This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.mft File: 2VYp3mJDm7AepHisFcom6ZWpeGQ.mft (raw, json) Hash identifier: VP6HTMxnGbOdGEfOrXBaXkqnkBwLjs7qw9uDDpUZu5U= Subject key identifier: 15:4C:1C:B2:E1:6E:68:6A:68:F8:1C:A7:90:38:00:CB:F3:6B:77:35 Authority key identifier: D9:56:29:DE:62:43:9B:B0:1E:A4:78:AC:15:CA:26:E9:95:A9:78:64 Certificate issuer: /CN=A913854D/serialNumber=D95629DE62439BB01EA478AC15CA26E995A97864 Certificate serial: BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2VYp3mJDm7AepHisFcom6ZWpeGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.mft Manifest number: BB Signing time: Tue 23 Dec 2025 04:56:26 +0000 Manifest this update: Tue 23 Dec 2025 04:56:25 +0000 Manifest next update: Tue 30 Dec 2025 04:56:25 +0000 Files and hashes: 1: 2VYp3mJDm7AepHisFcom6ZWpeGQ.crl (hash: tzsFLsWWudmMcoOfPxw9WVBZTSPVASTDFWyT3cfy9q4=) 2: A999E39EC36C11EFAF838D35C4F9AE02.roa (hash: 1KvDgGWuLyFCN6s+q1kiM6VlBFYXCDfUfEerU6uXVoQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.crl rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2VYp3mJDm7AepHisFcom6ZWpeGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:56:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913854D, serialNumber=D95629DE62439BB01EA478AC15CA26E995A97864 Validity Not Before: Dec 23 04:56:25 2025 GMT Not After : Dec 30 04:56:25 2025 GMT Subject: CN=694a20fa-9794 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ec:95:9b:9e:27:d9:27:b8:cd:cc:32:5f:2c: 7b:b3:ad:9c:08:ae:af:e9:22:73:64:9e:1a:08:ee: 89:60:db:cb:81:8b:e8:8a:a0:af:e5:b5:d5:c4:c4: 3b:46:20:e5:a8:b0:af:77:f0:35:72:59:69:ed:a4: 30:56:e3:fb:f9:bb:70:50:cd:23:06:45:3a:50:a6: f5:c8:c5:a6:6e:8e:75:7f:0b:53:65:e7:16:fc:96: cc:6d:bd:05:45:dc:10:17:95:b3:1e:ce:71:52:26: 32:e6:af:f4:a7:47:ba:2a:f1:6b:d0:26:34:f3:5d: 54:a1:aa:6b:c2:86:92:7c:5e:2b:a9:60:5b:49:85: ec:09:7a:b7:c2:29:55:78:3b:8a:cb:5c:cd:25:b9: a6:9a:60:85:2d:04:03:8b:dd:78:87:f0:4d:90:e0: 71:5b:08:d3:01:31:df:9d:78:02:21:0e:56:e3:e1: 98:ed:4e:18:d9:5f:43:a1:58:54:43:4c:17:80:ad: cb:d8:bc:46:c2:ce:33:7b:1d:a4:82:e0:ae:ef:2d: 81:f1:62:d2:f6:33:1b:70:02:ec:7a:ed:12:39:48: 05:16:ff:b2:80:0d:1f:21:4c:01:3f:5e:ac:b8:a5: 51:9f:81:16:9f:55:ad:14:ef:29:26:70:1d:b6:a9: 41:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:4C:1C:B2:E1:6E:68:6A:68:F8:1C:A7:90:38:00:CB:F3:6B:77:35 X509v3 Authority Key Identifier: keyid:D9:56:29:DE:62:43:9B:B0:1E:A4:78:AC:15:CA:26:E9:95:A9:78:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2VYp3mJDm7AepHisFcom6ZWpeGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:ce:07:f4:a2:fb:70:8d:3c:0d:c9:f4:cd:c6:0a:71:ad:d9: d2:8a:0d:3f:c2:75:87:fd:8c:9f:79:b4:1d:e2:9f:37:8a:6c: b2:c3:ad:f4:d1:4e:ba:a7:6f:bb:ac:0d:1e:d1:89:c9:84:c7: 9c:0c:bb:79:0b:c9:a6:2c:ce:25:18:b9:c6:96:3a:04:50:bf: 2c:a4:e1:23:b3:55:04:4b:4e:e7:64:e9:70:6b:a4:8a:b4:d0: 0d:1e:e7:09:6c:1c:75:55:56:b4:70:49:58:d6:d0:6d:9e:f4: 95:77:49:84:2f:c0:78:f7:1f:ce:25:3c:7d:58:f8:59:84:ad: bb:bf:3d:1d:54:6e:05:9e:57:0c:2e:73:47:19:d4:59:5d:b6: f7:b7:0a:d3:6e:34:3c:98:c6:97:1b:5f:18:e2:85:20:4f:14: a5:5a:2b:ec:f6:b5:5f:3c:cd:f0:f1:f5:cf:0c:1a:a9:98:14: 71:52:20:fd:0a:d6:34:55:17:7f:c4:b6:f6:32:55:10:d9:4b: 27:26:c8:4a:da:80:c9:7d:38:0c:c7:b5:8e:56:82:78:a3:ab: 88:5a:51:52:05:7f:ce:b2:08:a0:8d:87:bb:84:b4:3e:73:7f: 5a:c5:cc:6e:7f:71:09:1d:06:84:5e:34:a1:f7:3b:c5:5f:93: ac:70:45:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg1NEQxMTAvBgNVBAUTKEQ5NTYyOURFNjI0MzlCQjAxRUE0NzhBQzE1Q0EyNkU5 OTVBOTc4NjQwHhcNMjUxMjIzMDQ1NjI1WhcNMjUxMjMwMDQ1NjI1WjAYMRYwFAYD VQQDDA02OTRhMjBmYS05Nzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOyVm54n2Se4zcwyXyx7s62cCK6v6SJzZJ4aCO6JYNvLgYvoiqCv5bXVxMQ7 RiDlqLCvd/A1cllp7aQwVuP7+btwUM0jBkU6UKb1yMWmbo51fwtTZecW/JbMbb0F RdwQF5WzHs5xUiYy5q/0p0e6KvFr0CY0811UoaprwoaSfF4rqWBbSYXsCXq3wilV eDuKy1zNJbmmmmCFLQQDi914h/BNkOBxWwjTATHfnXgCIQ5W4+GY7U4Y2V9DoVhU Q0wXgK3L2LxGws4zex2kguCu7y2B8WLS9jMbcALseu0SOUgFFv+ygA0fIUwBP16s uKVRn4EWn1WtFO8pJnAdtqlB/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBVMHLLh bmhqaPgcp5A4AMvza3c1MB8GA1UdIwQYMBaAFNlWKd5iQ5uwHqR4rBXKJumVqXhk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODU0RC9FN0M4REQyRUMz NkIxMUVGQkNCQzVCMTZDNEY5QUUwMi8yVllwM21KRG03QWVwSGlzRmNvbTZaV3Bl R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJWWXAzbUpEbTdBZXBIaXNGY29tNlpXcGVHUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODU0RC9FN0M4REQyRUMzNkIxMUVGQkNCQzVCMTZDNEY5QUUwMi8yVllwM21KRG03 QWVwSGlzRmNvbTZaV3BlR1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnzgf0ovtwjTwNyfTNxgpxrdnSig0/wnWH/YyfebQd4p83imyyw630 0U66p2+7rA0e0YnJhMecDLt5C8mmLM4lGLnGljoEUL8spOEjs1UES07nZOlwa6SK tNANHucJbBx1VVa0cElY1tBtnvSVd0mEL8B49x/OJTx9WPhZhK27vz0dVG4FnlcM LnNHGdRZXbb3twrTbjQ8mMaXG18Y4oUgTxSlWivs9rVfPM3w8fXPDBqpmBRxUiD9 CtY0VRd/xLb2MlUQ2UsnJshK2oDJfTgMx7WOVoJ4o6uIWlFSBX/OsgigjYe7hLQ+ c39axcxuf3EJHQaEXjSh9zvFX5OscEU9 -----END CERTIFICATE-----Generated at Wed Dec 24 00:32:06 2025 by rpki-client