This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft File: 2HXmPHNQjdifas3MBgFEoIwIZtw.mft (raw, json) Hash identifier: YydO9xp5WFxGuUtLKAONRy/xPKw/ZFoukPuwb5zlw7g= Subject key identifier: E2:C5:FD:1A:8A:7D:D0:E2:C7:B5:AD:D4:FE:2A:7D:34:96:1D:D9:54 Authority key identifier: D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC Certificate issuer: /CN=A914E950/serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Certificate serial: 0429 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft Manifest number: 0424 Signing time: Thu 18 Dec 2025 23:39:56 +0000 Manifest this update: Thu 18 Dec 2025 23:39:56 +0000 Manifest next update: Thu 25 Dec 2025 23:39:56 +0000 Files and hashes: 1: 2HXmPHNQjdifas3MBgFEoIwIZtw.crl (hash: 7tvAOf15RKNG4RJbIfK85HvTra5HIEEH0XkBX6IDp2A=) 2: 6199B5668DE011ECB9F9C06EC4F9AE02.roa (hash: FDWt9q3QAp1ofI7rrAESMwGQ2CDqFlVea3/sU3p0ycs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:39:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1065 (0x429) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E950, serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Validity Not Before: Dec 18 23:39:56 2025 GMT Not After : Dec 25 23:39:56 2025 GMT Subject: CN=694490cc-07a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:1e:49:2e:d7:4b:86:0c:5c:9b:d4:38:82:97: f7:ac:ff:1f:3e:43:d3:86:99:04:4f:39:d6:58:bc: f4:68:6c:c7:67:ca:84:20:84:bf:95:aa:c0:5c:06: 68:72:71:01:c7:0c:d3:dc:78:32:bb:01:aa:77:75: e2:66:07:90:e1:95:ab:6b:1a:3c:50:41:bf:5e:29: c3:f2:e5:7b:f9:5e:ab:1c:05:18:be:c9:e6:bb:11: 93:7d:51:76:f0:91:d4:46:30:da:fe:68:f1:04:03: c2:a1:49:77:a8:ef:0c:32:f7:b3:16:5c:6d:ae:db: 7c:12:94:ec:a7:8a:7c:8e:33:d3:b1:8f:fc:68:56: 44:44:77:2d:1a:81:a0:7a:b2:6e:cd:33:52:33:77: 3b:41:07:01:44:29:2f:9c:05:48:1a:c5:2a:41:07: bd:24:a4:31:67:70:4e:86:13:84:89:94:2e:2e:7b: 06:80:7d:30:9f:de:a8:26:d8:f9:3f:59:2f:9d:ab: 59:b0:41:55:6e:1b:8b:37:bc:c9:c8:70:82:9b:df: a7:d4:34:77:56:0c:ec:47:f6:0a:79:a7:c0:64:c4: 41:87:9b:33:fa:bf:b4:0c:a0:dc:7e:00:68:c0:99: f6:4a:57:9c:62:47:68:b5:16:63:f4:b3:99:07:ab: c8:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:C5:FD:1A:8A:7D:D0:E2:C7:B5:AD:D4:FE:2A:7D:34:96:1D:D9:54 X509v3 Authority Key Identifier: keyid:D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:55:71:7c:fe:f3:92:95:bf:f3:b6:fe:55:c8:c1:39:67:c1: 37:31:a6:bd:f9:f7:47:cd:b6:d4:42:3b:c0:73:e0:de:db:85: 34:07:5d:ba:3d:ac:4a:78:64:a9:f9:b2:72:4d:20:79:19:69: 08:d2:eb:bb:ee:7a:79:f2:49:27:05:8e:cd:58:15:7a:a6:20: 9c:31:e7:91:a6:56:25:ea:ec:ae:cb:4b:89:b4:02:58:9d:df: 7a:99:3a:b6:6e:56:f1:09:b5:38:5e:c4:92:32:25:77:f8:20: 81:4b:c2:9e:f2:2e:20:04:91:e8:aa:a9:59:a7:61:88:de:d6: 6a:f1:37:d8:9f:10:1d:f3:47:fe:4f:c6:a6:b6:ed:6e:4d:57: 82:af:92:7e:4a:57:bc:92:29:e3:a6:a8:0f:91:a5:4a:9f:e5: ac:f3:51:62:12:f6:7d:d0:9b:20:14:65:07:fd:35:ac:a7:1f: 5e:8c:18:bf:3a:70:e4:03:ba:31:f6:f2:86:e8:5d:69:5a:33: 70:ca:73:0c:ae:d0:05:0b:d5:6e:18:3b:d9:9f:ca:c5:5d:00: ad:ea:f7:8c:62:e8:18:2a:26:2b:c1:57:b1:75:ca:4a:d9:34: 08:0c:c5:5d:54:63:68:aa:18:1c:07:ce:17:3f:11:62:58:87: a6:f8:1d:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5NTAxMTAvBgNVBAUTKEQ4NzVFNjNDNzM1MDhERDg5RjZBQ0RDQzA2MDE0NEEw OEMwODY2REMwHhcNMjUxMjE4MjMzOTU2WhcNMjUxMjI1MjMzOTU2WjAYMRYwFAYD VQQDDA02OTQ0OTBjYy0wN2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyx5JLtdLhgxcm9Q4gpf3rP8fPkPThpkETznWWLz0aGzHZ8qEIIS/larAXAZo cnEBxwzT3HgyuwGqd3XiZgeQ4ZWraxo8UEG/XinD8uV7+V6rHAUYvsnmuxGTfVF2 8JHURjDa/mjxBAPCoUl3qO8MMvezFlxtrtt8EpTsp4p8jjPTsY/8aFZERHctGoGg erJuzTNSM3c7QQcBRCkvnAVIGsUqQQe9JKQxZ3BOhhOEiZQuLnsGgH0wn96oJtj5 P1kvnatZsEFVbhuLN7zJyHCCm9+n1DR3VgzsR/YKeafAZMRBh5sz+r+0DKDcfgBo wJn2SlecYkdotRZj9LOZB6vIjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOLF/RqK fdDix7Wt1P4qfTSWHdlUMB8GA1UdIwQYMBaAFNh15jxzUI3Yn2rNzAYBRKCMCGbc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTk1MC9DQkYwNkYzMDhE REMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpkaWZhczNNQmdGRW9Jd0la dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJIWG1QSE5RamRpZmFzM01CZ0ZFb0l3SVp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTk1MC9DQkYwNkYzMDhEREMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpk aWZhczNNQmdGRW9Jd0ladHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4VXF8/vOSlb/ztv5VyME5Z8E3Maa9+fdHzbbUQjvAc+De24U0B126 PaxKeGSp+bJyTSB5GWkI0uu77np58kknBY7NWBV6piCcMeeRplYl6uyuy0uJtAJY nd96mTq2blbxCbU4XsSSMiV3+CCBS8Ke8i4gBJHoqqlZp2GI3tZq8TfYnxAd80f+ T8amtu1uTVeCr5J+Sle8kinjpqgPkaVKn+Ws81FiEvZ90JsgFGUH/TWspx9ejBi/ OnDkA7ox9vKG6F1pWjNwynMMrtAFC9VuGDvZn8rFXQCt6veMYugYKiYrwVexdcpK 2TQIDMVdVGNoqhgcB84XPxFiWIem+B0p -----END CERTIFICATE-----Generated at Fri Dec 19 23:51:10 2025 by rpki-client