This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft File: 2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json) Hash identifier: 8WI7okqIatMtNGyVSWEl+WAzVXCsaCobnR4AzhBlbxY= Subject key identifier: AE:40:B4:EC:38:C8:8B:18:FF:10:56:A7:2A:70:5E:C2:6A:DF:1C:AE Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Certificate serial: 01F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft Manifest number: 01E8 Signing time: Fri 05 Dec 2025 00:55:49 +0000 Manifest this update: Fri 05 Dec 2025 00:55:48 +0000 Manifest next update: Fri 12 Dec 2025 00:55:48 +0000 Files and hashes: 1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: li98qc/lK75Vl/G91QwcH1cfEacVw6VkuKzKbYK1ffs=) 2: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: HkCOmQRPg+yDDZPtodRzZcHCpOQoTEGcVWS7eV1BiSA=) 3: 881C3F9CABD311EFBFED7130C4F9AE02.roa (hash: 4Vu2iECkKD+oqedLfhjWXd7CHOWEQhszvHID7EwF+IE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:55:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 496 (0x1f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEFBB, serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Validity Not Before: Dec 5 00:55:48 2025 GMT Not After : Dec 12 00:55:48 2025 GMT Subject: CN=69322d95-b40d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:16:d1:51:5c:7f:a8:1c:17:9e:f4:32:75:05: f6:72:0d:9a:04:0b:e6:14:f8:37:f3:ce:e5:78:f9: e1:b9:1e:53:62:ee:e7:d5:9f:ce:f4:a0:9d:56:15: 32:40:e0:4d:70:27:8a:7f:a4:20:2a:c4:b4:72:13: 93:71:58:4d:57:4f:fe:63:46:bc:de:5f:9e:38:40: 8d:40:27:45:e7:fd:69:3b:67:4c:78:f1:76:1d:ce: ae:a2:95:59:1f:ab:16:bf:8c:d9:32:01:eb:c2:d2: 43:71:9f:a3:a2:99:a1:c3:92:ae:af:44:cf:0f:bc: 99:d1:1d:fb:c2:8d:01:8e:74:56:b8:f4:a6:cb:80: 21:48:11:96:49:5a:58:90:66:21:dc:7d:f6:ef:be: 23:a6:ef:ba:8a:cf:86:4b:0b:45:49:20:7c:d5:85: 0e:e9:b1:72:41:cf:b3:3c:39:6c:d5:24:d3:18:01: da:fa:7e:3c:c6:59:05:dd:75:0a:3b:bb:31:f6:c8: 37:9d:d6:3d:53:7a:cc:d4:5b:a5:9a:9b:2c:3f:71: 5a:02:87:de:77:57:6b:44:ac:16:2d:8f:b8:bc:1c: 36:e6:2d:dc:b7:e0:c3:b2:fe:18:3d:76:85:ca:d3: 88:e2:b1:3d:f0:5d:16:00:8f:81:9d:02:8d:7a:46: 46:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:40:B4:EC:38:C8:8B:18:FF:10:56:A7:2A:70:5E:C2:6A:DF:1C:AE X509v3 Authority Key Identifier: keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:3e:1d:a8:7d:fd:6a:fa:2b:5e:47:b2:e8:38:2e:33:c7:a1: 6c:c2:ce:b3:de:f1:1f:37:ae:ee:cf:75:e3:5a:12:55:06:0b: 2e:9c:d1:d4:0a:77:8f:5a:0c:4f:27:27:b5:92:a9:fd:70:95: b1:41:4a:67:aa:b0:d3:70:17:b6:b2:da:52:d2:ae:f5:44:e1: 54:b3:86:05:28:eb:d3:9e:29:5b:bb:4e:11:da:f4:ce:30:bc: 2e:43:04:69:82:fa:d8:d1:6d:f8:a0:a6:e0:ac:1f:a1:e2:53: a0:e7:94:c5:90:3c:4d:f6:bc:1e:1f:29:e4:0f:16:a9:07:e9: 7a:3f:7f:a9:cd:05:b7:0f:3e:9a:6b:db:cf:ff:f6:1b:d4:0f: 0f:be:ee:66:15:e8:43:2a:4d:e1:8b:e2:17:47:e1:c7:54:5e: 06:99:98:2d:dd:92:49:f7:b0:09:f6:a6:08:20:27:78:79:95: 30:3d:cd:89:c8:57:a6:51:b0:d8:da:f2:97:03:5c:d5:5e:bc: ba:b1:dd:aa:f2:74:4a:e4:5c:c1:e3:f0:de:f4:aa:86:c4:20: eb:47:95:05:30:ed:b4:1b:20:2f:da:6a:23:36:e9:aa:8e:c1: 5b:9d:78:56:db:25:11:3a:5f:55:a2:64:26:c2:bb:4b:04:49: 07:0f:4c:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGQkIxMTAvBgNVBAUTKERBNzVBQjBGQjNBQTg3NUFGQURGNUEzOEY4NTJCREND MUREODI2RjcwHhcNMjUxMjA1MDA1NTQ4WhcNMjUxMjEyMDA1NTQ4WjAYMRYwFAYD VQQDEw02OTMyMmQ5NS1iNDBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAshbRUVx/qBwXnvQydQX2cg2aBAvmFPg3887lePnhuR5TYu7n1Z/O9KCdVhUy QOBNcCeKf6QgKsS0chOTcVhNV0/+Y0a83l+eOECNQCdF5/1pO2dMePF2Hc6uopVZ H6sWv4zZMgHrwtJDcZ+jopmhw5Kur0TPD7yZ0R37wo0BjnRWuPSmy4AhSBGWSVpY kGYh3H32774jpu+6is+GSwtFSSB81YUO6bFyQc+zPDls1STTGAHa+n48xlkF3XUK O7sx9sg3ndY9U3rM1FulmpssP3FaAofed1drRKwWLY+4vBw25i3ct+DDsv4YPXaF ytOI4rE98F0WAI+BnQKNekZGHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK5AtOw4 yIsY/xBWpypwXsJq3xyuMB8GA1UdIwQYMBaAFNp1qw+zqoda+t9aOPhSvcwd2Cb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUZCQi9EODk2QjVDOEVB NkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgxcjYzMW80LUZLOXpCM1lK dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuV3JEN09xaDFyNjMxbzQtRks5ekIzWUp2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUZCQi9EODk2QjVDOEVBNkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgx cjYzMW80LUZLOXpCM1lKdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEPh2off1q+iteR7LoOC4zx6Fsws6z3vEfN67uz3XjWhJVBgsunNHU CnePWgxPJye1kqn9cJWxQUpnqrDTcBe2stpS0q71ROFUs4YFKOvTnilbu04R2vTO MLwuQwRpgvrY0W34oKbgrB+h4lOg55TFkDxN9rweHynkDxapB+l6P3+pzQW3Dz6a a9vP//Yb1A8Pvu5mFehDKk3hi+IXR+HHVF4GmZgt3ZJJ97AJ9qYIICd4eZUwPc2J yFemUbDY2vKXA1zVXry6sd2q8nRK5FzB4/De9KqGxCDrR5UFMO20GyAv2mojNumq jsFbnXhW2yUROl9VomQmwrtLBEkHD0zB -----END CERTIFICATE-----Generated at Sat Dec 6 22:18:08 2025 by rpki-client