This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft File: 2WQZRdW0z31j_JExr89yeuNtkCA.mft (raw, json) Hash identifier: 88sH3v8eTIVoryhK5Xmv/5nkGK3AJxGjzKYs7MhVhww= Subject key identifier: 28:5F:16:11:05:14:49:44:09:FE:33:39:E3:0F:55:1A:0A:40:92:B0 Authority key identifier: D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 Certificate issuer: /CN=A911F316/serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Certificate serial: 0244 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft Manifest number: 023A Signing time: Tue 23 Dec 2025 00:57:59 +0000 Manifest this update: Tue 23 Dec 2025 00:57:59 +0000 Manifest next update: Tue 30 Dec 2025 00:57:59 +0000 Files and hashes: 1: 2WQZRdW0z31j_JExr89yeuNtkCA.crl (hash: 3JH7HMGqCV9b8OSAHKf4KTbKBQuK+U58Gv2xNqpsa54=) 2: 590A6A9A792E11EEA5AAB840C4F9AE02.roa (hash: TjgZvd8NTyfnTIYx+SMzczM6IMYvFc5scP1aWMMbHyE=) 3: 15714ED2776A11ED98AF7341C4F9AE02.roa (hash: WBxu67wj7qK+1XHnF6Gm/tpT83HjDxcRJ+5R7dbCf7I=) 4: 77490C9A792F11EEBF849942C4F9AE02.roa (hash: +qSb4R4TGVMwO8UibifLnyUfy5g07BZr/1fOfOFiaKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:57:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 580 (0x244) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F316, serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Validity Not Before: Dec 23 00:57:59 2025 GMT Not After : Dec 30 00:57:59 2025 GMT Subject: CN=6949e917-203d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ac:8f:b8:4a:e6:9c:ad:ac:84:e8:60:43:7b: 1a:b9:e7:ef:5a:a5:f6:0b:24:d4:0d:e9:98:96:bf: d5:ac:17:7e:51:97:27:28:ae:88:85:a8:e2:64:f3: 22:68:53:9a:b3:a2:fb:c8:31:97:3f:f9:6e:36:87: 6f:72:21:b9:9f:ba:c5:f7:e6:7d:7f:7a:e2:72:ce: a4:ba:11:94:d2:d7:e7:7f:ed:12:8c:34:9a:2f:1d: 4a:95:a5:f0:37:29:05:66:72:54:59:b3:da:ba:93: 73:34:64:bb:86:a4:f7:f3:20:7c:20:52:fa:f3:8e: b1:52:de:85:15:e5:04:fe:4d:94:37:69:53:bd:fd: 75:c5:07:67:af:88:b1:5a:31:20:c2:4f:23:dd:42: e7:c3:e7:62:f2:9e:0f:99:20:d7:b7:27:89:4a:35: 4d:14:81:b9:a4:f7:8b:32:90:ce:0b:55:36:d2:88: c4:73:88:5d:7d:11:43:7b:f2:12:28:4c:75:70:43: 7c:19:a6:21:6c:41:31:7d:f4:7c:ba:43:a4:c5:f8: e6:88:a8:6b:52:aa:9b:50:2e:1f:30:a0:0b:70:f1: 92:3c:43:89:98:b4:90:36:32:f6:e5:f2:55:b6:59: 9d:d6:66:b5:b1:86:ef:f4:16:56:34:88:4c:02:be: 46:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:5F:16:11:05:14:49:44:09:FE:33:39:E3:0F:55:1A:0A:40:92:B0 X509v3 Authority Key Identifier: keyid:D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:6f:7d:87:a5:b6:56:08:c8:7a:ae:c3:0c:62:44:d1:75:2a: 83:4c:cb:a1:6b:1a:d0:43:a7:c7:e8:ed:1a:3d:08:77:8b:5f: 15:2f:f6:37:71:9c:79:b6:75:76:00:97:81:7f:5d:dd:97:42: a9:3c:5b:01:be:50:9c:3c:e8:17:b2:c8:a7:8d:0c:01:52:85: cf:ff:65:cb:1c:75:ff:3a:13:72:1d:ca:38:bc:e8:eb:5c:f3: f0:99:45:03:9f:e8:2b:65:c1:63:d1:89:d0:f9:bf:83:1e:0a: 7a:d9:67:26:fc:99:7f:7e:9b:01:74:f4:37:f8:4f:07:28:a9: e8:85:91:a8:11:00:0b:02:60:2b:ad:4b:6f:00:11:23:78:06: a2:67:36:91:51:f8:ec:cf:18:6a:c4:77:07:f5:ee:2f:a3:4d: 2a:e8:66:86:18:d2:0f:f9:cf:22:e3:69:06:ff:f7:e8:7a:1b: 7e:5d:e5:b3:72:b4:0d:5e:f6:47:65:fe:27:c8:b8:0d:4f:43: 97:45:ed:2d:a6:9e:ee:da:08:5a:b3:01:a8:3c:90:1f:c9:11: 0b:c5:56:8d:31:a5:21:67:f5:d7:a5:06:61:1a:51:22:3c:95: b5:88:a7:75:d6:04:66:0b:84:52:66:61:8b:85:4d:be:29:ad: 97:0c:c2:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYzMTYxMTAvBgNVBAUTKEQ5NjQxOTQ1RDVCNENGN0Q2M0ZDOTEzMUFGQ0Y3MjdB RTM2RDkwMjAwHhcNMjUxMjIzMDA1NzU5WhcNMjUxMjMwMDA1NzU5WjAYMRYwFAYD VQQDDA02OTQ5ZTkxNy0yMDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqayPuErmnK2shOhgQ3sauefvWqX2CyTUDemYlr/VrBd+UZcnKK6IhajiZPMi aFOas6L7yDGXP/luNodvciG5n7rF9+Z9f3rics6kuhGU0tfnf+0SjDSaLx1KlaXw NykFZnJUWbPaupNzNGS7hqT38yB8IFL6846xUt6FFeUE/k2UN2lTvf11xQdnr4ix WjEgwk8j3ULnw+di8p4PmSDXtyeJSjVNFIG5pPeLMpDOC1U20ojEc4hdfRFDe/IS KEx1cEN8GaYhbEExffR8ukOkxfjmiKhrUqqbUC4fMKALcPGSPEOJmLSQNjL25fJV tlmd1ma1sYbv9BZWNIhMAr5GqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFChfFhEF FElECf4zOeMPVRoKQJKwMB8GA1UdIwQYMBaAFNlkGUXVtM99Y/yRMa/PcnrjbZAg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjMxNi9BMURGMTUyMDc3 NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHozMWpfSkV4cjg5eWV1TnRr Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJXUVpSZFcwejMxal9KRXhyODl5ZXVOdGtDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjMxNi9BMURGMTUyMDc3NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHoz MWpfSkV4cjg5eWV1TnRrQ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2b32HpbZWCMh6rsMMYkTRdSqDTMuhaxrQQ6fH6O0aPQh3i18VL/Y3 cZx5tnV2AJeBf13dl0KpPFsBvlCcPOgXssinjQwBUoXP/2XLHHX/OhNyHco4vOjr XPPwmUUDn+grZcFj0YnQ+b+DHgp62Wcm/Jl/fpsBdPQ3+E8HKKnohZGoEQALAmAr rUtvABEjeAaiZzaRUfjszxhqxHcH9e4vo00q6GaGGNIP+c8i42kG//foeht+XeWz crQNXvZHZf4nyLgNT0OXRe0tpp7u2ghaswGoPJAfyRELxVaNMaUhZ/XXpQZhGlEi PJW1iKd11gRmC4RSZmGLhU2+Ka2XDML1 -----END CERTIFICATE-----Generated at Tue Dec 23 18:17:05 2025 by rpki-client