This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft File: 2-bH-ZCQRq41ohWw4hVErlIjfoo.mft (raw, json) Hash identifier: 0LIPDJ9PwFWSW/qB5Q49yhmhi3Acur/GvUGW39PweXs= Subject key identifier: 8C:BD:2F:44:C5:12:D6:BE:E5:6D:71:78:29:07:FE:28:E5:C8:4C:05 Authority key identifier: DB:E6:C7:F9:90:90:46:AE:35:A2:15:B0:E2:15:44:AE:52:23:7E:8A Certificate issuer: /CN=A914F697/serialNumber=DBE6C7F9909046AE35A215B0E21544AE52237E8A Certificate serial: 06E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-bH-ZCQRq41ohWw4hVErlIjfoo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft Manifest number: 0813 Signing time: Sat 20 Dec 2025 20:06:32 +0000 Manifest this update: Sat 20 Dec 2025 20:06:31 +0000 Manifest next update: Sat 27 Dec 2025 20:06:31 +0000 Files and hashes: 1: 2-bH-ZCQRq41ohWw4hVErlIjfoo.crl (hash: +Xpku+I3Cnp75vqph8BwM303/37IqnYHzq2bDUSDZ6Q=) 2: 1AA7504A92DD11EB9B9E993FC4F9AE02.roa (hash: q9QvCRCxySgsmxHUlB3yfC5si2bvzkIxFoqx5RnCVEw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.crl rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-bH-ZCQRq41ohWw4hVErlIjfoo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 20:06:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1766 (0x6e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F697, serialNumber=DBE6C7F9909046AE35A215B0E21544AE52237E8A Validity Not Before: Dec 20 20:06:31 2025 GMT Not After : Dec 27 20:06:31 2025 GMT Subject: CN=694701c7-0271 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d8:d4:32:e1:d9:77:25:13:90:b7:c6:16:25: f3:27:a9:6a:17:63:9c:5f:d4:7f:7c:54:a2:a9:5c: f0:8a:37:02:af:8e:e2:af:14:c6:bf:d3:8d:6c:34: e7:87:84:4e:ef:a6:03:b5:59:af:73:e0:bd:f2:7a: fa:56:ea:b4:5d:d0:f4:53:7f:8e:eb:7c:10:f6:3a: 74:e3:0e:48:34:87:43:20:4f:71:4e:ca:7c:7e:ac: 5f:6e:2a:db:69:78:dd:b1:b4:e9:9a:0a:e8:02:41: d8:b5:ce:ea:97:d3:72:b6:61:6f:d3:aa:38:5f:e8: 7a:b3:db:b2:f0:e3:8e:f4:f3:54:1d:85:cf:e6:68: 42:01:bd:32:fb:10:20:d2:54:f4:fb:aa:db:08:e6: c5:c5:05:9e:04:af:7a:e7:ac:5f:4b:94:31:dd:1d: 1c:80:b9:be:92:04:32:e2:c8:39:1c:0a:67:77:7d: ea:dc:0b:36:50:d2:4e:73:6e:b6:4f:4f:55:af:89: 08:30:53:af:65:d9:59:70:ca:65:d3:30:1a:a4:2c: dc:cb:0e:2b:ac:d1:31:54:61:0a:de:89:6a:86:6c: 24:91:89:71:17:9a:31:4c:e6:a7:f9:b4:b7:b2:a4: ed:e1:b6:6a:82:41:1c:05:65:30:4a:00:ba:49:9a: 92:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:BD:2F:44:C5:12:D6:BE:E5:6D:71:78:29:07:FE:28:E5:C8:4C:05 X509v3 Authority Key Identifier: keyid:DB:E6:C7:F9:90:90:46:AE:35:A2:15:B0:E2:15:44:AE:52:23:7E:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-bH-ZCQRq41ohWw4hVErlIjfoo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F697/7521DFC0E85D11EAB23C8F87C4F9AE02/2-bH-ZCQRq41ohWw4hVErlIjfoo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:d6:2f:95:8b:8b:81:66:56:85:4b:ba:cf:f5:c4:e3:b5:3f: 3e:bb:66:4f:84:de:d2:3b:d9:14:bb:32:50:7b:81:7b:7d:34: c3:bb:b4:38:56:1e:01:64:d9:8e:3e:db:09:cb:7a:bb:5b:ef: f3:b7:77:23:16:cd:45:1d:92:dd:d8:4d:9d:b0:81:ea:00:54: 48:55:c8:78:bf:c4:82:9e:16:06:ba:c8:4b:7b:8d:a5:e3:b3: ae:77:37:b3:d1:30:c3:92:af:67:63:cb:2b:1f:d8:0d:89:3b: 75:18:25:a8:1a:37:c2:4c:e1:1e:ed:84:08:03:4d:1d:10:ae: 2e:2d:16:0d:e1:16:ee:5c:34:49:35:0a:f0:8a:95:4c:0a:d1: d9:73:61:cf:97:2b:cd:17:7b:25:ec:02:59:da:5b:70:ec:34: cc:56:33:ef:08:b0:c7:63:b8:a9:6b:af:d2:72:c6:7a:f5:86: 19:29:a4:bd:3c:3d:25:10:50:03:a6:90:00:14:04:2f:04:3b: 5e:d0:0b:e9:a2:eb:61:32:05:b9:64:fb:e3:0a:39:4d:67:1e: 4b:77:8c:40:d0:24:60:88:58:84:ad:72:b5:09:a3:90:23:ab: fd:32:22:91:03:41:c6:67:b4:ff:b7:1a:24:53:76:16:76:89: 0f:2b:8c:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY2OTcxMTAvBgNVBAUTKERCRTZDN0Y5OTA5MDQ2QUUzNUEyMTVCMEUyMTU0NEFF NTIyMzdFOEEwHhcNMjUxMjIwMjAwNjMxWhcNMjUxMjI3MjAwNjMxWjAYMRYwFAYD VQQDDA02OTQ3MDFjNy0wMjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArtjUMuHZdyUTkLfGFiXzJ6lqF2OcX9R/fFSiqVzwijcCr47irxTGv9ONbDTn h4RO76YDtVmvc+C98nr6Vuq0XdD0U3+O63wQ9jp04w5INIdDIE9xTsp8fqxfbirb aXjdsbTpmgroAkHYtc7ql9NytmFv06o4X+h6s9uy8OOO9PNUHYXP5mhCAb0y+xAg 0lT0+6rbCObFxQWeBK9656xfS5Qx3R0cgLm+kgQy4sg5HApnd33q3As2UNJOc262 T09Vr4kIMFOvZdlZcMpl0zAapCzcyw4rrNExVGEK3olqhmwkkYlxF5oxTOan+bS3 sqTt4bZqgkEcBWUwSgC6SZqS/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIy9L0TF Eta+5W1xeCkH/ijlyEwFMB8GA1UdIwQYMBaAFNvmx/mQkEauNaIVsOIVRK5SI36K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjY5Ny83NTIxREZDMEU4 NUQxMUVBQjIzQzhGODdDNEY5QUUwMi8yLWJILVpDUVJxNDFvaFd3NGhWRXJsSWpm b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItYkgtWkNRUnE0MW9oV3c0aFZFcmxJamZvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjY5Ny83NTIxREZDMEU4NUQxMUVBQjIzQzhGODdDNEY5QUUwMi8yLWJILVpDUVJx NDFvaFd3NGhWRXJsSWpmb28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCf1i+Vi4uBZlaFS7rP9cTjtT8+u2ZPhN7SO9kUuzJQe4F7fTTDu7Q4 Vh4BZNmOPtsJy3q7W+/zt3cjFs1FHZLd2E2dsIHqAFRIVch4v8SCnhYGushLe42l 47Oudzez0TDDkq9nY8srH9gNiTt1GCWoGjfCTOEe7YQIA00dEK4uLRYN4RbuXDRJ NQrwipVMCtHZc2HPlyvNF3sl7AJZ2ltw7DTMVjPvCLDHY7ipa6/ScsZ69YYZKaS9 PD0lEFADppAAFAQvBDte0AvpouthMgW5ZPvjCjlNZx5Ld4xA0CRgiFiErXK1CaOQ I6v9MiKRA0HGZ7T/txokU3YWdokPK4w7 -----END CERTIFICATE-----Generated at Sun Dec 21 07:58:34 2025 by rpki-client