This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft File: 2CIvXKRzliJE_BNBFXEOvtXjlWA.mft (raw, json) Hash identifier: 3ApfZxGLYFBFMVrXfIjBhUOdVkj3SlXzCU29yPNRGrA= Subject key identifier: 26:85:76:98:44:05:24:77:9C:5F:00:EC:9A:8D:07:41:DE:23:81:20 Authority key identifier: D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 Certificate issuer: /CN=A9119624/serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Certificate serial: 0C6E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft Manifest number: 0C67 Signing time: Sat 06 Dec 2025 17:20:18 +0000 Manifest this update: Sat 06 Dec 2025 17:20:18 +0000 Manifest next update: Sat 13 Dec 2025 17:20:18 +0000 Files and hashes: 1: 2CIvXKRzliJE_BNBFXEOvtXjlWA.crl (hash: 3VrWYN3ySnaYkN9dbmo3BfBAsxtCiq19C5fn9i4NjKU=) 2: A4049C06213E11EAAA89A95DC4F9AE02.roa (hash: QRoywFWHXAug9pKBi9YxGY/9TL/+S30Eoh/rpvCNFc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:20:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3182 (0xc6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119624, serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Validity Not Before: Dec 6 17:20:18 2025 GMT Not After : Dec 13 17:20:18 2025 GMT Subject: CN=693465d2-696a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6f:18:79:03:04:52:49:3a:8a:8d:41:df:c2: 2e:7c:09:07:59:20:2b:05:c3:92:ef:bd:26:4a:a3: d7:e8:d2:64:a3:c5:84:0f:69:07:7c:52:50:39:c0: 79:02:50:5a:b9:3a:bc:92:4b:d7:27:c5:e9:55:8e: 99:91:0a:8f:62:8b:27:20:1b:b0:fb:22:6b:3f:5e: 4b:88:68:1c:6b:9a:ce:f7:97:6e:fb:cd:ea:09:c0: 51:dc:e0:a8:69:96:89:ce:b6:30:1c:de:6a:97:17: 5e:53:f4:5f:b0:05:60:75:7b:53:c3:9f:4f:51:0d: 43:9d:fe:09:19:d2:c7:1d:d6:a6:85:11:e2:d7:b2: 76:4c:8b:28:e6:70:5e:c0:0b:9f:8d:e9:8f:3a:00: 1d:61:dd:28:c2:a4:79:39:fd:f7:df:85:1d:a5:c0: bf:74:8e:87:e0:a9:02:e6:ed:75:5f:ec:4b:c3:1c: ab:c6:18:df:9a:48:5d:27:4c:dd:e2:fb:37:e2:db: d9:dc:86:71:0e:26:c2:74:f3:59:3a:13:b2:e9:fc: 97:2a:25:f5:92:3a:d5:7d:fa:0a:66:00:c8:74:d4: 00:ca:78:92:35:a3:23:a8:05:78:b3:94:fc:b8:56: 6f:07:f1:09:02:0e:54:3c:4c:63:b1:7f:c7:e2:e5: ae:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:85:76:98:44:05:24:77:9C:5F:00:EC:9A:8D:07:41:DE:23:81:20 X509v3 Authority Key Identifier: keyid:D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:57:e5:fc:2c:cb:e9:78:ce:d9:8f:3e:a4:01:ef:6b:c9:c2: b6:9c:75:30:08:fc:32:08:77:0e:80:4d:bd:50:d8:cd:43:86: 2b:5a:ea:fc:d2:56:f1:e1:77:e6:52:59:ee:c3:a0:41:97:43: 2a:a7:17:97:1b:cc:73:90:74:ea:c8:aa:5d:8f:44:03:22:b4: 24:43:eb:75:5f:b6:e5:1b:d7:a3:17:3a:ec:16:72:2e:86:ba: c1:4b:e4:22:f4:d3:a7:d0:fc:49:d5:4d:88:6a:0e:36:18:40: 5b:a9:da:12:49:dc:78:05:c7:97:b0:9c:6f:a4:e7:24:83:17: 03:4c:57:67:7a:c7:bf:e2:08:67:35:3d:e9:19:1a:4c:0e:0d: 6b:3c:87:35:dc:26:82:ad:32:d2:ee:af:ed:e0:ae:f4:b7:92: 94:f4:38:f3:08:51:63:12:1a:fb:0f:ad:e1:c7:c1:fd:2b:86: 5c:53:d3:22:8b:27:e6:18:c1:3e:d7:57:09:a2:c3:8c:1b:12: 02:c4:2b:e5:2a:ce:5f:57:ba:72:86:89:53:20:41:b0:30:c5: f4:1a:b4:1d:63:ea:30:36:54:28:3f:da:c7:ec:b5:5a:96:ef: 05:7a:f6:4c:6b:6e:3d:87:e4:58:fd:fd:6d:7b:a6:55:dc:58: 2e:c5:59:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDG4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk2MjQxMTAvBgNVBAUTKEQ4MjIyRjVDQTQ3Mzk2MjI0NEZDMTM0MTE1NzEwRUJF RDVFMzk1NjAwHhcNMjUxMjA2MTcyMDE4WhcNMjUxMjEzMTcyMDE4WjAYMRYwFAYD VQQDEw02OTM0NjVkMi02OTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxm8YeQMEUkk6io1B38IufAkHWSArBcOS770mSqPX6NJko8WED2kHfFJQOcB5 AlBauTq8kkvXJ8XpVY6ZkQqPYosnIBuw+yJrP15LiGgca5rO95du+83qCcBR3OCo aZaJzrYwHN5qlxdeU/RfsAVgdXtTw59PUQ1Dnf4JGdLHHdamhRHi17J2TIso5nBe wAufjemPOgAdYd0owqR5Of3334UdpcC/dI6H4KkC5u11X+xLwxyrxhjfmkhdJ0zd 4vs34tvZ3IZxDibCdPNZOhOy6fyXKiX1kjrVffoKZgDIdNQAyniSNaMjqAV4s5T8 uFZvB/EJAg5UPExjsX/H4uWuawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCaFdphE BSR3nF8A7JqNB0HeI4EgMB8GA1UdIwQYMBaAFNgiL1ykc5YiRPwTQRVxDr7V45Vg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTYyNC9DNjk0ODIzNjEw RTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxpSkVfQk5CRlhFT3Z0WGps V0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJDSXZYS1J6bGlKRV9CTkJGWEVPdnRYamxXQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTYyNC9DNjk0ODIzNjEwRTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxp SkVfQk5CRlhFT3Z0WGpsV0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyV+X8LMvpeM7Zjz6kAe9rycK2nHUwCPwyCHcOgE29UNjNQ4YrWur8 0lbx4XfmUlnuw6BBl0MqpxeXG8xzkHTqyKpdj0QDIrQkQ+t1X7blG9ejFzrsFnIu hrrBS+Qi9NOn0PxJ1U2Iag42GEBbqdoSSdx4BceXsJxvpOckgxcDTFdnese/4ghn NT3pGRpMDg1rPIc13CaCrTLS7q/t4K70t5KU9DjzCFFjEhr7D63hx8H9K4ZcU9Mi iyfmGME+11cJosOMGxICxCvlKs5fV7pyholTIEGwMMX0GrQdY+owNlQoP9rH7LVa lu8FevZMa249h+RY/f1te6ZV3FguxVmX -----END CERTIFICATE-----Generated at Sun Dec 7 06:11:28 2025 by rpki-client