This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft File: 2QhrDfk0LcKwkbrobLd5_GJZvXs.mft (raw, json) Hash identifier: MfmbegYPJvW3Ni3inqGkqkIc74E9ztCWiQxlP95XKjA= Subject key identifier: CB:B8:C7:DA:B3:8A:68:9B:71:58:96:02:98:88:BA:6B:13:FD:70:61 Authority key identifier: D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B Certificate issuer: /CN=A914F2EC/serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Certificate serial: 3500 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft Manifest number: 34F7 Signing time: Wed 24 Dec 2025 14:54:23 +0000 Manifest this update: Wed 24 Dec 2025 14:54:23 +0000 Manifest next update: Wed 31 Dec 2025 14:54:23 +0000 Files and hashes: 1: 2QhrDfk0LcKwkbrobLd5_GJZvXs.crl (hash: GXt1jERB4ItbcLt6fMjcedcph2WnwuIWsESsnN8oCcg=) 2: 588BD7269A1211E8B97A623AC4F9AE02.roa (hash: KKbAooYir9kiM+kQeIhamjhStk+gbSQk/A73xTUucXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 14:54:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13568 (0x3500) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F2EC, serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Validity Not Before: Dec 24 14:54:23 2025 GMT Not After : Dec 31 14:54:23 2025 GMT Subject: CN=694bfe9f-b4bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:bc:67:af:1d:99:23:89:96:81:53:bb:55:15: 61:10:a9:c2:33:64:bb:98:f7:92:67:79:f2:4f:2d: 3f:e8:e5:0e:7c:9d:77:44:b5:d8:29:d8:33:b0:88: 4a:8d:03:9d:34:59:4a:92:e8:7c:cb:79:31:e9:55: 5b:28:eb:34:dd:ef:74:b2:76:25:6e:9b:5a:8e:5a: 5b:bf:ff:78:1f:69:ac:a4:41:65:0b:25:da:43:21: 1a:c9:ba:a9:39:90:a9:d6:dc:bb:92:17:14:0d:7e: 13:30:9a:83:ba:52:eb:26:56:5d:bf:64:11:0f:4c: 54:89:4b:56:cc:4a:df:8f:36:7e:51:26:4f:27:9f: e7:cf:f8:4a:5b:5a:e8:2a:40:e7:a9:9a:90:73:4a: af:f4:37:4e:d8:9c:ce:c4:f5:6f:55:44:6f:43:5b: dd:b7:d6:aa:df:a7:33:73:2d:71:7c:ca:7c:55:7f: a7:41:12:70:91:27:9d:0c:ba:27:b8:8e:4c:8d:8c: f4:25:3e:1f:ac:1a:a2:eb:fd:98:63:eb:04:b1:fd: 94:18:04:4d:1b:80:98:b8:a6:19:a5:a4:7b:0e:da: b1:f6:94:41:6e:80:1c:36:0f:02:24:8b:45:8a:36: 61:47:f8:21:6a:1b:88:32:f9:20:55:3b:89:9b:57: ba:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:B8:C7:DA:B3:8A:68:9B:71:58:96:02:98:88:BA:6B:13:FD:70:61 X509v3 Authority Key Identifier: keyid:D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:b8:8a:b8:00:92:63:52:5c:56:33:57:c4:d5:08:36:d5:14: 9b:ba:22:1c:da:c6:45:e8:b4:2f:65:df:1c:30:de:ae:a0:a6: d1:22:4d:1e:a4:a9:9c:5a:73:cd:6b:12:59:91:8f:7a:75:6f: 0e:bb:51:3b:fb:05:d1:68:36:2b:fc:09:10:fd:2a:99:0b:a0: 7f:e2:06:91:33:76:80:19:b1:72:be:66:15:20:68:8e:2e:1f: 9e:83:05:94:af:e7:b1:43:8e:f8:07:ed:01:11:25:57:c5:4b: 46:29:88:9d:4c:08:a8:18:2d:a2:e3:96:65:bb:7d:40:d9:ca: 6b:2d:ca:ff:7a:62:ae:25:ac:3c:85:56:16:36:25:d9:be:99: 6d:51:e8:11:87:e9:1a:de:f6:b1:9d:40:a5:35:b2:0b:4e:30: e5:64:1a:b0:0e:0d:8f:29:e5:99:a7:bd:82:55:32:07:25:e3: 9e:5e:66:2c:2e:2f:76:29:12:e5:70:e0:de:5a:f8:0d:31:66: 5e:af:63:cf:52:8d:5f:75:8a:b4:4b:d4:fe:a0:fc:3b:83:db: fe:4d:c9:6c:b1:18:d2:e7:db:11:e0:93:35:d8:3b:6e:0b:3b: d8:35:99:3a:65:57:fb:7c:4c:0d:ee:31:8b:b6:de:27:ac:77: 2b:51:0f:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYyRUMxMTAvBgNVBAUTKEQ5MDg2QjBERjkzNDJEQzJCMDkxQkFFODZDQjc3OUZD NjI1OUJEN0IwHhcNMjUxMjI0MTQ1NDIzWhcNMjUxMjMxMTQ1NDIzWjAYMRYwFAYD VQQDDA02OTRiZmU5Zi1iNGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbxnrx2ZI4mWgVO7VRVhEKnCM2S7mPeSZ3nyTy0/6OUOfJ13RLXYKdgzsIhK jQOdNFlKkuh8y3kx6VVbKOs03e90snYlbptajlpbv/94H2mspEFlCyXaQyEaybqp OZCp1ty7khcUDX4TMJqDulLrJlZdv2QRD0xUiUtWzErfjzZ+USZPJ5/nz/hKW1ro KkDnqZqQc0qv9DdO2JzOxPVvVURvQ1vdt9aq36czcy1xfMp8VX+nQRJwkSedDLon uI5MjYz0JT4frBqi6/2YY+sEsf2UGARNG4CYuKYZpaR7Dtqx9pRBboAcNg8CJItF ijZhR/ghahuIMvkgVTuJm1e6lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMu4x9qz imibcViWApiIumsT/XBhMB8GA1UdIwQYMBaAFNkIaw35NC3CsJG66Gy3efxiWb17 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjJFQy9ENThBMjI2QzFE OUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExjS3drYnJvYkxkNV9HSlp2 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRaHJEZmswTGNLd2ticm9iTGQ1X0dKWnZYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjJFQy9ENThBMjI2QzFEOUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExj S3drYnJvYkxkNV9HSlp2WHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2uIq4AJJjUlxWM1fE1Qg21RSbuiIc2sZF6LQvZd8cMN6uoKbRIk0e pKmcWnPNaxJZkY96dW8Ou1E7+wXRaDYr/AkQ/SqZC6B/4gaRM3aAGbFyvmYVIGiO Lh+egwWUr+exQ474B+0BESVXxUtGKYidTAioGC2i45Zlu31A2cprLcr/emKuJaw8 hVYWNiXZvpltUegRh+ka3vaxnUClNbILTjDlZBqwDg2PKeWZp72CVTIHJeOeXmYs Li92KRLlcODeWvgNMWZer2PPUo1fdYq0S9T+oPw7g9v+TclssRjS59sR4JM12Dtu CzvYNZk6ZVf7fEwN7jGLtt4nrHcrUQ9C -----END CERTIFICATE-----Generated at Wed Dec 24 17:34:52 2025 by rpki-client