This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft File: 2lexkcVbszGevZGC3A1Oau8-Ddg.mft (raw, json) Hash identifier: gv9vx6VFJjlZiFpHGJa9U41CHFAnrAqXzMqzwggRp2Q= Subject key identifier: 05:A8:E5:4F:9B:53:3D:E9:36:D9:45:99:CE:B0:D2:63:49:17:92:65 Authority key identifier: DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 Certificate issuer: /CN=A912A31E/serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Certificate serial: 01F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft Manifest number: 01F3 Signing time: Tue 23 Dec 2025 01:34:41 +0000 Manifest this update: Tue 23 Dec 2025 01:34:41 +0000 Manifest next update: Tue 30 Dec 2025 01:34:41 +0000 Files and hashes: 1: 2lexkcVbszGevZGC3A1Oau8-Ddg.crl (hash: tBoayGl8fp8wANQVltMMrH99uSYN03D5S6DA/+UFFqQ=) 2: 7DA38A8E727011F08682A20EC4F9AE02.roa (hash: Wwngk0PhTjjlaVWZbm+erGU8S4svzLGsMCsoXoSIiNE=) 3: 5181F33CE8C011EDADA54A23C4F9AE02.roa (hash: Rkwm42Vb05Pye3RGHBOFC1rkc6+xEeMKra2X3IcXiEc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:34:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 505 (0x1f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A31E, serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Validity Not Before: Dec 23 01:34:41 2025 GMT Not After : Dec 30 01:34:41 2025 GMT Subject: CN=6949f1b1-1751 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:56:9e:bb:e2:3b:31:d0:d5:db:31:f8:c0:b6: d4:37:b8:b7:51:be:7f:d9:4f:36:97:90:b4:a2:3a: c7:70:c2:4f:f7:c1:f4:66:96:1e:98:3a:a2:38:bc: 5d:06:bd:46:90:80:52:32:b8:88:20:67:87:66:45: f7:46:e4:03:5b:49:31:ef:26:7c:d7:ff:49:2d:25: 03:fc:3b:01:2d:55:92:e6:05:36:4e:0e:af:38:b1: b5:86:86:18:ee:ff:93:1a:d2:9d:78:1e:4f:89:bd: 64:31:77:e6:f3:21:92:4a:f2:7d:0d:a0:fd:24:0e: 8f:3e:5c:1c:af:5e:6a:ae:0a:41:6d:0c:3e:38:ec: 4b:54:1f:17:55:6b:6e:07:86:07:80:9d:67:24:52: 57:d7:db:c2:01:39:c0:83:10:27:3d:b2:28:01:76: 73:9c:89:fa:35:a6:e3:05:ce:58:bb:ce:70:a0:2a: 6e:cf:e0:18:ad:d7:e0:65:97:81:38:ec:21:98:88: 1e:69:69:81:3a:36:c2:99:34:36:44:58:2a:5a:7c: 0a:03:40:26:02:83:97:4d:ca:64:62:ff:50:4f:71: 82:6f:20:6f:57:b1:20:21:19:52:96:a8:03:21:48: a1:be:a1:0f:11:24:d2:b0:ad:0b:a0:d0:15:80:68: af:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:A8:E5:4F:9B:53:3D:E9:36:D9:45:99:CE:B0:D2:63:49:17:92:65 X509v3 Authority Key Identifier: keyid:DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:b8:19:c4:26:e7:73:ec:54:09:fa:21:a1:7b:9d:14:41:8f: e6:6a:d2:a0:76:f8:f5:68:9b:7c:ed:4d:64:bc:6d:f9:42:45: 5f:0f:e5:87:44:fc:80:84:7d:cf:4b:88:fb:27:eb:ea:2c:e0: 6b:d8:5f:f0:21:f5:3e:59:4b:68:99:2a:ee:04:79:6d:ff:f2: 92:66:1c:45:9a:d8:ca:aa:97:2d:fd:2c:69:6b:af:32:a7:80: 1e:94:12:a4:bf:d0:4f:59:60:74:91:26:8f:f2:15:eb:32:15: 22:8c:e2:67:9c:61:20:01:b5:48:96:ca:0d:de:d1:69:63:c2: 7b:e1:68:1a:2d:d8:83:c0:0f:0e:6b:51:8c:de:b6:da:f8:35: bf:e4:69:29:25:f8:98:b6:d8:d7:41:1f:73:08:7b:f1:a1:37: 4e:36:3a:fc:18:ca:61:f2:de:0c:c5:84:90:2b:76:d2:6e:b6: fd:75:a2:e7:d1:c8:58:4d:34:d2:77:eb:cd:f3:ea:5b:ad:7e: 3f:2f:25:fc:5f:c7:e9:b2:3f:69:5b:5d:7f:a9:f4:62:8c:2c: 67:66:ba:5c:d8:db:4e:3e:7b:05:46:d4:8d:12:c5:2c:e2:e7: 5f:d3:a4:a3:ee:f3:82:72:99:42:b7:38:78:31:98:ad:5c:09: d3:fe:68:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzMUUxMTAvBgNVBAUTKERBNTdCMTkxQzU1QkIzMzE5RUJEOTE4MkRDMEQ0RTZB RUYzRTBERDgwHhcNMjUxMjIzMDEzNDQxWhcNMjUxMjMwMDEzNDQxWjAYMRYwFAYD VQQDDA02OTQ5ZjFiMS0xNzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq1aeu+I7MdDV2zH4wLbUN7i3Ub5/2U82l5C0ojrHcMJP98H0ZpYemDqiOLxd Br1GkIBSMriIIGeHZkX3RuQDW0kx7yZ81/9JLSUD/DsBLVWS5gU2Tg6vOLG1hoYY 7v+TGtKdeB5Pib1kMXfm8yGSSvJ9DaD9JA6PPlwcr15qrgpBbQw+OOxLVB8XVWtu B4YHgJ1nJFJX19vCATnAgxAnPbIoAXZznIn6NabjBc5Yu85woCpuz+AYrdfgZZeB OOwhmIgeaWmBOjbCmTQ2RFgqWnwKA0AmAoOXTcpkYv9QT3GCbyBvV7EgIRlSlqgD IUihvqEPESTSsK0LoNAVgGiv+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAWo5U+b Uz3pNtlFmc6w0mNJF5JlMB8GA1UdIwQYMBaAFNpXsZHFW7Mxnr2RgtwNTmrvPg3Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTMxRS9DOEE0QzRFNEU4 QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6R2V2WkdDM0ExT2F1OC1E ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZXhrY1Zic3pHZXZaR0MzQTFPYXU4LURkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTMxRS9DOEE0QzRFNEU4QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6 R2V2WkdDM0ExT2F1OC1EZGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCluBnEJudz7FQJ+iGhe50UQY/matKgdvj1aJt87U1kvG35QkVfD+WH RPyAhH3PS4j7J+vqLOBr2F/wIfU+WUtomSruBHlt//KSZhxFmtjKqpct/Sxpa68y p4AelBKkv9BPWWB0kSaP8hXrMhUijOJnnGEgAbVIlsoN3tFpY8J74WgaLdiDwA8O a1GM3rba+DW/5GkpJfiYttjXQR9zCHvxoTdONjr8GMph8t4MxYSQK3bSbrb9daLn 0chYTTTSd+vN8+pbrX4/LyX8X8fpsj9pW11/qfRijCxnZrpc2NtOPnsFRtSNEsUs 4udf06Sj7vOCcplCtzh4MZitXAnT/mgN -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:33 2025 by rpki-client