This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft File: 2MZzCV6Cqbfn381GWA94MajRiso.mft (raw, json) Hash identifier: sUI94D/DB1gJLQWTUCaQMRUir8OuiBTXzMRPsOor3hw= Subject key identifier: 37:B1:13:3B:D1:2D:8D:99:9B:C9:94:E6:FE:F0:5A:EB:38:29:DC:4D Authority key identifier: D8:C6:73:09:5E:82:A9:B7:E7:DF:CD:46:58:0F:78:31:A8:D1:8A:CA Certificate issuer: /CN=A911862D/serialNumber=D8C673095E82A9B7E7DFCD46580F7831A8D18ACA Certificate serial: 17A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft Manifest number: 1786 Signing time: Wed 10 Dec 2025 23:53:23 +0000 Manifest this update: Wed 10 Dec 2025 23:53:22 +0000 Manifest next update: Wed 17 Dec 2025 23:53:22 +0000 Files and hashes: 1: 2MZzCV6Cqbfn381GWA94MajRiso.crl (hash: y+U419smw3US1EbXZAyin85a9+TyrUDfjdmv3dJy0aI=) 2: 07FF86DACF3F11F0AF94352AC4F9AE02.roa (hash: h+Bf/dSTxmYNIw4E2dr2Pk1RCT+hYqXsNKneahGznRI=) 3: EE9AC4A2CF3E11F0BD67F029C4F9AE02.roa (hash: ukdO87WAf/HOAmSfdD0XwhgfXedlsv2aXlEz1cOk5UE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.crl rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 23:53:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6054 (0x17a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911862D, serialNumber=D8C673095E82A9B7E7DFCD46580F7831A8D18ACA Validity Not Before: Dec 10 23:53:22 2025 GMT Not After : Dec 17 23:53:22 2025 GMT Subject: CN=693a07f3-e7c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:21:db:a9:5b:c9:e4:d6:1b:e1:76:42:69:c1: 40:0a:a0:38:0d:af:8d:63:1c:22:5b:1b:27:0e:bb: 89:02:2b:33:ef:57:a8:7f:d0:05:70:76:12:f0:7d: 7d:99:d9:03:5e:97:c8:9a:01:5c:2a:b9:1f:ee:56: 98:a1:42:94:67:5e:1f:66:9f:d3:f0:75:fd:12:fc: ad:da:01:fa:df:b2:0b:71:ba:33:14:41:62:d2:09: f2:93:19:84:2d:c2:9e:55:f7:d4:ff:e1:04:9d:f9: 6d:55:c3:7f:31:7c:6d:54:7b:60:4d:e4:a1:55:61: 67:f7:6b:a5:7c:56:a9:cd:9e:6d:10:88:d8:f7:42: ef:8b:a6:e9:8c:2f:cd:1e:42:7c:11:fa:fa:e7:ca: f9:13:7c:a2:41:5b:a2:10:7b:88:e6:92:83:25:78: 24:ce:45:db:0c:15:62:61:ce:5d:34:e9:d4:1f:7c: 0b:ab:63:cf:8c:ed:b5:13:02:6a:d3:7b:a9:8c:15: f3:1b:08:79:d1:fe:e7:69:12:26:cb:ac:73:6e:b3: 7b:b8:6b:04:10:df:63:87:c9:d1:b7:dd:9e:61:9d: a1:15:6e:0a:1d:a6:37:2e:1f:87:f7:10:5f:8b:92: 90:fd:9c:bf:7e:d9:9f:a2:13:f7:b2:78:8e:83:3a: 7f:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:B1:13:3B:D1:2D:8D:99:9B:C9:94:E6:FE:F0:5A:EB:38:29:DC:4D X509v3 Authority Key Identifier: keyid:D8:C6:73:09:5E:82:A9:B7:E7:DF:CD:46:58:0F:78:31:A8:D1:8A:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:a8:29:7b:b6:f3:c7:2e:ad:3a:0c:47:40:b1:21:22:d9:26: 00:12:c4:84:f1:dc:4c:4e:79:be:77:04:b6:c0:98:20:b5:86: 26:04:c5:ea:04:30:d2:e8:a0:c1:0c:77:06:33:97:58:5a:36: 62:44:43:75:59:4c:36:f9:2b:f8:32:b3:3b:cb:af:72:cb:43: da:ac:9e:5c:e3:02:bf:7b:9d:8b:39:8c:25:db:6d:7f:21:19: 34:4d:f1:57:f4:df:45:6d:3a:a1:83:5d:90:7f:c2:f4:8c:12: 58:ed:6f:18:50:63:64:37:0e:7c:14:6f:0e:4b:78:65:44:51: 1a:5e:28:3d:49:6d:80:c5:52:d3:9a:ae:c6:c9:c0:d8:d9:46: 0a:ed:42:9c:bc:1a:f1:58:2b:ee:14:24:4f:cb:d0:13:b4:46: 3f:ec:69:55:0f:11:9f:cc:a4:7a:7e:5e:3b:d1:a1:5b:e8:55: f1:56:9c:22:9d:4b:18:23:6f:2b:3a:4d:7b:1a:f6:fc:38:87: 95:97:56:11:47:36:0d:34:33:85:de:f1:8e:15:dd:8c:3a:c8: 28:1b:0d:0f:78:2d:f1:ce:1a:58:f5:a5:da:1e:29:3c:2a:14: de:ab:e5:fa:5c:e3:d2:63:43:62:c9:f1:43:46:b1:0f:23:19: b4:15:ad:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg2MkQxMTAvBgNVBAUTKEQ4QzY3MzA5NUU4MkE5QjdFN0RGQ0Q0NjU4MEY3ODMx QThEMThBQ0EwHhcNMjUxMjEwMjM1MzIyWhcNMjUxMjE3MjM1MzIyWjAYMRYwFAYD VQQDEw02OTNhMDdmMy1lN2M4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1CHbqVvJ5NYb4XZCacFACqA4Da+NYxwiWxsnDruJAisz71eof9AFcHYS8H19 mdkDXpfImgFcKrkf7laYoUKUZ14fZp/T8HX9Evyt2gH637ILcbozFEFi0gnykxmE LcKeVffU/+EEnfltVcN/MXxtVHtgTeShVWFn92ulfFapzZ5tEIjY90Lvi6bpjC/N HkJ8Efr658r5E3yiQVuiEHuI5pKDJXgkzkXbDBViYc5dNOnUH3wLq2PPjO21EwJq 03upjBXzGwh50f7naRImy6xzbrN7uGsEEN9jh8nRt92eYZ2hFW4KHaY3Lh+H9xBf i5KQ/Zy/ftmfohP3sniOgzp/1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDexEzvR LY2Zm8mU5v7wWus4KdxNMB8GA1UdIwQYMBaAFNjGcwlegqm359/NRlgPeDGo0YrK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODYyRC8zMjg3OUQzQUU4 QkExMUU3OEE2QTcwNDJDNEY5QUUwMi8yTVp6Q1Y2Q3FiZm4zODFHV0E5NE1halJp c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJNWnpDVjZDcWJmbjM4MUdXQTk0TWFqUmlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODYyRC8zMjg3OUQzQUU4QkExMUU3OEE2QTcwNDJDNEY5QUUwMi8yTVp6Q1Y2Q3Fi Zm4zODFHV0E5NE1halJpc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGqCl7tvPHLq06DEdAsSEi2SYAEsSE8dxMTnm+dwS2wJggtYYmBMXq BDDS6KDBDHcGM5dYWjZiREN1WUw2+Sv4MrM7y69yy0ParJ5c4wK/e52LOYwl221/ IRk0TfFX9N9FbTqhg12Qf8L0jBJY7W8YUGNkNw58FG8OS3hlRFEaXig9SW2AxVLT mq7GycDY2UYK7UKcvBrxWCvuFCRPy9ATtEY/7GlVDxGfzKR6fl470aFb6FXxVpwi nUsYI28rOk17Gvb8OIeVl1YRRzYNNDOF3vGOFd2MOsgoGw0PeC3xzhpY9aXaHik8 KhTeq+X6XOPSY0NiyfFDRrEPIxm0Fa1J -----END CERTIFICATE-----Generated at Fri Dec 12 01:34:59 2025 by rpki-client