This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft File: N2EhKhZwpXGatx-iA7kuxobyEXc.mft (raw, json) Hash identifier: Qg6rYbXGS7L1nIyLYBIrjd2uFb0k67NYfuDkbbnA8zo= Subject key identifier: E1:AD:03:E6:83:B1:4D:9C:1C:78:8A:2D:DE:5E:0C:A3:F8:21:23:CC Authority key identifier: 37:61:21:2A:16:70:A5:71:9A:B7:1F:A2:03:B9:2E:C6:86:F2:11:77 Certificate issuer: /CN=A9142037/serialNumber=3761212A1670A5719AB71FA203B92EC686F21177 Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2EhKhZwpXGatx-iA7kuxobyEXc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft Manifest number: A7 Signing time: Thu 25 Dec 2025 05:14:14 +0000 Manifest this update: Thu 25 Dec 2025 05:14:13 +0000 Manifest next update: Thu 01 Jan 2026 05:14:13 +0000 Files and hashes: 1: N2EhKhZwpXGatx-iA7kuxobyEXc.crl (hash: VwJ5zrXIpnPVffoPspo2ahHPlQu4E0u5LM3CuL1OalE=) 2: 191B6DA2E41811EF8E3F233AC4F9AE02.roa (hash: wy+E0shlE0SgKblGT9mkubbsdEgdl8xDfG6j2pKg5CM=) 3: FAEA8E38E41911EFA96DA35FC4F9AE02.roa (hash: rUHAonKHyKGTHsXqPvAHU77iis+UDkigScpxL6u+DWI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.crl rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2EhKhZwpXGatx-iA7kuxobyEXc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 Jan 2026 05:14:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142037, serialNumber=3761212A1670A5719AB71FA203B92EC686F21177 Validity Not Before: Dec 25 05:14:13 2025 GMT Not After : Jan 1 05:14:13 2026 GMT Subject: CN=694cc825-e4c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:1f:94:e9:d3:45:7a:53:2c:d9:76:1a:b7:45: ef:6b:26:5c:c1:8c:9f:ee:52:b5:d1:e2:52:b0:72: 61:b2:86:0c:a9:22:cf:77:5a:88:b0:54:b4:d5:79: f6:39:1e:43:08:d8:c6:3a:27:2f:f0:d1:ea:e0:4d: 49:79:8e:94:28:01:91:77:13:ac:d8:20:d6:fb:ad: bc:2b:bf:ad:06:98:23:86:0f:27:d3:ff:2d:b6:c4: 21:fd:51:15:29:78:67:64:09:5a:ab:0e:c1:d7:9b: 4f:13:62:56:e4:2f:45:6f:3b:75:62:36:e0:11:81: 18:b8:fe:26:14:fc:17:00:bd:98:29:ea:a3:c7:58: 12:98:bf:93:fd:a1:05:e1:65:15:61:7b:de:9e:d8: 10:86:6e:4a:c5:98:c0:1b:2e:7a:11:b2:50:65:c6: b0:76:b2:ce:12:fa:6c:31:ce:1b:ac:3b:8b:af:35: f2:13:59:53:2e:57:82:11:bd:09:9c:e1:8c:2b:70: 1d:7c:05:2e:9f:08:fb:6e:b0:a1:2d:c9:e4:f7:57: a9:52:e0:13:85:1f:0d:28:e1:33:3d:8d:e6:db:c3: a6:a4:b2:cc:75:58:ff:28:08:82:36:57:53:b2:a6: 57:d3:11:8d:c9:24:e6:e0:fa:5c:e0:8d:15:24:64: 92:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:AD:03:E6:83:B1:4D:9C:1C:78:8A:2D:DE:5E:0C:A3:F8:21:23:CC X509v3 Authority Key Identifier: keyid:37:61:21:2A:16:70:A5:71:9A:B7:1F:A2:03:B9:2E:C6:86:F2:11:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2EhKhZwpXGatx-iA7kuxobyEXc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:ef:eb:fd:0a:4e:ed:88:b3:0b:c5:c4:73:69:da:e6:6f:7c: d3:c7:78:f0:bf:0b:18:87:88:e7:77:6d:8a:79:45:67:a5:3d: bc:20:94:55:4b:66:ed:41:db:d6:77:89:ea:07:b9:f3:52:6b: 23:3e:ad:f0:03:41:0a:e0:8f:6e:91:87:45:a2:9a:c2:17:f6: 71:e8:54:49:cd:76:5f:94:86:34:dc:9c:cb:24:92:52:f4:95: c7:60:f6:1b:c4:e8:a4:4d:e0:12:62:4f:4e:9a:26:c9:d9:a2: 6c:aa:96:f5:1b:c7:3a:43:21:b1:d7:b9:0f:df:d1:19:8c:e7: 45:64:04:b2:09:26:70:dc:38:ed:a1:be:94:22:cf:7d:2c:a7: 58:e7:75:ed:23:30:20:09:9d:5e:b0:e7:57:c0:9c:80:71:84: 59:55:e2:7f:35:63:1d:d7:a1:67:73:cf:1d:cd:b2:c8:14:80: ab:fc:66:ce:89:f1:03:cb:ae:a6:a4:e4:af:21:6d:91:54:d2: 93:a2:36:90:2c:be:f1:9c:c6:a2:38:cb:80:7d:b6:a2:22:b8: 6e:a3:af:a9:f3:6d:21:9a:7e:5c:dd:11:a3:39:7f:d3:89:bb: 8f:e7:65:53:33:18:11:49:c7:05:75:17:28:99:77:04:01:e2: 24:5b:bd:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIwMzcxMTAvBgNVBAUTKDM3NjEyMTJBMTY3MEE1NzE5QUI3MUZBMjAzQjkyRUM2 ODZGMjExNzcwHhcNMjUxMjI1MDUxNDEzWhcNMjYwMTAxMDUxNDEzWjAYMRYwFAYD VQQDDA02OTRjYzgyNS1lNGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzh+U6dNFelMs2XYat0XvayZcwYyf7lK10eJSsHJhsoYMqSLPd1qIsFS01Xn2 OR5DCNjGOicv8NHq4E1JeY6UKAGRdxOs2CDW+628K7+tBpgjhg8n0/8ttsQh/VEV KXhnZAlaqw7B15tPE2JW5C9Fbzt1YjbgEYEYuP4mFPwXAL2YKeqjx1gSmL+T/aEF 4WUVYXventgQhm5KxZjAGy56EbJQZcawdrLOEvpsMc4brDuLrzXyE1lTLleCEb0J nOGMK3AdfAUunwj7brChLcnk91epUuAThR8NKOEzPY3m28OmpLLMdVj/KAiCNldT sqZX0xGNySTm4Ppc4I0VJGSSfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOGtA+aD sU2cHHiKLd5eDKP4ISPMMB8GA1UdIwQYMBaAFDdhISoWcKVxmrcfogO5LsaG8hF3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjAzNy81QzA1QzBDOEU0 MTcxMUVGOTZFMkZGMzhDNEY5QUUwMi9OMkVoS2had3BYR2F0eC1pQTdrdXhvYnlF WGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL04yRWhLaFp3cFhHYXR4LWlBN2t1eG9ieUVYYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjAzNy81QzA1QzBDOEU0MTcxMUVGOTZFMkZGMzhDNEY5QUUwMi9OMkVoS2had3BY R2F0eC1pQTdrdXhvYnlFWGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB17+v9Ck7tiLMLxcRzadrmb3zTx3jwvwsYh4jnd22KeUVnpT28IJRV S2btQdvWd4nqB7nzUmsjPq3wA0EK4I9ukYdFoprCF/Zx6FRJzXZflIY03JzLJJJS 9JXHYPYbxOikTeASYk9OmibJ2aJsqpb1G8c6QyGx17kP39EZjOdFZASyCSZw3Djt ob6UIs99LKdY53XtIzAgCZ1esOdXwJyAcYRZVeJ/NWMd16Fnc88dzbLIFICr/GbO ifEDy66mpOSvIW2RVNKTojaQLL7xnMaiOMuAfbaiIrhuo6+p820hmn5c3RGjOX/T ibuP52VTMxgRSccFdRcomXcEAeIkW70k -----END CERTIFICATE-----Generated at Thu Dec 25 12:47:40 2025 by rpki-client