This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft File: 2CIvXKRzliJE_BNBFXEOvtXjlWA.mft (raw, json) Hash identifier: 04CGTU+FhyCx/kdxcJbtTIz4VRk8K5OehxQnYKcShXk= Subject key identifier: 7B:31:DF:AD:C4:8E:63:1D:68:DC:8F:1B:39:98:62:CD:56:A6:E2:F3 Authority key identifier: D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 Certificate issuer: /CN=A9119624/serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Certificate serial: 0C6C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft Manifest number: 0C65 Signing time: Tue 02 Dec 2025 17:31:57 +0000 Manifest this update: Tue 02 Dec 2025 17:31:56 +0000 Manifest next update: Tue 09 Dec 2025 17:31:56 +0000 Files and hashes: 1: 2CIvXKRzliJE_BNBFXEOvtXjlWA.crl (hash: TS8QY3D7koULysppERtcosa8mjEyW+55FGhjBMOpmxM=) 2: A4049C06213E11EAAA89A95DC4F9AE02.roa (hash: QRoywFWHXAug9pKBi9YxGY/9TL/+S30Eoh/rpvCNFc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 17:31:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3180 (0xc6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119624, serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Validity Not Before: Dec 2 17:31:56 2025 GMT Not After : Dec 9 17:31:56 2025 GMT Subject: CN=692f228c-ae0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:2f:58:64:54:1f:67:6d:c5:4c:f4:21:c2:73: 68:0e:64:c5:8b:16:95:04:c1:6f:9b:a6:1f:e2:72: 97:1b:d2:41:70:62:67:cd:ad:7c:2c:3b:09:f6:da: 9b:8d:db:26:c2:9c:76:d8:27:44:60:e1:cb:6f:4d: 4c:4a:b6:d1:45:7b:ab:e9:ed:39:1a:14:da:fd:9e: 3a:f4:ac:ef:ee:9d:3a:a0:04:dc:10:b8:4f:ca:22: 7b:dc:ea:25:9d:02:df:c1:13:f0:37:b9:cf:c7:d7: b5:19:be:eb:6b:e6:d8:2b:8d:8b:94:8c:3b:1c:7e: 15:2b:2c:a9:78:be:07:9a:fc:09:be:7e:f7:51:11: 45:8f:1d:6e:30:1e:5a:b2:c5:a3:ad:10:4d:d4:d1: f6:70:c3:cb:17:1c:a2:e1:7c:91:bf:37:c1:b4:7c: 64:e5:97:dd:98:3a:1a:c8:82:54:68:de:c8:60:44: 33:e9:90:25:9e:33:d8:5a:d7:06:a5:1c:1b:70:d2: 49:8e:f6:df:0d:2e:d0:69:e5:0f:59:68:42:77:b3: 53:02:36:cc:59:2d:c6:79:c4:61:5a:34:10:9e:04: b2:80:f4:62:7f:a8:e0:22:32:a9:05:ba:13:85:6b: 3e:d7:57:5b:99:8c:4a:41:8c:52:3a:44:43:8f:69: d0:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:31:DF:AD:C4:8E:63:1D:68:DC:8F:1B:39:98:62:CD:56:A6:E2:F3 X509v3 Authority Key Identifier: keyid:D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:fd:50:97:46:f3:ca:c7:67:e1:96:f6:e9:fc:a8:d9:8a:26: 3a:07:42:c7:4b:fb:2f:79:45:95:95:8c:45:aa:e4:35:8c:03: 05:54:90:58:2d:03:6d:1b:82:1b:8f:00:46:f1:8b:45:f2:ec: 49:97:1e:8c:34:42:9e:54:63:91:bb:52:69:59:f9:c2:b3:38: 66:19:91:7d:a1:62:d7:3e:db:9e:5c:df:c7:71:4e:c4:ef:bd: 04:f9:04:75:09:e7:56:b8:1d:c2:2e:d9:70:27:9f:1b:e9:e9: 98:30:21:da:dd:52:35:66:e9:68:34:77:99:f0:ca:17:57:ea: 77:85:b0:18:83:bb:9e:66:e5:33:dd:97:8d:41:07:6e:d4:6d: d7:82:89:9e:ea:2b:1e:ba:f8:3e:54:bc:fc:cd:64:4b:c7:92: a6:05:8b:28:a2:64:a1:b5:38:f9:e0:88:0f:eb:e7:70:d7:35: b7:1f:07:ef:6d:f6:24:ac:9c:5d:d8:d2:18:5c:4e:02:b8:ac: 87:be:aa:f8:51:2b:1f:2d:28:84:cf:ef:fd:17:a1:06:22:a0: 8b:0b:e2:ee:72:e4:ff:0a:81:75:c0:42:a9:73:ee:2f:86:56: c8:c9:d1:30:44:f0:22:9b:c5:c2:c7:b8:0f:ed:07:09:59:5c: 14:74:65:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk2MjQxMTAvBgNVBAUTKEQ4MjIyRjVDQTQ3Mzk2MjI0NEZDMTM0MTE1NzEwRUJF RDVFMzk1NjAwHhcNMjUxMjAyMTczMTU2WhcNMjUxMjA5MTczMTU2WjAYMRYwFAYD VQQDEw02OTJmMjI4Yy1hZTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxi9YZFQfZ23FTPQhwnNoDmTFixaVBMFvm6Yf4nKXG9JBcGJnza18LDsJ9tqb jdsmwpx22CdEYOHLb01MSrbRRXur6e05GhTa/Z469Kzv7p06oATcELhPyiJ73Ool nQLfwRPwN7nPx9e1Gb7ra+bYK42LlIw7HH4VKyypeL4HmvwJvn73URFFjx1uMB5a ssWjrRBN1NH2cMPLFxyi4XyRvzfBtHxk5ZfdmDoayIJUaN7IYEQz6ZAlnjPYWtcG pRwbcNJJjvbfDS7QaeUPWWhCd7NTAjbMWS3GecRhWjQQngSygPRif6jgIjKpBboT hWs+11dbmYxKQYxSOkRDj2nQZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHsx363E jmMdaNyPGzmYYs1WpuLzMB8GA1UdIwQYMBaAFNgiL1ykc5YiRPwTQRVxDr7V45Vg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTYyNC9DNjk0ODIzNjEw RTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxpSkVfQk5CRlhFT3Z0WGps V0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJDSXZYS1J6bGlKRV9CTkJGWEVPdnRYamxXQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTYyNC9DNjk0ODIzNjEwRTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxp SkVfQk5CRlhFT3Z0WGpsV0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAy/VCXRvPKx2fhlvbp/KjZiiY6B0LHS/sveUWVlYxFquQ1jAMFVJBY LQNtG4IbjwBG8YtF8uxJlx6MNEKeVGORu1JpWfnCszhmGZF9oWLXPtueXN/HcU7E 770E+QR1CedWuB3CLtlwJ58b6emYMCHa3VI1ZuloNHeZ8MoXV+p3hbAYg7ueZuUz 3ZeNQQdu1G3Xgome6iseuvg+VLz8zWRLx5KmBYsoomShtTj54IgP6+dw1zW3Hwfv bfYkrJxd2NIYXE4CuKyHvqr4USsfLSiEz+/9F6EGIqCLC+LucuT/CoF1wEKpc+4v hlbIydEwRPAim8XCx7gP7QcJWVwUdGU1 -----END CERTIFICATE-----Generated at Wed Dec 3 14:56:56 2025 by rpki-client