This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft File: 2UW2DwCc3xVcQp1Aha62z-BrzgA.mft (raw, json) Hash identifier: PYexVhhMbSgSOakgOtph7SHz0HQagXLauKEUh93na9g= Subject key identifier: CE:EF:92:AA:43:11:C7:F3:1E:95:81:1C:35:20:AA:96:D0:E7:AB:2F Authority key identifier: D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 Certificate issuer: /CN=A9149CEF/serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Certificate serial: 0531 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft Manifest number: 0527 Signing time: Sun 04 Jan 2026 22:37:51 +0000 Manifest this update: Sun 04 Jan 2026 22:37:51 +0000 Manifest next update: Sun 11 Jan 2026 22:37:51 +0000 Files and hashes: 1: 2UW2DwCc3xVcQp1Aha62z-BrzgA.crl (hash: BNbLP50boF0S/rINiTcS0KkJnmyiYJ2uPCibVXSXxYc=) 2: AF22E83C2C1711EC817C5912C4F9AE02.roa (hash: HFOpeRCt7KhrBfeMokpcxjR3KWcuUKe5Td59DEe/ljE=) 3: AFAC764C2C1711EC817C5912C4F9AE02.roa (hash: 4OzF15EHWUJWQROMnU+Ow7V0ACuwuCPbuqKLd0rV0bw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 Jan 2026 22:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1329 (0x531) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149CEF, serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Validity Not Before: Jan 4 22:37:51 2026 GMT Not After : Jan 11 22:37:51 2026 GMT Subject: CN=695aebbf-15e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:46:df:ca:2e:e5:85:e3:7e:6b:fb:16:df:2f: 3a:fd:5a:e3:8c:04:4f:41:d8:fe:1d:11:e9:06:4e: 12:f9:fc:7d:55:a8:01:d9:cc:cb:ec:9b:1d:d3:65: d5:14:37:7f:ea:d0:7b:f9:b8:40:57:a8:0f:c6:7d: 68:06:be:b1:fe:d5:06:2a:2d:17:23:e9:a7:e6:14: d8:e1:eb:46:a8:fe:2a:1c:72:0e:0f:c7:0b:74:26: 14:1c:92:ad:42:a6:4b:e4:c9:82:f1:8f:69:04:85: ab:60:48:c9:84:fe:f7:ca:f8:b9:36:4b:01:b8:b6: 7f:3d:27:89:af:12:d8:b6:03:8d:a9:ce:5a:b8:2e: 18:94:47:57:25:f5:d6:f4:db:61:b2:41:91:9e:3a: e1:c5:60:eb:12:87:7a:96:66:c6:44:6c:fb:f4:38: 0c:7f:7f:44:d4:c3:a6:c7:13:e7:9e:25:c0:f0:94: 1e:7d:fc:f8:44:69:79:c3:a6:eb:fa:ff:ae:2a:39: bc:88:07:53:ac:4d:24:3d:ec:f7:50:a1:15:c8:f5: 75:fa:99:f2:32:7c:6f:f7:b7:56:1d:b7:e1:9a:df: 8f:b2:dc:73:ac:40:be:2b:6a:b0:56:52:20:93:6f: fa:53:14:43:74:b2:24:b1:93:18:db:4a:3e:33:fe: 4a:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:EF:92:AA:43:11:C7:F3:1E:95:81:1C:35:20:AA:96:D0:E7:AB:2F X509v3 Authority Key Identifier: keyid:D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:f5:11:86:f7:ca:e8:98:36:87:81:5d:8d:4a:33:63:55:a0: 1f:cc:df:b8:98:8d:16:fb:62:85:ad:18:57:3c:74:7d:76:35: 4c:49:1e:4b:39:6a:25:a0:33:d5:28:b7:f8:8e:89:d5:fc:b8: 68:33:a3:b6:44:06:39:2b:b3:e7:4c:c5:d1:49:d8:b0:7f:86: a7:a3:e1:ca:7d:1d:e4:9b:2f:27:a8:bf:dd:6a:65:22:bc:b5: 1e:23:49:57:00:2c:58:b4:75:1e:e1:06:73:5d:5b:7f:95:8b: 14:5c:8d:b6:66:97:44:db:55:48:b0:55:bf:69:2b:e3:3e:43: 04:5e:74:03:77:04:c8:a5:a4:37:30:41:34:18:36:31:68:ca: 43:42:3b:90:7d:8f:a5:ce:cb:89:95:05:ab:7c:fb:f6:16:83: a4:d3:bb:1d:f1:b1:89:2f:95:9a:d6:79:93:ca:f9:6f:ca:85: 73:1f:2d:ed:6e:b8:ff:ae:5f:51:b5:ea:55:42:ca:59:47:9f: 25:57:f6:e6:79:db:37:65:1e:67:e1:38:b7:27:8a:c7:6a:2b: 8b:c0:5c:cc:7d:e0:27:b6:bf:bc:75:9f:91:e3:37:d4:81:9f: 8e:7a:b2:59:18:fb:84:e1:40:a5:73:98:dc:4e:fa:cd:71:f2: 35:26:78:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDRUYxMTAvBgNVBAUTKEQ5NDVCNjBGMDA5Q0RGMTU1QzQyOUQ0MDg1QUVCNkNG RTA2QkNFMDAwHhcNMjYwMTA0MjIzNzUxWhcNMjYwMTExMjIzNzUxWjAYMRYwFAYD VQQDDA02OTVhZWJiZi0xNWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzkbfyi7lheN+a/sW3y86/VrjjARPQdj+HRHpBk4S+fx9VagB2czL7Jsd02XV FDd/6tB7+bhAV6gPxn1oBr6x/tUGKi0XI+mn5hTY4etGqP4qHHIOD8cLdCYUHJKt QqZL5MmC8Y9pBIWrYEjJhP73yvi5NksBuLZ/PSeJrxLYtgONqc5auC4YlEdXJfXW 9NthskGRnjrhxWDrEod6lmbGRGz79DgMf39E1MOmxxPnniXA8JQeffz4RGl5w6br +v+uKjm8iAdTrE0kPez3UKEVyPV1+pnyMnxv97dWHbfhmt+PstxzrEC+K2qwVlIg k2/6UxRDdLIksZMY20o+M/5K9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM7vkqpD EcfzHpWBHDUgqpbQ56svMB8GA1UdIwQYMBaAFNlFtg8AnN8VXEKdQIWuts/ga84A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUNFRi9DNDAxOUQyNDJD MTMxMUVDQjQ1ODA4NDJDNEY5QUUwMi8yVVcyRHdDYzN4VmNRcDFBaGE2MnotQnJ6 Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJVVzJEd0NjM3hWY1FwMUFoYTYyei1CcnpnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUNFRi9DNDAxOUQyNDJDMTMxMUVDQjQ1ODA4NDJDNEY5QUUwMi8yVVcyRHdDYzN4 VmNRcDFBaGE2MnotQnJ6Z0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAv9RGG98romDaHgV2NSjNjVaAfzN+4mI0W+2KFrRhXPHR9djVMSR5L OWoloDPVKLf4jonV/LhoM6O2RAY5K7PnTMXRSdiwf4ano+HKfR3kmy8nqL/damUi vLUeI0lXACxYtHUe4QZzXVt/lYsUXI22ZpdE21VIsFW/aSvjPkMEXnQDdwTIpaQ3 MEE0GDYxaMpDQjuQfY+lzsuJlQWrfPv2FoOk07sd8bGJL5Wa1nmTyvlvyoVzHy3t brj/rl9RtepVQspZR58lV/bmeds3ZR5n4Ti3J4rHaiuLwFzMfeAntr+8dZ+R4zfU gZ+OerJZGPuE4UClc5jcTvrNcfI1Jnh/ -----END CERTIFICATE-----Generated at Mon Jan 5 03:04:45 2026 by rpki-client