This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft File: 2lexkcVbszGevZGC3A1Oau8-Ddg.mft (raw, json) Hash identifier: 38FAdAMN1us6RzA1Jx3ySPH9vzsD16bIX0hQitP4hkY= Subject key identifier: 9F:5B:D5:6F:C0:DF:1E:0F:F8:08:A9:A3:27:F6:D9:DB:06:8B:21:B5 Authority key identifier: DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 Certificate issuer: /CN=A912A31E/serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Certificate serial: 01F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft Manifest number: 01EA Signing time: Fri 05 Dec 2025 00:55:00 +0000 Manifest this update: Fri 05 Dec 2025 00:54:59 +0000 Manifest next update: Fri 12 Dec 2025 00:54:59 +0000 Files and hashes: 1: 2lexkcVbszGevZGC3A1Oau8-Ddg.crl (hash: NS6iBC3kt1EJhwPDQtmzIPGC372I7iYuP8TOLxuBuMw=) 2: 5181F33CE8C011EDADA54A23C4F9AE02.roa (hash: Rkwm42Vb05Pye3RGHBOFC1rkc6+xEeMKra2X3IcXiEc=) 3: 7DA38A8E727011F08682A20EC4F9AE02.roa (hash: Wwngk0PhTjjlaVWZbm+erGU8S4svzLGsMCsoXoSIiNE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:54:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 496 (0x1f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A31E, serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Validity Not Before: Dec 5 00:54:59 2025 GMT Not After : Dec 12 00:54:59 2025 GMT Subject: CN=69322d63-14d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:4e:f5:7f:08:9b:2d:02:a2:89:9b:4f:60:d1: 69:4f:40:2f:66:60:54:e4:b4:4e:7b:41:d4:fe:6c: 9b:51:b5:df:ed:e3:cb:a1:47:5b:cd:27:10:c9:4b: 56:d4:53:54:d8:ad:b8:47:df:67:f8:46:ca:fc:e4: b1:32:e0:e9:c4:74:7c:a6:59:48:dc:3b:8d:4f:de: 69:4e:c3:3a:8a:dc:24:c7:25:bb:1c:68:42:78:40: 9c:11:78:52:b4:0a:8a:a3:0b:87:d0:ad:ff:92:74: 19:b9:86:b3:40:f0:4a:f1:f9:8b:a3:34:24:6e:e5: 9c:f2:85:35:e2:f8:49:c8:92:d3:7b:7e:f6:52:06: 3b:50:a3:2e:f7:c5:cb:29:8c:3e:20:5c:8c:13:49: b8:6d:06:4c:32:1e:95:81:9a:9d:f2:38:f6:e6:ab: e7:97:0f:b6:d9:01:dc:06:6e:12:66:54:2b:0a:18: e7:2b:12:8f:a5:02:00:eb:12:60:98:02:62:ac:6c: 92:79:18:f2:5d:52:a7:5c:ff:a9:2e:07:99:0f:6b: 62:d2:25:2a:12:07:ce:19:2f:0f:80:8d:bf:a2:12: c9:5e:b4:06:3d:e6:df:72:61:76:f9:5c:0a:54:8b: 91:e1:48:2a:e2:cc:9c:4e:02:55:8a:cf:87:49:aa: 1b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:5B:D5:6F:C0:DF:1E:0F:F8:08:A9:A3:27:F6:D9:DB:06:8B:21:B5 X509v3 Authority Key Identifier: keyid:DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:04:63:21:3e:09:35:81:cd:6a:1c:45:17:c1:09:a9:cc:94: 30:f7:5c:2f:70:56:3c:b1:36:6f:bc:f1:39:a9:5f:d1:aa:d2: 7c:52:e4:79:60:b7:dd:e5:bd:4f:d6:2d:d1:fe:65:b4:5b:7f: c9:3a:4c:29:99:d0:9e:2a:50:14:49:e0:3e:65:52:fa:e9:7d: e6:32:db:0a:55:aa:21:eb:e7:75:2c:5a:fc:9c:f6:3a:68:9f: 5f:0c:e3:5a:59:36:2c:7c:85:fc:7c:e0:15:53:a9:02:9d:b8: 82:ca:49:d2:cb:d1:2a:ad:1f:c6:42:d9:3f:9d:69:5e:b3:64: 22:08:86:60:05:a8:76:4a:bf:17:86:97:2d:1c:50:42:12:c0: 1c:52:b4:b3:8c:83:a5:73:ed:2e:16:18:27:1b:86:17:82:f9: db:13:40:22:b3:1b:ba:ef:2c:e9:bf:d2:69:ab:87:f9:34:89: a1:11:fa:1e:ca:3f:6c:b2:16:18:2c:56:b8:f7:b5:04:98:f9: 3f:dc:46:a1:67:07:c3:5f:d4:45:10:75:ea:94:9d:f7:60:6d: d8:c7:2c:ec:96:e6:58:c0:17:fe:0f:78:53:36:d0:b4:6e:04: 2b:d6:30:69:e8:44:fa:d6:35:db:f5:02:58:13:cf:d7:95:26: d7:d7:fe:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzMUUxMTAvBgNVBAUTKERBNTdCMTkxQzU1QkIzMzE5RUJEOTE4MkRDMEQ0RTZB RUYzRTBERDgwHhcNMjUxMjA1MDA1NDU5WhcNMjUxMjEyMDA1NDU5WjAYMRYwFAYD VQQDEw02OTMyMmQ2My0xNGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9U71fwibLQKiiZtPYNFpT0AvZmBU5LROe0HU/mybUbXf7ePLoUdbzScQyUtW 1FNU2K24R99n+EbK/OSxMuDpxHR8pllI3DuNT95pTsM6itwkxyW7HGhCeECcEXhS tAqKowuH0K3/knQZuYazQPBK8fmLozQkbuWc8oU14vhJyJLTe372UgY7UKMu98XL KYw+IFyME0m4bQZMMh6VgZqd8jj25qvnlw+22QHcBm4SZlQrChjnKxKPpQIA6xJg mAJirGySeRjyXVKnXP+pLgeZD2ti0iUqEgfOGS8PgI2/ohLJXrQGPebfcmF2+VwK VIuR4Ugq4sycTgJVis+HSaoblQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ9b1W/A 3x4P+Aipoyf22dsGiyG1MB8GA1UdIwQYMBaAFNpXsZHFW7Mxnr2RgtwNTmrvPg3Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTMxRS9DOEE0QzRFNEU4 QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6R2V2WkdDM0ExT2F1OC1E ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZXhrY1Zic3pHZXZaR0MzQTFPYXU4LURkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTMxRS9DOEE0QzRFNEU4QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6 R2V2WkdDM0ExT2F1OC1EZGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKBGMhPgk1gc1qHEUXwQmpzJQw91wvcFY8sTZvvPE5qV/RqtJ8UuR5 YLfd5b1P1i3R/mW0W3/JOkwpmdCeKlAUSeA+ZVL66X3mMtsKVaoh6+d1LFr8nPY6 aJ9fDONaWTYsfIX8fOAVU6kCnbiCyknSy9EqrR/GQtk/nWles2QiCIZgBah2Sr8X hpctHFBCEsAcUrSzjIOlc+0uFhgnG4YXgvnbE0Aisxu67yzpv9Jpq4f5NImhEfoe yj9sshYYLFa497UEmPk/3EahZwfDX9RFEHXqlJ33YG3YxyzsluZYwBf+D3hTNtC0 bgQr1jBp6ET61jXb9QJYE8/XlSbX1/65 -----END CERTIFICATE-----Generated at Sat Dec 6 23:25:37 2025 by rpki-client