This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft File: rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft (raw, json) Hash identifier: DTxf6syRY2WTFzysDV8TeTorM1kxr1MTBGZ2edPhR5c= Subject key identifier: 53:99:BD:66:4F:46:96:E0:F2:1A:45:36:7F:ED:B6:37:67:CD:2D:C6 Authority key identifier: AD:3D:87:03:85:0B:12:71:E8:F3:1A:E0:3E:3C:C9:AC:46:60:D9:42 Certificate issuer: /CN=A91B97DB/serialNumber=AD3D8703850B1271E8F31AE03E3CC9AC4660D942 Certificate serial: 0C76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft Manifest number: 0C6D Signing time: Thu 04 Dec 2025 17:59:15 +0000 Manifest this update: Thu 04 Dec 2025 17:59:15 +0000 Manifest next update: Thu 11 Dec 2025 17:59:15 +0000 Files and hashes: 1: rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl (hash: z58k+Q72XY+GoXcS3dQ59dNnz4kq0vXGhfS8/w1g6vQ=) 2: 5A0FAE220F7011EAB8E21167C4F9AE02.roa (hash: TQZLfyrNNm4rH/joKuV/c0LtGb3rqWKsaid6lV6en3Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 17:59:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3190 (0xc76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B97DB, serialNumber=AD3D8703850B1271E8F31AE03E3CC9AC4660D942 Validity Not Before: Dec 4 17:59:15 2025 GMT Not After : Dec 11 17:59:15 2025 GMT Subject: CN=6931cbf3-856e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:49:a0:e7:13:4f:b0:93:b4:4d:1e:6d:07:de: 6e:05:5e:0b:d6:83:79:8e:bc:18:c9:be:0c:65:ed: fd:22:0e:5b:7f:6d:26:56:91:5f:2a:32:0c:91:dc: 27:89:72:65:d9:7e:36:aa:0f:b5:33:80:4f:f9:7c: e1:74:36:94:d7:d6:f6:35:39:7b:5e:76:ba:97:b7: 53:e6:08:6f:d6:17:83:89:28:c5:a7:13:be:5d:b8: 76:4d:77:19:87:26:7c:61:b5:2b:ca:90:6a:6a:24: 6e:6d:f4:af:47:1f:12:ad:de:7c:19:17:0a:51:10: d1:19:b1:a6:97:1e:78:cf:bf:9a:bd:64:2c:8a:ab: cb:7b:e0:e6:5c:5e:ba:c2:90:48:1e:b8:4a:6f:37: e7:7f:07:c2:88:0d:e4:f7:f3:cb:ef:fe:36:78:7b: e9:bb:fe:af:9c:c0:1b:d7:00:9c:97:8f:7c:43:66: 87:f4:44:22:5d:c8:2e:ee:e6:12:21:38:48:a7:b1: dc:a1:74:81:04:a3:76:c9:5d:ea:aa:62:d5:af:67: fa:6d:bb:f0:86:d3:43:61:30:d8:ad:34:96:b0:ab: ce:fa:0d:06:b8:b3:d4:6e:24:44:6c:1e:90:7d:5b: f0:78:18:32:c5:0e:80:f8:40:f4:39:ce:8b:ea:d5: a4:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:99:BD:66:4F:46:96:E0:F2:1A:45:36:7F:ED:B6:37:67:CD:2D:C6 X509v3 Authority Key Identifier: keyid:AD:3D:87:03:85:0B:12:71:E8:F3:1A:E0:3E:3C:C9:AC:46:60:D9:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:4d:64:2e:c9:83:35:c1:70:76:59:9f:c6:da:e0:88:ae:1e: 54:ac:02:38:dd:e8:2c:21:4c:ce:2c:a8:12:ff:40:e4:7e:73: 91:b6:24:6c:c2:5d:c3:67:a3:9d:6e:4f:11:dc:ee:bb:e6:34: c5:0d:96:1e:4c:6b:8c:f3:85:e6:da:a6:c0:a4:56:a3:79:21: 12:ba:f2:9b:58:33:32:65:1a:fd:e4:e4:6c:34:03:7a:3a:cd: 9c:00:0b:7b:ed:d7:72:d3:03:91:df:e5:ee:56:f7:f9:fb:2c: 51:2b:3b:56:e9:6c:54:8e:99:c8:5a:ae:1b:79:25:ab:5c:45: 7d:c7:52:0f:33:3c:a8:36:f5:d3:d9:72:ff:5b:7f:f2:60:7a: 63:e6:23:06:d0:cc:bd:fc:f9:94:32:47:74:08:c6:78:5e:64: e4:6f:92:92:24:ca:92:e0:2e:c5:1b:bd:8c:f8:8b:c5:4b:f5: 99:41:2e:73:48:aa:75:ac:81:6e:0f:a5:47:86:db:ab:8d:63: 77:ca:d9:2a:88:a3:90:36:de:a0:6d:f8:27:c9:08:d0:c1:23: 64:63:52:be:ef:65:1e:4c:db:fa:9c:3c:23:82:46:05:43:f1: 33:e0:34:4b:b7:34:f7:68:6e:81:eb:55:32:4e:07:7e:80:03: 22:03:35:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3REIxMTAvBgNVBAUTKEFEM0Q4NzAzODUwQjEyNzFFOEYzMUFFMDNFM0NDOUFD NDY2MEQ5NDIwHhcNMjUxMjA0MTc1OTE1WhcNMjUxMjExMTc1OTE1WjAYMRYwFAYD VQQDEw02OTMxY2JmMy04NTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtUmg5xNPsJO0TR5tB95uBV4L1oN5jrwYyb4MZe39Ig5bf20mVpFfKjIMkdwn iXJl2X42qg+1M4BP+XzhdDaU19b2NTl7Xna6l7dT5ghv1heDiSjFpxO+Xbh2TXcZ hyZ8YbUrypBqaiRubfSvRx8Srd58GRcKURDRGbGmlx54z7+avWQsiqvLe+DmXF66 wpBIHrhKbzfnfwfCiA3k9/PL7/42eHvpu/6vnMAb1wCcl498Q2aH9EQiXcgu7uYS IThIp7HcoXSBBKN2yV3qqmLVr2f6bbvwhtNDYTDYrTSWsKvO+g0GuLPUbiREbB6Q fVvweBgyxQ6A+ED0Oc6L6tWkzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFOZvWZP Rpbg8hpFNn/ttjdnzS3GMB8GA1UdIwQYMBaAFK09hwOFCxJx6PMa4D48yaxGYNlC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTdEQi80RTQxMEFDRTBG NkYxMUVBQUIwQURCNjRDNEY5QUUwMi9yVDJIQTRVTEVuSG84eHJnUGp6SnJFWmcy VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JUMkhBNFVMRW5Ibzh4cmdQanpKckVaZzJVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTdEQi80RTQxMEFDRTBGNkYxMUVBQUIwQURCNjRDNEY5QUUwMi9yVDJIQTRVTEVu SG84eHJnUGp6SnJFWmcyVUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0TWQuyYM1wXB2WZ/G2uCIrh5UrAI43egsIUzOLKgS/0DkfnORtiRs wl3DZ6Odbk8R3O675jTFDZYeTGuM84Xm2qbApFajeSESuvKbWDMyZRr95ORsNAN6 Os2cAAt77ddy0wOR3+XuVvf5+yxRKztW6WxUjpnIWq4beSWrXEV9x1IPMzyoNvXT 2XL/W3/yYHpj5iMG0My9/PmUMkd0CMZ4XmTkb5KSJMqS4C7FG72M+IvFS/WZQS5z SKp1rIFuD6VHhturjWN3ytkqiKOQNt6gbfgnyQjQwSNkY1K+72UeTNv6nDwjgkYF Q/Ez4DRLtzT3aG6B61UyTgd+gAMiAzVj -----END CERTIFICATE-----Generated at Sat Dec 6 17:20:49 2025 by rpki-client