This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.mft File: K2gwqzfLNO8nOiCi8ugmQplgE9o.mft (raw, json) Hash identifier: W+v2ySev4SfUwpP9xj1P84Q+jB1RNcrU2I5mI1fbDS0= Subject key identifier: 52:DA:D2:B7:08:A5:F1:F0:D8:0E:69:0C:EB:28:AB:CC:25:98:24:2D Authority key identifier: 2B:68:30:AB:37:CB:34:EF:27:3A:20:A2:F2:E8:26:42:99:60:13:DA Certificate issuer: /CN=A91E3E80/serialNumber=2B6830AB37CB34EF273A20A2F2E82642996013DA Certificate serial: 58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K2gwqzfLNO8nOiCi8ugmQplgE9o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.mft Manifest number: 58 Signing time: Fri 05 Dec 2025 05:02:04 +0000 Manifest this update: Fri 05 Dec 2025 05:02:04 +0000 Manifest next update: Fri 12 Dec 2025 05:02:04 +0000 Files and hashes: 1: K2gwqzfLNO8nOiCi8ugmQplgE9o.crl (hash: LSo3pjK6BCgGZ9eKUbZSawHejLry0a3LPWEUt/LbyfI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.crl rsync://rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K2gwqzfLNO8nOiCi8ugmQplgE9o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:02:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E80, serialNumber=2B6830AB37CB34EF273A20A2F2E82642996013DA Validity Not Before: Dec 5 05:02:04 2025 GMT Not After : Dec 12 05:02:04 2025 GMT Subject: CN=6932674c-1072 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:96:5f:72:c6:9a:b1:26:b7:5e:d9:02:6a:7c: 30:64:ac:ea:d5:ff:5c:48:6f:40:be:94:54:99:40: 2c:84:c9:ac:b0:be:43:ee:c3:4e:c5:0f:5c:29:72: 7f:ef:9a:1f:0a:3d:0e:aa:74:f6:1f:bf:48:8d:03: b3:e8:47:1e:30:5b:43:b6:fd:6c:d2:11:3a:de:ce: 68:35:6e:d5:59:2c:94:eb:a0:54:2d:2b:79:f8:df: d3:39:c6:9e:42:5e:98:44:15:13:54:8c:18:00:66: 4c:51:46:bc:cc:47:74:b2:df:87:d6:6a:91:6c:f9: 93:62:9b:bb:77:51:29:f8:15:97:c7:8c:76:a2:9a: ed:85:eb:2b:9d:7e:a9:77:89:4f:0b:09:a8:2d:7d: 4d:76:0e:66:e2:21:ca:2f:fa:b1:be:94:c9:73:65: 04:af:9b:31:34:9c:d6:65:25:d1:72:da:d0:a6:5c: 21:e6:d3:cc:2a:f8:cf:0a:f6:e4:d9:a0:4f:b2:a2: 53:df:38:84:c6:8f:43:80:92:73:9f:c7:cf:e7:fd: 4f:4c:bb:34:09:ce:62:b3:20:f5:ab:b1:bd:f5:2b: 42:dc:87:b8:96:87:f3:a3:b8:b2:42:9a:38:92:ca: 04:5c:c5:6b:2e:fe:50:b7:ad:6b:f0:43:a2:ce:a3: 0a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:DA:D2:B7:08:A5:F1:F0:D8:0E:69:0C:EB:28:AB:CC:25:98:24:2D X509v3 Authority Key Identifier: keyid:2B:68:30:AB:37:CB:34:EF:27:3A:20:A2:F2:E8:26:42:99:60:13:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K2gwqzfLNO8nOiCi8ugmQplgE9o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:c2:3c:8f:68:cd:3f:94:e0:06:ca:37:34:84:8e:37:b9:34: a8:00:c5:e8:90:d6:a9:d2:d5:15:83:cb:51:10:23:01:41:9e: c6:d9:94:57:6d:f8:de:1a:14:e9:51:84:f7:4a:68:cb:da:04: 75:bb:7f:c3:d8:06:ab:91:05:6b:9b:cc:75:e0:40:96:0e:4b: a7:f2:e9:8a:6e:5e:68:d0:c8:46:c2:f0:8c:86:ac:b3:4b:4f: 62:70:ab:3e:b9:c4:a1:31:11:fe:f8:fe:3a:66:36:ba:33:0a: 76:ee:22:63:42:95:0a:56:9e:0b:32:ac:61:16:fd:01:1a:7e: 9c:ac:4b:97:b1:c5:12:19:bd:b5:cb:60:d3:ca:56:e3:5a:53: 95:6d:ab:ab:1b:31:f0:91:3b:55:27:54:8a:d2:be:4d:4c:df: 0d:0e:63:e8:83:89:cc:98:a3:31:aa:c4:be:0f:ee:e0:11:10: 09:93:17:b1:b8:4a:fb:dc:df:d0:a4:b0:b5:1e:2b:7f:d4:60: 16:03:e7:2e:03:79:3e:57:1e:bb:03:dc:cf:c8:a9:e8:c9:4b: 6b:0c:3d:80:af:29:e8:5b:2b:14:3b:56:71:1b:e3:63:fa:60: ed:a5:ba:6c:8d:30:39:c3:2f:f2:ac:c0:4f:07:ba:1b:57:59: 41:f6:57:24 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF M0U4MDExMC8GA1UEBRMoMkI2ODMwQUIzN0NCMzRFRjI3M0EyMEEyRjJFODI2NDI5 OTYwMTNEQTAeFw0yNTEyMDUwNTAyMDRaFw0yNTEyMTIwNTAyMDRaMBgxFjAUBgNV BAMTDTY5MzI2NzRjLTEwNzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIll9yxpqxJrde2QJqfDBkrOrV/1xIb0C+lFSZQCyEyaywvkPuw07FD1wpcn/v mh8KPQ6qdPYfv0iNA7PoRx4wW0O2/WzSETrezmg1btVZLJTroFQtK3n439M5xp5C XphEFRNUjBgAZkxRRrzMR3Sy34fWapFs+ZNim7t3USn4FZfHjHaimu2F6yudfql3 iU8LCagtfU12DmbiIcov+rG+lMlzZQSvmzE0nNZlJdFy2tCmXCHm08wq+M8K9uTZ oE+yolPfOITGj0OAknOfx8/n/U9MuzQJzmKzIPWrsb31K0Lch7iWh/OjuLJCmjiS ygRcxWsu/lC3rWvwQ6LOowpPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUtrStwil 8fDYDmkM6yirzCWYJC0wHwYDVR0jBBgwFoAUK2gwqzfLNO8nOiCi8ugmQplgE9ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzRTgwLzNFNDAyQUVBNEI2 NjExRjBCODg1MjQzOUM0RjlBRTAyL0syZ3dxemZMTk84bk9pQ2k4dWdtUXBsZ0U5 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSzJnd3F6ZkxOTzhuT2lDaTh1Z21RcGxnRTlvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUz RTgwLzNFNDAyQUVBNEI2NjExRjBCODg1MjQzOUM0RjlBRTAyL0syZ3dxemZMTk84 bk9pQ2k4dWdtUXBsZ0U5by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACnCPI9ozT+U4AbKNzSEjje5NKgAxeiQ1qnS1RWDy1EQIwFBnsbZlFdt +N4aFOlRhPdKaMvaBHW7f8PYBquRBWubzHXgQJYOS6fy6YpuXmjQyEbC8IyGrLNL T2Jwqz65xKExEf74/jpmNrozCnbuImNClQpWngsyrGEW/QEafpysS5exxRIZvbXL YNPKVuNaU5Vtq6sbMfCRO1UnVIrSvk1M3w0OY+iDicyYozGqxL4P7uAREAmTF7G4 Svvc39CksLUeK3/UYBYD5y4DeT5XHrsD3M/IqejJS2sMPYCvKehbKxQ7VnEb42P6 YO2lumyNMDnDL/KswE8HuhtXWUH2VyQ= -----END CERTIFICATE-----Generated at Sat Dec 6 22:44:30 2025 by rpki-client