This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918B6BC/A030CD30204C11F0963EB575C4F9AE02/2L7paV1DsznnVj8kE7cjGdFndLE.mft File: 2L7paV1DsznnVj8kE7cjGdFndLE.mft (raw, json) Hash identifier: MOkKZ0Jat8DRxECJxKlVV3moEj/BUrvs07IC4py1Ht8= Subject key identifier: F2:59:27:A5:94:41:59:5C:1F:4C:CA:43:CB:ED:86:AF:ED:1B:EB:4E Authority key identifier: D8:BE:E9:69:5D:43:B3:39:E7:56:3F:24:13:B7:23:19:D1:67:74:B1 Certificate issuer: /CN=A918B6BC/serialNumber=D8BEE9695D43B339E7563F2413B72319D16774B1 Certificate serial: 89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2L7paV1DsznnVj8kE7cjGdFndLE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B6BC/A030CD30204C11F0963EB575C4F9AE02/2L7paV1DsznnVj8kE7cjGdFndLE.mft Manifest number: 83 Signing time: Tue 23 Dec 2025 05:39:18 +0000 Manifest this update: Tue 23 Dec 2025 05:39:17 +0000 Manifest next update: Tue 30 Dec 2025 05:39:17 +0000 Files and hashes: 1: 2L7paV1DsznnVj8kE7cjGdFndLE.crl (hash: 4caO/KtLAHXUto4I4Vsm5itkqqJHATP8xDJ7NU6Eb5I=) 2: 998CA7F6B29611F0A9620F65C4F9AE02.roa (hash: h/qo7UbEbLV18o6jkscnIksGW89xzlKj6ySEYB/Jbpk=) 3: F5CE8322AA8A11F0B2091087C4F9AE02.roa (hash: FXPDJuq/zjZiA2D6rc5QgOXQ/HXgvP43gQ4VPzDOmQM=) 4: E31A926E6EAF11F088699976C4F9AE02.roa (hash: P2RdO098bgYaocfJCLZoV5dDTfBgyVfqd+4HH9FeoeI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B6BC/A030CD30204C11F0963EB575C4F9AE02/2L7paV1DsznnVj8kE7cjGdFndLE.crl rsync://rpki.apnic.net/member_repository/A918B6BC/A030CD30204C11F0963EB575C4F9AE02/2L7paV1DsznnVj8kE7cjGdFndLE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2L7paV1DsznnVj8kE7cjGdFndLE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:39:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B6BC, serialNumber=D8BEE9695D43B339E7563F2413B72319D16774B1 Validity Not Before: Dec 23 05:39:17 2025 GMT Not After : Dec 30 05:39:17 2025 GMT Subject: CN=694a2b05-cede Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e5:16:a1:de:f7:a8:f0:7e:ea:0e:2b:dc:6f: d2:fd:dd:a8:c6:c6:bc:88:73:28:a0:cc:d0:23:50: b7:2b:58:6f:54:c8:f9:8c:7c:a8:78:d9:b2:ee:8e: ea:ec:ba:02:30:f7:85:97:12:88:a4:a3:5d:15:56: 1f:fc:7c:ac:7c:0c:fa:95:17:f8:eb:76:41:42:44: 0d:56:03:b7:88:11:83:9b:de:69:02:32:62:dc:12: a2:8a:39:73:6c:67:f6:8e:2d:7b:f4:93:e4:76:ac: 01:35:b0:66:27:0e:2b:8c:0c:b6:de:a0:ad:3e:79: c2:c8:96:52:e8:e2:09:e2:19:4c:52:5d:75:ce:62: 6d:82:5c:9d:13:51:77:42:ca:61:72:a6:3e:2c:12: 75:36:f9:20:c7:a0:e0:19:23:64:78:c7:d2:86:b9: 23:54:b0:45:2c:ea:3f:f7:9e:ef:94:c9:3b:11:e8: 52:c0:63:26:11:e4:b4:d1:a8:f4:21:8f:e6:42:18: 36:6a:2e:05:fc:93:6f:03:05:71:4d:5d:c0:c9:85: 74:a9:d8:23:8a:74:34:12:0a:b5:06:ec:2c:ca:a1: 60:85:3e:34:ff:50:01:1e:4a:a4:77:5c:02:49:c4: 59:64:92:18:e8:8f:78:15:4a:28:e1:76:31:c9:c5: e1:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:59:27:A5:94:41:59:5C:1F:4C:CA:43:CB:ED:86:AF:ED:1B:EB:4E X509v3 Authority Key Identifier: keyid:D8:BE:E9:69:5D:43:B3:39:E7:56:3F:24:13:B7:23:19:D1:67:74:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B6BC/A030CD30204C11F0963EB575C4F9AE02/2L7paV1DsznnVj8kE7cjGdFndLE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2L7paV1DsznnVj8kE7cjGdFndLE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B6BC/A030CD30204C11F0963EB575C4F9AE02/2L7paV1DsznnVj8kE7cjGdFndLE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:96:60:a8:51:99:2f:cf:01:3d:f6:28:87:6a:63:48:07:49: 6d:f3:13:df:00:6f:9b:ec:41:90:51:bf:b0:68:a8:fc:c2:c1: 27:dc:44:2b:2b:be:50:ab:91:58:cc:74:c7:6e:60:79:c7:32: 4a:1a:ec:41:dd:60:f3:db:9c:54:0d:38:72:75:02:c2:4b:87: d9:ef:70:97:97:1e:0b:95:06:fa:76:ba:42:23:07:d9:90:42: 0a:16:2e:27:a3:00:e3:dc:24:43:d5:c8:67:86:60:a1:be:34: 4c:df:57:04:41:cc:66:cb:44:65:d6:d6:0d:5a:a7:54:54:84: d1:b5:35:3d:55:67:63:c4:3c:f5:f6:3e:69:76:6c:4c:5e:b1: ed:3e:18:e0:40:24:52:14:1a:33:6c:be:7c:14:9f:d4:52:0e: 89:a7:4e:07:d1:73:da:de:18:d0:76:f7:d6:d3:c3:ee:8e:9e: 82:e6:fe:9b:33:37:80:ff:41:af:90:70:ce:08:a5:27:75:09: ea:4d:af:a4:e3:28:ad:76:9f:94:62:b0:2a:78:f2:6d:1c:16: 7a:5a:37:01:ab:7e:29:27:8c:a9:c1:2b:e5:d1:ac:b1:b6:b3: 8c:28:19:9a:16:18:4a:14:7b:05:48:82:cc:35:0d:be:95:ef: 81:84:d5:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI2QkMxMTAvBgNVBAUTKEQ4QkVFOTY5NUQ0M0IzMzlFNzU2M0YyNDEzQjcyMzE5 RDE2Nzc0QjEwHhcNMjUxMjIzMDUzOTE3WhcNMjUxMjMwMDUzOTE3WjAYMRYwFAYD VQQDDA02OTRhMmIwNS1jZWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArOUWod73qPB+6g4r3G/S/d2oxsa8iHMooMzQI1C3K1hvVMj5jHyoeNmy7o7q 7LoCMPeFlxKIpKNdFVYf/HysfAz6lRf463ZBQkQNVgO3iBGDm95pAjJi3BKiijlz bGf2ji179JPkdqwBNbBmJw4rjAy23qCtPnnCyJZS6OIJ4hlMUl11zmJtglydE1F3 QsphcqY+LBJ1Nvkgx6DgGSNkeMfShrkjVLBFLOo/957vlMk7EehSwGMmEeS00aj0 IY/mQhg2ai4F/JNvAwVxTV3AyYV0qdgjinQ0Egq1BuwsyqFghT40/1ABHkqkd1wC ScRZZJIY6I94FUoo4XYxycXhawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPJZJ6WU QVlcH0zKQ8vthq/tG+tOMB8GA1UdIwQYMBaAFNi+6WldQ7M551Y/JBO3IxnRZ3Sx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjZCQy9BMDMwQ0QzMDIw NEMxMUYwOTYzRUI1NzVDNEY5QUUwMi8yTDdwYVYxRHN6bm5WajhrRTdjakdkRm5k TEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJMN3BhVjFEc3publZqOGtFN2NqR2RGbmRMRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjZCQy9BMDMwQ0QzMDIwNEMxMUYwOTYzRUI1NzVDNEY5QUUwMi8yTDdwYVYxRHN6 bm5WajhrRTdjakdkRm5kTEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQlmCoUZkvzwE99iiHamNIB0lt8xPfAG+b7EGQUb+waKj8wsEn3EQr K75Qq5FYzHTHbmB5xzJKGuxB3WDz25xUDThydQLCS4fZ73CXlx4LlQb6drpCIwfZ kEIKFi4nowDj3CRD1chnhmChvjRM31cEQcxmy0Rl1tYNWqdUVITRtTU9VWdjxDz1 9j5pdmxMXrHtPhjgQCRSFBozbL58FJ/UUg6Jp04H0XPa3hjQdvfW08Pujp6C5v6b MzeA/0GvkHDOCKUndQnqTa+k4yitdp+UYrAqePJtHBZ6WjcBq34pJ4ypwSvl0ayx trOMKBmaFhhKFHsFSILMNQ2+le+BhNUP -----END CERTIFICATE-----Generated at Tue Dec 23 23:16:33 2025 by rpki-client