This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft File: 2CVmixrBt_OBXwe82lfnSMSWSpo.mft (raw, json) Hash identifier: /aUkI4FI4hQeFltE7jLEh3Rb9zSpXuQdGgZ+ktYnFss= Subject key identifier: 97:96:5C:18:9A:BB:A7:9E:B3:2F:D2:6C:91:54:B4:4B:85:7A:ED:27 Authority key identifier: D8:25:66:8B:1A:C1:B7:F3:81:5F:07:BC:DA:57:E7:48:C4:96:4A:9A Certificate issuer: /CN=A91756C3/serialNumber=D825668B1AC1B7F3815F07BCDA57E748C4964A9A Certificate serial: A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft Manifest number: 9E Signing time: Fri 05 Dec 2025 04:18:53 +0000 Manifest this update: Fri 05 Dec 2025 04:18:53 +0000 Manifest next update: Fri 12 Dec 2025 04:18:53 +0000 Files and hashes: 1: 2CVmixrBt_OBXwe82lfnSMSWSpo.crl (hash: 6HNXXHi4acWHS8rt0w1W8RDUysxJcE49+TH9IdU4Uss=) 2: 00078764E06811EF8716401DC4F9AE02.roa (hash: LbImQdZW2RSWgtVHcpBhymJAYl7D/59tKMuTPJC97Bo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.crl rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:18:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91756C3, serialNumber=D825668B1AC1B7F3815F07BCDA57E748C4964A9A Validity Not Before: Dec 5 04:18:53 2025 GMT Not After : Dec 12 04:18:53 2025 GMT Subject: CN=69325d2d-f132 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a2:3b:3f:14:23:4f:f0:46:14:86:f2:ed:f4: e4:af:64:cf:9c:6c:0f:23:c7:2c:52:dc:82:55:9e: 27:fb:aa:18:64:0c:32:f6:21:9f:32:ea:62:ed:18: 91:62:e2:c7:8e:99:31:c8:da:c8:89:4f:10:60:bf: 84:c7:9a:6f:67:e7:e1:bf:a3:b2:9b:63:9c:49:16: 65:cc:94:2d:d3:2a:02:4d:05:bb:8c:70:2a:17:0a: 6a:53:1a:1f:62:e7:a8:c6:51:3d:04:7f:76:8b:c3: d0:6b:55:91:b6:88:53:9b:47:53:df:a3:06:f5:d2: fb:f8:48:31:11:92:64:02:e4:30:1d:01:24:95:54: 7e:46:69:2b:0c:53:26:d5:a4:c3:4e:7e:f1:9e:c0: d4:b8:23:de:bb:b5:be:76:34:02:16:50:9a:d6:98: cb:05:bf:28:b1:59:dc:48:2e:c8:d3:c8:c9:d1:f0: c8:98:c1:5e:cc:de:d0:32:76:43:09:4b:b6:a6:ea: 95:9c:59:5a:1e:cd:6e:24:d2:d7:d4:a5:3b:4a:48: 86:b2:bd:9a:87:70:7a:65:a6:93:e9:1d:02:9a:e5: d5:ea:c1:2d:91:a9:b8:d0:f8:d2:77:72:7c:a0:38: d0:84:f6:66:13:08:be:83:37:c5:af:ed:7c:66:27: e0:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:96:5C:18:9A:BB:A7:9E:B3:2F:D2:6C:91:54:B4:4B:85:7A:ED:27 X509v3 Authority Key Identifier: keyid:D8:25:66:8B:1A:C1:B7:F3:81:5F:07:BC:DA:57:E7:48:C4:96:4A:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:8f:e4:35:b4:18:c0:7f:e9:c2:c7:35:59:3f:a6:17:1b:50: 1c:dd:cb:c4:5c:b6:d8:d6:01:e7:88:c7:3f:2c:68:45:02:b5: 05:50:55:1a:56:10:fa:dd:4e:25:3c:18:fc:45:f9:6c:39:80: 04:c5:3f:eb:a0:06:80:d8:ac:fd:5a:ab:e9:db:60:49:f9:a7: b8:13:1a:65:8f:a6:c7:de:b1:4f:9b:21:0f:50:7d:44:be:54: f6:39:b6:ae:72:1b:1c:ac:62:f9:79:6e:4f:08:ee:14:bb:42: 82:e8:09:7d:fa:3c:05:ce:30:76:44:90:33:73:dc:c4:d8:9b: 7d:92:5a:8a:e9:44:3f:e8:d4:5b:50:03:ba:dc:05:e8:60:b3: ab:a0:f7:db:55:b8:9e:61:58:11:cc:da:fc:3c:56:06:4f:bc: 0e:b3:25:92:4f:40:f0:be:7b:5a:2a:a8:98:08:63:df:21:c2: 75:ca:bf:94:21:ab:bb:98:89:84:02:ab:86:cb:f3:dc:4c:f3: e2:0d:56:ca:cd:6c:ee:92:a2:5a:e3:c2:c3:95:21:5d:d9:b8: 0c:61:3a:c5:2f:c2:2f:16:0c:cf:63:ab:c0:4c:41:90:42:ce: 96:3e:4f:1c:d3:09:77:81:44:dc:12:bb:57:dc:99:81:1a:c6: dd:23:bc:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU2QzMxMTAvBgNVBAUTKEQ4MjU2NjhCMUFDMUI3RjM4MTVGMDdCQ0RBNTdFNzQ4 QzQ5NjRBOUEwHhcNMjUxMjA1MDQxODUzWhcNMjUxMjEyMDQxODUzWjAYMRYwFAYD VQQDEw02OTMyNWQyZC1mMTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzKI7PxQjT/BGFIby7fTkr2TPnGwPI8csUtyCVZ4n+6oYZAwy9iGfMupi7RiR YuLHjpkxyNrIiU8QYL+Ex5pvZ+fhv6Oym2OcSRZlzJQt0yoCTQW7jHAqFwpqUxof YueoxlE9BH92i8PQa1WRtohTm0dT36MG9dL7+EgxEZJkAuQwHQEklVR+RmkrDFMm 1aTDTn7xnsDUuCPeu7W+djQCFlCa1pjLBb8osVncSC7I08jJ0fDImMFezN7QMnZD CUu2puqVnFlaHs1uJNLX1KU7SkiGsr2ah3B6ZaaT6R0CmuXV6sEtkam40PjSd3J8 oDjQhPZmEwi+gzfFr+18ZifgPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJeWXBia u6eesy/SbJFUtEuFeu0nMB8GA1UdIwQYMBaAFNglZosawbfzgV8HvNpX50jElkqa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTZDMy81QkY1MTkyQUUw NjcxMUVGQkMzRDE3MUJDNEY5QUUwMi8yQ1ZtaXhyQnRfT0JYd2U4MmxmblNNU1dT cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDVm1peHJCdF9PQlh3ZTgybGZuU01TV1Nwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTZDMy81QkY1MTkyQUUwNjcxMUVGQkMzRDE3MUJDNEY5QUUwMi8yQ1ZtaXhyQnRf T0JYd2U4MmxmblNNU1dTcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjj+Q1tBjAf+nCxzVZP6YXG1Ac3cvEXLbY1gHniMc/LGhFArUFUFUa VhD63U4lPBj8RflsOYAExT/roAaA2Kz9Wqvp22BJ+ae4Explj6bH3rFPmyEPUH1E vlT2ObauchscrGL5eW5PCO4Uu0KC6Al9+jwFzjB2RJAzc9zE2Jt9klqK6UQ/6NRb UAO63AXoYLOroPfbVbieYVgRzNr8PFYGT7wOsyWST0DwvntaKqiYCGPfIcJ1yr+U Iau7mImEAquGy/PcTPPiDVbKzWzukqJa48LDlSFd2bgMYTrFL8IvFgzPY6vATEGQ Qs6WPk8c0wl3gUTcErtX3JmBGsbdI7za -----END CERTIFICATE-----Generated at Sat Dec 6 17:45:38 2025 by rpki-client