This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft File: 2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft (raw, json) Hash identifier: 6RQsSyiBOTSZcORgVAw0Er9soRWkOB7anciANC02s5k= Subject key identifier: 02:BE:13:FF:54:4E:0D:59:B0:1D:0F:37:CD:A4:18:8C:B5:2D:8F:FD Authority key identifier: D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F Certificate issuer: /CN=A91758EC/serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Certificate serial: 50 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft Manifest number: 4C Signing time: Fri 05 Dec 2025 05:14:08 +0000 Manifest this update: Fri 05 Dec 2025 05:14:07 +0000 Manifest next update: Fri 12 Dec 2025 05:14:07 +0000 Files and hashes: 1: 2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl (hash: fhhzk1Y7J8TA7fvpmbPueBkK0CFFQA+7CTKBFoXlpdE=) 2: 9DA6D1866E1C11F0B7ED1D84C4F9AE02.roa (hash: Ab7z11j/JWV2srLlnZVUsiX2l5YoRDQg2qGXrcUnimg=) 3: 312F0E7E6E1C11F0AB99F682C4F9AE02.roa (hash: TPTw4itouUrT3zWp67Qh/kFVGTIQgN0gjeYV7fEtXi8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91758EC, serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Validity Not Before: Dec 5 05:14:07 2025 GMT Not After : Dec 12 05:14:07 2025 GMT Subject: CN=69326a20-a0ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:2a:07:3c:d8:17:8b:88:d2:e3:4f:57:23:8a: 27:39:c7:68:c5:67:a5:7d:9e:9d:c5:87:57:02:6e: 77:c8:b4:b0:3a:04:c6:e2:5f:a9:aa:d5:58:99:c2: 3d:4d:86:87:a7:78:73:80:43:0b:dc:0c:45:c7:95: 25:7f:69:d9:d3:2b:59:cb:dc:56:e7:a4:55:fb:5f: 6b:93:df:43:db:e8:2f:06:dd:0a:0e:cc:82:fc:66: c8:5d:cf:d4:a7:83:fe:ac:31:26:fe:c8:6c:77:93: c4:17:33:9e:54:34:6d:71:1f:13:ef:b7:60:92:19: fe:5d:98:c3:e2:bc:d4:33:19:de:af:77:02:c8:c1: 12:31:20:5e:c4:9f:62:b0:d7:57:a0:b9:73:40:99: d1:50:67:3f:89:12:3a:9d:bc:e2:18:5b:cd:8b:c3: 42:8e:ca:22:b3:54:67:61:90:03:2e:e7:79:ed:6b: bd:bd:26:af:86:f5:e2:3e:9f:a3:65:dc:7b:fc:2f: 45:82:b9:03:43:a5:e8:3c:7d:06:f6:0d:1b:b8:de: 9d:4f:19:2b:cb:84:5e:49:ed:95:ff:97:ce:0b:34: b3:72:b3:c4:17:5a:ef:f2:52:88:32:33:72:e6:e8: a4:e7:17:9b:3c:d6:dc:f1:18:6a:e1:6a:32:3e:bc: d5:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:BE:13:FF:54:4E:0D:59:B0:1D:0F:37:CD:A4:18:8C:B5:2D:8F:FD X509v3 Authority Key Identifier: keyid:D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:e2:60:c6:16:f1:b6:ac:cd:70:f3:75:62:d5:be:fd:be:d7: c7:86:8a:1f:47:ae:e9:9b:70:72:a0:a7:c8:a9:3f:00:96:af: 65:e0:a9:b4:87:cc:87:e9:cb:4c:da:45:fc:7c:e2:db:8e:ab: 9e:2b:36:b8:09:03:36:a2:03:bd:a7:bd:80:b1:35:b7:ef:8c: 8a:ba:f4:94:17:09:ad:11:ef:33:56:d1:89:58:f0:ab:5a:13: 61:23:88:9d:9d:39:fd:b2:52:94:ec:35:03:18:54:b0:f7:1f: 55:3f:03:7b:e0:da:01:9d:f2:94:dc:48:2d:6e:6b:a2:91:92: 73:0a:91:f1:51:23:a0:00:c1:97:dd:1b:06:8e:f2:3e:6b:d6: c4:a3:35:f2:de:3e:9e:fe:fb:67:68:2b:fd:33:ff:34:b2:a0: 9c:00:28:a8:88:7b:a9:76:1b:6e:46:64:ca:a8:a3:8d:c5:be: 5a:a7:98:6d:a0:f6:25:74:26:b6:d8:2f:1f:99:dd:c7:88:c1: c3:a5:eb:70:22:40:df:20:5c:35:25:db:a7:e7:3a:f5:3a:12: 08:3d:ab:d0:57:54:fc:9f:5f:bb:47:71:0b:97:85:ae:59:fa: 84:a6:37:8a:e0:6e:59:40:17:03:f7:f8:52:67:92:8a:c1:a1: af:2f:ed:19 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NThFQzExMC8GA1UEBRMoRDgyN0I2ODQzRUI3RjZCOUYwRUQ1RjJGRjcyMzQ0QTUy QzA0QjQ5RjAeFw0yNTEyMDUwNTE0MDdaFw0yNTEyMTIwNTE0MDdaMBgxFjAUBgNV BAMTDTY5MzI2YTIwLWEwZWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDmKgc82BeLiNLjT1cjiic5x2jFZ6V9np3Fh1cCbnfItLA6BMbiX6mq1ViZwj1N hoeneHOAQwvcDEXHlSV/adnTK1nL3FbnpFX7X2uT30Pb6C8G3QoOzIL8Zshdz9Sn g/6sMSb+yGx3k8QXM55UNG1xHxPvt2CSGf5dmMPivNQzGd6vdwLIwRIxIF7En2Kw 11eguXNAmdFQZz+JEjqdvOIYW82Lw0KOyiKzVGdhkAMu53nta729Jq+G9eI+n6Nl 3Hv8L0WCuQNDpeg8fQb2DRu43p1PGSvLhF5J7ZX/l84LNLNys8QXWu/yUogyM3Lm 6KTnF5s81tzxGGrhajI+vNXHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUAr4T/1RO DVmwHQ83zaQYjLUtj/0wHwYDVR0jBBgwFoAU2Ce2hD639rnw7V8v9yNEpSwEtJ8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1OEVDLzZCRjg2Qjg0NjYz MDExRjBCOURDNEU2NEM0RjlBRTAyLzJDZTJoRDYzOXJudzdWOHY5eU5FcFN3RXRK OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMkNlMmhENjM5cm53N1Y4djl5TkVwU3dFdEo4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 OEVDLzZCRjg2Qjg0NjYzMDExRjBCOURDNEU2NEM0RjlBRTAyLzJDZTJoRDYzOXJu dzdWOHY5eU5FcFN3RXRKOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADbiYMYW8baszXDzdWLVvv2+18eGih9HrumbcHKgp8ipPwCWr2XgqbSH zIfpy0zaRfx84tuOq54rNrgJAzaiA72nvYCxNbfvjIq69JQXCa0R7zNW0YlY8Kta E2EjiJ2dOf2yUpTsNQMYVLD3H1U/A3vg2gGd8pTcSC1ua6KRknMKkfFRI6AAwZfd GwaO8j5r1sSjNfLePp7++2doK/0z/zSyoJwAKKiIe6l2G25GZMqoo43FvlqnmG2g 9iV0JrbYLx+Z3ceIwcOl63AiQN8gXDUl26fnOvU6Egg9q9BXVPyfX7tHcQuXha5Z +oSmN4rgbllAFwP3+FJnkorBoa8v7Rk= -----END CERTIFICATE-----Generated at Sun Dec 7 01:15:36 2025 by rpki-client