This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft File: 2lA_lyy8k6jIHflfVKLLKjjxPHc.mft (raw, json) Hash identifier: 7hq/h0nK/YeUQno3LxmmKn+KDmIu/HBHCJwdb2IFdwg= Subject key identifier: 52:49:10:11:07:D4:35:72:0C:7E:EC:5C:EC:15:81:FE:2F:2C:9D:92 Authority key identifier: DA:50:3F:97:2C:BC:93:A8:C8:1D:F9:5F:54:A2:CB:2A:38:F1:3C:77 Certificate issuer: /CN=A9144717/serialNumber=DA503F972CBC93A8C81DF95F54A2CB2A38F13C77 Certificate serial: 0A2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft Manifest number: 0A24 Signing time: Sun 28 Dec 2025 19:13:27 +0000 Manifest this update: Sun 28 Dec 2025 19:13:27 +0000 Manifest next update: Sun 04 Jan 2026 19:13:27 +0000 Files and hashes: 1: 2lA_lyy8k6jIHflfVKLLKjjxPHc.crl (hash: EWUzDw/2FlEkb68247YyOC+W2rD+zMkjHsDGTRdV5c0=) 2: F38DEBFC83E911EA993D9515C4F9AE02.roa (hash: qAQSazWUf2FePmcHd1Qj+eRlLm7Ky5QuPvw10+7M0lo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.crl rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 19:13:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2604 (0xa2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144717, serialNumber=DA503F972CBC93A8C81DF95F54A2CB2A38F13C77 Validity Not Before: Dec 28 19:13:27 2025 GMT Not After : Jan 4 19:13:27 2026 GMT Subject: CN=69518157-767a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:0a:1d:bf:fa:77:f1:aa:25:1b:31:f9:aa:c6: 61:69:f2:d8:de:a2:7b:92:7f:a9:af:d8:8f:f4:3f: d4:8e:c3:b1:88:0b:f5:1f:40:b3:95:8e:ec:f9:55: 06:1f:74:e4:22:de:96:90:fc:2b:e7:92:56:46:b8: 96:66:3b:79:c0:d9:bc:02:6e:45:a6:65:7a:21:27: 1a:92:e4:50:bb:7b:d7:44:9a:bc:1b:ea:5a:46:52: 97:1a:b3:2f:67:75:cb:ce:39:b7:29:e3:69:0c:b4: 9d:5e:53:e6:6f:5e:ea:99:a3:df:e9:79:45:d1:e6: 09:60:e0:11:68:08:c1:93:f7:5c:d5:fd:f8:c1:50: fa:5e:b7:f6:d2:6a:1f:ad:e9:db:b5:db:67:21:4a: bc:7e:6b:42:40:6e:94:51:f6:8b:e6:3b:fe:1e:1f: 04:59:6a:dc:60:13:62:f5:b5:14:e8:d5:d0:4e:42: 68:9a:ca:28:4a:cc:b2:d3:06:b2:f3:ea:65:64:23: 7a:25:11:a1:2c:1b:ff:8d:7e:b5:21:53:14:cd:d7: b1:5b:cb:03:21:f5:dd:89:25:91:7f:35:00:28:34: 20:ee:a5:f3:fe:1e:26:98:f2:24:f5:f8:93:06:bc: 25:2a:03:9b:66:e8:5a:a8:b9:2d:7f:8c:63:17:04: 93:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:49:10:11:07:D4:35:72:0C:7E:EC:5C:EC:15:81:FE:2F:2C:9D:92 X509v3 Authority Key Identifier: keyid:DA:50:3F:97:2C:BC:93:A8:C8:1D:F9:5F:54:A2:CB:2A:38:F1:3C:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:3d:4c:85:fb:63:2d:15:0b:e0:33:55:ee:63:f2:a7:8e:3e: 39:e2:5c:07:99:c7:bb:2a:e2:a6:ba:13:06:18:d0:75:04:7c: c1:a1:f3:aa:87:12:99:4e:a5:73:3e:62:e3:50:9f:81:2b:47: f4:96:95:4c:c3:b4:3c:61:0c:56:8c:d2:ed:bb:68:de:fb:c6: 6f:db:2c:2c:b8:a6:62:7c:9f:8b:c2:33:e8:c9:34:10:c4:1d: 50:63:ca:95:ba:2b:91:28:45:87:f5:67:c4:3b:56:fd:a6:6d: 2e:aa:55:ae:db:a4:11:c1:88:6f:a6:61:62:13:ce:93:58:36: 3e:d5:45:87:a3:9e:01:90:c3:52:7a:b5:78:68:20:c3:f9:b6: 24:42:6e:ff:1e:75:50:b8:13:e6:a7:6f:6e:1d:76:4d:23:a5: 1e:0d:86:ec:61:58:61:f1:cb:ad:d1:de:b3:6e:82:76:fc:9b: db:4f:c8:ea:d5:61:fc:ee:53:29:46:89:bf:c3:22:df:8a:1e: 9e:18:49:e5:b1:96:ff:a6:92:37:fc:f8:c3:d4:c6:3d:31:a3: 23:d5:04:47:ed:5b:01:2d:02:36:d1:d3:f3:b7:79:db:18:61: 83:60:4b:7d:ef:b5:1c:ba:3d:9a:71:28:85:89:4e:f2:d8:2e: 26:2c:4d:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ3MTcxMTAvBgNVBAUTKERBNTAzRjk3MkNCQzkzQThDODFERjk1RjU0QTJDQjJB MzhGMTNDNzcwHhcNMjUxMjI4MTkxMzI3WhcNMjYwMTA0MTkxMzI3WjAYMRYwFAYD VQQDDA02OTUxODE1Ny03NjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlQodv/p38aolGzH5qsZhafLY3qJ7kn+pr9iP9D/UjsOxiAv1H0CzlY7s+VUG H3TkIt6WkPwr55JWRriWZjt5wNm8Am5FpmV6IScakuRQu3vXRJq8G+paRlKXGrMv Z3XLzjm3KeNpDLSdXlPmb17qmaPf6XlF0eYJYOARaAjBk/dc1f34wVD6Xrf20mof renbtdtnIUq8fmtCQG6UUfaL5jv+Hh8EWWrcYBNi9bUU6NXQTkJomsooSsyy0way 8+plZCN6JRGhLBv/jX61IVMUzdexW8sDIfXdiSWRfzUAKDQg7qXz/h4mmPIk9fiT BrwlKgObZuhaqLktf4xjFwSTKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFJJEBEH 1DVyDH7sXOwVgf4vLJ2SMB8GA1UdIwQYMBaAFNpQP5csvJOoyB35X1Siyyo48Tx3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDcxNy8zOTg4OTAwMDgz RTgxMUVBQjc3MDA1MTNDNEY5QUUwMi8ybEFfbHl5OGs2aklIZmxmVktMTEtqanhQ SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsQV9seXk4azZqSUhmbGZWS0xMS2pqeFBIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDcxNy8zOTg4OTAwMDgzRTgxMUVBQjc3MDA1MTNDNEY5QUUwMi8ybEFfbHl5OGs2 aklIZmxmVktMTEtqanhQSGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfPUyF+2MtFQvgM1XuY/Knjj454lwHmce7KuKmuhMGGNB1BHzBofOq hxKZTqVzPmLjUJ+BK0f0lpVMw7Q8YQxWjNLtu2je+8Zv2ywsuKZifJ+LwjPoyTQQ xB1QY8qVuiuRKEWH9WfEO1b9pm0uqlWu26QRwYhvpmFiE86TWDY+1UWHo54BkMNS erV4aCDD+bYkQm7/HnVQuBPmp29uHXZNI6UeDYbsYVhh8cut0d6zboJ2/JvbT8jq 1WH87lMpRom/wyLfih6eGEnlsZb/ppI3/PjD1MY9MaMj1QRH7VsBLQI20dPzt3nb GGGDYEt977Ucuj2acSiFiU7y2C4mLE3L -----END CERTIFICATE-----Generated at Mon Dec 29 21:43:10 2025 by rpki-client