This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft File: 2DkrDZFbmsH00jv5hBlxQG-2GsY.mft (raw, json) Hash identifier: PVGBl6IRMzDpTKFJHl+EA7bra42kX8EtrTUG1hAsw2A= Subject key identifier: 02:F2:35:AB:8A:3D:31:92:94:DD:97:65:1D:09:7E:F0:61:67:20:96 Authority key identifier: D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6 Certificate issuer: /CN=A9196DE5/serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6 Certificate serial: 09FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft Manifest number: 09E4 Signing time: Sat 20 Dec 2025 19:24:33 +0000 Manifest this update: Sat 20 Dec 2025 19:24:32 +0000 Manifest next update: Sat 27 Dec 2025 19:24:32 +0000 Files and hashes: 1: 2DkrDZFbmsH00jv5hBlxQG-2GsY.crl (hash: V/yQLXxfPjklRyr7rymacZ4373Fe05fmWWfe5sWPY7A=) 2: 04F408A8CB6111F09D31F110C4F9AE02.roa (hash: mRhrGGACqI/fwAFCnhDqN7VI8b4Hx/imcetteQl2PYA=) 3: 92B2469A90D411F09BC0A564C4F9AE02.roa (hash: TURUoK0EqdJvH1Sny3sw0728lsP1RbLjnRY1UT/NZtA=) 4: 013B99DA986011F08FA4AB86C4F9AE02.roa (hash: HLqIoqQkySmNyWMIIry9IC33bxoaZanVi9jRVr97ewk=) 5: 5DD98D5ACA4211F0B121F133C4F9AE02.roa (hash: YQX/CyNawJpc0Zhd5mtmlFN9bvWSowyJ5hAEBJPIjm0=) 6: 08DD8180943211F09FC84074C4F9AE02.roa (hash: ip3SdK5nq+g35LDrzaKyacLzhVoTKoCaldxrPYYErIY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.crl rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 19:24:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2557 (0x9fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196DE5, serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6 Validity Not Before: Dec 20 19:24:32 2025 GMT Not After : Dec 27 19:24:32 2025 GMT Subject: CN=6946f7f1-eab7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8d:38:3a:a6:f7:7b:b0:0a:22:2f:62:e4:b7: a4:e5:b0:7e:69:ca:2e:53:e3:f9:24:2d:e8:c0:08: 39:37:f9:e2:7d:85:74:3f:ad:7a:9b:77:fe:34:a6: 0c:c1:cf:7d:53:47:80:a0:7f:5b:8c:d7:d4:b4:0e: a7:b9:5a:9b:c9:b3:31:d6:47:c6:2c:37:71:4b:18: 9b:e8:01:4b:b8:ea:78:99:a9:9b:d6:0c:53:b2:a8: 94:7a:18:19:aa:d5:16:e5:87:7a:a9:d9:74:2d:f2: ef:93:0f:8b:f4:17:39:48:5d:1e:af:57:3d:25:a7: 24:68:d5:3e:d7:89:19:b6:af:b3:60:50:e4:ac:1c: a0:55:63:4a:58:51:68:4e:08:a3:00:fc:db:92:6a: 88:14:e3:25:86:46:63:cc:c0:08:51:c4:19:77:e6: d0:cf:01:2b:c8:e6:8d:7e:9b:06:65:58:ab:3c:23: d8:f0:1b:b5:77:1e:bc:f6:8f:08:2f:31:ac:4d:f4: e0:61:c8:f9:ca:df:de:e7:3c:1e:4d:42:ac:df:ce: 79:ea:40:83:fd:27:11:42:3b:3f:69:d9:58:d8:59: a8:87:5a:b6:82:7d:fd:a8:16:4f:e5:f3:97:ba:30: 5d:b8:3c:95:09:fe:79:b2:9e:8f:e2:be:96:12:fa: 32:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:F2:35:AB:8A:3D:31:92:94:DD:97:65:1D:09:7E:F0:61:67:20:96 X509v3 Authority Key Identifier: keyid:D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:32:08:00:40:b0:84:f5:72:e3:31:f9:6d:d5:c4:59:21:b1: a5:b5:26:63:2d:e1:ec:94:99:a6:b7:ea:b6:3b:db:d8:39:08: b9:be:bc:45:74:70:61:90:04:41:99:61:99:a1:a0:31:40:93: 24:b5:c1:ba:34:b8:88:c2:e7:99:6e:8e:0c:44:3f:5e:34:24: b0:56:43:66:0e:9c:76:df:d0:31:63:22:bc:d9:08:ba:27:f1: c0:15:fa:26:89:76:18:ea:aa:cb:97:fb:1b:97:aa:79:67:fc: 17:68:a9:74:3c:d5:2f:7f:25:57:77:dd:83:df:2a:46:cb:7a: 5c:ed:05:9c:6b:d9:f3:af:f7:e7:45:a0:ca:f8:71:6b:b3:98: 18:f1:f8:66:18:e0:2f:a1:28:1a:dd:50:0b:fb:7d:02:24:a8: 64:79:8b:61:55:11:d5:24:fb:a9:ce:cf:fd:55:de:0b:4e:7a: 34:14:ac:15:9a:09:eb:08:15:a2:3b:8d:44:cc:98:15:d3:2a: 8b:f9:6a:60:54:93:82:23:20:24:52:d9:c8:ad:25:67:35:3d: 49:bb:7b:15:b8:14:57:2a:9e:7f:b3:40:9a:f3:2e:19:ca:47: 28:94:c5:f0:57:3b:f9:56:fa:41:7d:98:1e:83:01:c2:3c:da: 1b:1d:bd:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZERTUxMTAvBgNVBAUTKEQ4MzkyQjBEOTE1QjlBQzFGNEQyM0JGOTg0MTk3MTQw NkZCNjFBQzYwHhcNMjUxMjIwMTkyNDMyWhcNMjUxMjI3MTkyNDMyWjAYMRYwFAYD VQQDDA02OTQ2ZjdmMS1lYWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs404Oqb3e7AKIi9i5Lek5bB+acouU+P5JC3owAg5N/nifYV0P616m3f+NKYM wc99U0eAoH9bjNfUtA6nuVqbybMx1kfGLDdxSxib6AFLuOp4mamb1gxTsqiUehgZ qtUW5Yd6qdl0LfLvkw+L9Bc5SF0er1c9JackaNU+14kZtq+zYFDkrBygVWNKWFFo TgijAPzbkmqIFOMlhkZjzMAIUcQZd+bQzwEryOaNfpsGZVirPCPY8Bu1dx689o8I LzGsTfTgYcj5yt/e5zweTUKs38556kCD/ScRQjs/adlY2Fmoh1q2gn39qBZP5fOX ujBduDyVCf55sp6P4r6WEvoyjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFALyNauK PTGSlN2XZR0JfvBhZyCWMB8GA1UdIwQYMBaAFNg5Kw2RW5rB9NI7+YQZcUBvthrG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkRFNS83MkM1QTlDQzk0 MzAxMUVBQkQ3NUY5ODNDNEY5QUUwMi8yRGtyRFpGYm1zSDAwanY1aEJseFFHLTJH c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJEa3JEWkZibXNIMDBqdjVoQmx4UUctMkdzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkRFNS83MkM1QTlDQzk0MzAxMUVBQkQ3NUY5ODNDNEY5QUUwMi8yRGtyRFpGYm1z SDAwanY1aEJseFFHLTJHc1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLMggAQLCE9XLjMflt1cRZIbGltSZjLeHslJmmt+q2O9vYOQi5vrxF dHBhkARBmWGZoaAxQJMktcG6NLiIwueZbo4MRD9eNCSwVkNmDpx239AxYyK82Qi6 J/HAFfomiXYY6qrLl/sbl6p5Z/wXaKl0PNUvfyVXd92D3ypGy3pc7QWca9nzr/fn RaDK+HFrs5gY8fhmGOAvoSga3VAL+30CJKhkeYthVRHVJPupzs/9Vd4LTno0FKwV mgnrCBWiO41EzJgV0yqL+WpgVJOCIyAkUtnIrSVnNT1Ju3sVuBRXKp5/s0Ca8y4Z ykcolMXwVzv5VvpBfZgegwHCPNobHb1K -----END CERTIFICATE-----Generated at Sun Dec 21 22:13:06 2025 by rpki-client