This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.mft File: 2kObzwPK_LW-ftCuezKPafiMGys.mft (raw, json) Hash identifier: kvciC8bSfxremOaGwahgeF2clKMFqBZNKml3PxhJYBg= Subject key identifier: 5B:F1:7F:BB:3B:36:95:8C:D4:14:6A:5C:08:33:47:C2:B5:EC:CF:E2 Authority key identifier: DA:43:9B:CF:03:CA:FC:B5:BE:7E:D0:AE:7B:32:8F:69:F8:8C:1B:2B Certificate issuer: /CN=A9188EB6/serialNumber=DA439BCF03CAFCB5BE7ED0AE7B328F69F88C1B2B Certificate serial: 04EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kObzwPK_LW-ftCuezKPafiMGys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.mft Manifest number: 04E9 Signing time: Thu 18 Dec 2025 23:03:56 +0000 Manifest this update: Thu 18 Dec 2025 23:03:55 +0000 Manifest next update: Thu 25 Dec 2025 23:03:55 +0000 Files and hashes: 1: 2kObzwPK_LW-ftCuezKPafiMGys.crl (hash: gDTyV5TJYC0PZn0hdhxhOlhqkTjs7jXNbRoRtCSArCA=) 2: E9E440F2411511ECBC2FB20BC4F9AE02.roa (hash: oCq0GS/e8jzWI+qfCm+Q9EBQNv1mP52MN9gsJPInZfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.crl rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kObzwPK_LW-ftCuezKPafiMGys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:03:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1262 (0x4ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188EB6, serialNumber=DA439BCF03CAFCB5BE7ED0AE7B328F69F88C1B2B Validity Not Before: Dec 18 23:03:55 2025 GMT Not After : Dec 25 23:03:55 2025 GMT Subject: CN=6944885c-032b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9e:3d:f3:7b:48:71:c6:82:32:b2:af:a2:29: 35:49:9f:20:6b:9a:b0:23:4c:ee:b8:46:49:cc:9a: 6c:b1:96:c1:8e:9c:09:63:5f:ab:13:b7:e5:a4:2d: b0:25:7b:5c:4d:b1:95:3b:e2:93:7e:b5:c9:67:71: 65:f0:49:07:77:e8:f9:9d:d0:9a:f2:aa:07:b6:87: 63:8f:2e:a2:d1:2b:1b:54:71:92:f1:2f:8f:1e:bd: 72:71:ee:f4:aa:94:5a:84:b9:47:b9:f0:40:e8:01: 8d:37:fd:ea:57:a1:6a:2c:98:38:19:a4:49:58:0c: ce:a8:b1:0a:12:99:df:84:d2:08:3f:eb:62:26:8f: 94:0e:70:03:fb:5b:91:18:1e:be:c2:fe:2d:c4:49: 0a:c9:c3:27:e3:8f:0c:98:aa:59:b0:e2:c8:5c:55: ea:b7:d8:7b:0e:cb:83:e6:3a:eb:1f:d2:6e:fe:be: 9e:13:bf:7e:23:03:bc:b1:12:be:5e:a1:56:76:f2: db:b3:4d:0b:49:04:1a:41:70:d0:32:41:5a:6b:ce: 66:a0:9d:d6:a9:fe:58:c0:1a:24:47:71:59:94:3a: 24:a9:a8:26:9b:ac:64:ce:da:a8:2d:f4:ca:f4:1c: b4:37:d4:e9:f4:68:96:38:19:72:1d:46:b0:87:e9: ae:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:F1:7F:BB:3B:36:95:8C:D4:14:6A:5C:08:33:47:C2:B5:EC:CF:E2 X509v3 Authority Key Identifier: keyid:DA:43:9B:CF:03:CA:FC:B5:BE:7E:D0:AE:7B:32:8F:69:F8:8C:1B:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kObzwPK_LW-ftCuezKPafiMGys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:8b:56:07:99:26:1c:a6:7d:76:f8:90:68:74:a3:5a:83:4c: a5:a3:0c:54:86:dc:fc:21:32:7f:a1:5d:c5:46:27:ff:f2:3e: 27:65:41:86:af:2a:62:8e:c6:3d:8d:63:e5:a0:49:ee:64:ce: 0e:6c:61:d8:44:17:b9:8f:90:27:ba:cc:5e:3f:94:97:66:8f: f7:f4:04:48:37:b7:87:cb:c8:16:7a:40:e5:a4:ac:0f:8f:0a: f5:a2:5e:93:ce:e3:76:46:62:89:43:9d:cd:e3:10:ed:84:71: e6:84:89:ed:9e:49:a5:48:db:b3:4e:db:db:9d:38:0f:c9:97: 68:c7:9c:65:9f:a2:65:ea:ea:bb:a5:4c:ed:94:4e:e5:dd:98: f9:c5:7a:5c:76:0c:86:bc:84:50:fb:10:98:a2:d5:5d:22:c4: 82:21:75:b2:25:2d:d3:91:10:5c:50:d8:50:8d:a3:51:c5:9d: 79:b1:47:4b:d0:45:c9:95:01:6a:91:5d:a5:94:9f:d6:a2:a0: 29:ba:55:a6:31:fe:a4:7f:44:02:12:a7:f6:0f:68:cb:4b:14: c1:17:5f:27:be:6f:d7:f2:02:1d:ac:b0:d9:70:96:4e:c2:9c: 4f:66:60:17:d5:a8:36:ab:4e:b6:dc:da:eb:d0:df:85:e9:de: 96:a2:6a:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhFQjYxMTAvBgNVBAUTKERBNDM5QkNGMDNDQUZDQjVCRTdFRDBBRTdCMzI4RjY5 Rjg4QzFCMkIwHhcNMjUxMjE4MjMwMzU1WhcNMjUxMjI1MjMwMzU1WjAYMRYwFAYD VQQDDA02OTQ0ODg1Yy0wMzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJ4983tIccaCMrKvoik1SZ8ga5qwI0zuuEZJzJpssZbBjpwJY1+rE7flpC2w JXtcTbGVO+KTfrXJZ3Fl8EkHd+j5ndCa8qoHtodjjy6i0SsbVHGS8S+PHr1yce70 qpRahLlHufBA6AGNN/3qV6FqLJg4GaRJWAzOqLEKEpnfhNIIP+tiJo+UDnAD+1uR GB6+wv4txEkKycMn448MmKpZsOLIXFXqt9h7DsuD5jrrH9Ju/r6eE79+IwO8sRK+ XqFWdvLbs00LSQQaQXDQMkFaa85moJ3Wqf5YwBokR3FZlDokqagmm6xkztqoLfTK 9By0N9Tp9GiWOBlyHUawh+muLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFvxf7s7 NpWM1BRqXAgzR8K17M/iMB8GA1UdIwQYMBaAFNpDm88Dyvy1vn7Qrnsyj2n4jBsr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEVCNi8zRUJGNDc5QTQx MTQxMUVDOEVBOTZEMEJDNEY5QUUwMi8ya09iendQS19MVy1mdEN1ZXpLUGFmaU1H eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrT2J6d1BLX0xXLWZ0Q3VlektQYWZpTUd5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OEVCNi8zRUJGNDc5QTQxMTQxMUVDOEVBOTZEMEJDNEY5QUUwMi8ya09iendQS19M Vy1mdEN1ZXpLUGFmaU1HeXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzi1YHmSYcpn12+JBodKNag0ylowxUhtz8ITJ/oV3FRif/8j4nZUGG rypijsY9jWPloEnuZM4ObGHYRBe5j5AnusxeP5SXZo/39ARIN7eHy8gWekDlpKwP jwr1ol6TzuN2RmKJQ53N4xDthHHmhIntnkmlSNuzTtvbnTgPyZdox5xln6Jl6uq7 pUztlE7l3Zj5xXpcdgyGvIRQ+xCYotVdIsSCIXWyJS3TkRBcUNhQjaNRxZ15sUdL 0EXJlQFqkV2llJ/WoqApulWmMf6kf0QCEqf2D2jLSxTBF18nvm/X8gIdrLDZcJZO wpxPZmAX1ag2q0623Nrr0N+F6d6Womo4 -----END CERTIFICATE-----Generated at Fri Dec 19 18:56:08 2025 by rpki-client