This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.mft File: 2CWolzNYl8B-dpODimvyAnZYDwM.mft (raw, json) Hash identifier: H0xIV2exc4Iu7Vc+2JhjNoFvTqPGm4xWNiMw6DZf478= Subject key identifier: 3A:80:2C:FB:F2:2A:4E:C4:78:67:EE:0A:6C:73:6C:E6:11:7A:78:63 Authority key identifier: D8:25:A8:97:33:58:97:C0:7E:76:93:83:8A:6B:F2:02:76:58:0F:03 Certificate issuer: /CN=A9199DE2/serialNumber=D825A897335897C07E7693838A6BF20276580F03 Certificate serial: 0672 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CWolzNYl8B-dpODimvyAnZYDwM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.mft Manifest number: 0667 Signing time: Sun 28 Dec 2025 21:50:23 +0000 Manifest this update: Sun 28 Dec 2025 21:50:23 +0000 Manifest next update: Sun 04 Jan 2026 21:50:23 +0000 Files and hashes: 1: 2CWolzNYl8B-dpODimvyAnZYDwM.crl (hash: gG1AIidnkxSOr2hegIENrQGImc3KJRClyp3r+Uqby/0=) 2: E6ECE6E6104C11EC9074E586C4F9AE02.roa (hash: 77Yfn2zZf59rOT/IVF3xBzYxwVSoxkPTednWePSlyc0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.crl rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CWolzNYl8B-dpODimvyAnZYDwM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 21:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1650 (0x672) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199DE2, serialNumber=D825A897335897C07E7693838A6BF20276580F03 Validity Not Before: Dec 28 21:50:23 2025 GMT Not After : Jan 4 21:50:23 2026 GMT Subject: CN=6951a61f-d3de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:16:a2:04:af:26:b0:6c:5b:a0:30:3c:6d:4a: 2e:2d:9d:71:b3:2b:a1:74:a5:e9:63:d1:0d:74:95: 3d:9e:70:23:15:25:08:d5:53:7b:c1:9a:ff:c8:4e: 1d:ee:7c:0a:fb:e8:0b:0f:bb:ec:8a:b9:b6:d8:f6: cd:11:6e:c9:30:3c:68:bf:2f:bf:ef:62:69:bd:9c: 50:1c:8a:90:11:70:f5:c8:6a:8e:58:87:8d:3c:2d: 46:ab:1a:36:4f:63:50:b5:45:c1:0f:34:ed:ce:c5: ac:fd:b5:ab:38:84:9a:35:17:13:6f:b9:f9:ed:95: cb:56:4d:dc:2c:ec:8b:61:58:ce:a9:7e:3b:d9:bc: be:13:7b:0b:99:d5:80:2f:73:71:55:f6:27:17:c7: 87:b1:db:39:74:22:92:86:fb:f6:70:8e:34:e5:29: 56:df:18:a7:90:64:07:ce:21:ab:ed:f6:dc:99:c9: fb:2f:1f:1a:2f:cc:a2:f6:40:b4:74:60:13:74:14: 20:90:cf:73:fa:b5:1d:7a:ef:98:a9:12:27:84:48: b3:ce:fb:44:ca:88:da:20:94:3c:b3:5f:59:65:07: 52:31:b3:a7:42:fe:30:42:21:bf:dd:e3:54:9f:b8: e5:67:a6:55:5e:af:da:a4:c1:63:ed:09:46:76:4e: 5a:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:80:2C:FB:F2:2A:4E:C4:78:67:EE:0A:6C:73:6C:E6:11:7A:78:63 X509v3 Authority Key Identifier: keyid:D8:25:A8:97:33:58:97:C0:7E:76:93:83:8A:6B:F2:02:76:58:0F:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CWolzNYl8B-dpODimvyAnZYDwM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:d0:2a:4b:39:9f:45:4e:15:97:0d:29:ec:ee:a2:49:ea:16: be:61:21:8d:d3:3d:6d:c9:9d:52:53:27:f7:b3:ca:6a:f8:33: 96:29:3b:66:86:14:f6:5b:0b:25:cd:c6:d7:0f:6d:86:33:2e: 6f:ce:40:18:44:a6:83:d8:52:c3:15:66:af:6a:79:d1:c7:87: 35:9b:6c:13:53:93:29:39:1a:9b:dd:e0:7a:58:b0:ea:99:1d: a6:61:1b:38:1a:06:6c:f6:37:a9:4a:13:57:56:b2:ae:e9:54: 24:ba:7c:6f:ac:ae:46:fb:f3:b6:81:44:a9:ef:32:82:60:bd: c4:42:76:ba:cf:70:c1:0a:6c:7f:ec:9c:bb:26:16:fe:01:de: 09:44:06:e7:af:20:ec:79:49:64:62:20:90:be:23:74:65:88: 46:f0:88:a2:79:6f:c1:64:d6:a4:25:28:23:02:ef:f1:db:7a: f5:81:c3:55:17:25:88:6d:cc:49:5b:2f:4e:6c:3c:7c:38:04: d7:a7:18:e5:5d:b6:75:19:f8:45:d2:db:88:24:48:17:79:07: 13:78:14:7b:f0:05:40:57:43:c0:a8:fa:44:c8:2f:3a:a1:ee: 78:0f:7e:d0:55:9e:f2:ff:8e:bb:8d:38:f2:b0:7f:cf:7d:95: 8b:e8:97:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlERTIxMTAvBgNVBAUTKEQ4MjVBODk3MzM1ODk3QzA3RTc2OTM4MzhBNkJGMjAy NzY1ODBGMDMwHhcNMjUxMjI4MjE1MDIzWhcNMjYwMTA0MjE1MDIzWjAYMRYwFAYD VQQDDA02OTUxYTYxZi1kM2RlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1BaiBK8msGxboDA8bUouLZ1xsyuhdKXpY9ENdJU9nnAjFSUI1VN7wZr/yE4d 7nwK++gLD7vsirm22PbNEW7JMDxovy+/72JpvZxQHIqQEXD1yGqOWIeNPC1Gqxo2 T2NQtUXBDzTtzsWs/bWrOISaNRcTb7n57ZXLVk3cLOyLYVjOqX472by+E3sLmdWA L3NxVfYnF8eHsds5dCKShvv2cI405SlW3xinkGQHziGr7fbcmcn7Lx8aL8yi9kC0 dGATdBQgkM9z+rUdeu+YqRInhEizzvtEyojaIJQ8s19ZZQdSMbOnQv4wQiG/3eNU n7jlZ6ZVXq/apMFj7QlGdk5aywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDqALPvy Kk7EeGfuCmxzbOYRenhjMB8GA1UdIwQYMBaAFNglqJczWJfAfnaTg4pr8gJ2WA8D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OURFMi9BM0E1MjEwNkFF RDAxMUVCQkYzRkQ3NjNDNEY5QUUwMi8yQ1dvbHpOWWw4Qi1kcE9EaW12eUFuWllE d00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDV29sek5ZbDhCLWRwT0RpbXZ5QW5aWUR3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OURFMi9BM0E1MjEwNkFFRDAxMUVCQkYzRkQ3NjNDNEY5QUUwMi8yQ1dvbHpOWWw4 Qi1kcE9EaW12eUFuWllEd00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDE0CpLOZ9FThWXDSns7qJJ6ha+YSGN0z1tyZ1SUyf3s8pq+DOWKTtm hhT2WwslzcbXD22GMy5vzkAYRKaD2FLDFWavannRx4c1m2wTU5MpORqb3eB6WLDq mR2mYRs4GgZs9jepShNXVrKu6VQkunxvrK5G+/O2gUSp7zKCYL3EQna6z3DBCmx/ 7Jy7Jhb+Ad4JRAbnryDseUlkYiCQviN0ZYhG8IiieW/BZNakJSgjAu/x23r1gcNV FyWIbcxJWy9ObDx8OATXpxjlXbZ1GfhF0tuIJEgXeQcTeBR78AVAV0PAqPpEyC86 oe54D37QVZ7y/467jTjysH/PfZWL6Jea -----END CERTIFICATE-----Generated at Mon Dec 29 10:13:38 2025 by rpki-client