This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft File: 2-mhAMSp66SyzRomcTKN73j-duE.mft (raw, json) Hash identifier: mMgT1AA4Mr4bnit41xmu+Br49ktuYV5SKlLbMLhtrxo= Subject key identifier: 7A:4E:C4:AE:DC:69:C4:AC:09:05:28:EE:01:1D:4E:CA:8F:8F:3E:90 Authority key identifier: DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 Certificate issuer: /CN=A91AB74D/serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Certificate serial: 0677 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft Manifest number: 0672 Signing time: Thu 04 Dec 2025 21:20:42 +0000 Manifest this update: Thu 04 Dec 2025 21:20:41 +0000 Manifest next update: Thu 11 Dec 2025 21:20:41 +0000 Files and hashes: 1: 2-mhAMSp66SyzRomcTKN73j-duE.crl (hash: 2uayVeG8eHwSAMZzahdEYk7qbxPM/9IQegbEjrPGQk0=) 2: A0D57302A33D11EBA479491CC4F9AE02.roa (hash: A81REE+McXIeM/wALpzv2Qsq9bY8357xYUyeneNAnBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:20:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1655 (0x677) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB74D, serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Validity Not Before: Dec 4 21:20:41 2025 GMT Not After : Dec 11 21:20:41 2025 GMT Subject: CN=6931fb29-a702 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:bf:a7:54:e8:45:8c:04:39:ed:07:7b:d3:d7: 63:60:eb:ff:51:20:28:54:7f:ba:4d:3a:b4:6a:60: 53:f0:d9:77:16:08:e8:71:30:d4:1a:61:ba:19:fc: a9:48:43:e5:dd:88:16:df:72:17:21:5c:be:32:c2: 81:93:18:ab:3b:71:f9:19:e8:d1:c3:2f:f5:51:c9: 36:c9:65:3f:fb:e3:e4:46:26:6d:68:42:86:8b:fb: 8b:81:78:9b:46:11:b8:55:26:ba:82:b8:49:cb:44: a2:69:02:f2:57:79:91:ef:65:b5:90:be:fb:06:8f: f1:43:ed:34:3b:c6:33:94:d0:07:9c:e2:e0:82:c7: c0:81:de:e5:46:2e:7f:12:e7:69:f8:91:39:00:8f: f9:34:a4:96:90:2f:23:57:ae:12:02:ce:0e:38:45: bf:d6:96:1b:f7:ce:3a:21:b9:89:c5:c2:b3:8c:66: cb:0f:05:78:8f:ef:04:a4:32:61:56:9c:d4:a6:b8: 94:d8:b7:51:ac:0e:62:ff:26:7d:41:ea:2b:47:11: a7:2b:e6:3a:b6:03:02:51:48:8b:81:aa:b2:a0:bb: 78:b4:37:c3:8a:16:a1:62:77:34:0f:e1:e4:82:fb: c2:ca:a6:78:23:39:c6:d0:90:b2:db:04:1a:9f:6c: 10:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:4E:C4:AE:DC:69:C4:AC:09:05:28:EE:01:1D:4E:CA:8F:8F:3E:90 X509v3 Authority Key Identifier: keyid:DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:3b:e3:1e:2e:5e:ea:c8:18:96:79:4a:05:d9:6f:96:79:d8: dc:08:21:38:3e:98:b3:c8:27:f1:60:d8:a0:27:a4:2b:4a:30: f9:c4:8f:3e:dc:d0:f8:f0:28:dc:b8:68:7e:11:60:96:63:a5: 1d:fb:d9:fa:88:4d:da:36:43:32:33:91:06:1d:79:50:8c:bb: 87:cf:2c:f8:d7:b5:9e:f8:d1:f3:c8:1d:1a:68:d9:e5:86:7c: c5:89:de:13:c1:27:39:86:5b:93:98:cb:65:de:16:fb:45:3f: de:8f:db:3e:c3:a5:cf:02:f0:bf:bb:a9:0b:dd:af:02:40:ba: 94:b9:0c:fb:7d:a4:40:d5:57:19:9f:25:45:75:d3:34:57:e9: b7:d9:b1:23:4e:d7:2c:7b:89:6f:2c:1a:b4:60:12:3a:d0:e2: 62:b6:c1:14:41:39:c4:2c:4d:d3:c1:12:c5:30:93:43:53:b9: 54:e1:ac:8d:bf:8d:29:64:0e:87:95:bc:ab:52:bd:d9:23:03: 99:e7:a6:d0:4a:d0:d3:80:65:bd:cc:94:cd:75:ed:f3:28:49: 18:cf:cb:d6:62:e3:3e:a3:4d:fc:ee:7e:04:c1:4d:43:69:6e: 98:d0:71:c3:f7:41:fb:4d:67:d4:6d:a1:0c:cc:3b:9b:b5:f7: 40:3b:ef:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NEQxMTAvBgNVBAUTKERCRTlBMTAwQzRBOUVCQTRCMkNEMUEyNjcxMzI4REVG NzhGRTc2RTEwHhcNMjUxMjA0MjEyMDQxWhcNMjUxMjExMjEyMDQxWjAYMRYwFAYD VQQDEw02OTMxZmIyOS1hNzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxr+nVOhFjAQ57Qd709djYOv/USAoVH+6TTq0amBT8Nl3FgjocTDUGmG6Gfyp SEPl3YgW33IXIVy+MsKBkxirO3H5GejRwy/1Uck2yWU/++PkRiZtaEKGi/uLgXib RhG4VSa6grhJy0SiaQLyV3mR72W1kL77Bo/xQ+00O8YzlNAHnOLggsfAgd7lRi5/ Eudp+JE5AI/5NKSWkC8jV64SAs4OOEW/1pYb9846IbmJxcKzjGbLDwV4j+8EpDJh VpzUpriU2LdRrA5i/yZ9QeorRxGnK+Y6tgMCUUiLgaqyoLt4tDfDihahYnc0D+Hk gvvCyqZ4IznG0JCy2wQan2wQvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHpOxK7c acSsCQUo7gEdTsqPjz6QMB8GA1UdIwQYMBaAFNvpoQDEqeukss0aJnEyje94/nbh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0RC8xRDcxM0QwOEEz M0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2U3l6Um9tY1RLTjczai1k dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItbWhBTVNwNjZTeXpSb21jVEtONzNqLWR1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qjc0RC8xRDcxM0QwOEEzM0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2 U3l6Um9tY1RLTjczai1kdUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqO+MeLl7qyBiWeUoF2W+WedjcCCE4PpizyCfxYNigJ6QrSjD5xI8+ 3ND48CjcuGh+EWCWY6Ud+9n6iE3aNkMyM5EGHXlQjLuHzyz417We+NHzyB0aaNnl hnzFid4TwSc5hluTmMtl3hb7RT/ej9s+w6XPAvC/u6kL3a8CQLqUuQz7faRA1VcZ nyVFddM0V+m32bEjTtcse4lvLBq0YBI60OJitsEUQTnELE3TwRLFMJNDU7lU4ayN v40pZA6HlbyrUr3ZIwOZ56bQStDTgGW9zJTNde3zKEkYz8vWYuM+o0387n4EwU1D aW6Y0HHD90H7TWfUbaEMzDubtfdAO++X -----END CERTIFICATE-----Generated at Sat Dec 6 17:07:43 2025 by rpki-client