This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft File: 2DkrDZFbmsH00jv5hBlxQG-2GsY.mft (raw, json) Hash identifier: odNvMubQno+5hbsUcoTTR1rFg2KxEE8OQMlxRdaVL48= Subject key identifier: 54:95:85:14:AA:50:50:92:8C:E7:26:4A:65:D9:D1:03:5D:74:F4:A7 Authority key identifier: D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6 Certificate issuer: /CN=A9196DE5/serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6 Certificate serial: 09FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft Manifest number: 09E5 Signing time: Mon 22 Dec 2025 19:21:10 +0000 Manifest this update: Mon 22 Dec 2025 19:21:10 +0000 Manifest next update: Mon 29 Dec 2025 19:21:10 +0000 Files and hashes: 1: 2DkrDZFbmsH00jv5hBlxQG-2GsY.crl (hash: trHTyQyf61bdc3OuegdIQIj+SWNQr8z14pS8Hdl/kLs=) 2: 013B99DA986011F08FA4AB86C4F9AE02.roa (hash: HLqIoqQkySmNyWMIIry9IC33bxoaZanVi9jRVr97ewk=) 3: 04F408A8CB6111F09D31F110C4F9AE02.roa (hash: mRhrGGACqI/fwAFCnhDqN7VI8b4Hx/imcetteQl2PYA=) 4: 08DD8180943211F09FC84074C4F9AE02.roa (hash: ip3SdK5nq+g35LDrzaKyacLzhVoTKoCaldxrPYYErIY=) 5: 5DD98D5ACA4211F0B121F133C4F9AE02.roa (hash: YQX/CyNawJpc0Zhd5mtmlFN9bvWSowyJ5hAEBJPIjm0=) 6: 92B2469A90D411F09BC0A564C4F9AE02.roa (hash: TURUoK0EqdJvH1Sny3sw0728lsP1RbLjnRY1UT/NZtA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.crl rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:21:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2558 (0x9fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196DE5, serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6 Validity Not Before: Dec 22 19:21:10 2025 GMT Not After : Dec 29 19:21:10 2025 GMT Subject: CN=69499a26-75fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:39:50:f2:a0:12:7e:51:62:dc:54:7b:a5:9b: fc:4d:00:aa:c1:f0:c8:dc:55:ff:73:e3:23:dc:67: 82:7d:c6:2b:f4:8d:45:7e:31:a2:85:fc:57:06:9b: 0a:ae:34:0d:bd:88:be:0c:b4:7d:5e:d1:fa:b0:13: e3:62:43:4b:1a:c7:3a:72:45:c2:c4:ae:e4:a6:05: 6c:d5:c3:5b:51:9d:69:52:3a:e3:aa:2b:be:9f:22: 01:f2:a1:83:49:c4:30:8b:2a:7b:0a:8d:1b:2f:27: 9d:d1:51:06:06:f3:a7:31:1c:f6:8a:4f:97:0e:a9: 03:9f:6a:da:4a:e9:c3:dc:4e:ac:83:91:8d:c2:0c: a2:b2:c8:9c:10:e9:9c:29:f9:38:bd:8b:d3:fb:af: 71:07:d5:f2:1e:07:66:2b:49:75:e9:45:f5:53:c1: 47:00:98:8b:a4:82:15:d1:3b:3d:52:d7:74:23:d1: 3e:39:a5:5d:66:59:ef:93:31:d3:ef:2b:19:fb:03: e9:87:bc:40:83:58:c6:0b:5b:f0:e7:58:5a:3f:a5: 1d:88:b3:bc:b2:dc:0a:70:05:12:86:32:dc:c0:a7: 86:b7:66:7d:ed:3c:63:5a:34:25:c1:0b:e6:7c:b8: e3:60:c9:22:60:c9:8c:48:d0:1a:89:01:f5:5b:ce: 12:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:95:85:14:AA:50:50:92:8C:E7:26:4A:65:D9:D1:03:5D:74:F4:A7 X509v3 Authority Key Identifier: keyid:D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:47:a4:c3:20:19:48:cf:93:a9:b3:12:ab:19:90:a4:37:2c: 26:2b:26:43:09:c9:d4:2a:99:ac:ea:78:ab:dc:1d:65:79:1f: 5a:31:98:9d:78:e3:6b:ec:8f:6d:8d:a6:18:b1:4f:24:9b:6e: e3:b4:5c:05:18:b4:a4:5f:26:4f:0f:f3:57:f1:8c:ec:7e:b7: 6d:15:22:9b:bd:2a:5b:0e:3d:aa:fa:7e:22:58:ee:03:9e:de: bb:59:d9:8e:9c:d8:f4:a4:73:27:b4:ea:20:28:80:cb:c9:c2: 32:4d:3b:ce:1e:1f:82:c5:a9:71:0c:75:a6:cf:e9:7a:88:ac: 1d:b1:21:a0:27:b3:90:7f:42:c0:66:30:90:4d:89:15:78:2b: b2:f4:69:00:38:c2:00:ee:1a:33:6f:03:d9:28:d6:13:39:fc: 74:b6:f0:34:09:91:ce:86:8d:6d:6f:06:be:15:73:21:84:9f: 9b:8b:cd:5b:60:4a:e8:73:22:54:7b:99:1d:50:52:26:b1:b2: e1:4e:b2:e0:e4:82:e9:2c:2d:f3:17:23:a5:d5:42:18:3d:cc: 37:84:2d:a8:8d:25:e7:c9:d3:30:4b:df:18:46:ae:bc:5f:c6: 50:17:24:55:e1:5e:a2:15:b4:12:e6:6f:1e:a1:11:d0:71:ff: 6c:09:2d:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZERTUxMTAvBgNVBAUTKEQ4MzkyQjBEOTE1QjlBQzFGNEQyM0JGOTg0MTk3MTQw NkZCNjFBQzYwHhcNMjUxMjIyMTkyMTEwWhcNMjUxMjI5MTkyMTEwWjAYMRYwFAYD VQQDDA02OTQ5OWEyNi03NWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1zlQ8qASflFi3FR7pZv8TQCqwfDI3FX/c+Mj3GeCfcYr9I1FfjGihfxXBpsK rjQNvYi+DLR9XtH6sBPjYkNLGsc6ckXCxK7kpgVs1cNbUZ1pUjrjqiu+nyIB8qGD ScQwiyp7Co0bLyed0VEGBvOnMRz2ik+XDqkDn2raSunD3E6sg5GNwgyissicEOmc Kfk4vYvT+69xB9XyHgdmK0l16UX1U8FHAJiLpIIV0Ts9Utd0I9E+OaVdZlnvkzHT 7ysZ+wPph7xAg1jGC1vw51haP6UdiLO8stwKcAUShjLcwKeGt2Z97TxjWjQlwQvm fLjjYMkiYMmMSNAaiQH1W84SdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFSVhRSq UFCSjOcmSmXZ0QNddPSnMB8GA1UdIwQYMBaAFNg5Kw2RW5rB9NI7+YQZcUBvthrG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkRFNS83MkM1QTlDQzk0 MzAxMUVBQkQ3NUY5ODNDNEY5QUUwMi8yRGtyRFpGYm1zSDAwanY1aEJseFFHLTJH c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJEa3JEWkZibXNIMDBqdjVoQmx4UUctMkdzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkRFNS83MkM1QTlDQzk0MzAxMUVBQkQ3NUY5ODNDNEY5QUUwMi8yRGtyRFpGYm1z SDAwanY1aEJseFFHLTJHc1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4R6TDIBlIz5OpsxKrGZCkNywmKyZDCcnUKpms6nir3B1leR9aMZid eONr7I9tjaYYsU8km27jtFwFGLSkXyZPD/NX8YzsfrdtFSKbvSpbDj2q+n4iWO4D nt67WdmOnNj0pHMntOogKIDLycIyTTvOHh+CxalxDHWmz+l6iKwdsSGgJ7OQf0LA ZjCQTYkVeCuy9GkAOMIA7hozbwPZKNYTOfx0tvA0CZHOho1tbwa+FXMhhJ+bi81b YErocyJUe5kdUFImsbLhTrLg5ILpLC3zFyOl1UIYPcw3hC2ojSXnydMwS98YRq68 X8ZQFyRV4V6iFbQS5m8eoRHQcf9sCS0b -----END CERTIFICATE-----Generated at Tue Dec 23 02:01:26 2025 by rpki-client