This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft File: 2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft (raw, json) Hash identifier: dO1kXVp+YCZjkAzEcefngAtGrcmDUNdnb1H36CzU3E8= Subject key identifier: 36:73:BD:3B:E4:9D:C8:EE:1A:E1:69:F2:9A:6A:F5:2D:FD:0B:54:9F Authority key identifier: DA:EF:A5:43:58:F4:BC:C0:D8:47:CC:6D:C9:CA:F7:8B:C5:E0:99:6E Certificate issuer: /CN=A915FA96/serialNumber=DAEFA54358F4BCC0D847CC6DC9CAF78BC5E0996E Certificate serial: C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2u-lQ1j0vMDYR8xtycr3i8XgmW4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft Manifest number: C4 Signing time: Tue 23 Dec 2025 04:51:41 +0000 Manifest this update: Tue 23 Dec 2025 04:51:41 +0000 Manifest next update: Tue 30 Dec 2025 04:51:41 +0000 Files and hashes: 1: 2u-lQ1j0vMDYR8xtycr3i8XgmW4.crl (hash: NkyGrldXibTnTkTXhF8c2wxCISid8KvzvoeighrP2yA=) 2: 50B93FA8B5EE11EF9AC9D812C4F9AE02.roa (hash: 7AoMz8H6zHHdV8IPpxWlOn2xVFqVFr83q+XexoYNuOw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.crl rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2u-lQ1j0vMDYR8xtycr3i8XgmW4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:51:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FA96, serialNumber=DAEFA54358F4BCC0D847CC6DC9CAF78BC5E0996E Validity Not Before: Dec 23 04:51:41 2025 GMT Not After : Dec 30 04:51:41 2025 GMT Subject: CN=694a1fdd-193f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:58:97:18:bb:34:b7:b1:b0:85:03:45:85:70: cb:5b:0d:a2:b6:28:98:98:a0:91:fc:c1:9e:c6:2e: fe:ef:42:b9:33:f1:2b:c5:7d:7f:08:31:74:99:1b: b9:e8:70:00:c0:ab:61:05:87:f2:e4:28:63:bc:d5: 1b:e6:d0:ea:d2:bf:c2:99:98:71:c2:b1:22:1e:2c: 16:45:b7:a2:3d:92:c6:37:e8:c8:1c:db:3f:8a:1e: 57:9a:69:94:23:53:f7:a7:8b:9c:a4:f2:73:4d:d1: 1c:78:a5:44:8a:62:8b:da:e0:60:0e:af:09:f9:9f: f7:a8:27:6a:85:bb:4d:7f:28:07:8a:21:9a:76:e2: 0e:7d:97:82:3e:9e:b0:84:07:42:18:e4:2b:ad:44: 57:36:90:73:31:7a:00:83:1d:27:e9:ae:92:d1:c5: 83:71:44:f5:9e:7b:0b:7a:44:07:e2:27:f7:ca:d1: e1:8a:da:32:72:7f:61:73:9d:d0:2c:a7:7d:79:1d: af:0c:08:f8:07:50:b0:95:db:84:61:b4:f1:23:dc: 51:fa:2f:f5:20:3a:14:98:09:08:17:d5:60:ed:90: 0d:2e:bf:cb:4f:e0:d2:b3:35:32:c9:09:61:2c:89: 37:f3:10:fd:b4:4e:0f:4f:29:77:40:bf:4d:47:93: ce:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:73:BD:3B:E4:9D:C8:EE:1A:E1:69:F2:9A:6A:F5:2D:FD:0B:54:9F X509v3 Authority Key Identifier: keyid:DA:EF:A5:43:58:F4:BC:C0:D8:47:CC:6D:C9:CA:F7:8B:C5:E0:99:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2u-lQ1j0vMDYR8xtycr3i8XgmW4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:1e:42:f4:5f:a3:eb:07:d6:76:60:12:78:3b:4a:32:4a:3d: f1:1d:88:fb:8b:d4:a1:5f:de:a7:c2:f8:98:f1:26:af:54:75: dc:8c:0a:5d:f6:5e:00:14:ca:02:f4:c5:00:86:cd:2a:6a:9f: 6f:da:ec:a7:10:e0:90:08:1b:64:09:56:92:9d:ef:82:ca:ff: bf:4d:47:db:85:4b:6e:27:70:33:85:1c:73:17:66:f3:f4:b5: e0:a1:cc:e3:55:dc:e4:b0:12:f7:21:7a:a4:cb:39:5e:0c:af: b8:6f:36:c9:53:93:18:36:08:5e:b8:be:90:f3:0f:45:49:42: e6:c8:ee:5e:e5:87:66:d3:0a:5f:3c:e3:6e:02:b7:0e:62:34: bd:25:65:6b:6e:f2:c9:16:d3:bf:44:74:97:ec:03:d7:2c:e0: 7c:ac:fc:60:81:bc:d9:dc:eb:ea:ab:f5:be:3a:dd:c3:4d:f5: 66:98:46:63:d4:47:f7:4f:73:53:2b:d3:39:64:cf:67:e7:a9: 7a:a9:be:b2:82:e7:10:cf:da:7a:31:bc:f8:2e:93:10:77:8e: 78:ca:80:46:61:53:11:7c:6b:04:5e:f0:db:27:96:39:6b:b2: e9:92:e8:fc:78:09:94:d9:08:98:74:40:01:3e:c5:87:dc:29: be:d4:5a:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZBOTYxMTAvBgNVBAUTKERBRUZBNTQzNThGNEJDQzBEODQ3Q0M2REM5Q0FGNzhC QzVFMDk5NkUwHhcNMjUxMjIzMDQ1MTQxWhcNMjUxMjMwMDQ1MTQxWjAYMRYwFAYD VQQDDA02OTRhMWZkZC0xOTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvliXGLs0t7GwhQNFhXDLWw2itiiYmKCR/MGexi7+70K5M/ErxX1/CDF0mRu5 6HAAwKthBYfy5ChjvNUb5tDq0r/CmZhxwrEiHiwWRbeiPZLGN+jIHNs/ih5XmmmU I1P3p4ucpPJzTdEceKVEimKL2uBgDq8J+Z/3qCdqhbtNfygHiiGaduIOfZeCPp6w hAdCGOQrrURXNpBzMXoAgx0n6a6S0cWDcUT1nnsLekQH4if3ytHhitoycn9hc53Q LKd9eR2vDAj4B1CwlduEYbTxI9xR+i/1IDoUmAkIF9Vg7ZANLr/LT+DSszUyyQlh LIk38xD9tE4PTyl3QL9NR5POHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDZzvTvk ncjuGuFp8ppq9S39C1SfMB8GA1UdIwQYMBaAFNrvpUNY9LzA2EfMbcnK94vF4Jlu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkE5Ni84QTM1MDkwQ0I1 RUQxMUVGOUQyMDY5MEVDNEY5QUUwMi8ydS1sUTFqMHZNRFlSOHh0eWNyM2k4WGdt VzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ1LWxRMWowdk1EWVI4eHR5Y3IzaThYZ21XNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkE5Ni84QTM1MDkwQ0I1RUQxMUVGOUQyMDY5MEVDNEY5QUUwMi8ydS1sUTFqMHZN RFlSOHh0eWNyM2k4WGdtVzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWHkL0X6PrB9Z2YBJ4O0oySj3xHYj7i9ShX96nwviY8SavVHXcjApd 9l4AFMoC9MUAhs0qap9v2uynEOCQCBtkCVaSne+Cyv+/TUfbhUtuJ3AzhRxzF2bz 9LXgoczjVdzksBL3IXqkyzleDK+4bzbJU5MYNgheuL6Q8w9FSULmyO5e5Ydm0wpf PONuArcOYjS9JWVrbvLJFtO/RHSX7APXLOB8rPxggbzZ3Ovqq/W+Ot3DTfVmmEZj 1Ef3T3NTK9M5ZM9n56l6qb6ygucQz9p6Mbz4LpMQd454yoBGYVMRfGsEXvDbJ5Y5 a7Lpkuj8eAmU2QiYdEABPsWH3Cm+1FrV -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:35 2025 by rpki-client