This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft File: 0rwrzA84njpcUzzEc6fENrsbdNk.mft (raw, json) Hash identifier: 9MyBXGPU3safwrgkuMiRzg/Gc1LkRqzaUPPa6O8RvoU= Subject key identifier: E5:DD:34:46:8F:62:34:1C:F7:1E:8D:29:1C:94:5F:71:AE:96:B6:F6 Authority key identifier: D2:BC:2B:CC:0F:38:9E:3A:5C:53:3C:C4:73:A7:C4:36:BB:1B:74:D9 Certificate issuer: /CN=A91C21C7/serialNumber=D2BC2BCC0F389E3A5C533CC473A7C436BB1B74D9 Certificate serial: 2DCC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft Manifest number: 2DA7 Signing time: Sat 06 Dec 2025 15:18:29 +0000 Manifest this update: Sat 06 Dec 2025 15:18:28 +0000 Manifest next update: Sat 13 Dec 2025 15:18:28 +0000 Files and hashes: 1: 0rwrzA84njpcUzzEc6fENrsbdNk.crl (hash: lWSUPCfDgVOteMSJiEQkLe3QnDwW10+tgVpDsnPYfM4=) 2: E2AD90E813E811E9B287C144C4F9AE02.roa (hash: CwjqOoJS53tpi81tzFuwu956lUr2HE8GT6aAkGCmQ3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.crl rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:18:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11724 (0x2dcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C21C7, serialNumber=D2BC2BCC0F389E3A5C533CC473A7C436BB1B74D9 Validity Not Before: Dec 6 15:18:28 2025 GMT Not After : Dec 13 15:18:28 2025 GMT Subject: CN=69344945-c742 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ed:2d:12:cf:2e:24:1e:15:61:f0:35:fc:e3: 81:08:42:03:99:11:47:94:18:cf:c2:76:ac:1c:58: fb:93:f3:c8:71:61:bd:52:0c:0b:14:38:c3:66:fc: 6f:70:d0:d8:ac:c8:af:a5:29:b6:b2:b6:b9:3f:c8: 9f:af:56:7c:f1:d0:33:e3:67:e1:3b:a1:5e:08:97: 59:fa:20:3d:65:b0:35:ff:e2:49:0c:4b:cf:3c:a7: f8:1a:fb:32:47:80:69:1b:16:c3:0a:2b:b3:ea:85: 68:e8:04:9c:87:ab:c4:51:8f:e0:4d:52:97:26:03: 79:5f:7a:20:d7:e9:c6:53:45:f8:ea:0c:00:fe:39: 71:5e:b3:d3:31:e2:1f:ac:8a:a2:8c:dc:7d:2b:85: 10:d4:1a:13:71:cd:61:4d:88:80:ab:93:8e:fe:9e: 3c:a2:0f:31:b7:7a:2a:8c:bc:b5:f4:9f:56:3a:11: 84:c1:ff:57:5f:5d:b5:08:69:54:37:fb:87:ea:ef: 71:8f:f5:27:30:d3:3b:a7:dc:c4:da:4d:4f:fc:12: fd:09:0b:b7:82:4e:66:70:9e:65:c1:a9:e0:23:78: 81:e9:35:e3:54:ab:6d:83:9d:6b:e7:ae:a7:9e:ab: 23:34:8c:d1:c7:15:54:ce:c5:04:43:02:34:64:f1: 7a:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:DD:34:46:8F:62:34:1C:F7:1E:8D:29:1C:94:5F:71:AE:96:B6:F6 X509v3 Authority Key Identifier: keyid:D2:BC:2B:CC:0F:38:9E:3A:5C:53:3C:C4:73:A7:C4:36:BB:1B:74:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:bb:0f:00:32:0d:a5:e5:75:ee:76:02:07:60:5a:57:13:d5: bc:71:73:77:08:57:7f:8a:48:cd:ef:ed:87:95:0f:9f:6a:72: e0:dd:a9:6c:f9:23:25:66:55:ca:13:86:53:08:ed:85:e7:f6: e1:5e:9c:de:22:cc:d3:82:e1:02:b9:f8:4f:cd:58:4c:6c:87: 48:c8:eb:bc:91:a2:41:ed:b0:e5:47:18:8d:9d:55:4f:ab:93: 45:7d:cc:b9:74:31:01:a5:26:03:43:0b:d2:97:fa:be:5e:58: 9c:8e:d7:1a:9b:42:87:6e:14:ae:f2:eb:86:b1:c7:2a:aa:54: 24:57:7b:c1:7b:72:d7:0b:89:0d:6e:31:db:20:1c:ca:c2:cf: 54:9e:b7:be:bc:07:f0:a9:c3:19:5f:b0:d8:be:5b:b0:90:56: 86:eb:1f:a4:ef:ba:92:4e:16:27:0f:a2:45:76:72:37:87:4c: 9d:9f:d4:23:13:6f:d3:71:f8:18:9f:76:40:de:26:a5:bf:42: 3c:59:57:c3:84:c0:05:d5:6c:3d:a0:df:ac:df:bd:b7:e0:fe: 84:e0:74:f7:93:00:54:c5:ba:7d:3a:02:d3:34:30:61:a7:85: 29:6e:ea:a6:d5:2f:0a:06:e9:4f:37:9e:a9:39:1e:5d:cd:6c: cc:28:98:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIxQzcxMTAvBgNVBAUTKEQyQkMyQkNDMEYzODlFM0E1QzUzM0NDNDczQTdDNDM2 QkIxQjc0RDkwHhcNMjUxMjA2MTUxODI4WhcNMjUxMjEzMTUxODI4WjAYMRYwFAYD VQQDEw02OTM0NDk0NS1jNzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo+0tEs8uJB4VYfA1/OOBCEIDmRFHlBjPwnasHFj7k/PIcWG9UgwLFDjDZvxv cNDYrMivpSm2sra5P8ifr1Z88dAz42fhO6FeCJdZ+iA9ZbA1/+JJDEvPPKf4Gvsy R4BpGxbDCiuz6oVo6ASch6vEUY/gTVKXJgN5X3og1+nGU0X46gwA/jlxXrPTMeIf rIqijNx9K4UQ1BoTcc1hTYiAq5OO/p48og8xt3oqjLy19J9WOhGEwf9XX121CGlU N/uH6u9xj/UnMNM7p9zE2k1P/BL9CQu3gk5mcJ5lwangI3iB6TXjVKttg51r566n nqsjNIzRxxVUzsUEQwI0ZPF6xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOXdNEaP YjQc9x6NKRyUX3Gulrb2MB8GA1UdIwQYMBaAFNK8K8wPOJ46XFM8xHOnxDa7G3TZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjFDNy81NDIyMkZEMDhG QUIxMUUzOTM2MkVGMzU1OTExRUEzMi8wcndyekE4NG5qcGNVenpFYzZmRU5yc2Jk TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzByd3J6QTg0bmpwY1V6ekVjNmZFTnJzYmROay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjFDNy81NDIyMkZEMDhGQUIxMUUzOTM2MkVGMzU1OTExRUEzMi8wcndyekE4NG5q cGNVenpFYzZmRU5yc2JkTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwuw8AMg2l5XXudgIHYFpXE9W8cXN3CFd/ikjN7+2HlQ+fanLg3als +SMlZlXKE4ZTCO2F5/bhXpzeIszTguECufhPzVhMbIdIyOu8kaJB7bDlRxiNnVVP q5NFfcy5dDEBpSYDQwvSl/q+Xlicjtcam0KHbhSu8uuGsccqqlQkV3vBe3LXC4kN bjHbIBzKws9Unre+vAfwqcMZX7DYvluwkFaG6x+k77qSThYnD6JFdnI3h0ydn9Qj E2/TcfgYn3ZA3ialv0I8WVfDhMAF1Ww9oN+s37234P6E4HT3kwBUxbp9OgLTNDBh p4Upbuqm1S8KBulPN56pOR5dzWzMKJhx -----END CERTIFICATE-----Generated at Sun Dec 7 01:52:28 2025 by rpki-client