This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

$ rpki-client -vvf rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft
File: 2kdUAUEh0yaH2X05LZBgSagU_MM.mft (raw, json)
Hash identifier: tqGGQSBV4FL/ayebdY/qNCSs2JmBPOyLEVFxvwHj/zg=
Subject key identifier: 2B:54:D3:7B:36:6E:8F:CD:BB:B5:B6:05:08:9E:70:EE:E9:97:03:C1
Authority key identifier: DA:47:54:01:41:21:D3:26:87:D9:7D:39:2D:90:60:49:A8:14:FC:C3
Certificate issuer: /CN=A91777A6/serialNumber=DA4754014121D32687D97D392D906049A814FCC3
Certificate serial: 02A5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft
Manifest number: 02A0
Signing time: Thu 04 Dec 2025 23:52:30 +0000
Manifest this update: Thu 04 Dec 2025 23:52:29 +0000
Manifest next update: Thu 11 Dec 2025 23:52:29 +0000
Files and hashes: 1: 2kdUAUEh0yaH2X05LZBgSagU_MM.crl (hash: G6G2yqCg8B5vbprVwHXB5TurbRhkFrqcDN9WJz3HACY=)
2: 930770F4244C11ED95AA5569C4F9AE02.roa (hash: ULGKwEOFyOrsmtR9RLcNHZ1T/UHrIBp7ZTGPrjal32s=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.crl
rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 11 Dec 2025 23:52:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 677 (0x2a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91777A6, serialNumber=DA4754014121D32687D97D392D906049A814FCC3
Validity
Not Before: Dec 4 23:52:29 2025 GMT
Not After : Dec 11 23:52:29 2025 GMT
Subject: CN=69321ebd-4979
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:7b:53:bf:37:f8:93:12:13:e0:46:cb:1b:2f:
92:13:9b:3a:40:03:a3:de:91:dd:f1:51:0a:99:17:
06:0e:54:f6:b1:54:6d:44:4d:7a:db:7a:82:89:b4:
d0:8c:8a:1b:21:b8:bd:d7:62:b4:06:b9:2c:84:6b:
d1:75:11:54:15:5d:b7:b3:46:61:df:59:3d:89:bd:
51:e5:49:16:cc:68:22:77:48:a2:9a:b5:38:5b:48:
a2:25:72:df:41:63:7a:82:23:a1:94:a9:90:a4:8d:
eb:f0:f9:2d:2d:61:f0:5d:b7:ad:92:37:ca:67:a7:
54:5b:6c:6e:8c:e7:4a:58:3c:33:90:9c:4b:3b:64:
f5:91:f4:9e:bc:08:4c:cc:36:cb:9c:d4:73:44:46:
37:b8:f3:21:d2:73:da:bd:27:4e:04:fb:ac:2f:17:
8e:d1:f4:1c:80:f6:9f:ac:dd:67:4d:d4:1e:f0:c0:
c0:6d:0a:44:d4:77:f3:f0:51:bc:b3:30:09:23:43:
bc:9a:ee:a2:5d:3e:56:42:d0:64:50:1b:4f:05:fd:
59:a0:15:f7:be:d7:d7:54:60:82:9e:d1:f5:18:07:
07:50:18:60:f7:bf:9d:99:46:af:14:31:b5:c8:09:
d4:55:71:42:8a:e8:95:d5:97:a8:9f:74:f3:e8:71:
5a:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:54:D3:7B:36:6E:8F:CD:BB:B5:B6:05:08:9E:70:EE:E9:97:03:C1
X509v3 Authority Key Identifier:
keyid:DA:47:54:01:41:21:D3:26:87:D9:7D:39:2D:90:60:49:A8:14:FC:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
12:ed:a8:c7:8d:6a:a0:72:44:df:57:85:6e:9c:5d:a9:bf:33:
b9:1d:8b:c5:3d:a7:b5:14:32:47:dd:1d:b0:f2:27:ad:07:6a:
fb:40:00:8b:cc:ae:df:77:2b:f1:7f:ac:3f:56:7a:41:54:80:
f8:80:69:8e:95:eb:50:67:f4:67:8c:5a:f0:ae:a3:2e:c0:e7:
dd:7a:c1:c1:38:bc:c7:4c:00:3b:73:51:30:af:c4:93:2d:da:
b8:36:56:9e:2d:8a:9c:be:81:9a:a4:93:87:72:ef:a4:42:cc:
1f:20:e9:81:24:29:5f:60:b7:96:e2:a9:69:1c:c0:ab:73:e6:
b8:e5:b8:62:28:2b:ee:91:9c:ee:80:08:c3:7c:f7:01:48:03:
6c:e3:e2:3e:f5:97:95:7c:bc:2a:f6:09:a6:44:b8:7c:82:bc:
b1:8a:3b:6b:cb:1e:f2:a5:65:c3:35:d3:0f:6c:67:06:b8:7a:
33:74:3c:44:0a:44:ee:e3:01:c1:e8:75:a1:1a:51:3c:eb:69:
71:98:2c:61:37:b2:c2:74:a8:43:8e:c2:d8:ae:e5:4d:55:75:
2c:42:94:4f:33:8b:9c:0d:fd:60:48:37:bf:76:64:50:c6:e4:
bb:07:65:cf:1f:99:31:93:1b:e8:0f:6f:00:a4:a6:da:11:24:
59:de:97:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Dec 7 00:50:19 2025 by rpki-client