This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft File: 2xy4SFQGnkPKG3JdQuprqbU5gVs.mft (raw, json) Hash identifier: PWvU8PltEXKtxWIX93IKGzyqTMEXw5FJ2IJ33m163Ms= Subject key identifier: E0:F5:66:A6:5C:A6:6C:55:1D:55:1A:C1:F7:B8:2D:AE:9E:7C:B9:6E Authority key identifier: DB:1C:B8:48:54:06:9E:43:CA:1B:72:5D:42:EA:6B:A9:B5:39:81:5B Certificate issuer: /CN=A918F88D/serialNumber=DB1CB84854069E43CA1B725D42EA6BA9B539815B Certificate serial: 0D03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft Manifest number: 0CEB Signing time: Sat 20 Dec 2025 17:50:43 +0000 Manifest this update: Sat 20 Dec 2025 17:50:43 +0000 Manifest next update: Sat 27 Dec 2025 17:50:43 +0000 Files and hashes: 1: 2xy4SFQGnkPKG3JdQuprqbU5gVs.crl (hash: p16XOo4kgSybJSWW4zSdj7whn4dRfiEVg6klyExrfac=) 2: BC36A3E8A67E11F0A35CBF40C4F9AE02.roa (hash: Zy1Cr+ByTtuPlrpGjoVSDT6QhmmfCIHpbLzangTlT68=) 3: 55903190A67E11F0BBF9853FC4F9AE02.roa (hash: AdYW9GJhci7LYEDyJ6XwBJoZPBWZtoWOpqlz3zLpEms=) 4: 18F7410671F311ECBA5DA710C4F9AE02.roa (hash: tIg3kB0f/wtqp+Q6ik7/n7dKrrQEFLMxhaaJzHV4nr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.crl rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 17:50:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3331 (0xd03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F88D, serialNumber=DB1CB84854069E43CA1B725D42EA6BA9B539815B Validity Not Before: Dec 20 17:50:43 2025 GMT Not After : Dec 27 17:50:43 2025 GMT Subject: CN=6946e1f3-9d6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:16:e1:c0:56:0a:df:fc:b1:c8:3d:da:9a:8b: 83:c8:65:60:de:89:93:7e:3b:e6:8f:7d:db:86:d2: d0:4d:95:6f:c7:f0:5c:b4:3b:11:f6:10:fe:74:73: 77:06:00:71:cc:b9:4b:db:87:8c:2f:7c:08:48:12: 20:53:5c:8a:be:30:b5:07:49:c4:a3:a8:15:e5:d3: 3d:39:aa:71:3c:cf:d2:9f:6a:97:27:42:0d:29:42: 98:11:52:8c:f0:a6:e8:b1:aa:2d:06:36:01:6e:b0: 19:1a:8b:da:56:e4:46:50:29:2d:d1:29:79:42:ea: 54:63:6b:55:1e:84:6d:c9:2e:82:7a:b8:62:b6:6e: e5:26:cd:e5:da:8e:46:38:eb:14:9f:f4:c3:c7:c1: d6:d0:64:ec:45:50:5f:58:ed:05:66:5f:ed:72:54: 62:0d:55:29:90:56:c7:66:4c:c4:3d:29:e1:2d:1e: 85:66:47:71:e8:72:cc:ef:bd:80:fd:27:b2:26:f7: 63:b0:b9:10:77:b8:c9:02:81:93:dd:4d:65:d0:88: 09:aa:45:60:93:8a:19:35:e7:ee:6d:25:cc:5d:23: 21:a9:67:ab:93:cf:fa:70:c3:72:e9:9e:0d:0b:b2: e9:2f:85:05:35:58:52:f2:cc:f8:c7:51:d8:cb:32: fa:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:F5:66:A6:5C:A6:6C:55:1D:55:1A:C1:F7:B8:2D:AE:9E:7C:B9:6E X509v3 Authority Key Identifier: keyid:DB:1C:B8:48:54:06:9E:43:CA:1B:72:5D:42:EA:6B:A9:B5:39:81:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:99:f8:e1:7e:cc:51:8e:1f:08:f5:cc:e4:63:09:0c:08:88: 21:ef:41:a8:57:98:24:ba:e0:bb:83:a6:e5:0f:45:50:1e:3f: cd:03:e9:b4:a2:22:9d:77:40:64:02:1c:3e:2b:bc:5c:ca:8c: be:11:0d:2b:9b:3b:c6:e0:84:92:90:1a:6c:86:22:7b:d0:bd: 15:34:b0:3c:f3:eb:4d:04:2b:ab:92:f5:b2:26:c7:46:84:6c: 92:65:5c:d7:ad:72:59:e6:33:21:8e:c6:25:45:ec:18:57:65: 2d:1b:d8:51:57:bc:32:09:a8:9a:ff:f1:39:c7:41:1f:b8:37: 80:e2:da:2e:eb:15:83:22:6e:5c:44:6c:19:50:7a:80:7c:e0: d5:8d:ee:92:fe:41:73:40:30:ca:ac:dc:b1:b6:c0:64:27:43: d3:61:8d:75:a9:f2:ff:db:02:0f:1e:0d:55:20:a8:34:2e:d3: f1:0b:5d:bb:1b:c9:67:b3:0b:a1:ad:24:60:c8:ce:30:15:c3: e3:e3:d9:01:a7:d2:ab:89:23:51:34:ff:7a:fe:85:af:b5:12: 49:47:14:08:cf:cc:55:df:aa:21:75:68:28:46:62:2b:ec:8d: 45:45:40:b3:34:92:33:49:13:62:29:b9:69:18:d8:81:95:fb: e5:90:36:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY4OEQxMTAvBgNVBAUTKERCMUNCODQ4NTQwNjlFNDNDQTFCNzI1RDQyRUE2QkE5 QjUzOTgxNUIwHhcNMjUxMjIwMTc1MDQzWhcNMjUxMjI3MTc1MDQzWjAYMRYwFAYD VQQDDA02OTQ2ZTFmMy05ZDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqRbhwFYK3/yxyD3amouDyGVg3omTfjvmj33bhtLQTZVvx/BctDsR9hD+dHN3 BgBxzLlL24eML3wISBIgU1yKvjC1B0nEo6gV5dM9OapxPM/Sn2qXJ0INKUKYEVKM 8KbosaotBjYBbrAZGovaVuRGUCkt0Sl5QupUY2tVHoRtyS6Cerhitm7lJs3l2o5G OOsUn/TDx8HW0GTsRVBfWO0FZl/tclRiDVUpkFbHZkzEPSnhLR6FZkdx6HLM772A /SeyJvdjsLkQd7jJAoGT3U1l0IgJqkVgk4oZNefubSXMXSMhqWerk8/6cMNy6Z4N C7LpL4UFNVhS8sz4x1HYyzL6AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOD1ZqZc pmxVHVUawfe4La6efLluMB8GA1UdIwQYMBaAFNscuEhUBp5DyhtyXULqa6m1OYFb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjg4RC8yQTE0QkUwODAw NUExMUVBOEZEQ0ExMzBDNEY5QUUwMi8yeHk0U0ZRR25rUEtHM0pkUXVwcnFiVTVn VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ4eTRTRlFHbmtQS0czSmRRdXBycWJVNWdWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Rjg4RC8yQTE0QkUwODAwNUExMUVBOEZEQ0ExMzBDNEY5QUUwMi8yeHk0U0ZRR25r UEtHM0pkUXVwcnFiVTVnVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApmfjhfsxRjh8I9czkYwkMCIgh70GoV5gkuuC7g6blD0VQHj/NA+m0 oiKdd0BkAhw+K7xcyoy+EQ0rmzvG4ISSkBpshiJ70L0VNLA88+tNBCurkvWyJsdG hGySZVzXrXJZ5jMhjsYlRewYV2UtG9hRV7wyCaia//E5x0EfuDeA4tou6xWDIm5c RGwZUHqAfODVje6S/kFzQDDKrNyxtsBkJ0PTYY11qfL/2wIPHg1VIKg0LtPxC127 G8lnswuhrSRgyM4wFcPj49kBp9KriSNRNP96/oWvtRJJRxQIz8xV36ohdWgoRmIr 7I1FRUCzNJIzSRNiKblpGNiBlfvlkDbI -----END CERTIFICATE-----Generated at Sat Dec 20 22:24:16 2025 by rpki-client