This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft File: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft (raw, json) Hash identifier: BDsrDLTZIXtgZa6Q7k2fmAXKJcUW5p8/DWZf0bmeD8E= Subject key identifier: DC:6A:D9:8B:96:2A:F5:AE:62:6E:73:2B:B4:AD:21:92:F3:FA:7B:A2 Authority key identifier: D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 Certificate issuer: /CN=A9159ECD/serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Certificate serial: 011A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft Manifest number: 0117 Signing time: Fri 26 Dec 2025 22:24:38 +0000 Manifest this update: Fri 26 Dec 2025 22:24:38 +0000 Manifest next update: Fri 02 Jan 2026 22:24:38 +0000 Files and hashes: 1: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl (hash: bk+kmJC/NSCii7+n35GEsVzK45TBpDW7zl0TRcz8b1g=) 2: 5A4723DA6F3C11EF8FD45F13C4F9AE02.roa (hash: nJrP5XyTG2U3goSrQUjPEnvTLR/1/bqUd5TtsJOT5YA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Jan 2026 22:24:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159ECD, serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Validity Not Before: Dec 26 22:24:38 2025 GMT Not After : Jan 2 22:24:38 2026 GMT Subject: CN=694f0b26-a7ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:a5:be:40:94:c0:ef:33:ef:45:66:b9:9f:ce: 94:93:00:3a:7b:0a:80:9c:b1:e0:e0:06:fb:9d:89: ef:19:9e:e9:06:41:17:c1:7f:ee:f1:83:ce:ad:21: 84:50:ee:4d:5b:13:b4:1b:18:05:66:5e:52:97:be: 1f:51:95:ad:f1:15:0b:69:ec:c1:bc:67:a7:a3:91: 77:d5:f2:61:b4:2e:e9:0f:ee:18:75:70:1c:da:21: 46:28:97:fc:1f:7a:81:6a:3c:cf:97:0a:19:b8:53: cd:d7:ca:e5:68:18:9b:32:8d:ef:d0:67:7e:e4:6c: 71:9b:40:1a:46:bf:db:52:a4:b9:69:01:ba:4f:80: b1:61:19:24:cc:15:47:40:a0:19:8b:e8:07:c1:52: a9:39:16:a4:94:8b:b4:90:fa:9c:ec:7c:99:64:04: e2:aa:1e:68:9f:09:d4:e0:07:ac:3f:a3:f5:b8:f7: 47:f3:27:6b:9b:7f:c1:b8:50:e7:cf:52:05:03:1d: 98:b0:0e:83:31:55:61:cf:88:bf:cf:33:fb:1d:66: ad:11:3e:5e:98:af:81:fe:65:fb:75:f3:be:56:0d: e4:0d:cb:ff:f8:59:2b:22:e0:f0:3f:d5:15:7e:d7: 16:1a:a3:17:65:bb:c5:ce:fd:41:e4:94:27:69:3f: bb:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:6A:D9:8B:96:2A:F5:AE:62:6E:73:2B:B4:AD:21:92:F3:FA:7B:A2 X509v3 Authority Key Identifier: keyid:D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:31:5e:a2:0d:9c:b3:cd:bb:05:21:bc:88:8f:ee:cc:8d:39: 10:ed:c4:3c:31:42:e3:a4:4d:a5:6e:27:bc:ac:47:74:67:d9: 5b:fb:2d:00:ef:c2:bb:52:5a:b6:13:c2:c0:8e:30:f8:c3:ec: ee:5c:59:24:4f:43:2e:83:bb:76:72:bc:72:6e:8e:a7:36:d9: 09:d6:42:2a:5d:ae:34:51:73:9f:54:eb:a7:08:fd:86:c4:24: 32:ee:de:9c:f3:61:2a:a9:23:49:f0:08:9e:03:e3:9f:f5:9a: 74:67:2f:f4:77:49:e5:64:9d:b7:ff:87:01:e6:e4:9c:3e:4b: ca:c3:af:8d:fe:b5:ee:0b:6d:6e:ce:8b:d8:8b:77:2d:42:dd: 1c:bd:02:10:a6:f0:09:a8:6e:af:c4:22:02:37:ce:e4:a2:25: 30:49:0d:26:80:fb:f8:7b:1d:77:47:5b:04:c9:97:7b:81:53: 05:e0:e9:8f:27:ac:ab:28:20:33:b0:22:ec:03:d4:3c:02:25: 61:40:d1:c8:75:ad:27:41:0f:8c:74:3c:cc:32:bb:73:00:a3: 76:83:a8:23:3b:a6:c3:f0:d2:fd:64:30:db:0f:4e:5f:78:9d: da:c0:77:20:7f:e2:9e:1e:98:d2:4a:26:cb:37:31:ac:61:84: c0:64:d8:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlFQ0QxMTAvBgNVBAUTKEQ5NURBMTE3MTQxMjMwMEFCNTNCM0U0ODcwRjJGNDQx RjA2QzgxMjQwHhcNMjUxMjI2MjIyNDM4WhcNMjYwMTAyMjIyNDM4WjAYMRYwFAYD VQQDDA02OTRmMGIyNi1hN2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoaW+QJTA7zPvRWa5n86UkwA6ewqAnLHg4Ab7nYnvGZ7pBkEXwX/u8YPOrSGE UO5NWxO0GxgFZl5Sl74fUZWt8RULaezBvGeno5F31fJhtC7pD+4YdXAc2iFGKJf8 H3qBajzPlwoZuFPN18rlaBibMo3v0Gd+5Gxxm0AaRr/bUqS5aQG6T4CxYRkkzBVH QKAZi+gHwVKpORaklIu0kPqc7HyZZATiqh5onwnU4AesP6P1uPdH8ydrm3/BuFDn z1IFAx2YsA6DMVVhz4i/zzP7HWatET5emK+B/mX7dfO+Vg3kDcv/+FkrIuDwP9UV ftcWGqMXZbvFzv1B5JQnaT+74wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNxq2YuW KvWuYm5zK7StIZLz+nuiMB8GA1UdIwQYMBaAFNldoRcUEjAKtTs+SHDy9EHwbIEk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUVDRC9FRjYzODNFMjNE OUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01BcTFPejVJY1BMMFFmQnNn U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJWMmhGeFFTTUFxMU96NUljUEwwUWZCc2dTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OUVDRC9FRjYzODNFMjNEOUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01B cTFPejVJY1BMMFFmQnNnU1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJMV6iDZyzzbsFIbyIj+7MjTkQ7cQ8MULjpE2lbie8rEd0Z9lb+y0A 78K7Ulq2E8LAjjD4w+zuXFkkT0Mug7t2crxybo6nNtkJ1kIqXa40UXOfVOunCP2G xCQy7t6c82EqqSNJ8AieA+Of9Zp0Zy/0d0nlZJ23/4cB5uScPkvKw6+N/rXuC21u zovYi3ctQt0cvQIQpvAJqG6vxCICN87koiUwSQ0mgPv4ex13R1sEyZd7gVMF4OmP J6yrKCAzsCLsA9Q8AiVhQNHIda0nQQ+MdDzMMrtzAKN2g6gjO6bD8NL9ZDDbD05f eJ3awHcgf+KeHpjSSibLNzGsYYTAZNgC -----END CERTIFICATE-----Generated at Sat Dec 27 07:11:31 2025 by rpki-client