This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft File: R2lFsh8liffnEnUf50f6IUOlI1s.mft (raw, json) Hash identifier: jrHsmUU5cvmzBaPsVzHfP+d672WFpqTuW1UxpP/cgWQ= Subject key identifier: 52:4B:A8:17:FB:23:E0:A5:03:E4:F5:98:C1:21:64:10:43:E8:E8:28 Authority key identifier: 47:69:45:B2:1F:25:89:F7:E7:12:75:1F:E7:47:FA:21:43:A5:23:5B Certificate issuer: /CN=A9132B1D/serialNumber=476945B21F2589F7E712751FE747FA2143A5235B Certificate serial: 02C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft Manifest number: 02C2 Signing time: Sat 06 Dec 2025 23:59:19 +0000 Manifest this update: Sat 06 Dec 2025 23:59:18 +0000 Manifest next update: Sat 13 Dec 2025 23:59:18 +0000 Files and hashes: 1: R2lFsh8liffnEnUf50f6IUOlI1s.crl (hash: DVeHDhkWJv6RUyX7B9kmoooNIOcXQN0GRNh/hAB8QF4=) 2: A917D87217A711ED8D17FC7CC4F9AE02.roa (hash: z4fSX+HgysFgztcLVSgzgNzcCLSP4fk+TSQS6+LuYQI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.crl rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:31:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 711 (0x2c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132B1D, serialNumber=476945B21F2589F7E712751FE747FA2143A5235B Validity Not Before: Dec 6 23:59:18 2025 GMT Not After : Dec 13 23:59:18 2025 GMT Subject: CN=6934c356-04dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:cf:89:4d:df:56:68:b0:ac:18:cd:52:29:bc: bd:23:a8:5c:2b:f2:da:43:76:26:0a:a0:6f:96:4f: 43:3c:b5:49:c1:84:2e:9c:25:a9:29:c0:11:8b:ca: 64:b3:f7:89:89:16:4d:84:f0:a6:8e:ff:44:e4:78: a8:41:f5:1c:fe:c1:e0:15:c4:07:8d:4b:a1:49:86: 31:3e:e6:e9:68:d0:49:cf:30:69:a0:fd:69:7a:7e: 58:d2:9e:c4:a4:c6:9b:e6:b1:de:90:47:e6:9c:cd: fa:3b:54:20:db:1f:2e:f7:03:a9:24:69:2a:c0:7f: ef:a8:e4:4b:c1:0a:15:32:13:9e:63:85:a9:6d:ed: 25:3f:7e:3b:34:51:87:33:42:86:7f:0b:bb:33:1b: b6:fd:03:50:5c:a0:ed:db:99:ba:d4:d4:f6:0c:6d: c8:76:f4:81:cd:21:ef:51:db:dd:ec:28:38:0a:f2: 39:11:b0:b7:47:c7:b3:be:1b:48:85:8e:21:31:7e: 0e:15:5e:a3:6a:34:ad:e9:0c:9e:9d:22:8e:99:15: 8f:28:91:46:3d:61:3a:ed:ca:2d:60:24:db:5e:8b: eb:62:48:73:7e:e0:06:1d:6c:dc:70:cf:63:0a:e3: 60:00:cd:b8:39:53:34:2a:6a:a0:c4:55:0b:5d:4e: 36:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:4B:A8:17:FB:23:E0:A5:03:E4:F5:98:C1:21:64:10:43:E8:E8:28 X509v3 Authority Key Identifier: keyid:47:69:45:B2:1F:25:89:F7:E7:12:75:1F:E7:47:FA:21:43:A5:23:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:79:e1:8c:95:8d:8b:05:49:35:5a:96:d8:8c:dd:e3:2e:6c: 42:5d:44:1e:c3:0d:fe:73:87:6f:37:9b:f4:14:05:97:08:cd: ee:08:4c:2c:2b:d4:ab:4a:ee:67:bc:03:42:69:fd:36:e0:ef: 1b:9f:89:b4:67:5a:14:5a:b0:bc:96:dd:75:46:49:3c:f7:01: 80:1c:2f:56:80:3b:41:cc:1d:eb:c5:29:7d:8a:24:04:4a:84: 4e:bc:67:6d:c6:23:8e:e1:a5:28:d9:4f:3b:da:26:34:ac:cb: ad:c0:52:2e:95:e2:33:e2:d2:04:b2:08:4b:6a:78:74:a6:08: 00:d5:8b:0c:16:a3:1c:22:81:71:ce:8d:f9:79:54:7e:e2:f4: 56:c6:13:e5:59:58:45:1f:c3:36:98:38:4d:d2:dc:21:73:34: 3b:b1:ef:8f:84:a0:8a:d7:0f:20:4b:dd:d2:9c:d2:a3:a1:0d: 29:ec:57:e2:ba:8d:cb:d0:39:14:ce:26:6f:f7:f8:c5:91:31: e3:e9:fa:d1:4e:94:65:f9:fe:60:15:e5:d4:14:cd:70:5b:11: 72:15:c9:23:01:e6:d7:75:de:12:3d:23:83:1a:2b:6c:86:ba: 7f:31:5e:6d:3d:ad:86:af:83:d8:36:40:c0:06:77:f2:4c:d3: 84:04:8a:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAscwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJCMUQxMTAvBgNVBAUTKDQ3Njk0NUIyMUYyNTg5RjdFNzEyNzUxRkU3NDdGQTIx NDNBNTIzNUIwHhcNMjUxMjA2MjM1OTE4WhcNMjUxMjEzMjM1OTE4WjAYMRYwFAYD VQQDEw02OTM0YzM1Ni0wNGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsM+JTd9WaLCsGM1SKby9I6hcK/LaQ3YmCqBvlk9DPLVJwYQunCWpKcARi8pk s/eJiRZNhPCmjv9E5HioQfUc/sHgFcQHjUuhSYYxPubpaNBJzzBpoP1pen5Y0p7E pMab5rHekEfmnM36O1Qg2x8u9wOpJGkqwH/vqORLwQoVMhOeY4Wpbe0lP347NFGH M0KGfwu7Mxu2/QNQXKDt25m61NT2DG3IdvSBzSHvUdvd7Cg4CvI5EbC3R8ezvhtI hY4hMX4OFV6jajSt6QyenSKOmRWPKJFGPWE67cotYCTbXovrYkhzfuAGHWzccM9j CuNgAM24OVM0KmqgxFULXU420QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFJLqBf7 I+ClA+T1mMEhZBBD6OgoMB8GA1UdIwQYMBaAFEdpRbIfJYn35xJ1H+dH+iFDpSNb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkIxRC8zMDIwM0VEMDE3 QTQxMUVEQjM2MDE1NjRDNEY5QUUwMi9SMmxGc2g4bGlmZm5FblVmNTBmNklVT2xJ MXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IybEZzaDhsaWZmbkVuVWY1MGY2SVVPbEkxcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkIxRC8zMDIwM0VEMDE3QTQxMUVEQjM2MDE1NjRDNEY5QUUwMi9SMmxGc2g4bGlm Zm5FblVmNTBmNklVT2xJMXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYeeGMlY2LBUk1WpbYjN3jLmxCXUQeww3+c4dvN5v0FAWXCM3uCEws K9SrSu5nvANCaf024O8bn4m0Z1oUWrC8lt11Rkk89wGAHC9WgDtBzB3rxSl9iiQE SoROvGdtxiOO4aUo2U872iY0rMutwFIuleIz4tIEsghLanh0pggA1YsMFqMcIoFx zo35eVR+4vRWxhPlWVhFH8M2mDhN0twhczQ7se+PhKCK1w8gS93SnNKjoQ0p7Ffi uo3L0DkUziZv9/jFkTHj6frRTpRl+f5gFeXUFM1wWxFyFckjAebXdd4SPSODGits hrp/MV5tPa2Gr4PYNkDABnfyTNOEBIrm -----END CERTIFICATE-----Generated at Sun Dec 7 01:55:43 2025 by rpki-client