This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft File: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft (raw, json) Hash identifier: utl3EOI5LtOAn3rdjM7wEaGw47wldExkC5Ro4/mvYW8= Subject key identifier: 22:4C:46:98:D8:6A:44:F6:44:22:79:E5:11:AF:BA:20:AC:49:77:D5 Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED Certificate issuer: /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Certificate serial: 143D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft Manifest number: 141D Signing time: Thu 04 Dec 2025 15:15:26 +0000 Manifest this update: Thu 04 Dec 2025 15:15:26 +0000 Manifest next update: Thu 11 Dec 2025 15:15:26 +0000 Files and hashes: 1: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl (hash: CMCOmGNn2ZXrH0qblRvw4FJ1VSQs4kylYqLjSn2eARY=) 2: 76C6BCF6B72811ECAEFC180DC4F9AE02.roa (hash: rJt9UQ2CbATtEyHk+VO1E6DMoo3w2GSd/mE//3ZqYZU=) 3: B969D2D0BA4A11EC90B53115C4F9AE02.roa (hash: wPO6Es53IcJapHpeuB8nxOotI3FCiSmj/GNfyH8fyQs=) 4: 49678FBCB72B11EC8C8E3017C4F9AE02.roa (hash: Fya/3MhXvM2udSwM4AtG4GxQbuG8VOpcoReRz0Tvy8A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 15:15:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5181 (0x143d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Validity Not Before: Dec 4 15:15:26 2025 GMT Not After : Dec 11 15:15:26 2025 GMT Subject: CN=6931a58e-cd0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:21:16:44:49:5e:6e:60:8f:f5:38:8b:98:ba: 7d:20:f5:1f:52:30:b9:88:e3:3a:19:ce:cd:c7:bf: 28:67:d0:f6:48:00:72:e0:97:c2:5b:bb:4f:e7:c8: fa:bf:97:de:42:38:99:8f:f5:5c:78:3c:45:bc:e7: 9c:2f:4a:3a:3e:29:67:76:33:13:5b:5c:1b:fa:ce: 72:9b:e8:1d:85:6e:f9:86:1a:b0:bf:a5:4d:7b:05: c2:91:e0:0f:0d:d3:4e:ae:a3:ea:15:fd:f5:f7:d7: c5:6b:44:de:01:8d:b6:9e:4b:de:39:3c:d6:01:1e: 1e:f9:ad:92:c7:60:e4:03:20:21:5a:98:98:2a:3b: 19:d9:c6:75:0a:25:d8:e8:2d:30:52:c7:4d:8b:b9: bb:73:17:11:32:ef:b3:a7:de:ff:75:c9:cb:55:97: cc:37:1e:92:20:62:eb:a3:b5:7b:b8:b3:6b:0a:38: bf:18:6c:4d:a1:56:17:08:f3:56:33:9b:30:b5:15: aa:92:92:0b:b1:ad:f6:13:26:d4:af:72:a6:fe:e2: 81:16:f9:1e:35:19:b5:2e:2b:1b:76:2c:42:fc:d8: b2:8c:fa:28:9e:b0:e4:bb:25:0e:2a:49:c1:41:7f: 5a:05:fb:ed:8c:dc:d4:17:76:6f:1f:ab:97:96:4d: 0a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:4C:46:98:D8:6A:44:F6:44:22:79:E5:11:AF:BA:20:AC:49:77:D5 X509v3 Authority Key Identifier: keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:04:be:8a:b2:f4:92:15:c8:c6:d6:35:62:49:1f:e1:20:ab: 02:44:02:68:02:e6:0c:ad:a4:69:0d:51:f9:ab:56:f4:90:89: a2:5f:ec:89:96:62:df:6b:b3:2c:90:47:d5:fe:68:df:32:a9: a8:fa:7a:56:64:ce:49:0a:6b:92:b1:69:e3:1c:69:be:c2:11: 93:c2:d3:21:43:5b:cc:4f:7f:26:87:5c:65:38:65:23:96:64: de:b7:90:cb:f0:b6:05:fe:38:fa:f9:98:a8:f9:0a:12:b7:b9: 60:9d:17:16:15:8d:63:fe:db:f9:d0:f4:60:9f:c2:70:2a:ca: 92:5c:23:8f:76:2a:22:cb:f9:a5:f4:e3:84:e4:4d:3c:67:dc: 25:05:e8:93:3a:0d:da:a5:79:e6:bb:f8:b0:06:06:bb:b4:e5: 3c:8c:c1:ba:2e:ea:2f:07:ce:c5:d1:7e:08:ec:64:f6:65:2d: 94:49:00:2f:4b:1a:60:5b:f6:7f:2a:c2:b3:76:24:0b:21:4b: e9:ed:76:34:73:ce:d7:ef:e2:dc:b8:c0:16:35:6c:23:d9:c7: fc:85:68:35:7e:e9:17:90:af:31:3a:ad:51:88:06:92:c6:34: 10:f5:79:e2:cb:5f:a3:f1:40:56:28:74:ab:c0:31:4c:e6:1c: ca:48:ce:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFD0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKERBNEI1QzIxMjNCQTlEMEY4MDIzNzhEQURERDQ4MDFC NTY3MEEzRUQwHhcNMjUxMjA0MTUxNTI2WhcNMjUxMjExMTUxNTI2WjAYMRYwFAYD VQQDEw02OTMxYTU4ZS1jZDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtSEWRElebmCP9TiLmLp9IPUfUjC5iOM6Gc7Nx78oZ9D2SABy4JfCW7tP58j6 v5feQjiZj/VceDxFvOecL0o6PilndjMTW1wb+s5ym+gdhW75hhqwv6VNewXCkeAP DdNOrqPqFf3199fFa0TeAY22nkveOTzWAR4e+a2Sx2DkAyAhWpiYKjsZ2cZ1CiXY 6C0wUsdNi7m7cxcRMu+zp97/dcnLVZfMNx6SIGLro7V7uLNrCji/GGxNoVYXCPNW M5swtRWqkpILsa32EybUr3Km/uKBFvkeNRm1LisbdixC/NiyjPoonrDkuyUOKknB QX9aBfvtjNzUF3ZvH6uXlk0K/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCJMRpjY akT2RCJ55RGvuiCsSXfVMB8GA1UdIwQYMBaAFNpLXCEjup0PgCN42t3UgBtWcKPt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wNzQ5NTg5MDkx ODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5RLUFJM2phM2RTQUcxWndv LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJrdGNJU082blEtQUkzamEzZFNBRzFad28tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wNzQ5NTg5MDkxODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5R LUFJM2phM2RTQUcxWndvLTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANBL6KsvSSFcjG1jViSR/hIKsCRAJoAuYMraRpDVH5q1b0kImiX+yJ lmLfa7MskEfV/mjfMqmo+npWZM5JCmuSsWnjHGm+whGTwtMhQ1vMT38mh1xlOGUj lmTet5DL8LYF/jj6+Zio+QoSt7lgnRcWFY1j/tv50PRgn8JwKsqSXCOPdioiy/ml 9OOE5E08Z9wlBeiTOg3apXnmu/iwBga7tOU8jMG6LuovB87F0X4I7GT2ZS2USQAv SxpgW/Z/KsKzdiQLIUvp7XY0c87X7+LcuMAWNWwj2cf8hWg1fukXkK8xOq1RiAaS xjQQ9Xniy1+j8UBWKHSrwDFM5hzKSM5H -----END CERTIFICATE-----Generated at Sat Dec 6 13:34:40 2025 by rpki-client