This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft File: 2QhrDfk0LcKwkbrobLd5_GJZvXs.mft (raw, json) Hash identifier: Bo7q/Zfow9oTMsUK+CwEjdbCpGNNcl61idQ+SuPaTi0= Subject key identifier: 8C:2E:D8:A1:72:32:DD:9E:DA:A9:6A:4D:B7:7E:8F:34:34:95:A7:68 Authority key identifier: D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B Certificate issuer: /CN=A914F2EC/serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Certificate serial: 34FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft Manifest number: 34F5 Signing time: Sat 20 Dec 2025 14:54:30 +0000 Manifest this update: Sat 20 Dec 2025 14:54:30 +0000 Manifest next update: Sat 27 Dec 2025 14:54:30 +0000 Files and hashes: 1: 2QhrDfk0LcKwkbrobLd5_GJZvXs.crl (hash: r5TCQsVcqt2wAAlzbVyrmr3+eUgXPSMQ76lp5ElxIvI=) 2: 588BD7269A1211E8B97A623AC4F9AE02.roa (hash: KKbAooYir9kiM+kQeIhamjhStk+gbSQk/A73xTUucXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13566 (0x34fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F2EC, serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Validity Not Before: Dec 20 14:54:30 2025 GMT Not After : Dec 27 14:54:30 2025 GMT Subject: CN=6946b8a6-3b24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:6b:09:b1:5e:01:75:cd:36:14:e0:62:cf:c3: 6b:63:f2:3c:0d:17:a4:b7:0c:aa:ef:d6:e7:bb:a1: 12:ab:dd:96:eb:ad:0d:88:dd:2c:bf:46:ff:64:2e: 3b:27:24:af:17:42:62:1d:95:64:c7:95:65:54:69: 62:56:7d:0e:1d:70:56:71:e2:89:96:d3:be:2f:66: 27:ab:ba:22:41:8b:76:cb:75:6c:27:d1:67:17:bc: 5a:d2:05:b6:92:86:43:bc:be:c1:4f:c1:fc:6e:8d: 5f:91:26:11:cb:f3:80:94:22:d8:1e:aa:55:d2:8f: a8:7c:47:99:91:f5:18:6b:8f:2f:cb:d5:7b:e8:e9: 0b:cd:45:09:34:46:b2:1d:ff:2b:e6:d0:2d:4e:ed: 8d:63:51:16:cc:b4:7f:a7:9a:a6:06:c7:0a:b3:95: 45:e1:4e:1e:27:34:1f:f5:c5:9b:ef:32:ef:9a:3a: 17:5e:1b:28:48:32:15:38:0f:ad:03:1f:71:a3:2f: 4f:21:9e:51:f9:57:da:fb:6b:89:15:b4:70:3b:fb: ba:ab:d0:89:5d:a6:31:40:9a:1a:6e:fd:c0:c3:49: 6e:cf:2b:f4:10:57:28:c4:c3:26:df:8a:c3:8f:50: 96:dd:b9:07:22:06:f0:f2:48:b7:46:81:97:c2:75: 89:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:2E:D8:A1:72:32:DD:9E:DA:A9:6A:4D:B7:7E:8F:34:34:95:A7:68 X509v3 Authority Key Identifier: keyid:D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:09:77:ba:8a:31:85:3e:38:19:28:de:2b:90:0e:30:02:d4: 24:6e:e3:2f:2e:90:06:c8:26:91:9b:55:38:13:3f:9d:fb:d7: 2a:97:d7:9c:4f:7e:6d:d1:ca:0d:a3:2f:9e:30:4e:07:55:d6: 64:f1:04:70:c4:06:c4:2e:30:03:b3:43:7e:33:77:34:25:d4: 64:0e:d8:22:5d:20:d3:a6:d4:3a:b2:00:01:a9:0a:35:85:70: 4b:3a:07:31:bc:10:9b:17:7a:1e:ac:7d:cf:b3:bd:87:e7:3b: ab:58:72:52:51:d7:e4:70:3a:08:cc:4d:82:dd:85:2b:94:5f: 3e:c2:69:f5:35:f0:0d:39:6c:ec:14:a9:47:53:fb:a3:fd:70: 48:1b:a9:6b:6e:dd:d7:c6:92:18:b3:04:7b:f6:aa:3f:85:7f: 71:83:e8:8a:95:97:7c:b8:38:95:24:39:bf:32:e6:53:6c:69: d3:ca:d3:6d:76:ce:46:f4:05:84:b3:69:f4:11:49:fb:eb:e8: a6:c7:46:83:0f:8e:06:93:c5:b7:d9:c5:7b:2a:f8:a0:be:fc: 38:c1:18:cb:69:42:03:f9:95:2a:02:34:64:82:32:ca:8d:01: 03:e0:a2:ef:48:d1:bb:8a:f9:61:ad:ea:62:94:2f:40:08:f0: a5:c9:96:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYyRUMxMTAvBgNVBAUTKEQ5MDg2QjBERjkzNDJEQzJCMDkxQkFFODZDQjc3OUZD NjI1OUJEN0IwHhcNMjUxMjIwMTQ1NDMwWhcNMjUxMjI3MTQ1NDMwWjAYMRYwFAYD VQQDDA02OTQ2YjhhNi0zYjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkWsJsV4Bdc02FOBiz8NrY/I8DRektwyq79bnu6ESq92W660NiN0sv0b/ZC47 JySvF0JiHZVkx5VlVGliVn0OHXBWceKJltO+L2Ynq7oiQYt2y3VsJ9FnF7xa0gW2 koZDvL7BT8H8bo1fkSYRy/OAlCLYHqpV0o+ofEeZkfUYa48vy9V76OkLzUUJNEay Hf8r5tAtTu2NY1EWzLR/p5qmBscKs5VF4U4eJzQf9cWb7zLvmjoXXhsoSDIVOA+t Ax9xoy9PIZ5R+Vfa+2uJFbRwO/u6q9CJXaYxQJoabv3Aw0luzyv0EFcoxMMm34rD j1CW3bkHIgbw8ki3RoGXwnWJSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIwu2KFy Mt2e2qlqTbd+jzQ0ladoMB8GA1UdIwQYMBaAFNkIaw35NC3CsJG66Gy3efxiWb17 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjJFQy9ENThBMjI2QzFE OUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExjS3drYnJvYkxkNV9HSlp2 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRaHJEZmswTGNLd2ticm9iTGQ1X0dKWnZYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjJFQy9ENThBMjI2QzFEOUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExj S3drYnJvYkxkNV9HSlp2WHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbCXe6ijGFPjgZKN4rkA4wAtQkbuMvLpAGyCaRm1U4Ez+d+9cql9ec T35t0coNoy+eME4HVdZk8QRwxAbELjADs0N+M3c0JdRkDtgiXSDTptQ6sgABqQo1 hXBLOgcxvBCbF3oerH3Ps72H5zurWHJSUdfkcDoIzE2C3YUrlF8+wmn1NfANOWzs FKlHU/uj/XBIG6lrbt3XxpIYswR79qo/hX9xg+iKlZd8uDiVJDm/MuZTbGnTytNt ds5G9AWEs2n0EUn76+imx0aDD44Gk8W32cV7Kvigvvw4wRjLaUID+ZUqAjRkgjLK jQED4KLvSNG7ivlhrepilC9ACPClyZZU -----END CERTIFICATE-----Generated at Sat Dec 20 18:27:51 2025 by rpki-client