This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft File: 2lexkcVbszGevZGC3A1Oau8-Ddg.mft (raw, json) Hash identifier: SgmoztstfTsk26sdGPDvOyUhgTGE75ymI9ElnNyhwR4= Subject key identifier: D8:0D:14:01:F0:ED:B9:F8:CF:5E:C0:02:8A:3B:9A:90:EA:65:6E:EC Authority key identifier: DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 Certificate issuer: /CN=A912A31E/serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Certificate serial: 01F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft Manifest number: 01F1 Signing time: Fri 19 Dec 2025 01:46:36 +0000 Manifest this update: Fri 19 Dec 2025 01:46:36 +0000 Manifest next update: Fri 26 Dec 2025 01:46:36 +0000 Files and hashes: 1: 2lexkcVbszGevZGC3A1Oau8-Ddg.crl (hash: XLofSUQN4wFkvSXcTYbY4igkwCjKKHU8dNoAu0Mn6/Y=) 2: 5181F33CE8C011EDADA54A23C4F9AE02.roa (hash: Rkwm42Vb05Pye3RGHBOFC1rkc6+xEeMKra2X3IcXiEc=) 3: 7DA38A8E727011F08682A20EC4F9AE02.roa (hash: Wwngk0PhTjjlaVWZbm+erGU8S4svzLGsMCsoXoSIiNE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 503 (0x1f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A31E, serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Validity Not Before: Dec 19 01:46:36 2025 GMT Not After : Dec 26 01:46:36 2025 GMT Subject: CN=6944ae7c-1805 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:57:c9:9c:fd:65:76:d5:48:7b:af:7b:22:0a: b1:07:b1:58:56:33:50:66:bf:4c:b3:fd:ac:bd:14: bd:a2:1c:0d:79:c8:57:e5:a3:6f:a6:04:d8:41:b0: f9:4f:92:0e:ef:ca:4d:b4:06:92:9b:0d:69:62:f1: 46:47:e0:cb:df:10:b5:c7:a6:b1:6f:94:c6:cd:ff: db:37:93:7e:9d:46:cc:c6:99:7c:08:e8:f9:01:ea: cf:97:65:3e:17:f0:dd:01:6d:33:03:89:e8:a1:32: cd:5f:1d:d0:6d:fe:a8:22:c2:13:c7:8d:7e:f9:95: 17:67:67:59:1d:ba:e8:86:89:30:a8:f3:30:2a:dc: 81:ac:bd:8a:76:2b:4e:1c:09:3a:e6:c9:60:24:4d: 78:ea:09:06:88:84:2c:f0:1d:e1:a2:6c:0a:bc:03: 8f:e4:23:5d:89:3c:c0:db:cf:bf:a6:e3:54:62:c6: 9c:bf:a2:0e:9d:f0:ff:95:3d:2f:b2:bd:b4:dc:9c: 7a:68:77:7c:1d:75:82:3e:01:70:24:97:62:d2:af: 70:2d:98:ef:22:24:83:6d:dd:cf:50:0b:89:eb:30: 07:38:f2:a2:0a:81:0a:c1:f5:41:f2:2c:c1:f5:16: ef:65:fc:56:3a:39:8b:94:41:e7:65:9d:e6:67:13: d4:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:0D:14:01:F0:ED:B9:F8:CF:5E:C0:02:8A:3B:9A:90:EA:65:6E:EC X509v3 Authority Key Identifier: keyid:DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:05:aa:8d:19:44:47:a8:d8:07:fe:ad:3b:4c:00:de:96:4d: 1e:02:a4:e9:e6:0f:6a:34:19:f5:51:13:41:db:f2:22:27:d9: a6:5d:69:e3:7e:4b:5c:15:82:e3:67:ca:d5:48:a7:05:f0:2d: 1a:67:3e:85:8d:ee:33:21:88:06:b0:8c:39:6f:54:18:ec:3c: 07:40:02:41:b4:1d:77:97:53:89:5c:26:4f:ac:2c:51:91:0e: 74:98:71:55:0a:ce:be:8b:43:fe:a8:74:5a:c0:46:41:39:18: f6:88:ad:03:80:c7:09:36:01:91:1e:ee:97:38:15:e8:ad:fb: 20:a7:e2:fd:8a:20:9a:97:7b:d9:1f:7d:6b:d7:2a:93:3c:5c: 48:68:c1:e6:b4:18:68:6a:bc:38:e4:a5:de:47:65:43:2d:b2: 8d:dc:dd:8d:d6:e6:c3:67:52:e7:ca:b9:90:39:7d:4c:4b:1a: 9f:ab:1e:05:5f:75:5c:c7:e4:6e:95:d1:ee:eb:d3:e8:fb:96: 96:9e:bb:32:a8:b9:3d:4b:d8:be:58:01:64:6c:74:56:b7:5b: 58:a0:58:8d:0f:c8:70:a2:97:5a:85:b0:83:19:b4:b0:41:bb: 21:8d:b2:68:dd:33:b3:9a:b2:ca:49:52:7b:49:cd:a6:a0:25: 0d:58:dc:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzMUUxMTAvBgNVBAUTKERBNTdCMTkxQzU1QkIzMzE5RUJEOTE4MkRDMEQ0RTZB RUYzRTBERDgwHhcNMjUxMjE5MDE0NjM2WhcNMjUxMjI2MDE0NjM2WjAYMRYwFAYD VQQDDA02OTQ0YWU3Yy0xODA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAulfJnP1ldtVIe697IgqxB7FYVjNQZr9Ms/2svRS9ohwNechX5aNvpgTYQbD5 T5IO78pNtAaSmw1pYvFGR+DL3xC1x6axb5TGzf/bN5N+nUbMxpl8COj5AerPl2U+ F/DdAW0zA4nooTLNXx3Qbf6oIsITx41++ZUXZ2dZHbrohokwqPMwKtyBrL2KditO HAk65slgJE146gkGiIQs8B3homwKvAOP5CNdiTzA28+/puNUYsacv6IOnfD/lT0v sr203Jx6aHd8HXWCPgFwJJdi0q9wLZjvIiSDbd3PUAuJ6zAHOPKiCoEKwfVB8izB 9RbvZfxWOjmLlEHnZZ3mZxPUYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNgNFAHw 7bn4z17AAoo7mpDqZW7sMB8GA1UdIwQYMBaAFNpXsZHFW7Mxnr2RgtwNTmrvPg3Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTMxRS9DOEE0QzRFNEU4 QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6R2V2WkdDM0ExT2F1OC1E ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZXhrY1Zic3pHZXZaR0MzQTFPYXU4LURkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTMxRS9DOEE0QzRFNEU4QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6 R2V2WkdDM0ExT2F1OC1EZGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKBaqNGURHqNgH/q07TADelk0eAqTp5g9qNBn1URNB2/IiJ9mmXWnj fktcFYLjZ8rVSKcF8C0aZz6Fje4zIYgGsIw5b1QY7DwHQAJBtB13l1OJXCZPrCxR kQ50mHFVCs6+i0P+qHRawEZBORj2iK0DgMcJNgGRHu6XOBXorfsgp+L9iiCal3vZ H31r1yqTPFxIaMHmtBhoarw45KXeR2VDLbKN3N2N1ubDZ1LnyrmQOX1MSxqfqx4F X3Vcx+RuldHu69Po+5aWnrsyqLk9S9i+WAFkbHRWt1tYoFiND8hwopdahbCDGbSw QbshjbJo3TOzmrLKSVJ7Sc2moCUNWNwx -----END CERTIFICATE-----Generated at Fri Dec 19 05:24:16 2025 by rpki-client