This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft File: 2itDzBg8qOD2qPbapUzdcwb4Yig.mft (raw, json) Hash identifier: rJdaAxl07LWKHFNy6R2DOLv/EFNhyZHyfbzNpEg34Ns= Subject key identifier: 1C:6E:AF:84:6B:8F:F5:DC:D7:AD:37:D3:8B:FA:2D:43:73:74:C2:6A Authority key identifier: DA:2B:43:CC:18:3C:A8:E0:F6:A8:F6:DA:A5:4C:DD:73:06:F8:62:28 Certificate issuer: /CN=A91DF0EC/serialNumber=DA2B43CC183CA8E0F6A8F6DAA54CDD7306F86228 Certificate serial: 0A6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft Manifest number: 0A5A Signing time: Sat 06 Dec 2025 18:54:34 +0000 Manifest this update: Sat 06 Dec 2025 18:54:33 +0000 Manifest next update: Sat 13 Dec 2025 18:54:33 +0000 Files and hashes: 1: 2itDzBg8qOD2qPbapUzdcwb4Yig.crl (hash: 4zEciGC51ddQaLvl/fWQ7AVlpGWnhKwbdRKdoozyR90=) 2: FD114232912711EFBCB4ED6EC4F9AE02.roa (hash: TxCwNFrh+xkaqDR3M5kqqPa5bX7FhYwp1p0wkxa1CxU=) 3: 0D6FFE56BA3511ECA20A3817C4F9AE02.roa (hash: JxcjLdYbfNpLt4XJbaeEwHRAAk7SbV4Cw+ExyqNKBV4=) 4: C8A0E422831611EA95762453C4F9AE02.roa (hash: yUwouY97arbHx1ysSRkQtB3/fVJX2BMSgtA5eI1eKIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.crl rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 18:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2667 (0xa6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF0EC, serialNumber=DA2B43CC183CA8E0F6A8F6DAA54CDD7306F86228 Validity Not Before: Dec 6 18:54:33 2025 GMT Not After : Dec 13 18:54:33 2025 GMT Subject: CN=69347be9-7bff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b7:eb:ef:79:95:7a:dc:68:e7:0a:e6:31:d1: 47:ca:9d:a5:6d:92:c4:c2:07:0b:da:b1:ee:78:3d: 8f:82:ac:f8:43:86:9b:5f:50:73:f6:78:a8:c1:e9: 6b:05:e1:e5:68:6b:e0:03:47:7c:a1:e2:34:cb:86: e1:12:54:d7:d5:5a:1f:33:f8:99:a7:72:19:8e:98: e9:40:56:96:4f:6c:2f:f6:39:68:be:3e:56:67:ff: 54:fb:61:fb:52:a6:98:cf:68:57:48:bd:5f:92:3b: b5:3d:2c:67:3b:b7:b0:6d:04:16:d4:48:e5:4b:27: a3:4f:4a:78:55:7b:c2:26:8e:e1:19:b5:72:34:45: 51:07:7e:2e:22:e9:62:3b:9b:dd:b6:5d:34:e4:9e: 95:2a:c2:05:61:6c:ee:48:70:7d:b3:37:6a:c2:dd: 50:92:41:a4:08:fb:78:72:24:62:5e:b8:26:f5:22: 4c:a2:0c:f2:30:a0:d8:7b:09:fb:b0:02:27:44:0e: 69:33:de:86:d7:bf:e5:38:73:de:00:c6:a7:f7:30: fb:e2:e7:74:78:e5:16:d2:c9:8e:e8:6b:4d:ca:c4: d7:b1:17:82:61:c5:25:90:52:1d:00:72:5a:ed:73: 06:54:e0:5b:fe:e6:23:f0:4a:9b:d3:66:ec:55:fa: 76:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:6E:AF:84:6B:8F:F5:DC:D7:AD:37:D3:8B:FA:2D:43:73:74:C2:6A X509v3 Authority Key Identifier: keyid:DA:2B:43:CC:18:3C:A8:E0:F6:A8:F6:DA:A5:4C:DD:73:06:F8:62:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:da:72:95:8b:7c:d9:c2:ee:71:d7:eb:4f:fe:70:de:41:e5: 3a:6f:13:87:f9:9b:39:9a:94:bc:8d:5e:ca:f4:0f:d9:e0:56: 46:1b:94:42:04:92:10:bd:dc:4c:7e:88:60:d4:31:e3:8f:a1: cf:fc:0f:8e:4d:ec:24:61:f4:86:76:6d:83:dc:f9:e3:77:0c: 24:3a:c7:7d:c0:ea:6f:57:b3:0f:83:6a:8f:e1:7d:36:be:a4: 5a:e7:e2:15:40:aa:ee:ad:39:57:a8:bb:e7:76:17:80:76:4b: 6f:3e:10:ff:2b:ac:19:3f:47:94:64:5e:39:66:2e:ef:cd:38: 1d:76:f5:8b:8a:e3:5f:56:8c:4a:65:d2:61:39:25:2a:cf:0c: c0:81:ef:e6:c2:83:ea:59:48:d3:00:ce:b7:76:da:18:9a:1a: c4:ec:fa:cf:bc:37:4a:05:f0:b0:b6:72:ce:b5:b0:bc:30:76: fa:9f:b4:da:71:c3:ae:9d:43:1c:a8:c0:db:cf:3a:41:1a:e7: 8f:03:f2:be:4c:45:65:3c:27:b6:b5:e6:cd:02:13:03:07:e5: e2:6b:06:4d:61:ab:81:f0:b5:01:cc:77:10:e0:eb:2d:04:d8: f5:58:65:fe:47:57:54:c5:c8:0a:f7:ed:b2:85:a5:fd:c9:08: fc:63:d8:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwRUMxMTAvBgNVBAUTKERBMkI0M0NDMTgzQ0E4RTBGNkE4RjZEQUE1NENERDcz MDZGODYyMjgwHhcNMjUxMjA2MTg1NDMzWhcNMjUxMjEzMTg1NDMzWjAYMRYwFAYD VQQDEw02OTM0N2JlOS03YmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7fr73mVetxo5wrmMdFHyp2lbZLEwgcL2rHueD2Pgqz4Q4abX1Bz9niowelr BeHlaGvgA0d8oeI0y4bhElTX1VofM/iZp3IZjpjpQFaWT2wv9jlovj5WZ/9U+2H7 UqaYz2hXSL1fkju1PSxnO7ewbQQW1EjlSyejT0p4VXvCJo7hGbVyNEVRB34uIuli O5vdtl005J6VKsIFYWzuSHB9szdqwt1QkkGkCPt4ciRiXrgm9SJMogzyMKDYewn7 sAInRA5pM96G17/lOHPeAMan9zD74ud0eOUW0smO6GtNysTXsReCYcUlkFIdAHJa 7XMGVOBb/uYj8Eqb02bsVfp2qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBxur4Rr j/Xc160304v6LUNzdMJqMB8GA1UdIwQYMBaAFNorQ8wYPKjg9qj22qVM3XMG+GIo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjBFQy85OTFDRUY3RTc5 NTgxMUVBOTNBRTk2NDZDNEY5QUUwMi8yaXREekJnOHFPRDJxUGJhcFV6ZGN3YjRZ aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJpdER6Qmc4cU9EMnFQYmFwVXpkY3diNFlpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjBFQy85OTFDRUY3RTc5NTgxMUVBOTNBRTk2NDZDNEY5QUUwMi8yaXREekJnOHFP RDJxUGJhcFV6ZGN3YjRZaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCy2nKVi3zZwu5x1+tP/nDeQeU6bxOH+Zs5mpS8jV7K9A/Z4FZGG5RC BJIQvdxMfohg1DHjj6HP/A+OTewkYfSGdm2D3PnjdwwkOsd9wOpvV7MPg2qP4X02 vqRa5+IVQKrurTlXqLvndheAdktvPhD/K6wZP0eUZF45Zi7vzTgddvWLiuNfVoxK ZdJhOSUqzwzAge/mwoPqWUjTAM63dtoYmhrE7PrPvDdKBfCwtnLOtbC8MHb6n7Ta ccOunUMcqMDbzzpBGuePA/K+TEVlPCe2tebNAhMDB+XiawZNYauB8LUBzHcQ4Ost BNj1WGX+R1dUxcgK9+2yhaX9yQj8Y9iO -----END CERTIFICATE-----Generated at Sun Dec 7 06:32:39 2025 by rpki-client