This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft File: r2ctqMXR1sgNUGF4yefLdE9uOOY.mft (raw, json) Hash identifier: eTPr1nSZWRWDYeSnXGeiI55B/rztCMo3KqLL/xZJYgA= Subject key identifier: CA:06:FC:EE:9B:79:35:B2:91:C9:61:2E:04:9D:46:3F:3A:45:99:13 Authority key identifier: AF:67:2D:A8:C5:D1:D6:C8:0D:50:61:78:C9:E7:CB:74:4F:6E:38:E6 Certificate issuer: /CN=A91A6F2D/serialNumber=AF672DA8C5D1D6C80D506178C9E7CB744F6E38E6 Certificate serial: C5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft Manifest number: C3 Signing time: Sat 06 Dec 2025 21:37:05 +0000 Manifest this update: Sat 06 Dec 2025 21:37:04 +0000 Manifest next update: Sat 13 Dec 2025 21:37:04 +0000 Files and hashes: 1: r2ctqMXR1sgNUGF4yefLdE9uOOY.crl (hash: /mk5xyIzSyoMH+0XsLxQb2rVS6zoaSxKHbIYIPw+ST4=) 2: FBE0AB56AC6511EFAEAA8A3CC4F9AE02.roa (hash: 05N/6Qhw5iJe1Qr/JCmwvRl4veGMACl1Zh2wsIyWrXw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.crl rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F2D, serialNumber=AF672DA8C5D1D6C80D506178C9E7CB744F6E38E6 Validity Not Before: Dec 6 21:37:04 2025 GMT Not After : Dec 13 21:37:04 2025 GMT Subject: CN=6934a200-a3b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:60:c0:73:bb:2f:5d:36:a4:63:9d:bc:c2:2a: 45:4a:57:8d:dc:8b:e1:3c:f0:c6:99:7a:31:60:de: 21:8e:2f:a1:76:e7:98:86:00:52:62:4f:6c:c2:60: 21:97:4f:75:a0:65:01:ad:32:78:8c:8d:f1:fe:ed: 9a:2b:8e:be:78:95:f7:a1:90:2a:50:57:6c:c5:97: e7:15:63:7a:5b:e9:14:a9:c3:25:e2:b9:cf:df:d3: 7f:9d:53:5a:d7:c9:19:71:fb:48:24:2f:fb:b7:d9: f4:53:c9:d0:10:4f:8b:58:d0:2a:8e:e4:86:32:42: dc:e8:db:8c:30:84:11:61:ce:47:01:1f:5c:86:d9: 0e:6c:f9:c2:ca:2d:84:12:64:62:71:50:bf:fa:33: d1:d5:87:70:7a:db:28:4a:23:ff:b1:e1:13:94:aa: c3:39:8d:25:e8:04:03:62:67:bf:13:40:1c:4f:de: 67:62:e5:e9:54:d6:e2:a4:f6:fc:a2:fc:40:b1:94: 0c:88:7a:8b:74:9c:0e:cc:4d:83:f1:83:40:fb:98: 43:27:31:9e:d1:20:ca:af:78:f5:df:79:2b:61:d3: f2:5f:4b:95:76:a2:94:a8:bd:ff:fa:5e:59:be:59: e1:28:4f:be:ee:db:1c:17:9b:0b:3a:cc:94:f5:bd: ac:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:06:FC:EE:9B:79:35:B2:91:C9:61:2E:04:9D:46:3F:3A:45:99:13 X509v3 Authority Key Identifier: keyid:AF:67:2D:A8:C5:D1:D6:C8:0D:50:61:78:C9:E7:CB:74:4F:6E:38:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:64:3a:fe:d3:eb:37:72:63:eb:fb:8c:0e:17:b8:e3:fe:de: 04:fd:13:84:d9:00:6d:6d:68:58:0c:c7:68:fe:d6:0a:41:d3: e2:fe:79:ff:1f:af:70:9e:a2:a4:ac:6b:9a:43:db:79:ae:fa: 88:dc:b3:c5:19:81:7a:78:70:66:e6:01:11:e5:cf:44:8a:94: f3:29:0c:1a:c4:4b:12:74:df:60:a3:cf:42:3f:f4:d9:34:d6: c4:e7:23:46:5d:27:85:7c:dd:d1:96:ab:c2:f8:b6:c0:c2:f1: 38:66:44:3a:5e:d6:2c:8e:96:77:01:b0:77:dc:b2:e7:4e:68: f1:31:84:90:d9:dc:06:36:80:72:d9:66:9d:58:53:96:67:93: f2:da:dc:ac:06:76:eb:7f:b8:2c:35:09:09:9b:f9:40:77:7b: 9f:61:f1:59:11:46:50:d3:27:88:14:ad:dc:5d:57:ff:63:f8: 83:d7:24:67:19:a9:26:ea:1a:c3:64:8f:ba:fd:ba:e9:5f:cc: 7a:37:b1:b3:ef:04:9e:5b:0b:0c:72:56:6f:2f:b2:5d:a2:e2: e6:ee:c2:a6:59:02:af:1e:47:99:c0:cf:2b:09:81:29:23:90: e0:52:1c:27:78:f0:27:6e:4b:e1:84:02:d0:a5:ca:a1:82:f6: a7:cb:b0:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZGMkQxMTAvBgNVBAUTKEFGNjcyREE4QzVEMUQ2QzgwRDUwNjE3OEM5RTdDQjc0 NEY2RTM4RTYwHhcNMjUxMjA2MjEzNzA0WhcNMjUxMjEzMjEzNzA0WjAYMRYwFAYD VQQDEw02OTM0YTIwMC1hM2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArGDAc7svXTakY528wipFSleN3IvhPPDGmXoxYN4hji+hdueYhgBSYk9swmAh l091oGUBrTJ4jI3x/u2aK46+eJX3oZAqUFdsxZfnFWN6W+kUqcMl4rnP39N/nVNa 18kZcftIJC/7t9n0U8nQEE+LWNAqjuSGMkLc6NuMMIQRYc5HAR9chtkObPnCyi2E EmRicVC/+jPR1YdwetsoSiP/seETlKrDOY0l6AQDYme/E0AcT95nYuXpVNbipPb8 ovxAsZQMiHqLdJwOzE2D8YNA+5hDJzGe0SDKr3j133krYdPyX0uVdqKUqL3/+l5Z vlnhKE++7tscF5sLOsyU9b2smQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMoG/O6b eTWykclhLgSdRj86RZkTMB8GA1UdIwQYMBaAFK9nLajF0dbIDVBheMnny3RPbjjm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkYyRC82RjgyMTE3OEFC ODgxMUVGODBDNzVBNzRDNEY5QUUwMi9yMmN0cU1YUjFzZ05VR0Y0eWVmTGRFOXVP T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3IyY3RxTVhSMXNnTlVHRjR5ZWZMZEU5dU9PWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkYyRC82RjgyMTE3OEFCODgxMUVGODBDNzVBNzRDNEY5QUUwMi9yMmN0cU1YUjFz Z05VR0Y0eWVmTGRFOXVPT1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhZDr+0+s3cmPr+4wOF7jj/t4E/ROE2QBtbWhYDMdo/tYKQdPi/nn/ H69wnqKkrGuaQ9t5rvqI3LPFGYF6eHBm5gER5c9EipTzKQwaxEsSdN9go89CP/TZ NNbE5yNGXSeFfN3RlqvC+LbAwvE4ZkQ6XtYsjpZ3AbB33LLnTmjxMYSQ2dwGNoBy 2WadWFOWZ5Py2tysBnbrf7gsNQkJm/lAd3ufYfFZEUZQ0yeIFK3cXVf/Y/iD1yRn Gakm6hrDZI+6/brpX8x6N7Gz7wSeWwsMclZvL7JdouLm7sKmWQKvHkeZwM8rCYEp I5DgUhwnePAnbkvhhALQpcqhgvany7Dc -----END CERTIFICATE-----Generated at Sun Dec 7 02:47:09 2025 by rpki-client