This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft File: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft (raw, json) Hash identifier: BSUU19JRm2qaYG2xCgShrFy9Sl9U4aHVRPjpKUPnCZA= Subject key identifier: 34:A0:3A:1F:74:07:C2:B0:80:04:AB:97:BE:A9:F8:F8:A0:33:87:04 Authority key identifier: D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 Certificate issuer: /CN=A914C4ED/serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Certificate serial: 023E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft Manifest number: 0239 Signing time: Sat 06 Dec 2025 23:16:05 +0000 Manifest this update: Sat 06 Dec 2025 23:16:05 +0000 Manifest next update: Sat 13 Dec 2025 23:16:05 +0000 Files and hashes: 1: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl (hash: oCxB6oHNmtJl2FBZ4TLdY8tMSjKBLKjSSeBIUqTRkso=) 2: F060FF0E720D11EDA84BE02EC4F9AE02.roa (hash: MTvQaAV2j4a15rRSTpoB41scqYTwrnry9bJaizx2K5M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 23:16:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 574 (0x23e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED, serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Validity Not Before: Dec 6 23:16:05 2025 GMT Not After : Dec 13 23:16:05 2025 GMT Subject: CN=6934b935-2986 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:0c:15:a9:8c:cb:ed:f1:0b:4b:26:0a:48:74: b1:65:79:78:01:61:dd:ad:7b:5b:36:6a:45:ee:9c: 8f:c1:ab:0d:65:93:f2:64:34:e1:56:29:98:c6:12: 90:2e:25:86:73:83:02:96:2d:3c:d4:5d:80:67:95: 68:40:35:4c:a2:c0:d1:f6:3b:f7:08:2d:51:b3:7d: 56:10:f0:b5:61:b5:02:e4:f8:b4:77:8c:e8:b2:f9: b5:47:ce:4a:df:c7:49:14:48:e8:a5:30:5c:97:b7: 2d:d6:6c:64:6f:02:9a:c9:ff:f8:c8:f8:8f:3b:61: 81:f9:7c:21:b9:7b:a6:97:1d:cc:3a:35:02:56:f2: 4b:61:1a:83:8f:6c:f2:ba:03:bf:65:5b:99:20:5b: d5:67:5b:df:6b:12:24:5f:3b:e9:a7:42:78:d5:0f: 33:49:7f:6f:28:54:d9:8a:72:4d:f0:1e:f9:24:7b: c7:ec:cf:f3:c8:e4:79:37:32:60:7d:55:e8:e3:48: c9:56:cb:d1:b2:1f:f2:3a:bc:1d:02:d1:9a:6d:d7: ce:d0:17:9c:fc:2c:61:6c:6a:27:55:b2:7d:6a:fd: d6:e3:bc:86:cf:8e:3c:75:86:fa:4d:43:c0:18:7e: 5f:32:0e:ef:29:e6:f5:34:e0:00:86:d9:b7:36:1e: b5:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:A0:3A:1F:74:07:C2:B0:80:04:AB:97:BE:A9:F8:F8:A0:33:87:04 X509v3 Authority Key Identifier: keyid:D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:65:8e:9a:c7:03:86:d9:15:1d:8d:9c:2c:68:b5:a4:55:38: c7:8e:af:4f:81:01:e0:63:35:6a:93:ec:b4:d9:2e:84:d1:86: 62:55:ad:36:e4:21:8c:6e:3d:1d:1d:d4:48:9d:16:88:05:f8: 97:b4:d3:99:02:4b:79:17:d5:73:1b:c3:53:47:08:19:41:a1: 50:79:71:a4:bc:7b:75:ab:14:76:12:ee:98:9a:96:55:9d:83: b2:62:1d:cc:8c:99:1c:a3:39:49:6f:cb:4c:e5:0b:91:4c:5b: 00:e9:e1:90:a3:b2:39:e8:7e:a4:f1:37:e5:66:e8:41:f5:9b: ed:3f:bf:4d:e2:20:5c:4b:05:f7:d4:1b:0f:e5:8b:51:ff:5e: 61:7f:30:0c:50:5e:38:f2:57:5a:bc:f8:b6:5d:36:7a:47:80: 17:94:1d:0d:8a:29:52:9a:d4:45:b6:96:e0:da:69:32:b6:d1: 04:2c:43:b4:9d:52:d7:33:b3:9e:06:69:3b:04:c3:d5:52:50: 45:84:21:db:b5:9a:18:69:6f:51:a4:df:9d:82:65:3d:35:15: e4:c7:4b:fd:5b:bc:66:3e:8a:ea:a1:1d:3c:f9:33:62:b3:61: de:55:8e:bc:5f:a0:d0:6a:96:bd:f6:ed:dd:0a:26:18:81:01: 55:f1:81:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKEQ5ODUyOTE0OENCQTVEREVEM0I3M0Q2MDUyRUUwNTE2 QzAyNEM0RjMwHhcNMjUxMjA2MjMxNjA1WhcNMjUxMjEzMjMxNjA1WjAYMRYwFAYD VQQDEw02OTM0YjkzNS0yOTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApgwVqYzL7fELSyYKSHSxZXl4AWHdrXtbNmpF7pyPwasNZZPyZDThVimYxhKQ LiWGc4MCli081F2AZ5VoQDVMosDR9jv3CC1Rs31WEPC1YbUC5Pi0d4zosvm1R85K 38dJFEjopTBcl7ct1mxkbwKayf/4yPiPO2GB+XwhuXumlx3MOjUCVvJLYRqDj2zy ugO/ZVuZIFvVZ1vfaxIkXzvpp0J41Q8zSX9vKFTZinJN8B75JHvH7M/zyOR5NzJg fVXo40jJVsvRsh/yOrwdAtGabdfO0Bec/CxhbGonVbJ9av3W47yGz448dYb6TUPA GH5fMg7vKeb1NOAAhtm3Nh61jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDSgOh90 B8KwgASrl76p+PigM4cEMB8GA1UdIwQYMBaAFNmFKRSMul3e07c9YFLuBRbAJMTz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC83NTk4NDQ0NDcy MEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5NlhkN1R0ejFnVXU0RkZzQWt4 UE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJZVXBGSXk2WGQ3VHR6MWdVdTRGRnNBa3hQTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRFRC83NTk4NDQ0NDcyMEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5Nlhk N1R0ejFnVXU0RkZzQWt4UE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzZY6axwOG2RUdjZwsaLWkVTjHjq9PgQHgYzVqk+y02S6E0YZiVa02 5CGMbj0dHdRInRaIBfiXtNOZAkt5F9VzG8NTRwgZQaFQeXGkvHt1qxR2Eu6YmpZV nYOyYh3MjJkcozlJb8tM5QuRTFsA6eGQo7I56H6k8TflZuhB9ZvtP79N4iBcSwX3 1BsP5YtR/15hfzAMUF448ldavPi2XTZ6R4AXlB0NiilSmtRFtpbg2mkyttEELEO0 nVLXM7OeBmk7BMPVUlBFhCHbtZoYaW9RpN+dgmU9NRXkx0v9W7xmPorqoR08+TNi s2HeVY68X6DQapa99u3dCiYYgQFV8YHS -----END CERTIFICATE-----Generated at Sun Dec 7 06:21:54 2025 by rpki-client