This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.mft File: 2fpCBt8OmUfNUB39UlsuRmlv1EI.mft (raw, json) Hash identifier: nNtTA9cXaKSZFKZgljUtlOFFSACLGKsyh452E5OT9Jc= Subject key identifier: AD:92:6A:4F:1D:50:3B:8B:05:DF:91:E2:A1:F9:CB:54:38:60:1D:94 Authority key identifier: D9:FA:42:06:DF:0E:99:47:CD:50:1D:FD:52:5B:2E:46:69:6F:D4:42 Certificate issuer: /CN=A911D40B/serialNumber=D9FA4206DF0E9947CD501DFD525B2E46696FD442 Certificate serial: 018A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fpCBt8OmUfNUB39UlsuRmlv1EI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.mft Manifest number: 0186 Signing time: Tue 23 Dec 2025 02:38:28 +0000 Manifest this update: Tue 23 Dec 2025 02:38:28 +0000 Manifest next update: Tue 30 Dec 2025 02:38:28 +0000 Files and hashes: 1: 2fpCBt8OmUfNUB39UlsuRmlv1EI.crl (hash: n2/9WeUhEFbpfxEkl/UfsW9QpOxyv57Ym2ytjA0uFpI=) 2: 91BCF5D08E0811EE91C7BD62C4F9AE02.roa (hash: nB3ANO/Um4o5yzB8tgW92OStclMVSWKji7Gm3WFlz80=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.crl rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fpCBt8OmUfNUB39UlsuRmlv1EI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:38:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 394 (0x18a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D40B, serialNumber=D9FA4206DF0E9947CD501DFD525B2E46696FD442 Validity Not Before: Dec 23 02:38:28 2025 GMT Not After : Dec 30 02:38:28 2025 GMT Subject: CN=694a00a4-8dbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:82:09:49:05:0a:8f:92:28:dc:01:a3:fd:62: ee:f5:8d:d9:d5:0c:c2:f6:13:73:4f:2a:73:37:3e: db:de:4a:44:62:fe:0c:6a:1d:69:8c:86:e5:4d:0b: 9c:78:5c:ae:be:f7:20:12:85:45:fe:03:ab:09:0e: 47:e3:1c:fc:83:92:da:a7:21:16:88:40:96:cc:f3: 28:91:45:ba:33:22:56:c4:57:00:7c:4d:56:da:e6: ac:1a:34:fa:f7:f2:79:53:a1:65:d5:bc:c0:8f:18: 37:57:80:41:e7:f1:fc:0a:15:ec:09:2e:49:26:f3: 01:4c:2c:51:dc:ba:49:7a:90:60:e2:27:af:86:96: a9:e7:24:ae:1e:6a:f6:54:75:d1:19:99:78:d8:95: 21:cd:2f:ed:7e:98:9e:8f:a4:cf:9f:e6:a8:d6:4b: e9:c0:c2:42:9f:ff:95:8e:d7:04:e1:f2:ea:32:13: 3d:bb:99:b6:57:63:79:81:0d:1c:3e:c9:9b:c2:84: 3e:ca:2c:40:61:78:92:68:4e:3c:01:97:58:59:8d: 28:98:99:7b:83:09:42:69:32:83:86:27:38:3e:cd: 44:ea:c5:b9:89:fa:97:d4:a5:39:c6:70:06:0a:6e: a5:3e:8e:9f:ca:1f:3d:c1:3e:da:98:ab:8b:04:42: 70:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:92:6A:4F:1D:50:3B:8B:05:DF:91:E2:A1:F9:CB:54:38:60:1D:94 X509v3 Authority Key Identifier: keyid:D9:FA:42:06:DF:0E:99:47:CD:50:1D:FD:52:5B:2E:46:69:6F:D4:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fpCBt8OmUfNUB39UlsuRmlv1EI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:cc:c8:f8:78:b6:36:55:76:7b:dc:bf:6d:4f:ac:df:82:76: 71:a6:84:87:c2:c1:a8:f1:82:e6:6e:98:22:b1:2b:85:0b:49: af:2b:48:01:d9:62:52:fc:d9:0b:5b:c0:5b:8c:65:e3:4c:1d: 23:1c:31:e0:7e:e1:53:bf:67:a3:2b:a0:46:4d:32:55:5c:c2: f1:0b:1c:00:ed:b0:a0:40:f7:39:e3:7e:ae:5b:b4:ee:23:0b: 02:de:d6:31:73:5f:7e:79:8a:eb:7a:76:4b:02:ca:1a:f0:d8: 1c:51:9f:98:97:59:fd:27:de:cd:39:21:2c:98:2c:25:f2:e0: e9:ed:be:67:96:b4:ee:e2:f8:66:f7:51:89:b9:e0:b1:3a:f5: 13:34:16:01:6a:5f:e9:ea:2a:fa:c8:26:1a:ac:5c:40:fa:76: a8:05:43:cb:2a:df:8c:07:63:c3:ca:ad:b6:44:5b:54:9b:26: f4:63:7b:f7:b5:85:df:bd:da:3e:53:73:12:6b:dd:dd:be:09: 03:d3:11:57:85:bc:1a:17:f0:dd:50:03:77:ea:e6:28:ba:5a: e9:a5:54:b0:b6:02:f7:17:74:8b:ef:d8:b7:c4:9d:42:7f:3a: 48:c8:7a:66:9d:84:cc:79:36:52:47:95:86:9c:39:53:0c:4d: f9:81:c1:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ0MEIxMTAvBgNVBAUTKEQ5RkE0MjA2REYwRTk5NDdDRDUwMURGRDUyNUIyRTQ2 Njk2RkQ0NDIwHhcNMjUxMjIzMDIzODI4WhcNMjUxMjMwMDIzODI4WjAYMRYwFAYD VQQDDA02OTRhMDBhNC04ZGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqIIJSQUKj5Io3AGj/WLu9Y3Z1QzC9hNzTypzNz7b3kpEYv4Mah1pjIblTQuc eFyuvvcgEoVF/gOrCQ5H4xz8g5LapyEWiECWzPMokUW6MyJWxFcAfE1W2uasGjT6 9/J5U6Fl1bzAjxg3V4BB5/H8ChXsCS5JJvMBTCxR3LpJepBg4ievhpap5ySuHmr2 VHXRGZl42JUhzS/tfpiej6TPn+ao1kvpwMJCn/+VjtcE4fLqMhM9u5m2V2N5gQ0c PsmbwoQ+yixAYXiSaE48AZdYWY0omJl7gwlCaTKDhic4Ps1E6sW5ifqX1KU5xnAG Cm6lPo6fyh89wT7amKuLBEJwKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK2Sak8d UDuLBd+R4qH5y1Q4YB2UMB8GA1UdIwQYMBaAFNn6QgbfDplHzVAd/VJbLkZpb9RC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDQwQi80NjI2QkIxQThF MDgxMUVFOUM5REU0NjFDNEY5QUUwMi8yZnBDQnQ4T21VZk5VQjM5VWxzdVJtbHYx RUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJmcENCdDhPbVVmTlVCMzlVbHN1Um1sdjFFSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDQwQi80NjI2QkIxQThFMDgxMUVFOUM5REU0NjFDNEY5QUUwMi8yZnBDQnQ4T21V Zk5VQjM5VWxzdVJtbHYxRUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPzMj4eLY2VXZ73L9tT6zfgnZxpoSHwsGo8YLmbpgisSuFC0mvK0gB 2WJS/NkLW8BbjGXjTB0jHDHgfuFTv2ejK6BGTTJVXMLxCxwA7bCgQPc5436uW7Tu IwsC3tYxc19+eYrrenZLAsoa8NgcUZ+Yl1n9J97NOSEsmCwl8uDp7b5nlrTu4vhm 91GJueCxOvUTNBYBal/p6ir6yCYarFxA+naoBUPLKt+MB2PDyq22RFtUmyb0Y3v3 tYXfvdo+U3MSa93dvgkD0xFXhbwaF/DdUAN36uYoulrppVSwtgL3F3SL79i3xJ1C fzpIyHpmnYTMeTZSR5WGnDlTDE35gcFj -----END CERTIFICATE-----Generated at Wed Dec 24 19:33:10 2025 by rpki-client