This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft File: 2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft (raw, json) Hash identifier: yFKfVy+Kebae1iUjaCwhfkJFzjDa7/nzCJZrytfxsEU= Subject key identifier: 6C:4C:41:89:E7:2E:11:04:60:06:07:17:39:75:3E:E7:D7:13:85:73 Authority key identifier: DB:EE:EB:C2:5A:7A:9B:9B:67:5A:04:E2:F4:21:EF:E4:6E:A7:25:20 Certificate issuer: /CN=A91A300F/serialNumber=DBEEEBC25A7A9B9B675A04E2F421EFE46EA72520 Certificate serial: 049F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft Manifest number: 0499 Signing time: Thu 04 Dec 2025 22:32:24 +0000 Manifest this update: Thu 04 Dec 2025 22:32:23 +0000 Manifest next update: Thu 11 Dec 2025 22:32:23 +0000 Files and hashes: 1: 2-7rwlp6m5tnWgTi9CHv5G6nJSA.crl (hash: qfmKbvd/RIQPZQj/2BFJasP0rcFBnn59M9bS4wy+YHo=) 2: 90065F424DB511F0A1C8D30DC4F9AE02.roa (hash: wqkVYDxZ6HBCzKePRiH5zEB/9I/WLKOX58mvYx8PpGA=) 3: 9C2DE17A5D9311ECB2ABB63FC4F9AE02.roa (hash: XCMHw1WVIEMLU74HMo1cPz+oPVQmbB2z+VPLna5yZDg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.crl rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:32:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1183 (0x49f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A300F, serialNumber=DBEEEBC25A7A9B9B675A04E2F421EFE46EA72520 Validity Not Before: Dec 4 22:32:23 2025 GMT Not After : Dec 11 22:32:23 2025 GMT Subject: CN=69320bf8-e70f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:64:d1:49:20:a1:30:e7:87:e8:be:1b:28:84: e0:b2:d7:bd:71:50:86:72:57:32:4f:c3:36:4d:54: 8d:c9:c1:0a:e6:1a:37:05:58:a6:2a:b3:f2:68:e7: cd:33:b3:85:15:b6:12:e7:c5:2a:f3:17:b7:9c:83: fb:9b:bf:d5:81:7e:bd:bc:17:a1:d7:65:d4:a1:2b: bb:11:13:2e:56:4b:48:17:2a:7d:2e:35:2a:a4:a7: fd:cd:34:46:7d:6b:84:e9:97:74:99:22:95:a0:7f: c1:7d:a0:59:db:5f:e7:3e:af:66:2b:08:67:14:cf: 69:03:cf:d6:84:a2:61:e9:49:34:31:cd:0c:be:e6: 36:68:53:70:52:b3:0a:45:5a:22:22:2d:40:80:b0: c9:7d:28:6c:92:58:68:a8:2a:67:c8:3c:9b:a6:db: 4f:b4:db:d9:78:99:14:f0:21:62:4e:9a:ca:91:44: 54:30:c6:e0:fa:56:86:20:8a:8b:56:0e:7e:25:fd: 97:71:45:4a:3f:82:77:9b:03:67:e7:87:3f:30:f2: f8:ff:9f:e7:86:e7:15:bc:67:8f:20:87:ed:84:c8: 72:a2:f4:ee:01:ca:bd:ce:c5:3e:a1:62:06:7a:4d: 8e:f7:fe:02:17:01:73:dc:7d:75:16:34:db:bb:f7: 3a:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:4C:41:89:E7:2E:11:04:60:06:07:17:39:75:3E:E7:D7:13:85:73 X509v3 Authority Key Identifier: keyid:DB:EE:EB:C2:5A:7A:9B:9B:67:5A:04:E2:F4:21:EF:E4:6E:A7:25:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:23:a1:1e:d3:60:31:4e:65:55:ed:aa:7d:07:21:fd:f3:88: 57:0c:17:f9:08:38:d1:5f:f0:fa:72:e2:24:5f:87:1e:77:4f: cd:0e:34:fe:6b:66:03:3d:06:b1:2e:42:23:b9:9f:2a:18:51: 9f:8d:c0:e0:bf:e2:b7:72:80:ec:f8:8d:1d:36:cc:61:48:4b: ab:1c:6c:4f:03:ee:f9:d3:97:45:14:64:a2:32:84:31:1f:c5: c8:15:1f:71:93:b2:90:62:07:45:28:64:c8:ed:c4:3b:4b:51: 1a:d3:1a:d3:93:2a:02:8d:60:fa:b9:98:02:53:14:c8:1e:76: d5:d5:46:28:27:d8:db:91:fa:68:31:96:24:7a:cc:5c:91:57: ad:f4:ba:5d:85:20:ed:53:aa:44:e6:2f:a0:39:56:2e:7b:c9: 43:a5:8e:83:21:12:60:b6:9c:69:5a:eb:50:f6:90:6b:cb:65: 83:a4:0c:11:b5:68:c8:37:b7:64:3d:e7:3c:5b:fd:7e:f3:90: a8:68:76:3d:2e:43:80:fa:99:d1:cd:b9:a1:3c:9c:da:2b:6e: ee:03:78:49:8d:fe:af:4b:96:60:85:a7:91:76:e3:4b:36:89: ee:64:77:62:14:36:dc:5d:79:a4:da:8f:16:0a:7f:54:d6:3a: 54:5a:31:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMwMEYxMTAvBgNVBAUTKERCRUVFQkMyNUE3QTlCOUI2NzVBMDRFMkY0MjFFRkU0 NkVBNzI1MjAwHhcNMjUxMjA0MjIzMjIzWhcNMjUxMjExMjIzMjIzWjAYMRYwFAYD VQQDEw02OTMyMGJmOC1lNzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlWTRSSChMOeH6L4bKITgste9cVCGclcyT8M2TVSNycEK5ho3BVimKrPyaOfN M7OFFbYS58Uq8xe3nIP7m7/VgX69vBeh12XUoSu7ERMuVktIFyp9LjUqpKf9zTRG fWuE6Zd0mSKVoH/BfaBZ21/nPq9mKwhnFM9pA8/WhKJh6Uk0Mc0MvuY2aFNwUrMK RVoiIi1AgLDJfShsklhoqCpnyDybpttPtNvZeJkU8CFiTprKkURUMMbg+laGIIqL Vg5+Jf2XcUVKP4J3mwNn54c/MPL4/5/nhucVvGePIIfthMhyovTuAcq9zsU+oWIG ek2O9/4CFwFz3H11FjTbu/c6YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGxMQYnn LhEEYAYHFzl1PufXE4VzMB8GA1UdIwQYMBaAFNvu68JaepubZ1oE4vQh7+RupyUg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzAwRi8xQUQ1QUY3NDVE OTExMUVDOUFGQjhEM0RDNEY5QUUwMi8yLTdyd2xwNm01dG5XZ1RpOUNIdjVHNm5K U0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItN3J3bHA2bTV0bldnVGk5Q0h2NUc2bkpTQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzAwRi8xQUQ1QUY3NDVEOTExMUVDOUFGQjhEM0RDNEY5QUUwMi8yLTdyd2xwNm01 dG5XZ1RpOUNIdjVHNm5KU0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVI6Ee02AxTmVV7ap9ByH984hXDBf5CDjRX/D6cuIkX4ced0/NDjT+ a2YDPQaxLkIjuZ8qGFGfjcDgv+K3coDs+I0dNsxhSEurHGxPA+7505dFFGSiMoQx H8XIFR9xk7KQYgdFKGTI7cQ7S1Ea0xrTkyoCjWD6uZgCUxTIHnbV1UYoJ9jbkfpo MZYkesxckVet9LpdhSDtU6pE5i+gOVYue8lDpY6DIRJgtpxpWutQ9pBry2WDpAwR tWjIN7dkPec8W/1+85CoaHY9LkOA+pnRzbmhPJzaK27uA3hJjf6vS5ZghaeRduNL NonuZHdiFDbcXXmk2o8WCn9U1jpUWjF9 -----END CERTIFICATE-----Generated at Sat Dec 6 22:53:20 2025 by rpki-client