This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft File: 2UW2DwCc3xVcQp1Aha62z-BrzgA.mft (raw, json) Hash identifier: /XNBqafY3WalVzXj+eoXhzMDzLrO8kMraR2lpSoc5M8= Subject key identifier: 3F:C2:BD:97:09:DF:E4:EF:B6:4E:A3:A4:0E:07:F8:45:C2:29:67:87 Authority key identifier: D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 Certificate issuer: /CN=A9149CEF/serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Certificate serial: 0528 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft Manifest number: 051E Signing time: Thu 18 Dec 2025 22:53:27 +0000 Manifest this update: Thu 18 Dec 2025 22:53:26 +0000 Manifest next update: Thu 25 Dec 2025 22:53:26 +0000 Files and hashes: 1: 2UW2DwCc3xVcQp1Aha62z-BrzgA.crl (hash: mCOyiBycVmUDFhr/t38WI+ICfwS6kSxzAp4JTZ2bLRI=) 2: AFAC764C2C1711EC817C5912C4F9AE02.roa (hash: 4OzF15EHWUJWQROMnU+Ow7V0ACuwuCPbuqKLd0rV0bw=) 3: AF22E83C2C1711EC817C5912C4F9AE02.roa (hash: HFOpeRCt7KhrBfeMokpcxjR3KWcuUKe5Td59DEe/ljE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:53:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1320 (0x528) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149CEF, serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Validity Not Before: Dec 18 22:53:26 2025 GMT Not After : Dec 25 22:53:26 2025 GMT Subject: CN=694485e6-9ca5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:50:07:86:44:c7:83:9e:fb:ea:33:b2:0d:6d: 6d:dd:58:e2:56:4c:ef:a3:b6:2c:96:33:c0:02:29: 6d:ef:3d:6d:4d:ea:29:78:1b:cb:4b:b2:89:2d:8d: e1:da:fe:13:62:23:c7:76:1c:e8:c3:e1:bf:76:64: 48:44:9d:b4:c8:46:ee:db:f3:d3:b5:26:ff:55:c8: 77:b6:a8:4c:86:b2:08:90:84:3b:84:e4:77:ba:6b: ed:43:c0:22:28:70:3c:11:70:13:fb:e3:e4:14:13: d3:64:a2:4f:83:d1:9c:8a:26:ad:25:bc:13:6d:a7: 9b:a3:d9:d1:31:a4:bc:81:c9:bb:c2:39:50:8c:fb: 7f:a7:0d:3e:1a:71:7d:42:ca:2d:b8:f0:15:dd:28: 5a:52:25:18:8a:52:04:4e:59:ac:0c:15:37:d2:ed: 3f:8a:e6:bf:9c:95:b6:47:a3:82:17:d6:a2:80:16: 21:a8:c8:88:a6:79:9a:76:dd:b3:4d:46:1e:78:cf: b5:9e:4c:4f:e5:1e:df:ae:0e:76:6b:2a:c5:2f:10: 94:4f:cf:fc:45:c4:93:c3:9e:01:37:5e:28:4b:b8: 72:33:af:24:f8:5e:69:d4:4b:cc:e5:52:7f:14:01: 81:e1:9b:61:d6:39:1c:30:3d:07:d9:b3:fa:81:8f: fb:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:C2:BD:97:09:DF:E4:EF:B6:4E:A3:A4:0E:07:F8:45:C2:29:67:87 X509v3 Authority Key Identifier: keyid:D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:b7:8a:af:f3:20:d8:43:0a:91:de:d8:f3:ae:d0:e6:24:ed: 12:b8:01:c3:bb:9f:07:1a:e2:55:b7:2f:e7:06:77:3e:9c:cc: c6:7c:f5:fa:5e:a4:09:bf:cf:26:ac:a5:67:cf:a9:26:95:8b: fb:dc:78:ed:8b:78:48:2b:3c:24:30:dd:a1:28:78:cf:ba:e1: a3:86:21:ab:99:39:fc:d7:04:a5:e3:73:82:c2:e5:fe:17:4f: 29:75:25:8c:d3:ea:e5:0e:93:b2:ff:d7:32:f8:6b:cb:95:36: 01:07:f3:12:e8:95:75:0e:c5:e1:af:ab:e3:8b:54:9b:00:37: f8:49:31:62:da:69:85:bc:3a:66:c9:e8:36:7b:c2:4f:7e:66: 1c:52:7e:39:ee:32:71:18:ea:aa:25:2f:66:6c:cc:ce:6a:86: e9:5f:71:d4:85:71:a4:58:88:ea:62:62:e4:44:d6:ea:06:be: ce:15:e2:71:1b:69:25:40:e3:6b:3b:ac:f2:15:f3:f0:08:75: 74:2b:18:ad:62:df:8c:38:3b:cf:4b:bb:fd:a4:e1:29:3b:31: 06:ef:0e:6c:26:86:ba:93:4e:97:90:53:17:36:09:de:c7:d8: 3e:22:fb:43:84:5a:40:ea:4b:ce:a9:4a:c9:6f:9c:a6:4c:a5: f4:1c:2e:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDRUYxMTAvBgNVBAUTKEQ5NDVCNjBGMDA5Q0RGMTU1QzQyOUQ0MDg1QUVCNkNG RTA2QkNFMDAwHhcNMjUxMjE4MjI1MzI2WhcNMjUxMjI1MjI1MzI2WjAYMRYwFAYD VQQDDA02OTQ0ODVlNi05Y2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhVAHhkTHg5776jOyDW1t3VjiVkzvo7YsljPAAilt7z1tTeopeBvLS7KJLY3h 2v4TYiPHdhzow+G/dmRIRJ20yEbu2/PTtSb/Vch3tqhMhrIIkIQ7hOR3umvtQ8Ai KHA8EXAT++PkFBPTZKJPg9GciiatJbwTbaebo9nRMaS8gcm7wjlQjPt/pw0+GnF9 QsotuPAV3ShaUiUYilIETlmsDBU30u0/iua/nJW2R6OCF9aigBYhqMiIpnmadt2z TUYeeM+1nkxP5R7frg52ayrFLxCUT8/8RcSTw54BN14oS7hyM68k+F5p1EvM5VJ/ FAGB4Zth1jkcMD0H2bP6gY/7AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD/CvZcJ 3+Tvtk6jpA4H+EXCKWeHMB8GA1UdIwQYMBaAFNlFtg8AnN8VXEKdQIWuts/ga84A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUNFRi9DNDAxOUQyNDJD MTMxMUVDQjQ1ODA4NDJDNEY5QUUwMi8yVVcyRHdDYzN4VmNRcDFBaGE2MnotQnJ6 Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJVVzJEd0NjM3hWY1FwMUFoYTYyei1CcnpnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUNFRi9DNDAxOUQyNDJDMTMxMUVDQjQ1ODA4NDJDNEY5QUUwMi8yVVcyRHdDYzN4 VmNRcDFBaGE2MnotQnJ6Z0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9t4qv8yDYQwqR3tjzrtDmJO0SuAHDu58HGuJVty/nBnc+nMzGfPX6 XqQJv88mrKVnz6kmlYv73Hjti3hIKzwkMN2hKHjPuuGjhiGrmTn81wSl43OCwuX+ F08pdSWM0+rlDpOy/9cy+GvLlTYBB/MS6JV1DsXhr6vji1SbADf4STFi2mmFvDpm yeg2e8JPfmYcUn457jJxGOqqJS9mbMzOaobpX3HUhXGkWIjqYmLkRNbqBr7OFeJx G2klQONrO6zyFfPwCHV0KxitYt+MODvPS7v9pOEpOzEG7w5sJoa6k06XkFMXNgne x9g+IvtDhFpA6kvOqUrJb5ymTKX0HC4c -----END CERTIFICATE-----Generated at Fri Dec 19 21:13:47 2025 by rpki-client