This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft File: 2QDd8konYiv5ZDdX7byv-u4yHDc.mft (raw, json) Hash identifier: r9aGZX+bdQyWlUk5nVvcxrtF2OFyT09CEZwAyjC3Y0o= Subject key identifier: 9F:98:C5:5D:A3:10:54:CB:41:7F:91:05:87:A4:95:D5:F4:2D:9F:CD Authority key identifier: D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 Certificate issuer: /CN=A91C7773/serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Certificate serial: 0EC8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft Manifest number: 0EAD Signing time: Sat 06 Dec 2025 17:09:09 +0000 Manifest this update: Sat 06 Dec 2025 17:09:09 +0000 Manifest next update: Sat 13 Dec 2025 17:09:09 +0000 Files and hashes: 1: 2QDd8konYiv5ZDdX7byv-u4yHDc.crl (hash: kmr5TziBiDvst/V9uivM6FzweBIECBE0AT/FXmeQ3tU=) 2: A47D2EC84C1E11EEBA8CDB4BC4F9AE02.roa (hash: k08HrzQA4orJaDMpNJ4cYiGD96bVzWAF2REZWm3ObQ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3784 (0xec8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7773, serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Validity Not Before: Dec 6 17:09:09 2025 GMT Not After : Dec 13 17:09:09 2025 GMT Subject: CN=69346335-93ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:90:0d:e9:c6:10:e4:9c:87:41:b1:fd:da:85: 49:21:61:16:54:5c:29:03:59:c8:e7:f1:30:f5:b4: f4:2b:9b:40:23:e7:d2:72:f7:42:df:e2:07:68:cc: 40:34:b5:ef:2c:f3:66:67:86:39:4c:ef:fa:65:32: 81:32:42:62:06:d0:e4:19:7b:52:b3:79:bd:89:57: 6c:05:a4:dd:fd:f8:5a:8a:e7:e6:fd:63:05:a6:c0: 38:fe:cc:15:4d:e8:8e:61:4d:af:10:01:57:e3:83: bd:5c:30:84:a3:f6:4c:f5:60:a7:79:4f:b8:91:80: 3a:d8:55:90:a7:79:20:3e:c1:5e:f0:69:b0:50:1a: b0:ed:4c:84:67:63:e1:42:f2:c3:1e:f9:f0:63:e7: 20:23:2a:b5:9a:40:38:41:b4:24:38:98:67:89:d2: ad:2f:db:d1:3f:08:8f:d4:55:16:4f:d0:15:d7:c3: d0:c0:cf:02:1c:1f:8f:d1:7e:37:74:4d:48:1a:0f: 30:47:e4:71:07:05:5a:45:be:99:33:9c:b9:34:18: 69:45:21:a6:7d:6f:7d:05:f3:38:46:5b:ac:70:30: c5:8b:d8:d6:66:57:cd:15:d2:64:fb:46:34:82:bd: 91:77:eb:34:b2:e7:c9:7a:da:04:b7:0f:2e:40:f6: 18:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:98:C5:5D:A3:10:54:CB:41:7F:91:05:87:A4:95:D5:F4:2D:9F:CD X509v3 Authority Key Identifier: keyid:D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:0b:83:d8:6a:72:95:bc:9a:96:1c:ec:ed:1f:c7:f7:93:90: 62:29:0d:6a:48:4d:81:c6:56:e6:dc:68:65:5f:80:a2:af:5f: e1:2c:24:ce:15:fe:a2:48:d4:82:66:62:30:fe:3f:95:27:25: 46:9c:db:10:6d:ae:a6:71:80:2f:47:3a:55:6f:ae:99:e2:0f: 94:8f:b2:9c:a4:7a:47:d3:74:13:d1:06:e2:10:31:a6:9b:c7: 44:33:5f:39:4e:0b:73:64:db:0d:2b:c3:b4:4c:98:51:44:34: 5a:8a:4e:a7:d4:2e:6a:67:0b:2c:93:60:cb:b0:52:0e:e9:9d: c6:ac:2c:ba:0d:a9:a9:e6:52:ec:e4:af:0c:33:05:3a:4a:a9: c6:62:78:28:60:ea:73:5c:b8:99:93:b5:54:fc:9f:06:8d:a2: 4c:c1:7b:f8:16:9a:20:54:25:56:85:1b:73:a1:c0:16:ae:53: c5:d1:15:e3:d1:ce:e8:58:01:0d:1e:fa:b6:c3:ee:5d:82:06: 90:60:66:ac:8a:53:84:6c:6c:98:0a:d2:4a:06:9e:bc:c9:6c: 0c:f7:4b:c9:4f:63:29:80:2d:46:e1:0e:09:61:fd:5d:16:8c: 30:91:90:35:25:6d:ed:40:00:6e:85:9d:de:93:3b:e1:29:88: 7e:c4:5c:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDsgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3NzMxMTAvBgNVBAUTKEQ5MDBEREYyNEEyNzYyMkJGOTY0Mzc1N0VEQkNBRkZB RUUzMjFDMzcwHhcNMjUxMjA2MTcwOTA5WhcNMjUxMjEzMTcwOTA5WjAYMRYwFAYD VQQDEw02OTM0NjMzNS05M2VhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxpAN6cYQ5JyHQbH92oVJIWEWVFwpA1nI5/Ew9bT0K5tAI+fScvdC3+IHaMxA NLXvLPNmZ4Y5TO/6ZTKBMkJiBtDkGXtSs3m9iVdsBaTd/fhaiufm/WMFpsA4/swV TeiOYU2vEAFX44O9XDCEo/ZM9WCneU+4kYA62FWQp3kgPsFe8GmwUBqw7UyEZ2Ph QvLDHvnwY+cgIyq1mkA4QbQkOJhnidKtL9vRPwiP1FUWT9AV18PQwM8CHB+P0X43 dE1IGg8wR+RxBwVaRb6ZM5y5NBhpRSGmfW99BfM4RluscDDFi9jWZlfNFdJk+0Y0 gr2Rd+s0sufJetoEtw8uQPYYnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ+YxV2j EFTLQX+RBYekldX0LZ/NMB8GA1UdIwQYMBaAFNkA3fJKJ2Ir+WQ3V+28r/ruMhw3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc3My9BRDMyMjM3Q0Ey RTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllpdjVaRGRYN2J5di11NHlI RGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRRGQ4a29uWWl2NVpEZFg3Ynl2LXU0eUhEYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzc3My9BRDMyMjM3Q0EyRTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllp djVaRGRYN2J5di11NHlIRGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHC4PYanKVvJqWHOztH8f3k5BiKQ1qSE2Bxlbm3GhlX4Cir1/hLCTO Ff6iSNSCZmIw/j+VJyVGnNsQba6mcYAvRzpVb66Z4g+Uj7KcpHpH03QT0QbiEDGm m8dEM185TgtzZNsNK8O0TJhRRDRaik6n1C5qZwssk2DLsFIO6Z3GrCy6Damp5lLs 5K8MMwU6SqnGYngoYOpzXLiZk7VU/J8GjaJMwXv4FpogVCVWhRtzocAWrlPF0RXj 0c7oWAENHvq2w+5dggaQYGasilOEbGyYCtJKBp68yWwM90vJT2MpgC1G4Q4JYf1d FowwkZA1JW3tQABuhZ3ekzvhKYh+xFyt -----END CERTIFICATE-----Generated at Sat Dec 6 22:44:15 2025 by rpki-client