This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft File: 2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft (raw, json) Hash identifier: WIPkL9KrJY/90ThwrP6ex13UkuvjqAE0iljDcD3xz0M= Subject key identifier: D8:91:E4:F7:FC:B5:7C:4C:10:35:27:4A:28:17:8D:FD:64:AD:F5:64 Authority key identifier: DA:60:4C:FD:B2:73:0A:8D:E7:25:FC:74:AB:0F:C6:3E:05:58:E5:DC Certificate issuer: /CN=A9127A9B/serialNumber=DA604CFDB2730A8DE725FC74AB0FC63E0558E5DC Certificate serial: 34ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft Manifest number: 34ED Signing time: Mon 22 Dec 2025 14:45:53 +0000 Manifest this update: Mon 22 Dec 2025 14:45:53 +0000 Manifest next update: Mon 29 Dec 2025 14:45:53 +0000 Files and hashes: 1: 2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl (hash: mTeWEBeMMgMrwW77OvhKOTtNCxLoGVA9MUBKvoXceHI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 14:45:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13549 (0x34ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127A9B, serialNumber=DA604CFDB2730A8DE725FC74AB0FC63E0558E5DC Validity Not Before: Dec 22 14:45:53 2025 GMT Not After : Dec 29 14:45:53 2025 GMT Subject: CN=694959a1-a2c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:fa:19:e3:f2:fa:5b:bb:74:80:6a:7c:5a:3b: df:dc:47:5f:3d:af:cb:04:e2:97:1a:4b:00:23:df: 30:48:2e:d0:01:d5:94:ea:9e:53:11:3f:1b:e7:60: 3d:bf:d0:6a:96:27:76:d7:c3:24:d5:23:b1:86:de: c6:d2:a6:51:dd:71:45:ff:b2:c4:32:17:6c:cc:a8: 11:8e:27:c1:16:8a:c2:fd:27:6f:c7:5d:7a:35:e7: b8:1a:fa:76:be:d9:aa:87:b8:5f:c6:20:a7:03:08: b4:82:c6:38:73:a3:81:26:16:a2:b5:d0:41:47:88: 35:9b:b0:78:5b:1f:6d:cb:fa:71:25:04:87:25:4a: a6:d4:cb:31:2b:cc:4a:e2:1a:64:c7:d8:b7:5f:72: 1e:65:04:1a:94:4e:28:6d:1a:a1:49:ee:79:3a:8a: 01:33:a6:bb:bd:b9:d7:d2:68:9f:fa:0f:54:71:a9: af:52:35:6c:81:d0:b4:e4:2d:eb:d5:31:ea:ff:67: 5a:95:e4:90:2f:a7:36:b8:c2:e6:12:2c:09:28:6e: d9:51:d7:97:c6:5b:72:dd:0c:39:5d:cf:55:62:f6: e7:28:4b:b5:5f:0c:1d:da:10:1d:17:92:2c:62:c0: bf:2c:12:d4:ed:df:b9:3e:6a:96:89:32:02:66:9d: 2a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:91:E4:F7:FC:B5:7C:4C:10:35:27:4A:28:17:8D:FD:64:AD:F5:64 X509v3 Authority Key Identifier: keyid:DA:60:4C:FD:B2:73:0A:8D:E7:25:FC:74:AB:0F:C6:3E:05:58:E5:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127A9B/FC058E561D9511E2B1A0467E08B02CD2/2mBM_bJzCo3nJfx0qw_GPgVY5dw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:7a:51:03:e3:d3:9f:d0:88:66:43:4e:43:c7:6d:1a:50:ac: ee:bf:a2:62:fb:7f:b2:87:d0:bc:07:a7:83:44:db:da:f8:c3: 44:ef:fd:43:52:68:06:cd:e8:33:25:0f:f7:ea:18:6c:c2:63: 00:b2:36:eb:1e:e8:b8:be:b4:20:59:80:85:7f:c5:b6:d1:0b: 54:a2:ee:ed:25:20:94:45:01:6c:af:2f:b8:44:91:2a:cc:66: c3:12:cf:a7:ca:ca:ab:58:f3:07:f6:a3:a7:27:97:97:a3:1c: af:c0:1e:d8:bc:50:51:bb:4d:28:43:63:14:19:42:e1:9e:cc: 6d:2e:ac:94:0c:00:3a:36:c7:b1:87:89:54:cb:f8:6e:fe:95: 2a:75:28:2c:db:06:09:fb:3c:e6:59:8b:c3:63:90:74:a3:5b: 47:e5:ea:08:de:2c:27:39:bf:a8:b4:31:fa:ad:46:6b:09:4e: 0f:2d:77:aa:83:b4:be:7b:0a:74:0b:6a:7a:7b:dd:63:95:8a: 03:da:bf:67:35:d2:a4:3b:0d:cf:d0:97:fe:14:4e:56:1a:f8: 16:1e:37:b9:c7:86:49:de:7a:56:c0:3b:4c:6e:22:9c:3b:c6: ab:d4:6f:c7:d0:92:07:09:be:9e:c2:fd:45:09:29:7b:0c:89: 1a:70:ee:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdBOUIxMTAvBgNVBAUTKERBNjA0Q0ZEQjI3MzBBOERFNzI1RkM3NEFCMEZDNjNF MDU1OEU1REMwHhcNMjUxMjIyMTQ0NTUzWhcNMjUxMjI5MTQ0NTUzWjAYMRYwFAYD VQQDDA02OTQ5NTlhMS1hMmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvoZ4/L6W7t0gGp8Wjvf3EdfPa/LBOKXGksAI98wSC7QAdWU6p5TET8b52A9 v9Bqlid218Mk1SOxht7G0qZR3XFF/7LEMhdszKgRjifBForC/Sdvx116Nee4Gvp2 vtmqh7hfxiCnAwi0gsY4c6OBJhaitdBBR4g1m7B4Wx9ty/pxJQSHJUqm1MsxK8xK 4hpkx9i3X3IeZQQalE4obRqhSe55OooBM6a7vbnX0mif+g9UcamvUjVsgdC05C3r 1THq/2daleSQL6c2uMLmEiwJKG7ZUdeXxlty3Qw5Xc9VYvbnKEu1Xwwd2hAdF5Is YsC/LBLU7d+5PmqWiTICZp0qLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNiR5Pf8 tXxMEDUnSigXjf1krfVkMB8GA1UdIwQYMBaAFNpgTP2ycwqN5yX8dKsPxj4FWOXc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0E5Qi9GQzA1OEU1NjFE OTUxMUUyQjFBMDQ2N0UwOEIwMkNEMi8ybUJNX2JKekNvM25KZngwcXdfR1BnVlk1 ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJtQk1fYkp6Q28zbkpmeDBxd19HUGdWWTVkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0E5Qi9GQzA1OEU1NjFEOTUxMUUyQjFBMDQ2N0UwOEIwMkNEMi8ybUJNX2JKekNv M25KZngwcXdfR1BnVlk1ZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlelED49Of0IhmQ05Dx20aUKzuv6Ji+3+yh9C8B6eDRNva+MNE7/1D UmgGzegzJQ/36hhswmMAsjbrHui4vrQgWYCFf8W20QtUou7tJSCURQFsry+4RJEq zGbDEs+nysqrWPMH9qOnJ5eXoxyvwB7YvFBRu00oQ2MUGULhnsxtLqyUDAA6Nsex h4lUy/hu/pUqdSgs2wYJ+zzmWYvDY5B0o1tH5eoI3iwnOb+otDH6rUZrCU4PLXeq g7S+ewp0C2p6e91jlYoD2r9nNdKkOw3P0Jf+FE5WGvgWHje5x4ZJ3npWwDtMbiKc O8ar1G/H0JIHCb6ewv1FCSl7DIkacO4f -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:28 2025 by rpki-client