This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft File: 2h2yzTH0VPaVYdhmXck--BLzl7A.mft (raw, json) Hash identifier: uggHVIEQKzr4AleK7165WG8jEDnWyvSSrOzbivlPLYE= Subject key identifier: 1D:B4:AC:1D:F1:3B:9D:60:23:29:60:D8:BD:D6:B1:95:A3:87:56:54 Authority key identifier: DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 Certificate issuer: /CN=A919A7CA/serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Certificate serial: 0197 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft Manifest number: 018D Signing time: Fri 19 Dec 2025 02:43:56 +0000 Manifest this update: Fri 19 Dec 2025 02:43:55 +0000 Manifest next update: Fri 26 Dec 2025 02:43:55 +0000 Files and hashes: 1: 2h2yzTH0VPaVYdhmXck--BLzl7A.crl (hash: jCNN4t6McX0huIKq6rNrJBhMG0b8//qmNJn/4imk6Jk=) 2: 4317395081E611EE9EFE132BC4F9AE02.roa (hash: tQp/nzqfCovKInVuREO99dY4qu3efR3x/X9HpDvqlY0=) 3: 730B201A81E911EEAEFE7735C4F9AE02.roa (hash: s0CFqQaJE4zfLQbz4CeHwWhJkg8L6CDsaxGgDdisTeI=) 4: E71AB92A7F7D11EE8C183162C4F9AE02.roa (hash: Dsh7pIT1SQfv6ivkNmsm2ZCHRytBDFAmEgjeRNzC7do=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:43:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 407 (0x197) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A7CA, serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Validity Not Before: Dec 19 02:43:55 2025 GMT Not After : Dec 26 02:43:55 2025 GMT Subject: CN=6944bbec-a820 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:69:54:9d:de:03:dc:62:b4:bd:b8:69:a6:a5: a7:21:a0:1a:bb:2e:f4:8e:03:a6:9a:51:9b:79:40: 12:12:ef:9f:7e:50:68:3d:80:1d:4d:27:14:28:c3: 70:ab:4a:02:eb:b0:f6:5d:45:d7:95:8f:b7:da:b2: 04:aa:04:da:b8:d5:c2:57:3c:38:19:dd:a1:d9:23: 39:c4:72:ee:bc:ad:44:cd:6b:61:3a:4f:bd:41:b0: 8b:7e:6f:ff:40:2f:73:45:ef:f1:33:2b:15:6d:73: 5f:c4:fa:16:37:ef:98:38:c6:c6:44:55:d7:55:1c: 7b:6b:82:92:ab:fd:0f:2c:ed:07:de:cf:27:60:d9: 36:9c:65:32:12:10:f7:68:65:cc:57:66:0a:90:8c: 05:c3:fd:22:38:e6:ae:6a:a9:b7:ae:1d:47:a6:75: c5:16:0b:58:6e:60:41:fd:0a:f9:c2:50:2e:87:58: f0:36:34:f4:3d:20:71:b0:a2:0d:38:8a:ea:05:42: 83:96:6a:c0:55:14:c7:b7:b9:86:45:07:09:7f:3b: fc:40:c0:2d:75:c6:1a:5a:f4:48:1e:95:5c:af:31: 35:58:d3:ef:80:7e:35:cc:a2:14:19:f6:f0:35:70: b6:14:b1:f4:7d:5c:71:9c:31:3b:20:0e:46:b9:98: d6:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:B4:AC:1D:F1:3B:9D:60:23:29:60:D8:BD:D6:B1:95:A3:87:56:54 X509v3 Authority Key Identifier: keyid:DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:4c:92:18:fd:2c:3f:d6:56:d1:1e:b6:b2:6f:c8:9b:53:37: d9:33:d9:31:7f:67:6a:5f:fd:ba:ca:6a:8c:14:36:08:b0:cc: 0a:73:54:70:a8:d3:07:76:f8:64:d4:c4:7f:3a:3b:97:92:c1: a5:60:cd:9f:93:8c:4a:ae:4a:c2:f8:58:e0:62:52:59:6c:e2: f6:cd:14:c5:13:5d:8f:4f:8f:2a:b3:89:f0:eb:ac:a0:9f:77: 91:e8:86:fd:9a:c4:6d:ff:44:7e:d4:93:b5:df:d0:fb:a5:b8: e3:ba:01:7a:f9:b2:60:00:8e:77:ba:ce:5e:33:75:9f:d3:53: cd:6b:7c:1b:16:12:b2:26:24:0d:cc:86:27:6c:6e:8d:c4:a7: fe:09:85:8d:8d:b5:27:6c:d6:ce:d6:a8:6d:ed:24:48:16:04: ab:da:35:88:0b:35:63:de:04:1d:ca:ad:60:60:30:bd:d4:dd: 19:85:c0:61:1a:02:dc:5b:4f:c8:14:c9:d1:84:ff:b8:0c:91: 5f:98:21:21:06:a7:14:5b:b0:15:80:b4:f8:47:1d:64:2a:37: 22:a7:ec:02:da:ad:c7:3a:9f:46:97:d1:3b:fa:4d:94:21:6c: 65:f5:a6:a2:43:b3:65:0f:ea:85:19:a0:6a:e6:37:63:8b:46: b4:4b:f6:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE3Q0ExMTAvBgNVBAUTKERBMURCMkNEMzFGNDU0RjY5NTYxRDg2NjVEQzkzRUY4 MTJGMzk3QjAwHhcNMjUxMjE5MDI0MzU1WhcNMjUxMjI2MDI0MzU1WjAYMRYwFAYD VQQDDA02OTQ0YmJlYy1hODIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj2lUnd4D3GK0vbhppqWnIaAauy70jgOmmlGbeUASEu+fflBoPYAdTScUKMNw q0oC67D2XUXXlY+32rIEqgTauNXCVzw4Gd2h2SM5xHLuvK1EzWthOk+9QbCLfm// QC9zRe/xMysVbXNfxPoWN++YOMbGRFXXVRx7a4KSq/0PLO0H3s8nYNk2nGUyEhD3 aGXMV2YKkIwFw/0iOOauaqm3rh1HpnXFFgtYbmBB/Qr5wlAuh1jwNjT0PSBxsKIN OIrqBUKDlmrAVRTHt7mGRQcJfzv8QMAtdcYaWvRIHpVcrzE1WNPvgH41zKIUGfbw NXC2FLH0fVxxnDE7IA5GuZjWEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB20rB3x O51gIylg2L3WsZWjh1ZUMB8GA1UdIwQYMBaAFNodss0x9FT2lWHYZl3JPvgS85ew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTdDQS80Q0Y3RjE1ODdF QjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQYVZZZGhtWGNrLS1CTHps N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJoMnl6VEgwVlBhVllkaG1YY2stLUJMemw3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTdDQS80Q0Y3RjE1ODdFQjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQ YVZZZGhtWGNrLS1CTHpsN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPTJIY/Sw/1lbRHrayb8ibUzfZM9kxf2dqX/26ymqMFDYIsMwKc1Rw qNMHdvhk1MR/OjuXksGlYM2fk4xKrkrC+FjgYlJZbOL2zRTFE12PT48qs4nw66yg n3eR6Ib9msRt/0R+1JO139D7pbjjugF6+bJgAI53us5eM3Wf01PNa3wbFhKyJiQN zIYnbG6NxKf+CYWNjbUnbNbO1qht7SRIFgSr2jWICzVj3gQdyq1gYDC91N0ZhcBh GgLcW0/IFMnRhP+4DJFfmCEhBqcUW7AVgLT4Rx1kKjcip+wC2q3HOp9Gl9E7+k2U IWxl9aaiQ7NlD+qFGaBq5jdji0a0S/aK -----END CERTIFICATE-----Generated at Fri Dec 19 17:46:57 2025 by rpki-client