This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft File: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft (raw, json) Hash identifier: LaZS+3A36gH6XCRVqI80vFbxLBkHs0d5jZfmoKDADe0= Subject key identifier: 1B:D2:4A:F8:1E:2F:68:27:F5:F7:E0:76:03:92:DC:1E:06:36:C9:A2 Authority key identifier: D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 Certificate issuer: /CN=A9159ECD/serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Certificate serial: 0118 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft Manifest number: 0115 Signing time: Mon 22 Dec 2025 22:23:46 +0000 Manifest this update: Mon 22 Dec 2025 22:23:45 +0000 Manifest next update: Mon 29 Dec 2025 22:23:45 +0000 Files and hashes: 1: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl (hash: df1am75XumBCD8+MdKsL/JE0LxOnoKEOBWtAusGxDkU=) 2: 5A4723DA6F3C11EF8FD45F13C4F9AE02.roa (hash: nJrP5XyTG2U3goSrQUjPEnvTLR/1/bqUd5TtsJOT5YA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 22:23:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 280 (0x118) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159ECD, serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Validity Not Before: Dec 22 22:23:45 2025 GMT Not After : Dec 29 22:23:45 2025 GMT Subject: CN=6949c4f2-b73e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:af:ee:8a:32:19:9d:9c:5d:0d:ba:74:85:eb: 60:61:9b:ec:ad:7b:1e:2e:d5:2f:c9:d9:7a:95:81: ed:6f:37:c5:85:15:86:2c:d9:f3:31:75:dd:8d:67: 56:b1:1c:bb:38:42:90:43:f2:4d:d7:44:b8:10:3c: 6e:5d:68:30:e5:52:ec:da:e7:32:99:09:a1:15:9e: 53:2d:01:f5:53:2a:3c:b6:c3:ab:ab:64:a2:1f:84: fb:66:3e:d8:42:70:5e:3b:46:9a:28:3e:7a:64:af: 80:58:40:03:c9:c4:6c:72:ed:fd:6f:0b:97:18:bf: d2:74:aa:2b:6b:91:b9:bf:20:c3:43:41:08:11:a7: 97:e4:62:37:00:c8:62:cd:8c:9b:d3:b8:e6:ee:3c: 21:ce:d1:a0:72:2f:f9:88:86:fc:07:8f:41:25:9d: 5f:9b:89:1c:75:bf:39:70:c2:2e:02:7f:98:fe:a5: d3:05:7d:d0:31:b1:92:37:c5:32:ba:28:a2:1c:7c: d5:25:43:16:9f:81:d2:39:84:a5:b9:8f:11:7f:11: d0:60:56:a6:fa:d6:2f:ac:ae:f8:92:78:5c:93:3f: e6:c9:0c:9f:57:00:32:2e:71:86:24:78:24:5f:25: ce:19:a0:03:80:cf:12:7a:3e:91:73:a0:c7:c8:24: c1:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:D2:4A:F8:1E:2F:68:27:F5:F7:E0:76:03:92:DC:1E:06:36:C9:A2 X509v3 Authority Key Identifier: keyid:D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:1d:16:e1:a9:77:53:6b:8a:ce:75:20:26:43:dc:45:5c:2a: 52:fe:9c:43:0c:02:e5:da:df:22:a2:cf:f1:f3:6a:51:67:7d: 49:c2:cb:a9:05:16:ad:fe:b4:17:65:f3:a0:ef:fd:1f:d2:57: 6f:bd:57:57:d8:2f:9a:fa:5f:03:32:cb:89:7b:2a:0d:84:1e: cb:aa:e6:88:80:e2:6e:e3:b5:fa:62:28:aa:95:2f:9f:8d:f5: 88:0b:87:0f:07:1a:fa:51:e4:18:4e:4f:f6:ed:a7:26:c7:f6: d0:1f:c0:9f:ec:68:68:8c:16:e9:a0:ff:8d:cd:b7:89:82:1b: ac:93:2b:b2:00:97:00:27:a0:2c:52:c5:38:4c:6c:98:68:0c: 4c:7c:d4:12:15:1c:27:12:4a:bd:c9:a1:99:8d:df:16:db:96: b7:09:0f:3e:49:a8:58:5a:e6:41:e6:cf:28:ee:70:bd:18:d7: bf:86:ac:7d:ee:9b:c9:6a:da:05:38:42:6c:57:9c:a0:71:2b: 21:dd:07:17:a4:6c:cd:d4:55:da:91:8c:6c:76:f1:fb:44:41: 17:18:10:c8:fa:52:2d:7f:40:82:13:6b:46:f2:ce:cc:80:10: 53:f7:f9:26:79:df:ed:ea:ce:15:c9:6d:91:23:20:3d:a4:09: 86:57:10:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlFQ0QxMTAvBgNVBAUTKEQ5NURBMTE3MTQxMjMwMEFCNTNCM0U0ODcwRjJGNDQx RjA2QzgxMjQwHhcNMjUxMjIyMjIyMzQ1WhcNMjUxMjI5MjIyMzQ1WjAYMRYwFAYD VQQDDA02OTQ5YzRmMi1iNzNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxK/uijIZnZxdDbp0hetgYZvsrXseLtUvydl6lYHtbzfFhRWGLNnzMXXdjWdW sRy7OEKQQ/JN10S4EDxuXWgw5VLs2ucymQmhFZ5TLQH1Uyo8tsOrq2SiH4T7Zj7Y QnBeO0aaKD56ZK+AWEADycRscu39bwuXGL/SdKora5G5vyDDQ0EIEaeX5GI3AMhi zYyb07jm7jwhztGgci/5iIb8B49BJZ1fm4kcdb85cMIuAn+Y/qXTBX3QMbGSN8Uy uiiiHHzVJUMWn4HSOYSluY8RfxHQYFam+tYvrK74knhckz/myQyfVwAyLnGGJHgk XyXOGaADgM8Sej6Rc6DHyCTB9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBvSSvge L2gn9ffgdgOS3B4GNsmiMB8GA1UdIwQYMBaAFNldoRcUEjAKtTs+SHDy9EHwbIEk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUVDRC9FRjYzODNFMjNE OUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01BcTFPejVJY1BMMFFmQnNn U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJWMmhGeFFTTUFxMU96NUljUEwwUWZCc2dTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OUVDRC9FRjYzODNFMjNEOUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01B cTFPejVJY1BMMFFmQnNnU1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArHRbhqXdTa4rOdSAmQ9xFXCpS/pxDDALl2t8ios/x82pRZ31Jwsup BRat/rQXZfOg7/0f0ldvvVdX2C+a+l8DMsuJeyoNhB7LquaIgOJu47X6YiiqlS+f jfWIC4cPBxr6UeQYTk/27acmx/bQH8Cf7GhojBbpoP+NzbeJghuskyuyAJcAJ6As UsU4TGyYaAxMfNQSFRwnEkq9yaGZjd8W25a3CQ8+SahYWuZB5s8o7nC9GNe/hqx9 7pvJatoFOEJsV5ygcSsh3QcXpGzN1FXakYxsdvH7REEXGBDI+lItf0CCE2tG8s7M gBBT9/kmed/t6s4VyW2RIyA9pAmGVxBT -----END CERTIFICATE-----Generated at Tue Dec 23 03:56:06 2025 by rpki-client