This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft File: 2RBlAbU10PfK1XyOenR8oGnQTVk.mft (raw, json) Hash identifier: zqRXdO/xsCovDupX+HxEIB4MPm7AsMXbs6nsZSaJZaA= Subject key identifier: 13:41:42:05:81:9E:92:51:75:0E:95:07:9B:8F:56:5A:DF:0B:96:B2 Authority key identifier: D9:10:65:01:B5:35:D0:F7:CA:D5:7C:8E:7A:74:7C:A0:69:D0:4D:59 Certificate issuer: /CN=A916FACB/serialNumber=D9106501B535D0F7CAD57C8E7A747CA069D04D59 Certificate serial: 041E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft Manifest number: 041A Signing time: Mon 22 Dec 2025 23:25:28 +0000 Manifest this update: Mon 22 Dec 2025 23:25:28 +0000 Manifest next update: Mon 29 Dec 2025 23:25:28 +0000 Files and hashes: 1: 2RBlAbU10PfK1XyOenR8oGnQTVk.crl (hash: M9sMcALz/lqUtvisjz6PP89yac9yycrQmAtSLkeC7Rk=) 2: 97D35382924311EC927C972FC4F9AE02.roa (hash: F5cT4m4LGvhZopgIl7MS1o33/eaQaKX2bSwBB1GnJYA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.crl rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:25:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1054 (0x41e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FACB, serialNumber=D9106501B535D0F7CAD57C8E7A747CA069D04D59 Validity Not Before: Dec 22 23:25:28 2025 GMT Not After : Dec 29 23:25:28 2025 GMT Subject: CN=6949d368-f9dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1b:c2:01:5b:67:1d:da:7c:41:76:b8:fa:a3: db:37:51:c7:71:77:9b:06:b6:14:01:74:84:3a:1b: 48:ac:da:cd:c9:84:9e:e4:76:b7:a1:3a:ca:1c:06: f0:94:20:91:75:a6:62:ee:f2:98:55:31:e7:4b:f3: c2:d8:b3:71:4d:5e:ba:be:26:5a:c9:1d:9b:47:a9: d5:7b:96:9d:40:02:59:10:a3:1b:bc:45:6e:fe:24: ac:87:50:76:04:88:a7:cb:c1:91:4e:ab:da:cb:8a: 5e:f1:8d:bc:ab:86:55:fa:3f:51:1f:7c:92:92:b8: 5f:37:e2:ca:34:15:27:38:54:df:1e:e0:fe:95:14: b2:52:64:1b:7b:2e:63:ca:11:e2:97:90:3e:82:7e: 5f:4a:d3:fc:61:83:40:a4:55:cf:c2:b3:53:30:b1: c7:c5:89:13:84:19:fc:a1:92:21:c7:9c:a6:f7:40: a6:d8:dd:8f:51:8a:5a:a8:4d:29:fa:0f:da:52:e2: 6e:f8:ac:e3:39:07:61:91:39:93:ec:10:fc:3c:4a: 82:66:33:7a:45:a8:bf:1a:c1:c6:f4:3d:12:21:d5: 20:8c:70:f0:43:a7:df:3f:22:b5:f2:0c:83:a5:3e: 96:5b:df:22:53:33:de:7e:2d:bc:9d:71:ca:87:3f: b0:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:41:42:05:81:9E:92:51:75:0E:95:07:9B:8F:56:5A:DF:0B:96:B2 X509v3 Authority Key Identifier: keyid:D9:10:65:01:B5:35:D0:F7:CA:D5:7C:8E:7A:74:7C:A0:69:D0:4D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:86:df:dc:3d:64:8d:78:31:f7:f2:22:40:5f:35:33:3e:e9: 4f:bf:b5:29:34:b5:65:22:9e:41:39:6c:88:79:09:37:83:9b: d5:a4:30:ab:78:0f:46:1b:d0:52:82:1e:16:93:52:57:fb:21: f7:c7:06:28:55:39:09:ff:94:a2:a2:95:ee:34:c3:45:ba:1f: 71:89:40:40:c7:eb:c8:12:7d:26:89:75:5b:15:c7:c4:75:14: 0a:ae:df:51:3d:83:ce:fa:d2:88:9b:d7:e2:4a:66:e1:c0:dd: 7e:ac:f4:53:c0:9d:66:eb:5a:2b:6b:6b:6c:60:26:83:ab:5a: 7e:61:c9:e2:83:6b:71:d3:72:20:05:f5:0e:b1:ee:30:16:14: 72:32:bd:f3:ee:d6:4f:34:c0:33:c8:56:0a:4c:52:2c:d8:dc: d2:42:78:d0:57:05:56:4c:ec:3e:40:d7:06:24:ec:21:f8:cc: 77:53:5c:ea:46:10:2d:c4:f8:8f:31:e1:9d:df:15:49:ba:23: 5c:9b:16:c2:dd:04:b3:55:72:b4:62:27:c9:1d:47:40:70:b3: 7a:2b:ed:05:f1:9e:ef:5a:0f:a6:3a:a0:3a:7d:79:d7:66:47: 38:21:23:ff:0b:00:a2:cf:d4:bc:dd:a1:db:11:9e:b5:cb:df: 8a:ee:56:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkZBQ0IxMTAvBgNVBAUTKEQ5MTA2NTAxQjUzNUQwRjdDQUQ1N0M4RTdBNzQ3Q0Ew NjlEMDRENTkwHhcNMjUxMjIyMjMyNTI4WhcNMjUxMjI5MjMyNTI4WjAYMRYwFAYD VQQDDA02OTQ5ZDM2OC1mOWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtRvCAVtnHdp8QXa4+qPbN1HHcXebBrYUAXSEOhtIrNrNyYSe5Ha3oTrKHAbw lCCRdaZi7vKYVTHnS/PC2LNxTV66viZayR2bR6nVe5adQAJZEKMbvEVu/iSsh1B2 BIiny8GRTqvay4pe8Y28q4ZV+j9RH3ySkrhfN+LKNBUnOFTfHuD+lRSyUmQbey5j yhHil5A+gn5fStP8YYNApFXPwrNTMLHHxYkThBn8oZIhx5ym90Cm2N2PUYpaqE0p +g/aUuJu+KzjOQdhkTmT7BD8PEqCZjN6Rai/GsHG9D0SIdUgjHDwQ6ffPyK18gyD pT6WW98iUzPefi28nXHKhz+wUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBNBQgWB npJRdQ6VB5uPVlrfC5ayMB8GA1UdIwQYMBaAFNkQZQG1NdD3ytV8jnp0fKBp0E1Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RkFDQi9GNTU5OEQwODky NDAxMUVDQkVENERBMkNDNEY5QUUwMi8yUkJsQWJVMTBQZksxWHlPZW5SOG9HblFU VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJSQmxBYlUxMFBmSzFYeU9lblI4b0duUVRWay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RkFDQi9GNTU5OEQwODkyNDAxMUVDQkVENERBMkNDNEY5QUUwMi8yUkJsQWJVMTBQ ZksxWHlPZW5SOG9HblFUVmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5ht/cPWSNeDH38iJAXzUzPulPv7UpNLVlIp5BOWyIeQk3g5vVpDCr eA9GG9BSgh4Wk1JX+yH3xwYoVTkJ/5SiopXuNMNFuh9xiUBAx+vIEn0miXVbFcfE dRQKrt9RPYPO+tKIm9fiSmbhwN1+rPRTwJ1m61ora2tsYCaDq1p+Ycnig2tx03Ig BfUOse4wFhRyMr3z7tZPNMAzyFYKTFIs2NzSQnjQVwVWTOw+QNcGJOwh+Mx3U1zq RhAtxPiPMeGd3xVJuiNcmxbC3QSzVXK0YifJHUdAcLN6K+0F8Z7vWg+mOqA6fXnX Zkc4ISP/CwCiz9S83aHbEZ61y9+K7laJ -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:29 2025 by rpki-client