This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.mft File: 2zfNKCxsfbw6kLEDt6I53NFY_2A.mft (raw, json) Hash identifier: vsllNCsU9tReulCfKYVnySZ3r97lmAGPGmhhDxgj5CA= Subject key identifier: C1:9C:AB:36:FD:92:22:BE:ED:E5:EF:44:26:71:00:1D:68:65:CA:52 Authority key identifier: DB:37:CD:28:2C:6C:7D:BC:3A:90:B1:03:B7:A2:39:DC:D1:58:FF:60 Certificate issuer: /CN=A913E652/serialNumber=DB37CD282C6C7DBC3A90B103B7A239DCD158FF60 Certificate serial: 0939 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zfNKCxsfbw6kLEDt6I53NFY_2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.mft Manifest number: 0932 Signing time: Mon 22 Dec 2025 19:36:21 +0000 Manifest this update: Mon 22 Dec 2025 19:36:21 +0000 Manifest next update: Mon 29 Dec 2025 19:36:21 +0000 Files and hashes: 1: 2zfNKCxsfbw6kLEDt6I53NFY_2A.crl (hash: G28B8atPyDmlpAN+GZfzsXozE8h4XOsOI8k51/+c7Z4=) 2: 6154A3B0B2B611EAA5884016C4F9AE02.roa (hash: m3vZJbIZBtxTaQynxqIVLeVn+IvoTb+bYR9Z6G9kdLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.crl rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zfNKCxsfbw6kLEDt6I53NFY_2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:36:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2361 (0x939) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E652, serialNumber=DB37CD282C6C7DBC3A90B103B7A239DCD158FF60 Validity Not Before: Dec 22 19:36:21 2025 GMT Not After : Dec 29 19:36:21 2025 GMT Subject: CN=69499db5-aca7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a8:cb:0a:7b:af:6e:c0:95:63:ac:87:d5:94: 67:9d:e1:10:b5:d2:cd:39:08:f6:5b:e6:8c:db:8e: 95:b8:80:02:fb:9f:57:8c:e1:3d:28:a5:73:b0:5e: d7:fd:e1:82:5c:d0:6b:77:18:2b:49:a6:d1:81:89: f5:b7:f5:00:5c:31:eb:74:29:7e:cb:c3:1a:f3:76: e8:98:3d:3b:0d:79:e9:55:0d:1e:06:05:fc:69:f1: 91:78:ce:81:b9:56:cf:5c:b8:1a:25:42:9f:15:54: ac:89:ab:2b:3e:21:cb:bb:b7:91:46:7e:59:33:76: b9:32:97:4d:38:0a:95:81:41:f2:fa:34:bf:be:bc: 84:e3:b8:4c:ea:dc:70:8f:1d:c9:db:cf:18:7a:fe: 6a:f0:56:0f:c6:a1:cc:5c:77:08:3b:e6:63:1e:c3: 1e:4b:3d:8e:e4:a5:2c:9e:5f:e7:5e:7b:67:8f:a1: 1f:23:32:95:5d:b6:72:cb:c8:cd:aa:11:6b:dd:1e: 78:a3:91:7f:c6:ad:a0:3c:07:62:21:b7:d6:5b:01: 7c:d1:1d:94:fc:42:12:51:41:2b:ec:1b:38:13:53: c3:d9:6a:90:57:27:4e:03:0b:dc:5d:f0:8c:72:12: c9:27:57:e6:49:87:80:fc:75:ee:61:2b:79:75:61: 1c:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:9C:AB:36:FD:92:22:BE:ED:E5:EF:44:26:71:00:1D:68:65:CA:52 X509v3 Authority Key Identifier: keyid:DB:37:CD:28:2C:6C:7D:BC:3A:90:B1:03:B7:A2:39:DC:D1:58:FF:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zfNKCxsfbw6kLEDt6I53NFY_2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:47:c6:db:6b:1e:2f:8a:10:2b:ea:c6:d4:a5:83:62:f6:49: a8:e6:11:20:13:b7:07:91:87:ed:2d:f8:8a:8d:cf:40:ba:db: f4:fd:e7:17:51:b2:7c:9f:23:63:45:97:3d:2c:b1:53:5f:a5: 92:75:b1:f8:42:55:9b:66:f7:70:39:e7:65:b2:df:5c:c9:9b: 07:5e:c2:05:84:06:99:18:17:d9:6f:4f:4e:dd:46:0c:95:14: f1:90:82:c3:bb:b2:12:86:0a:ce:35:01:8b:dc:72:a4:80:a1: f1:90:e4:74:b8:fd:97:7e:53:e0:47:38:41:38:bb:1a:bc:ff: 43:79:c5:67:ee:88:45:fd:38:70:0b:14:a2:c9:77:a6:8d:0f: 41:c0:47:a3:b0:6c:b2:2d:61:ce:1f:6b:36:8b:61:d3:79:c6: dc:6e:82:6f:6d:88:72:9d:44:62:a0:5e:1c:49:bb:d7:40:58: 11:50:88:5b:5d:6b:d2:27:1e:16:15:d8:9e:47:3f:d8:00:c8: fe:af:76:89:7a:9a:d9:7d:cc:cf:01:ec:87:8e:4c:65:5a:6f: 10:39:2b:b3:49:c5:2a:89:bd:40:d9:25:b9:29:d2:90:27:97: 5a:31:9c:25:72:81:80:f0:74:40:f0:7a:33:95:1b:6c:57:13: e1:f3:e6:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCTkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U2NTIxMTAvBgNVBAUTKERCMzdDRDI4MkM2QzdEQkMzQTkwQjEwM0I3QTIzOURD RDE1OEZGNjAwHhcNMjUxMjIyMTkzNjIxWhcNMjUxMjI5MTkzNjIxWjAYMRYwFAYD VQQDDA02OTQ5OWRiNS1hY2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ajLCnuvbsCVY6yH1ZRnneEQtdLNOQj2W+aM246VuIAC+59XjOE9KKVzsF7X /eGCXNBrdxgrSabRgYn1t/UAXDHrdCl+y8Ma83bomD07DXnpVQ0eBgX8afGReM6B uVbPXLgaJUKfFVSsiasrPiHLu7eRRn5ZM3a5MpdNOAqVgUHy+jS/vryE47hM6txw jx3J288Yev5q8FYPxqHMXHcIO+ZjHsMeSz2O5KUsnl/nXntnj6EfIzKVXbZyy8jN qhFr3R54o5F/xq2gPAdiIbfWWwF80R2U/EISUUEr7Bs4E1PD2WqQVydOAwvcXfCM chLJJ1fmSYeA/HXuYSt5dWEcDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMGcqzb9 kiK+7eXvRCZxAB1oZcpSMB8GA1UdIwQYMBaAFNs3zSgsbH28OpCxA7eiOdzRWP9g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTY1Mi82MDBBQjQ2NEIy QjUxMUVBOEFEQzQ0MTVDNEY5QUUwMi8yemZOS0N4c2ZidzZrTEVEdDZJNTNORllf MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ6Zk5LQ3hzZmJ3NmtMRUR0Nkk1M05GWV8yQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTY1Mi82MDBBQjQ2NEIyQjUxMUVBOEFEQzQ0MTVDNEY5QUUwMi8yemZOS0N4c2Zi dzZrTEVEdDZJNTNORllfMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3R8bbax4vihAr6sbUpYNi9kmo5hEgE7cHkYftLfiKjc9Autv0/ecX UbJ8nyNjRZc9LLFTX6WSdbH4QlWbZvdwOedlst9cyZsHXsIFhAaZGBfZb09O3UYM lRTxkILDu7IShgrONQGL3HKkgKHxkOR0uP2XflPgRzhBOLsavP9DecVn7ohF/Thw CxSiyXemjQ9BwEejsGyyLWHOH2s2i2HTecbcboJvbYhynURioF4cSbvXQFgRUIhb XWvSJx4WFdieRz/YAMj+r3aJeprZfczPAeyHjkxlWm8QOSuzScUqib1A2SW5KdKQ J5daMZwlcoGA8HRA8HozlRtsVxPh8+YQ -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:50 2025 by rpki-client