This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft File: 2nNptJciuhObe2DznIi0m9uzXz0.mft (raw, json) Hash identifier: qdxx+n4tIPBtZ7QZiehMhoavRloaSaK66Zw/oriMBNs= Subject key identifier: 9D:0F:58:E3:31:73:19:3F:64:EF:22:E0:31:FF:93:7C:E0:DC:D1:60 Authority key identifier: DA:73:69:B4:97:22:BA:13:9B:7B:60:F3:9C:88:B4:9B:DB:B3:5F:3D Certificate issuer: /CN=A917E623/serialNumber=DA7369B49722BA139B7B60F39C88B49BDBB35F3D Certificate serial: 01C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft Manifest number: 01B8 Signing time: Fri 19 Dec 2025 02:23:58 +0000 Manifest this update: Fri 19 Dec 2025 02:23:58 +0000 Manifest next update: Fri 26 Dec 2025 02:23:58 +0000 Files and hashes: 1: 2nNptJciuhObe2DznIi0m9uzXz0.crl (hash: MoPYPK8kQKf9gN5Q7SFMKkooxRqjlh2RE3fSVNY4TFA=) 2: BBBEDEF46C8211EE866F5A78C4F9AE02.roa (hash: rX9KVe2qszOUPjT1pbGC+LrjEbspt/xxl2Uq6dePAdc=) 3: C12ACE6AC17E11EE95D6821CC4F9AE02.roa (hash: lULpYxQ3gZ5K9JeyYCVmHd0kWgLx0IwVRgcAaZxSkdk=) 4: 585745526BC111EEA163E774C4F9AE02.roa (hash: Ks2Urn2far+/DcyQBS8MOk0s9n2RR8VYAIzSipmPvMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.crl rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:23:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 457 (0x1c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E623, serialNumber=DA7369B49722BA139B7B60F39C88B49BDBB35F3D Validity Not Before: Dec 19 02:23:58 2025 GMT Not After : Dec 26 02:23:58 2025 GMT Subject: CN=6944b73e-8b63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:03:98:a1:b3:94:24:f9:9a:14:c5:85:ff:19: fc:ac:00:a1:44:e4:c6:71:d4:b5:1a:b1:16:80:4b: 9b:35:5d:46:f3:a5:07:a3:89:d2:50:64:34:09:7e: 2e:3c:db:a2:bd:e8:b3:21:b8:ec:78:c8:9c:8e:f1: 90:4d:d6:16:98:28:dd:82:3e:ef:d7:2c:4c:b0:c0: df:94:8a:4c:1f:0b:0e:95:86:3c:21:f0:76:d4:ea: 28:22:99:45:27:42:4a:b2:d7:3e:74:42:38:00:d4: 0e:68:9e:b0:fb:77:bd:c3:56:fe:e2:ee:e9:60:10: fa:8a:fa:60:51:88:e0:84:07:f7:ff:6d:cc:7c:43: 28:57:82:77:e7:d7:61:c4:46:7d:4d:18:f0:9e:e4: ed:a5:72:a0:62:77:e8:3e:f9:a6:59:a9:29:ca:49: c7:05:3e:f7:a0:50:0f:33:ff:59:57:71:35:e2:11: 65:92:67:1c:6e:43:12:9a:4d:01:e2:92:a3:5d:be: 89:ab:5c:94:61:6c:75:49:9a:9c:33:30:b6:a6:3f: bb:ff:04:1c:dc:0b:aa:7c:1e:ca:1c:fe:9c:c2:28: 4a:40:d2:b9:ca:0b:18:c9:28:97:39:f7:aa:d9:ed: e2:2a:62:ac:6a:fa:c1:b5:82:16:95:2c:25:62:01: aa:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:0F:58:E3:31:73:19:3F:64:EF:22:E0:31:FF:93:7C:E0:DC:D1:60 X509v3 Authority Key Identifier: keyid:DA:73:69:B4:97:22:BA:13:9B:7B:60:F3:9C:88:B4:9B:DB:B3:5F:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:2f:e1:54:8d:ad:ba:0e:5d:61:30:f0:87:a0:41:c3:cd:c2: ad:e2:d0:ea:11:e6:11:f5:b2:25:7a:23:3c:3d:3c:54:a6:0d: c6:a5:70:14:30:22:c3:ba:ea:29:4f:00:60:68:c6:1c:71:ee: bf:a4:e2:57:2a:3f:f8:ef:2f:a4:08:32:b4:de:8a:5e:90:c7: c4:db:51:73:83:7c:79:72:a2:b1:f3:b8:e9:1e:5a:c4:ce:14: 24:46:31:99:65:9a:ba:24:7d:83:52:e1:d7:dd:a3:62:4d:a6: 56:24:9b:bc:11:c6:7d:29:3e:95:4d:ed:56:7d:a6:e6:a8:2b: 52:fb:a0:8e:d6:d7:25:f8:c1:a0:75:ce:c3:85:d4:93:29:8f: a2:e4:42:cf:b3:8b:19:b2:76:d1:2a:55:17:94:75:19:00:11: 94:81:ff:18:95:3a:74:9c:f8:36:f3:93:7a:de:32:a0:08:18: 86:23:94:dc:b5:99:17:9f:eb:d3:6d:8b:b8:84:f7:7c:e8:7e: a2:a1:b4:d2:f1:b9:21:ad:a8:fb:32:71:8b:fb:fa:c9:57:83: 87:fb:56:d9:f5:98:9f:b3:5a:71:f6:ce:49:89:03:71:5a:24: 15:7b:48:fa:cc:e5:1c:da:0a:60:ed:33:c9:15:a2:7d:f2:e4: b0:17:e7:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2MjMxMTAvBgNVBAUTKERBNzM2OUI0OTcyMkJBMTM5QjdCNjBGMzlDODhCNDlC REJCMzVGM0QwHhcNMjUxMjE5MDIyMzU4WhcNMjUxMjI2MDIyMzU4WjAYMRYwFAYD VQQDDA02OTQ0YjczZS04YjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjQOYobOUJPmaFMWF/xn8rAChROTGcdS1GrEWgEubNV1G86UHo4nSUGQ0CX4u PNuiveizIbjseMicjvGQTdYWmCjdgj7v1yxMsMDflIpMHwsOlYY8IfB21OooIplF J0JKstc+dEI4ANQOaJ6w+3e9w1b+4u7pYBD6ivpgUYjghAf3/23MfEMoV4J359dh xEZ9TRjwnuTtpXKgYnfoPvmmWakpyknHBT73oFAPM/9ZV3E14hFlkmccbkMSmk0B 4pKjXb6Jq1yUYWx1SZqcMzC2pj+7/wQc3AuqfB7KHP6cwihKQNK5ygsYySiXOfeq 2e3iKmKsavrBtYIWlSwlYgGqBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ0PWOMx cxk/ZO8i4DH/k3zg3NFgMB8GA1UdIwQYMBaAFNpzabSXIroTm3tg85yItJvbs189 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTYyMy9BMjVENDg5RTUw NDcxMUVFQjY3NzM2NURDNEY5QUUwMi8ybk5wdEpjaXVoT2JlMkR6bklpMG05dXpY ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuTnB0SmNpdWhPYmUyRHpuSWkwbTl1elh6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTYyMy9BMjVENDg5RTUwNDcxMUVFQjY3NzM2NURDNEY5QUUwMi8ybk5wdEpjaXVo T2JlMkR6bklpMG05dXpYejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeL+FUja26Dl1hMPCHoEHDzcKt4tDqEeYR9bIleiM8PTxUpg3GpXAU MCLDuuopTwBgaMYcce6/pOJXKj/47y+kCDK03opekMfE21Fzg3x5cqKx87jpHlrE zhQkRjGZZZq6JH2DUuHX3aNiTaZWJJu8EcZ9KT6VTe1WfabmqCtS+6CO1tcl+MGg dc7DhdSTKY+i5ELPs4sZsnbRKlUXlHUZABGUgf8YlTp0nPg285N63jKgCBiGI5Tc tZkXn+vTbYu4hPd86H6iobTS8bkhraj7MnGL+/rJV4OH+1bZ9Zifs1px9s5JiQNx WiQVe0j6zOUc2gpg7TPJFaJ98uSwF+cD -----END CERTIFICATE-----Generated at Fri Dec 19 17:45:36 2025 by rpki-client