This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft File: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft (raw, json) Hash identifier: xRvhOvsM7mJsXNTxU+vH5NhWwiF/ROR/rNYsoKYqklU= Subject key identifier: 15:40:B1:8B:B9:65:A3:11:F3:15:8A:B4:31:75:DF:F8:26:C5:5A:EF Authority key identifier: D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D Certificate issuer: /CN=A91C2B93/serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Certificate serial: 0135 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft Manifest number: 012F Signing time: Fri 05 Dec 2025 02:40:44 +0000 Manifest this update: Fri 05 Dec 2025 02:40:44 +0000 Manifest next update: Fri 12 Dec 2025 02:40:44 +0000 Files and hashes: 1: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl (hash: Tv2GRKdXjHBU/e3DTPIukIY8SFmaGkibBuRGQYw7TT0=) 2: B00A68E6014A11EFA8F03B5BC4F9AE02.roa (hash: F6IB2oLxhpfXXQwj/Kl3IJNncyOBKEOTP7G3C5XwQrk=) 3: E2037F8C019911EFAFFEEC5DC4F9AE02.roa (hash: yyKQJp3Cor943Y25Ya+6ME8Xl4xDZuaYL1jQZ9UiIZI=) 4: B0BE3042014A11EFA8F03B5BC4F9AE02.roa (hash: kGlkPBXGhK2HbK8wICTx12rG9bb9NpN/Iy7FI3DGEGY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:40:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2B93, serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Validity Not Before: Dec 5 02:40:44 2025 GMT Not After : Dec 12 02:40:44 2025 GMT Subject: CN=6932462c-a5a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f1:20:5a:13:ec:15:ec:70:ad:18:ee:ed:70: 0c:99:ae:b4:a4:23:c0:64:ef:a3:62:ee:06:b5:d9: 4d:67:d1:dd:88:99:bb:ec:d0:82:e1:85:b8:cb:ea: 91:08:2e:2f:d2:20:1f:48:db:3b:e5:05:8c:52:ef: cc:74:bd:bc:f1:cf:70:39:e4:0b:5a:a2:18:aa:38: 65:0f:c4:12:e6:4b:15:12:3d:b4:c3:a7:95:73:ab: 3e:0a:b0:2f:04:d2:c5:ce:5b:6a:d9:35:38:3d:19: 43:78:2f:37:e2:8a:3f:e5:62:42:93:b6:0d:86:8c: 2d:64:a7:98:ce:6a:a2:a0:11:ab:67:73:4f:6e:9e: 44:26:20:7b:ac:49:4b:44:44:1c:4d:03:1a:cc:3b: ae:ff:b7:8f:c0:36:b8:36:3f:ad:b5:c1:86:32:57: a1:f9:47:99:07:67:93:19:23:59:22:af:05:40:a9: 7b:8a:fa:b9:69:71:21:15:fd:c5:e5:24:41:d3:55: 33:e5:2c:e3:a6:c8:a9:3c:d9:4e:7c:92:0c:13:6a: c8:e0:87:00:b8:95:2f:b6:a8:df:42:61:27:c0:72: 4d:11:2b:c6:ea:04:eb:a9:25:1e:a6:3f:db:91:57: 53:4e:70:88:f2:3f:f6:75:dd:11:03:45:d1:09:f6: 7d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:40:B1:8B:B9:65:A3:11:F3:15:8A:B4:31:75:DF:F8:26:C5:5A:EF X509v3 Authority Key Identifier: keyid:D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:8f:df:5e:b3:18:34:8f:7a:fa:26:a6:fa:e5:fc:6e:84:b3: 9f:72:29:44:bb:1f:33:f2:ca:b7:34:68:0c:1f:f4:84:cd:d6: 68:58:0f:79:29:4b:83:ef:1e:bb:e7:3f:b6:c6:e9:3b:2f:86: 6d:75:ff:22:55:ec:97:c5:43:48:fb:2b:07:31:e0:9e:84:95: 29:d1:70:21:ca:42:e7:0a:ef:bf:76:88:bf:00:a3:27:08:3d: b5:1c:c7:a7:2e:15:4f:c7:53:af:aa:28:4e:2b:a1:a3:25:97: 4a:4a:03:6a:57:0b:69:ee:2f:ca:e9:94:1c:8b:67:c1:fe:8b: 08:9d:ac:bb:ff:1a:67:1f:c6:40:e1:a0:d4:99:a2:4e:5b:90: 9e:5d:a6:99:20:85:29:21:da:e3:94:7c:e6:af:c2:88:9c:f3: 48:0a:e2:3d:7b:ca:ae:fd:56:87:f9:35:cc:2a:fc:de:30:e7: cc:b7:b3:34:7e:db:28:d8:31:66:a3:2f:35:e7:f5:9e:19:f6: f1:76:9b:c8:b2:ea:da:94:81:5b:bb:d2:06:a4:d9:26:f7:e2: 41:49:c5:3e:3f:e5:d8:ec:1e:2b:22:1b:0c:04:4d:47:ae:7b: 22:4b:19:c1:83:9f:93:eb:99:be:f6:27:e7:37:32:9e:6a:52: b7:c2:9a:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJCOTMxMTAvBgNVBAUTKEQ5RDY1RjdGMzYwOTBDNDAxQkNGMjBENEJDODBDNDNG MERDNTkzM0QwHhcNMjUxMjA1MDI0MDQ0WhcNMjUxMjEyMDI0MDQ0WjAYMRYwFAYD VQQDEw02OTMyNDYyYy1hNWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq/EgWhPsFexwrRju7XAMma60pCPAZO+jYu4GtdlNZ9HdiJm77NCC4YW4y+qR CC4v0iAfSNs75QWMUu/MdL288c9wOeQLWqIYqjhlD8QS5ksVEj20w6eVc6s+CrAv BNLFzltq2TU4PRlDeC834oo/5WJCk7YNhowtZKeYzmqioBGrZ3NPbp5EJiB7rElL REQcTQMazDuu/7ePwDa4Nj+ttcGGMleh+UeZB2eTGSNZIq8FQKl7ivq5aXEhFf3F 5SRB01Uz5SzjpsipPNlOfJIME2rI4IcAuJUvtqjfQmEnwHJNESvG6gTrqSUepj/b kVdTTnCI8j/2dd0RA0XRCfZ9TwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBVAsYu5 ZaMR8xWKtDF13/gmxVrvMB8GA1UdIwQYMBaAFNnWX382CQxAG88g1LyAxD8NxZM9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkI5My8zQUM4NzRFRTAx NDMxMUVGODI1QTY0NjVDNEY5QUUwMi8yZFpmZnpZSkRFQWJ6eURVdklERVB3M0Zr ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJkWmZmellKREVBYnp5RFV2SURFUHczRmt6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkI5My8zQUM4NzRFRTAxNDMxMUVGODI1QTY0NjVDNEY5QUUwMi8yZFpmZnpZSkRF QWJ6eURVdklERVB3M0ZrejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVj99esxg0j3r6Jqb65fxuhLOfcilEux8z8sq3NGgMH/SEzdZoWA95 KUuD7x675z+2xuk7L4Ztdf8iVeyXxUNI+ysHMeCehJUp0XAhykLnCu+/doi/AKMn CD21HMenLhVPx1OvqihOK6GjJZdKSgNqVwtp7i/K6ZQci2fB/osInay7/xpnH8ZA 4aDUmaJOW5CeXaaZIIUpIdrjlHzmr8KInPNICuI9e8qu/VaH+TXMKvzeMOfMt7M0 ftso2DFmoy815/WeGfbxdpvIsuralIFbu9IGpNkm9+JBScU+P+XY7B4rIhsMBE1H rnsiSxnBg5+T65m+9ifnNzKealK3wppD -----END CERTIFICATE-----Generated at Sat Dec 6 12:10:27 2025 by rpki-client