjCAMWpa3Ltr9SgDq7o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTlGMS82OTVGOTNGRTIx RUUxMUVEQjRDOEJENkNDNEY5QUUwMi8yUWhNcmNPLXlNSUF4YWxyY3UydjFLQU9y dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRaE1yY08teU1JQXhhbHJjdTJ2MUtBT3J1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTlGMS82OTVGOTNGRTIxRUUxMUVEQjRDOEJENkNDNEY5QUUwMi8yUWhNcmNPLXlN SUF4YWxyY3UydjFLQU9ydWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0HgyjhJu20Y8xAJGCKgNLSblxto+zCzQyL3wwFGHAf4dI747tsO/W +7/4CDgXhJEa/NVAHIw61BaNpJd7PPxEKPWp9eh+r2vtJbLMX907ScTORbOgQqr+ EeIes6LKr8qHZ8H5muJnQawiDaKqFlX1zPNnClQZUJLYykd6uMNMEt4dhJausVd4 DUSxg2r7KtZ5ymSWFaiz7E9PS2/VANcjedQ39d9yAhfWLpw31tJUVFQeJroJk1aJ Hxj1uhdQAxQovi+QZzruiRSsR0p2UentdoIt/VJ/NpW3zvRYklg3rymF6Lkb9tZj E5F1PGB3HSXrzihHsv8gYHRiq0BctbFk -----END CERTIFICATE-----Generated at Sun Dec 7 02:34:58 2025 by rpki-client