This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft File: 2p0fnE_Zonx12sp94imVaDgMCFk.mft (raw, json) Hash identifier: NIcOsQoTuRJuZFkrMtRZ7yg4zKwH+3xBhTDuESlT5Bo= Subject key identifier: 7E:9D:B1:3D:0A:85:24:6D:AB:34:32:13:8C:E4:3A:EE:F2:0A:0B:F2 Authority key identifier: DA:9D:1F:9C:4F:D9:A2:7C:75:DA:CA:7D:E2:29:95:68:38:0C:08:59 Certificate issuer: /CN=A9195BA9/serialNumber=DA9D1F9C4FD9A27C75DACA7DE2299568380C0859 Certificate serial: 0A36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft Manifest number: 0A24 Signing time: Thu 18 Dec 2025 19:21:34 +0000 Manifest this update: Thu 18 Dec 2025 19:21:34 +0000 Manifest next update: Thu 25 Dec 2025 19:21:34 +0000 Files and hashes: 1: 2p0fnE_Zonx12sp94imVaDgMCFk.crl (hash: tOywxO8lKNK6F6cgKBYOqj0u0bSflMn8eP1+5JnAQjM=) 2: 6322249E033E11EDA7401850C4F9AE02.roa (hash: bxum+WOpJCc/rrq4Z1XLEVCWKFHxlT2LUexLiRBlPmM=) 3: 55892E84839011EAB5B82263C4F9AE02.roa (hash: nXu3TrhqWzeQhIAXd22b9k7kj49e1Ni4pYpn1PtXrj4=) 4: E9EDE9AAF05A11ECBD921381C4F9AE02.roa (hash: zWd+mcCk9l+jHD4vYbrupaGOty0zdeubNycUNDATtLs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.crl rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:21:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2614 (0xa36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=DA9D1F9C4FD9A27C75DACA7DE2299568380C0859 Validity Not Before: Dec 18 19:21:34 2025 GMT Not After : Dec 25 19:21:34 2025 GMT Subject: CN=6944543e-5a7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6f:72:65:d0:a3:e8:41:90:d3:0e:fe:ef:66: f7:7f:f1:8c:8e:f3:07:80:71:d6:f3:94:7b:44:a6: de:7b:26:7a:a6:2c:e4:e6:1f:0d:91:bb:5f:85:5d: 53:74:5f:e6:fd:39:50:3d:07:1d:6c:18:99:eb:6f: 74:f1:d7:28:ff:5e:cf:b7:6b:40:93:bd:28:97:20: 89:29:c3:14:ea:c4:6c:19:6b:d8:b7:15:d6:a9:a2: 87:81:30:98:17:ea:a1:c7:d4:0a:10:57:79:7b:ca: c6:ed:9b:8e:e3:8f:9d:f3:57:cc:c6:11:52:73:f6: c1:a3:7e:e9:70:76:64:63:0b:86:23:e0:45:79:5c: c5:59:fa:65:01:7c:a3:6e:9e:4c:c8:de:60:50:e9: 4e:96:a4:ef:18:8c:29:bc:aa:e5:81:94:5b:d6:8e: 9b:f2:93:fc:3b:1f:f6:cc:0f:4b:c1:71:c0:46:cc: 7c:e9:49:cc:4a:65:b1:9b:b6:e3:b9:2d:7c:03:7b: 71:9d:52:be:0d:94:71:6c:40:73:ca:e3:d1:41:0b: 4c:ad:c8:72:ca:b9:8d:e4:97:d9:52:92:04:6e:fb: e8:a2:ea:eb:6f:b9:eb:e4:42:eb:e7:3d:f4:22:a0: 6e:f5:da:a7:de:29:e8:45:1f:b5:7e:92:c1:58:8c: ed:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:9D:B1:3D:0A:85:24:6D:AB:34:32:13:8C:E4:3A:EE:F2:0A:0B:F2 X509v3 Authority Key Identifier: keyid:DA:9D:1F:9C:4F:D9:A2:7C:75:DA:CA:7D:E2:29:95:68:38:0C:08:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:2f:ba:00:bb:f6:ca:e7:1b:0b:c0:5a:c0:e4:cf:d5:4b:8f: 88:32:fc:4c:b1:15:c9:d3:ef:ee:9d:06:96:7b:44:b5:87:22: c2:e7:75:6e:a6:6f:c5:55:21:e9:3a:d6:78:5f:25:68:85:ae: dc:85:7c:22:a9:d5:98:df:4e:56:2d:7d:8a:cc:f2:1f:85:6c: 55:e9:c2:a2:a6:a9:07:b7:df:c2:75:5c:b5:57:c8:9b:c9:16: e2:3a:22:3b:d4:a3:4a:1b:b7:96:8a:35:2b:39:98:df:45:44: 51:8d:56:d2:c1:86:4b:c5:2d:00:dd:4b:97:f2:78:fa:38:bd: ee:4c:58:25:9e:b4:d8:9f:42:88:7f:08:8c:0f:95:68:3f:b2: 58:f3:90:21:d9:ac:81:13:c5:73:65:4e:b8:28:f1:f3:d5:92: 68:5a:c3:0e:29:0d:b2:eb:44:9a:a7:67:c3:0a:37:b0:f4:4d: bf:83:a6:61:14:62:68:30:88:ea:da:fd:4e:7f:b0:34:cc:53: a5:2e:fa:d4:86:1d:76:63:96:e3:7b:41:fe:54:a1:41:25:72: 70:ce:e1:44:35:21:94:a4:3c:74:0e:f3:9c:8e:b0:b1:b0:6f: d8:9f:7e:77:8d:21:11:33:a9:7e:54:ad:f3:56:fe:b9:a8:ff: a7:44:e6:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKERBOUQxRjlDNEZEOUEyN0M3NURBQ0E3REUyMjk5NTY4 MzgwQzA4NTkwHhcNMjUxMjE4MTkyMTM0WhcNMjUxMjI1MTkyMTM0WjAYMRYwFAYD VQQDDA02OTQ0NTQzZS01YTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxm9yZdCj6EGQ0w7+72b3f/GMjvMHgHHW85R7RKbeeyZ6pizk5h8NkbtfhV1T dF/m/TlQPQcdbBiZ62908dco/17Pt2tAk70olyCJKcMU6sRsGWvYtxXWqaKHgTCY F+qhx9QKEFd5e8rG7ZuO44+d81fMxhFSc/bBo37pcHZkYwuGI+BFeVzFWfplAXyj bp5MyN5gUOlOlqTvGIwpvKrlgZRb1o6b8pP8Ox/2zA9LwXHARsx86UnMSmWxm7bj uS18A3txnVK+DZRxbEBzyuPRQQtMrchyyrmN5JfZUpIEbvvoourrb7nr5ELr5z30 IqBu9dqn3inoRR+1fpLBWIztPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH6dsT0K hSRtqzQyE4zkOu7yCgvyMB8GA1UdIwQYMBaAFNqdH5xP2aJ8ddrKfeIplWg4DAhZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9ERjdBN0YxNDgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi8ycDBmbkVfWm9ueDEyc3A5NGltVmFEZ01D RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJwMGZuRV9ab254MTJzcDk0aW1WYURnTUNGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9ERjdBN0YxNDgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi8ycDBmbkVfWm9u eDEyc3A5NGltVmFEZ01DRmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNL7oAu/bK5xsLwFrA5M/VS4+IMvxMsRXJ0+/unQaWe0S1hyLC53Vu pm/FVSHpOtZ4XyVoha7chXwiqdWY305WLX2KzPIfhWxV6cKipqkHt9/CdVy1V8ib yRbiOiI71KNKG7eWijUrOZjfRURRjVbSwYZLxS0A3UuX8nj6OL3uTFglnrTYn0KI fwiMD5VoP7JY85Ah2ayBE8VzZU64KPHz1ZJoWsMOKQ2y60Sap2fDCjew9E2/g6Zh FGJoMIjq2v1Of7A0zFOlLvrUhh12Y5bje0H+VKFBJXJwzuFENSGUpDx0DvOcjrCx sG/Yn353jSERM6l+VK3zVv65qP+nROa7 -----END CERTIFICATE-----Generated at Fri Dec 19 21:19:25 2025 by rpki-client