This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft File: 2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft (raw, json) Hash identifier: 0w9jaKGpqw45hM85kx4aJ/HTlOoGCuF+gzZJxJk/qVE= Subject key identifier: 37:4D:6D:67:7B:B1:30:FA:45:EA:88:C4:EF:23:A9:AC:D3:E1:A9:7E Authority key identifier: DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF Certificate issuer: /CN=A9140E66/serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Certificate serial: 0CD1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft Manifest number: 0CC7 Signing time: Sat 06 Dec 2025 17:33:54 +0000 Manifest this update: Sat 06 Dec 2025 17:33:54 +0000 Manifest next update: Sat 13 Dec 2025 17:33:54 +0000 Files and hashes: 1: 2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl (hash: 4lP86GR75QH3f3+k86E4CnRBcwmEUfV6xUHmTvdXbRM=) 2: 44FEC394589711F0B981A181C4F9AE02.roa (hash: czF1g9Ex6VYm+KxfQ/94CmFck1ccrgeMZN09KqEwv5g=) 3: C21D3A065B7E11F0A8B76B2EC4F9AE02.roa (hash: 84DuWQA+97cDdeAiob2yXUJKVlhHSu21Cq4u1ZPXmWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:33:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3281 (0xcd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140E66, serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Validity Not Before: Dec 6 17:33:54 2025 GMT Not After : Dec 13 17:33:54 2025 GMT Subject: CN=69346902-6392 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:fc:7a:f0:60:da:ea:80:83:dc:85:fa:71:10: 4d:92:ea:af:63:18:91:3c:d9:49:72:6b:01:9b:d6: b5:0a:63:6a:d4:f2:a7:03:94:13:43:57:30:98:85: 26:25:62:20:ab:e1:a8:60:4d:f8:d9:3f:14:98:aa: 5c:c5:c4:c8:19:21:a2:bd:52:42:04:ad:45:6d:62: ac:75:cf:e5:85:fc:44:93:15:eb:14:37:1f:7b:92: 8a:0d:4c:2d:d4:83:b9:c5:c6:e3:2b:36:1d:b2:ee: 95:d5:89:e3:00:35:57:fd:11:7a:80:2b:9e:e9:ad: 92:6c:e3:f0:b0:3a:57:03:4b:da:03:cc:7b:81:4e: 44:30:a9:2a:94:0b:65:0a:23:ac:c6:c6:45:15:3a: 93:08:ab:eb:4d:8b:d4:21:44:fb:65:cf:94:13:3f: 1f:f2:58:06:e1:73:37:da:34:bd:85:bf:65:9a:f6: 39:5b:bc:64:4c:3b:f3:79:ea:f4:11:3f:b9:f4:e3: 22:45:47:4d:f2:0e:c4:b8:c7:1e:b5:89:11:08:b5: 1e:5d:eb:f8:aa:bf:c8:f8:90:69:1b:d5:12:4d:61: 13:da:c5:35:61:79:ac:1d:19:10:da:a8:d7:d4:4d: cc:1b:24:6d:d8:b0:94:1b:a8:2f:8f:71:ce:42:15: 29:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:4D:6D:67:7B:B1:30:FA:45:EA:88:C4:EF:23:A9:AC:D3:E1:A9:7E X509v3 Authority Key Identifier: keyid:DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:dd:15:84:fa:31:5e:5e:59:54:7d:22:86:b3:e9:0a:f3:e5: 0d:47:83:eb:54:96:e7:f0:3e:e3:32:b1:e1:e5:ab:31:ab:0d: 48:7e:bb:23:3d:11:88:2c:65:64:c6:2a:d5:c0:cd:22:49:bd: d6:42:06:45:93:71:a9:d3:d1:6e:83:90:8c:63:b6:01:44:91: 8b:55:4f:ac:67:39:43:8d:65:0b:8d:bf:28:b0:40:4b:c0:3f: fc:1e:e8:c0:48:c7:59:b7:39:bf:b7:0e:90:20:e9:9e:39:66: be:26:5f:7f:dd:18:33:ed:ce:d4:ec:64:eb:9e:6a:1a:30:bc: f0:9c:b7:ba:54:67:82:9a:34:99:b3:bb:be:93:a4:0e:51:7c: 57:4c:27:7f:a9:8d:e2:08:d5:a2:cb:ba:5a:27:4c:04:fb:17: 83:c4:d0:b7:13:a7:39:10:15:36:96:98:79:bc:06:bc:e1:a4: 46:99:d7:5b:a1:61:4b:c7:42:0c:49:20:8b:1a:b9:74:3b:dd: 57:ea:77:41:fe:22:25:2d:aa:66:74:8b:7b:7a:2f:b5:ae:80: 92:b7:b1:f9:e6:8c:b9:76:92:d9:d8:2a:2a:df:c8:ba:a9:bd: 6d:93:73:b5:18:32:fa:8a:2d:ca:e8:6e:c0:52:f4:8c:a1:26: 76:d9:1d:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFNjYxMTAvBgNVBAUTKERBNTQ3RUQ2OTI4QUFEMUVDRkI2ODQ3QTFCMDc0MzJC RDg3QjE5RUYwHhcNMjUxMjA2MTczMzU0WhcNMjUxMjEzMTczMzU0WjAYMRYwFAYD VQQDEw02OTM0NjkwMi02MzkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/x68GDa6oCD3IX6cRBNkuqvYxiRPNlJcmsBm9a1CmNq1PKnA5QTQ1cwmIUm JWIgq+GoYE342T8UmKpcxcTIGSGivVJCBK1FbWKsdc/lhfxEkxXrFDcfe5KKDUwt 1IO5xcbjKzYdsu6V1YnjADVX/RF6gCue6a2SbOPwsDpXA0vaA8x7gU5EMKkqlAtl CiOsxsZFFTqTCKvrTYvUIUT7Zc+UEz8f8lgG4XM32jS9hb9lmvY5W7xkTDvzeer0 ET+59OMiRUdN8g7EuMcetYkRCLUeXev4qr/I+JBpG9USTWET2sU1YXmsHRkQ2qjX 1E3MGyRt2LCUG6gvj3HOQhUpcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDdNbWd7 sTD6ReqIxO8jqazT4al+MB8GA1UdIwQYMBaAFNpUftaSiq0ez7aEehsHQyvYexnv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEU2Ni83MDYzOUVGQ0ZG NkUxMUU5ODVBODhDNjdDNEY5QUUwMi8ybFItMXBLS3JSN1B0b1I2R3dkREs5aDdH ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsUi0xcEtLclI3UHRvUjZHd2RESzloN0dlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEU2Ni83MDYzOUVGQ0ZGNkUxMUU5ODVBODhDNjdDNEY5QUUwMi8ybFItMXBLS3JS N1B0b1I2R3dkREs5aDdHZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCi3RWE+jFeXllUfSKGs+kK8+UNR4PrVJbn8D7jMrHh5asxqw1Ifrsj PRGILGVkxirVwM0iSb3WQgZFk3Gp09Fug5CMY7YBRJGLVU+sZzlDjWULjb8osEBL wD/8HujASMdZtzm/tw6QIOmeOWa+Jl9/3Rgz7c7U7GTrnmoaMLzwnLe6VGeCmjSZ s7u+k6QOUXxXTCd/qY3iCNWiy7paJ0wE+xeDxNC3E6c5EBU2lph5vAa84aRGmddb oWFLx0IMSSCLGrl0O91X6ndB/iIlLapmdIt7ei+1roCSt7H55oy5dpLZ2Coq38i6 qb1tk3O1GDL6ii3K6G7AUvSMoSZ22R0I -----END CERTIFICATE-----Generated at Sun Dec 7 14:02:22 2025 by rpki-client