This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft File: 2gE-F4NYyzWot2XJvAkK6c8cT74.mft (raw, json) Hash identifier: I9Xo2WfUij+tbgjrLtISNDbseU2jxo6mKuUrB0aQaS0= Subject key identifier: C9:F9:23:36:1E:2F:CC:BE:6F:68:F6:8A:23:8B:67:A2:7C:7C:FD:79 Authority key identifier: DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE Certificate issuer: /CN=A91B2C88/serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE Certificate serial: 069D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft Manifest number: 0694 Signing time: Sat 06 Dec 2025 21:20:24 +0000 Manifest this update: Sat 06 Dec 2025 21:20:23 +0000 Manifest next update: Sat 13 Dec 2025 21:20:23 +0000 Files and hashes: 1: 2gE-F4NYyzWot2XJvAkK6c8cT74.crl (hash: PFYfIwe/b8JDvAG5aJM3khAxOFHnDOpOwcaG6NVs9po=) 2: 3C5E55F041A411ECA73C8C0EC4F9AE02.roa (hash: X9cvrVuJPpabRIeX9DHncrs9qYYqY20P3gqoMKcfrPs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:20:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1693 (0x69d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2C88, serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE Validity Not Before: Dec 6 21:20:23 2025 GMT Not After : Dec 13 21:20:23 2025 GMT Subject: CN=69349e18-1b49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:7b:f5:f2:aa:df:d7:3f:df:58:d3:5d:3f:30: a2:0a:fb:1d:da:fe:c3:05:5b:e6:be:f6:b3:05:cc: 5c:44:db:b6:fa:b6:68:1c:5b:bc:b7:ed:18:0b:b8: 31:8f:19:64:fb:b0:d4:b8:27:b1:02:8b:f8:8b:74: 4b:8f:96:45:96:13:1b:bd:6e:7a:47:27:96:d8:8a: 29:cd:63:74:4a:41:b4:ad:48:8c:16:08:e5:42:72: 2a:12:c6:72:17:d1:59:44:47:bf:d8:27:b7:da:db: 66:bb:6a:30:81:fe:4d:29:2a:f6:a5:30:e3:5e:2f: 64:09:73:26:6b:ac:e1:18:ef:ea:1b:14:29:42:e8: 1d:ff:aa:11:2d:3d:a1:5c:9a:d2:9f:61:06:99:23: 50:55:9f:dc:cb:67:26:b4:2c:ba:8a:cd:f4:d7:73: 94:e6:66:af:7b:c6:f0:38:e2:11:22:e8:f8:6f:7f: b6:19:ef:3b:21:fa:4c:37:12:ed:22:54:06:a6:a0: b7:bb:e0:c4:73:83:45:3f:d8:df:82:08:b4:da:09: f1:fb:e4:9d:b2:bc:a3:dc:bb:b6:ab:5c:01:60:e7: b1:a0:99:3e:6d:0d:de:7a:41:a7:5c:d8:c4:ed:ab: 61:7b:43:bf:b2:ea:82:ce:6b:b4:2f:c8:d5:fb:b4: 5f:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:F9:23:36:1E:2F:CC:BE:6F:68:F6:8A:23:8B:67:A2:7C:7C:FD:79 X509v3 Authority Key Identifier: keyid:DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:a3:7a:af:7c:55:e0:81:a9:7d:0b:33:8e:74:cb:a2:53:d5: e7:ed:fc:c3:f5:6c:91:9d:b4:98:cf:ee:a5:09:ed:f9:8d:1d: 54:4d:c3:92:a1:fe:30:5b:d6:30:b3:88:62:79:3d:24:1d:43: f0:dc:b7:c9:a7:7f:8f:60:1b:d0:b1:bc:40:15:9a:97:88:a8: 70:8d:1a:56:10:96:b8:1f:76:fc:04:be:e1:c4:4c:54:f0:8d: ba:ab:71:e4:15:06:ba:00:48:18:a2:01:27:7d:5f:91:59:71: ef:21:7f:6d:61:43:37:1c:de:07:41:e5:dc:b8:91:27:7d:b6: 60:e8:e3:55:ba:ae:28:96:9f:21:60:e2:6d:66:16:8d:b6:9a: 73:35:71:6e:1a:47:14:c8:ae:c6:21:eb:62:46:10:2d:b4:5b: c6:7f:7e:a1:69:7b:ec:5d:0e:7f:37:05:62:4a:86:9a:42:b7: 8f:ad:dd:ff:0b:69:7a:8c:e3:71:1b:84:ff:0a:e3:f0:98:e9: 3d:0c:81:ea:4b:5d:71:11:ca:37:da:6f:72:cd:d6:ef:f8:15: 2a:64:f5:b9:8d:65:e7:82:03:5d:e6:a2:6c:4f:f7:6a:67:de: ba:28:ce:f4:cd:6b:2a:07:1f:6c:8f:da:1a:52:d7:de:71:ae: 30:b2:1e:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBp0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJDODgxMTAvBgNVBAUTKERBMDEzRTE3ODM1OENCMzVBOEI3NjVDOUJDMDkwQUU5 Q0YxQzRGQkUwHhcNMjUxMjA2MjEyMDIzWhcNMjUxMjEzMjEyMDIzWjAYMRYwFAYD VQQDEw02OTM0OWUxOC0xYjQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqnv18qrf1z/fWNNdPzCiCvsd2v7DBVvmvvazBcxcRNu2+rZoHFu8t+0YC7gx jxlk+7DUuCexAov4i3RLj5ZFlhMbvW56RyeW2IopzWN0SkG0rUiMFgjlQnIqEsZy F9FZREe/2Ce32ttmu2owgf5NKSr2pTDjXi9kCXMma6zhGO/qGxQpQugd/6oRLT2h XJrSn2EGmSNQVZ/cy2cmtCy6is3013OU5mave8bwOOIRIuj4b3+2Ge87IfpMNxLt IlQGpqC3u+DEc4NFP9jfggi02gnx++Sdsryj3Lu2q1wBYOexoJk+bQ3eekGnXNjE 7athe0O/suqCzmu0L8jV+7Rf8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMn5IzYe L8y+b2j2iiOLZ6J8fP15MB8GA1UdIwQYMBaAFNoBPheDWMs1qLdlybwJCunPHE++ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkM4OC8yNDI5OURDQTk3 OEUxMUVCQkQ4MUIwNTVDNEY5QUUwMi8yZ0UtRjROWXl6V290MlhKdkFrSzZjOGNU NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnRS1GNE5ZeXpXb3QyWEp2QWtLNmM4Y1Q3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkM4OC8yNDI5OURDQTk3OEUxMUVCQkQ4MUIwNTVDNEY5QUUwMi8yZ0UtRjROWXl6 V290MlhKdkFrSzZjOGNUNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBso3qvfFXggal9CzOOdMuiU9Xn7fzD9WyRnbSYz+6lCe35jR1UTcOS of4wW9Yws4hieT0kHUPw3LfJp3+PYBvQsbxAFZqXiKhwjRpWEJa4H3b8BL7hxExU 8I26q3HkFQa6AEgYogEnfV+RWXHvIX9tYUM3HN4HQeXcuJEnfbZg6ONVuq4olp8h YOJtZhaNtppzNXFuGkcUyK7GIetiRhAttFvGf36haXvsXQ5/NwViSoaaQrePrd3/ C2l6jONxG4T/CuPwmOk9DIHqS11xEco32m9yzdbv+BUqZPW5jWXnggNd5qJsT/dq Z966KM70zWsqBx9sj9oaUtfeca4wsh4k -----END CERTIFICATE-----Generated at Sun Dec 7 00:03:05 2025 by rpki-client