This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft File: 2z39hs6_6u06rxXeruaWUjR0aik.mft (raw, json) Hash identifier: p8kenqKp1NDAE6V9xj1xVaWlYGK7DttH57nYj5HhBt0= Subject key identifier: 43:9C:A7:16:9B:57:3B:7C:8D:7D:EA:C9:B7:70:CF:3A:6C:F7:6E:C2 Authority key identifier: DB:3D:FD:86:CE:BF:EA:ED:3A:AF:15:DE:AE:E6:96:52:34:74:6A:29 Certificate issuer: /CN=A9171BF0/serialNumber=DB3DFD86CEBFEAED3AAF15DEAEE6965234746A29 Certificate serial: D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft Manifest number: CF Signing time: Tue 23 Dec 2025 04:42:36 +0000 Manifest this update: Tue 23 Dec 2025 04:42:36 +0000 Manifest next update: Tue 30 Dec 2025 04:42:36 +0000 Files and hashes: 1: 2z39hs6_6u06rxXeruaWUjR0aik.crl (hash: TA1FYcwb2KG9HO5k62bOtHIbo10iA4mrSGXjUy/YqgU=) 2: 12004368A41611EFA0D7CD42C4F9AE02.roa (hash: fYS+27WQjbC3iI9d+3qmsdD+wyK1WXW6hG9TMXFJOMY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.crl rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:42:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171BF0, serialNumber=DB3DFD86CEBFEAED3AAF15DEAEE6965234746A29 Validity Not Before: Dec 23 04:42:36 2025 GMT Not After : Dec 30 04:42:36 2025 GMT Subject: CN=694a1dbc-c568 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a9:1d:01:48:6d:cb:09:68:d9:01:b7:9f:db: 8e:89:33:28:e3:14:53:c7:6b:48:41:b5:d4:74:65: ee:21:de:e4:38:47:36:fb:99:38:b2:71:84:01:8b: 13:07:d2:80:b1:34:c8:28:a5:7e:02:8c:1a:33:2a: 93:08:15:26:32:eb:58:74:5c:8c:45:b6:5f:b7:3e: dd:0a:3f:89:6b:da:ed:91:5f:64:01:75:cf:5a:3a: 1d:34:04:bb:ac:da:6e:2f:4d:71:db:05:c7:e7:db: bd:f9:41:86:78:9f:98:f5:c1:51:13:5b:cd:82:29: 3e:86:8e:0a:ab:1a:36:57:6e:fd:b8:e4:2a:69:03: a4:28:1e:2c:7b:58:8b:1f:6b:42:cb:c6:9f:c6:e0: c4:7b:19:80:48:4b:30:61:44:1b:e2:67:df:ce:78: 70:ae:47:14:7e:0f:46:25:22:9b:3a:25:f5:3a:6d: 77:b0:b8:d7:34:72:b4:e9:b9:6c:fc:dd:0e:79:11: 8d:b8:16:7d:43:f1:36:76:5f:46:fd:05:7f:7a:2e: e4:1c:17:e8:92:17:f9:b2:97:47:d8:de:14:4c:68: 33:04:2a:7f:7b:23:a2:88:b3:c8:2c:74:de:2a:3a: a5:cf:54:f8:30:86:ee:aa:bf:25:cc:ae:7f:a5:cc: a1:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:9C:A7:16:9B:57:3B:7C:8D:7D:EA:C9:B7:70:CF:3A:6C:F7:6E:C2 X509v3 Authority Key Identifier: keyid:DB:3D:FD:86:CE:BF:EA:ED:3A:AF:15:DE:AE:E6:96:52:34:74:6A:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:8b:dd:ea:d8:73:1a:c2:0f:38:27:91:0f:3d:7d:1f:f8:3d: e2:92:44:f9:c0:14:5c:1c:22:d3:6a:39:31:39:0d:3b:35:69: 84:5b:e1:9a:df:21:87:82:22:ff:45:15:0a:2e:b6:28:f8:5f: 62:73:d2:43:84:18:14:66:5f:54:67:b5:be:4e:12:86:6a:f6: 72:b7:82:74:cd:e1:ec:7e:b9:ef:02:54:76:f2:5b:6f:c7:ea: 39:64:35:b2:4b:64:ff:bd:5e:35:06:6d:bd:2b:39:92:c1:af: f6:e5:fc:bd:96:7c:ca:b1:52:09:3a:95:40:cd:5a:d0:0a:0c: 45:31:48:b3:41:b7:21:57:7b:83:22:74:54:66:e0:6b:e3:87: 8d:7f:1a:70:14:3b:26:8b:d3:e8:e4:c3:5e:60:2d:16:13:b5: 4d:b8:06:d6:c9:17:7d:07:23:90:cd:47:5f:16:3a:be:07:ec: fe:7d:f6:ab:bd:85:1e:28:77:e8:d6:e5:27:4c:da:d1:6b:00: cd:ab:bd:51:52:8c:f1:b3:54:e7:44:99:e9:12:f1:55:a8:bc: ed:02:40:1f:77:3b:b5:e6:d8:75:0f:14:8d:be:2d:06:7c:e6: 69:23:ab:5d:7d:88:37:e6:4a:ef:10:61:64:00:18:9c:66:d2: c5:d4:41:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFCRjAxMTAvBgNVBAUTKERCM0RGRDg2Q0VCRkVBRUQzQUFGMTVERUFFRTY5NjUy MzQ3NDZBMjkwHhcNMjUxMjIzMDQ0MjM2WhcNMjUxMjMwMDQ0MjM2WjAYMRYwFAYD VQQDDA02OTRhMWRiYy1jNTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6kdAUhtywlo2QG3n9uOiTMo4xRTx2tIQbXUdGXuId7kOEc2+5k4snGEAYsT B9KAsTTIKKV+AowaMyqTCBUmMutYdFyMRbZftz7dCj+Ja9rtkV9kAXXPWjodNAS7 rNpuL01x2wXH59u9+UGGeJ+Y9cFRE1vNgik+ho4Kqxo2V279uOQqaQOkKB4se1iL H2tCy8afxuDEexmASEswYUQb4mffznhwrkcUfg9GJSKbOiX1Om13sLjXNHK06bls /N0OeRGNuBZ9Q/E2dl9G/QV/ei7kHBfokhf5spdH2N4UTGgzBCp/eyOiiLPILHTe Kjqlz1T4MIbuqr8lzK5/pcyh6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEOcpxab Vzt8jX3qybdwzzps927CMB8GA1UdIwQYMBaAFNs9/YbOv+rtOq8V3q7mllI0dGop MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUJGMC9BNzhGMUIxMkE0 MTUxMUVGQTE0RkJEM0ZDNEY5QUUwMi8yejM5aHM2XzZ1MDZyeFhlcnVhV1VqUjBh aWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ6MzloczZfNnUwNnJ4WGVydWFXVWpSMGFpay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUJGMC9BNzhGMUIxMkE0MTUxMUVGQTE0RkJEM0ZDNEY5QUUwMi8yejM5aHM2XzZ1 MDZyeFhlcnVhV1VqUjBhaWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKi93q2HMawg84J5EPPX0f+D3ikkT5wBRcHCLTajkxOQ07NWmEW+Ga 3yGHgiL/RRUKLrYo+F9ic9JDhBgUZl9UZ7W+ThKGavZyt4J0zeHsfrnvAlR28ltv x+o5ZDWyS2T/vV41Bm29KzmSwa/25fy9lnzKsVIJOpVAzVrQCgxFMUizQbchV3uD InRUZuBr44eNfxpwFDsmi9Po5MNeYC0WE7VNuAbWyRd9ByOQzUdfFjq+B+z+ffar vYUeKHfo1uUnTNrRawDNq71RUozxs1TnRJnpEvFVqLztAkAfdzu15th1DxSNvi0G fOZpI6tdfYg35krvEGFkABicZtLF1EFS -----END CERTIFICATE-----Generated at Wed Dec 24 16:01:02 2025 by rpki-client