This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft File: 2h2yzTH0VPaVYdhmXck--BLzl7A.mft (raw, json) Hash identifier: JsV6RIPxZKj6bBR7kNuk0ALDA3El3PXer3NWkxqD568= Subject key identifier: 96:F7:63:17:93:24:81:65:96:A0:AA:88:56:74:8C:F2:8D:1B:61:D4 Authority key identifier: DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 Certificate issuer: /CN=A919A7CA/serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Certificate serial: 0194 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft Manifest number: 018A Signing time: Sat 13 Dec 2025 02:55:46 +0000 Manifest this update: Sat 13 Dec 2025 02:55:45 +0000 Manifest next update: Sat 20 Dec 2025 02:55:45 +0000 Files and hashes: 1: 2h2yzTH0VPaVYdhmXck--BLzl7A.crl (hash: kr2NxeaA4CiOvz715SVb8UwLVe1PuU13lJyDjQbBuFI=) 2: E71AB92A7F7D11EE8C183162C4F9AE02.roa (hash: Dsh7pIT1SQfv6ivkNmsm2ZCHRytBDFAmEgjeRNzC7do=) 3: 4317395081E611EE9EFE132BC4F9AE02.roa (hash: tQp/nzqfCovKInVuREO99dY4qu3efR3x/X9HpDvqlY0=) 4: 730B201A81E911EEAEFE7735C4F9AE02.roa (hash: s0CFqQaJE4zfLQbz4CeHwWhJkg8L6CDsaxGgDdisTeI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 02:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 404 (0x194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A7CA, serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Validity Not Before: Dec 13 02:55:45 2025 GMT Not After : Dec 20 02:55:45 2025 GMT Subject: CN=693cd5b2-63e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:df:23:a7:74:b7:98:db:46:7c:39:1f:0b:9e: de:31:df:90:0f:6f:2a:73:b9:9e:1b:68:f4:8a:97: 82:2b:f0:a4:86:34:3b:aa:23:cb:ba:7b:9b:b8:82: 46:8d:4a:cd:f6:41:62:8a:a0:07:6c:68:ca:8a:bd: 32:31:77:2c:d2:76:d5:72:96:e4:c8:b1:e9:47:3a: 10:12:fd:82:11:e3:87:16:7b:c3:56:59:f5:1d:23: 4c:16:b6:e8:ae:32:c2:96:b5:d3:f7:1f:58:bd:dd: b0:29:80:4a:50:8b:e5:a2:5a:7d:a5:03:6c:32:40: c8:d7:c2:1f:b9:2f:07:a1:10:1a:2f:a5:79:99:6a: a7:b4:77:b6:2f:b8:79:79:7c:49:f6:a2:6a:02:6a: 27:4a:88:c1:e5:c4:65:05:a3:92:ba:c2:9c:98:c3: 47:31:54:11:e0:ee:ee:ee:ec:5b:cd:15:53:b2:f8: 26:ac:f1:2b:3c:72:1e:db:db:63:f6:e5:06:f0:d2: 54:71:5b:21:a0:97:7d:b6:22:21:a0:69:34:86:7b: ac:de:cd:41:21:f0:9d:68:59:a7:44:bb:d5:5b:20: f5:3c:2e:48:1f:a8:44:2b:aa:bb:6f:50:16:e6:cf: 77:32:17:94:3d:59:44:55:87:44:ee:0a:b4:ca:b3: 5c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:F7:63:17:93:24:81:65:96:A0:AA:88:56:74:8C:F2:8D:1B:61:D4 X509v3 Authority Key Identifier: keyid:DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:29:0f:c6:57:4c:23:6c:cc:b9:04:94:53:b1:9d:b9:83:bf: d1:39:34:b8:21:2f:b0:93:c2:db:0a:f0:9d:6e:02:45:47:9d: 7a:6f:74:47:ed:77:c9:93:14:e4:27:a7:db:89:64:c4:cb:cf: 59:0e:00:d6:a9:68:4c:1f:b2:85:ef:16:62:68:c4:19:01:63: 90:b3:33:66:3e:90:89:28:6a:34:9c:60:d7:89:86:39:df:90: 63:6f:90:f4:3d:d4:7f:3e:b0:a9:e4:1f:1b:e8:6d:38:a0:45: 59:6f:d3:b7:78:dd:0b:09:8a:fb:e0:2e:00:11:34:a2:10:0e: 92:40:36:70:dd:96:47:62:57:59:ff:4e:b0:0d:a4:27:fd:60: c0:fd:8f:4e:e4:31:98:9a:5d:7a:a3:0d:dc:9b:4f:21:56:00: f7:80:de:00:9b:8d:a3:88:b5:25:79:e2:40:8b:0e:34:d5:66: 70:03:e8:17:cd:21:c9:68:06:40:42:93:09:da:e1:5e:9d:75: e5:c3:5d:db:05:e6:13:88:22:2a:34:21:54:80:fe:08:67:6c: 2e:65:5d:46:2f:a2:a4:b8:62:63:dd:ec:d1:42:be:66:8a:a2: a7:07:22:3e:ec:6c:ca:c5:fc:4f:8e:54:43:b3:77:f4:28:34: 66:6e:83:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE3Q0ExMTAvBgNVBAUTKERBMURCMkNEMzFGNDU0RjY5NTYxRDg2NjVEQzkzRUY4 MTJGMzk3QjAwHhcNMjUxMjEzMDI1NTQ1WhcNMjUxMjIwMDI1NTQ1WjAYMRYwFAYD VQQDDA02OTNjZDViMi02M2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoN8jp3S3mNtGfDkfC57eMd+QD28qc7meG2j0ipeCK/CkhjQ7qiPLunubuIJG jUrN9kFiiqAHbGjKir0yMXcs0nbVcpbkyLHpRzoQEv2CEeOHFnvDVln1HSNMFrbo rjLClrXT9x9Yvd2wKYBKUIvlolp9pQNsMkDI18IfuS8HoRAaL6V5mWqntHe2L7h5 eXxJ9qJqAmonSojB5cRlBaOSusKcmMNHMVQR4O7u7uxbzRVTsvgmrPErPHIe29tj 9uUG8NJUcVshoJd9tiIhoGk0hnus3s1BIfCdaFmnRLvVWyD1PC5IH6hEK6q7b1AW 5s93MheUPVlEVYdE7gq0yrNcowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJb3YxeT JIFllqCqiFZ0jPKNG2HUMB8GA1UdIwQYMBaAFNodss0x9FT2lWHYZl3JPvgS85ew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTdDQS80Q0Y3RjE1ODdF QjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQYVZZZGhtWGNrLS1CTHps N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJoMnl6VEgwVlBhVllkaG1YY2stLUJMemw3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTdDQS80Q0Y3RjE1ODdFQjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQ YVZZZGhtWGNrLS1CTHpsN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8KQ/GV0wjbMy5BJRTsZ25g7/ROTS4IS+wk8LbCvCdbgJFR516b3RH 7XfJkxTkJ6fbiWTEy89ZDgDWqWhMH7KF7xZiaMQZAWOQszNmPpCJKGo0nGDXiYY5 35Bjb5D0PdR/PrCp5B8b6G04oEVZb9O3eN0LCYr74C4AETSiEA6SQDZw3ZZHYldZ /06wDaQn/WDA/Y9O5DGYml16ow3cm08hVgD3gN4Am42jiLUleeJAiw401WZwA+gX zSHJaAZAQpMJ2uFenXXlw13bBeYTiCIqNCFUgP4IZ2wuZV1GL6KkuGJj3ezRQr5m iqKnByI+7GzKxfxPjlRDs3f0KDRmboMY -----END CERTIFICATE-----Generated at Sat Dec 13 19:18:56 2025 by rpki-client