This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft File: 2HXmPHNQjdifas3MBgFEoIwIZtw.mft (raw, json) Hash identifier: nXqhRWC3Ch4QyDuS1Nkca3/jEeS1sFJ2XVoOUww5NZk= Subject key identifier: 57:E2:48:33:92:F8:31:BE:0B:5B:F1:9F:48:28:6B:0F:C1:91:36:86 Authority key identifier: D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC Certificate issuer: /CN=A914E950/serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Certificate serial: 042B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft Manifest number: 0426 Signing time: Mon 22 Dec 2025 23:23:17 +0000 Manifest this update: Mon 22 Dec 2025 23:23:17 +0000 Manifest next update: Mon 29 Dec 2025 23:23:17 +0000 Files and hashes: 1: 2HXmPHNQjdifas3MBgFEoIwIZtw.crl (hash: axzgkAwrRjPzyMVJZoeN3lVFcgFDxPUoED8j7672ciQ=) 2: 6199B5668DE011ECB9F9C06EC4F9AE02.roa (hash: FDWt9q3QAp1ofI7rrAESMwGQ2CDqFlVea3/sU3p0ycs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:23:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1067 (0x42b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E950, serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Validity Not Before: Dec 22 23:23:17 2025 GMT Not After : Dec 29 23:23:17 2025 GMT Subject: CN=6949d2e5-2401 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:fb:a3:8a:1d:6d:04:8e:8d:ae:39:7c:89:90: 75:67:ca:f0:b6:01:b6:c2:04:d6:5d:67:1c:27:17: 55:7f:49:91:1f:13:a4:e6:66:d5:ac:df:39:8b:2d: 18:07:b3:8a:48:96:00:b8:a8:57:76:d1:7f:d3:f4: 24:c1:84:22:10:48:82:89:cb:5f:70:89:c6:c3:d4: 45:c9:25:82:99:12:7e:1b:f3:31:57:90:3c:f6:3e: 12:7b:68:cf:fe:37:fb:0c:df:e1:62:69:f6:53:fa: ac:b3:07:8b:b0:a8:5b:cf:ed:42:b0:0e:cf:3e:1b: ca:40:e4:c9:32:21:0b:9b:7e:07:9e:8d:8a:a2:70: 34:7e:24:3e:7d:1b:df:ee:10:1f:74:31:68:7d:f4: 87:6d:b3:49:6f:a0:4b:41:b1:fb:9b:1a:5e:9c:16: fc:d6:70:c0:3e:de:f7:70:30:db:72:82:28:27:5e: a6:ed:86:3b:af:9f:d7:51:49:04:3c:25:2e:2f:00: 1c:ae:ef:fc:d0:bd:99:bc:02:39:50:9e:b4:9d:b4: da:98:22:cf:94:5a:4b:d0:fb:b8:1b:68:b9:7a:4e: c5:92:8e:4f:36:f9:f0:ba:05:7a:bf:23:9e:92:3a: 81:d2:d6:1d:b3:af:31:cf:4d:50:ec:5b:47:2b:cc: 4e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:E2:48:33:92:F8:31:BE:0B:5B:F1:9F:48:28:6B:0F:C1:91:36:86 X509v3 Authority Key Identifier: keyid:D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:44:38:fb:5e:00:60:64:21:9d:7b:ef:e4:04:04:47:2c:37: 42:98:7f:59:92:1f:20:28:c0:d2:b9:10:ba:4b:cf:98:03:ed: 51:95:4c:11:37:d2:48:20:61:6e:69:b5:7f:f6:05:e9:d2:8a: 71:e2:15:41:a2:6f:ec:1a:d9:7f:88:26:3f:a7:bc:25:a0:14: 01:bf:00:01:6c:6a:40:63:b6:ce:85:3a:38:14:63:02:2c:48: f3:f2:f8:a3:d6:3c:cd:68:cf:0e:c0:61:78:86:17:b9:91:a5: a3:8c:6d:5f:a2:0e:c8:20:66:ed:e2:1f:65:ad:81:c4:53:0a: 2f:2b:2b:a7:fb:63:ed:64:86:86:80:e8:7c:68:38:4b:1c:63: b7:58:ff:e4:78:c6:44:77:4e:91:dc:c2:c7:e2:0e:a1:0a:be: ed:ac:64:a6:21:f4:36:bf:41:b5:dd:0e:54:26:34:a6:b8:81: 44:80:55:b9:93:31:f9:53:a2:c8:08:8e:5a:18:0d:0e:60:71: 0d:0a:8b:5d:52:93:00:3e:95:be:1c:f9:24:f6:eb:24:32:85: 85:50:5f:aa:85:1e:56:b5:2a:c6:46:ea:5b:57:37:ab:cc:20: c9:dc:00:bf:7e:36:49:1a:4c:f4:a2:eb:d2:66:6d:c5:ac:b5: ca:22:cc:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5NTAxMTAvBgNVBAUTKEQ4NzVFNjNDNzM1MDhERDg5RjZBQ0RDQzA2MDE0NEEw OEMwODY2REMwHhcNMjUxMjIyMjMyMzE3WhcNMjUxMjI5MjMyMzE3WjAYMRYwFAYD VQQDDA02OTQ5ZDJlNS0yNDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0/ujih1tBI6Nrjl8iZB1Z8rwtgG2wgTWXWccJxdVf0mRHxOk5mbVrN85iy0Y B7OKSJYAuKhXdtF/0/QkwYQiEEiCictfcInGw9RFySWCmRJ+G/MxV5A89j4Se2jP /jf7DN/hYmn2U/qssweLsKhbz+1CsA7PPhvKQOTJMiELm34Hno2KonA0fiQ+fRvf 7hAfdDFoffSHbbNJb6BLQbH7mxpenBb81nDAPt73cDDbcoIoJ16m7YY7r5/XUUkE PCUuLwAcru/80L2ZvAI5UJ60nbTamCLPlFpL0Pu4G2i5ek7Fko5PNvnwugV6vyOe kjqB0tYds68xz01Q7FtHK8xOVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFfiSDOS +DG+C1vxn0goaw/BkTaGMB8GA1UdIwQYMBaAFNh15jxzUI3Yn2rNzAYBRKCMCGbc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTk1MC9DQkYwNkYzMDhE REMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpkaWZhczNNQmdGRW9Jd0la dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJIWG1QSE5RamRpZmFzM01CZ0ZFb0l3SVp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTk1MC9DQkYwNkYzMDhEREMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpk aWZhczNNQmdGRW9Jd0ladHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTRDj7XgBgZCGde+/kBARHLDdCmH9Zkh8gKMDSuRC6S8+YA+1RlUwR N9JIIGFuabV/9gXp0opx4hVBom/sGtl/iCY/p7wloBQBvwABbGpAY7bOhTo4FGMC LEjz8vij1jzNaM8OwGF4hhe5kaWjjG1fog7IIGbt4h9lrYHEUwovKyun+2PtZIaG gOh8aDhLHGO3WP/keMZEd06R3MLH4g6hCr7trGSmIfQ2v0G13Q5UJjSmuIFEgFW5 kzH5U6LICI5aGA0OYHENCotdUpMAPpW+HPkk9uskMoWFUF+qhR5WtSrGRupbVzer zCDJ3AC/fjZJGkz0ouvSZm3FrLXKIsxC -----END CERTIFICATE-----Generated at Wed Dec 24 15:42:55 2025 by rpki-client