This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft File: 2gQijT7rRR_A8iM2aXFwV_irNmk.mft (raw, json) Hash identifier: KmwawpfXLVFGp4akTNhBbulm/89b0FUVN2cZK9Ew4l4= Subject key identifier: E2:3A:6F:68:3A:99:7E:28:5F:B9:C0:55:5F:12:02:E8:F3:C5:B0:F2 Authority key identifier: DA:04:22:8D:3E:EB:45:1F:C0:F2:23:36:69:71:70:57:F8:AB:36:69 Certificate issuer: /CN=A914B165/serialNumber=DA04228D3EEB451FC0F2233669717057F8AB3669 Certificate serial: 08E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft Manifest number: 08D9 Signing time: Sat 06 Dec 2025 19:34:33 +0000 Manifest this update: Sat 06 Dec 2025 19:34:33 +0000 Manifest next update: Sat 13 Dec 2025 19:34:33 +0000 Files and hashes: 1: 2gQijT7rRR_A8iM2aXFwV_irNmk.crl (hash: cSWfAGV6R/SrgumVemZ1B4hmFLMz2r1SC6t096Y82Mw=) 2: 26AECD92C2B211EABBD0ED4AC4F9AE02.roa (hash: C/eVnfyL6ySkKhbG0QllU10wv4xhGd4o4YA02lTj0B4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.crl rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2273 (0x8e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B165, serialNumber=DA04228D3EEB451FC0F2233669717057F8AB3669 Validity Not Before: Dec 6 19:34:33 2025 GMT Not After : Dec 13 19:34:33 2025 GMT Subject: CN=69348549-a4d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:11:af:7f:71:1a:a9:82:c8:1b:d6:1e:0c:43: d3:a2:fe:82:66:f5:b0:f3:23:b5:f8:62:27:1f:96: 1f:8f:32:84:51:cb:8e:a6:16:fe:31:9d:0b:19:4c: 47:b6:e5:9c:77:c1:c5:21:dc:fc:8a:0c:da:91:25: be:53:15:e8:d7:31:da:2d:24:77:4d:d8:a1:25:36: 72:58:80:00:70:04:7a:e4:08:78:bd:1e:09:0e:48: 6f:e2:08:41:82:3e:2a:c0:fb:5f:f2:17:7f:5a:57: 29:60:d1:52:25:90:53:6e:e3:3a:bb:66:ef:f4:a6: 26:9b:a9:22:8d:09:c6:b3:1a:15:68:b3:36:64:ef: e6:63:c3:e7:4b:fc:5e:41:9d:18:4a:16:25:3b:5d: 63:97:03:e4:e6:3f:42:c7:ed:63:3f:ec:e3:91:be: 8a:87:dd:2c:b7:b8:42:ec:a3:81:04:84:72:ca:3c: 33:60:be:56:ea:63:33:19:0a:e4:8f:0c:ac:c1:92: ef:4e:e7:68:99:03:f3:c2:d8:5a:59:27:46:11:b6: 28:ba:db:c4:c2:9e:7f:5c:d5:04:5b:7b:2d:ab:41: a1:06:d6:59:bb:cd:01:70:d1:e7:0c:90:23:ba:c4: 60:5f:ca:e1:70:8d:c2:18:5a:d3:8d:e2:6f:6f:a5: b8:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:3A:6F:68:3A:99:7E:28:5F:B9:C0:55:5F:12:02:E8:F3:C5:B0:F2 X509v3 Authority Key Identifier: keyid:DA:04:22:8D:3E:EB:45:1F:C0:F2:23:36:69:71:70:57:F8:AB:36:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:8e:b1:18:8e:88:6c:6d:74:82:ce:f9:5e:78:8b:76:be:f6: 10:1a:1c:4f:40:cf:bf:88:f9:6e:39:7b:75:90:ec:07:2b:f6: 39:8e:44:4c:8c:e6:9c:40:a5:ad:e2:f2:80:80:2d:67:9c:2b: 5d:2c:c0:bc:76:3d:cf:6f:8e:b9:f8:73:42:57:c4:5e:5c:d2: c8:3c:27:f5:b7:61:de:62:20:f1:89:3f:f1:0d:f5:d8:ad:ae: 75:b2:53:40:a7:3e:56:ba:4b:7d:63:d2:3b:b3:64:b5:0f:5e: 61:94:20:01:99:53:9b:4a:b4:a5:7f:f1:fa:4a:1a:5f:7e:fe: b4:36:63:be:47:f0:74:47:ed:c4:34:20:07:1d:58:8f:6e:73: 8f:55:54:29:24:ed:20:ca:2a:bd:57:ea:98:bd:ad:36:c4:9f: 25:d3:77:a1:dc:a5:5c:11:8b:fa:cc:3c:fe:c4:40:47:7e:bc: e1:6c:ae:da:19:bb:3c:b9:41:71:49:d1:5f:be:62:6c:f3:71: ad:bc:cf:3b:25:25:ec:8f:9c:5e:80:e1:7b:2d:4b:24:92:46: c9:59:a3:cd:e9:7a:21:7d:0e:c7:62:f4:20:19:ed:d3:6d:80: 6f:87:9e:3a:c7:39:57:38:c9:10:b9:80:19:fc:16:40:f4:7f: 16:07:08:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIxNjUxMTAvBgNVBAUTKERBMDQyMjhEM0VFQjQ1MUZDMEYyMjMzNjY5NzE3MDU3 RjhBQjM2NjkwHhcNMjUxMjA2MTkzNDMzWhcNMjUxMjEzMTkzNDMzWjAYMRYwFAYD VQQDEw02OTM0ODU0OS1hNGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzBGvf3EaqYLIG9YeDEPTov6CZvWw8yO1+GInH5YfjzKEUcuOphb+MZ0LGUxH tuWcd8HFIdz8igzakSW+UxXo1zHaLSR3TdihJTZyWIAAcAR65Ah4vR4JDkhv4ghB gj4qwPtf8hd/WlcpYNFSJZBTbuM6u2bv9KYmm6kijQnGsxoVaLM2ZO/mY8PnS/xe QZ0YShYlO11jlwPk5j9Cx+1jP+zjkb6Kh90st7hC7KOBBIRyyjwzYL5W6mMzGQrk jwyswZLvTudomQPzwthaWSdGEbYoutvEwp5/XNUEW3stq0GhBtZZu80BcNHnDJAj usRgX8rhcI3CGFrTjeJvb6W4VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOI6b2g6 mX4oX7nAVV8SAujzxbDyMB8GA1UdIwQYMBaAFNoEIo0+60UfwPIjNmlxcFf4qzZp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjE2NS82QTNFQjhCNkMy QjExMUVBOTIwQkI5NEFDNEY5QUUwMi8yZ1FpalQ3clJSX0E4aU0yYVhGd1ZfaXJO bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnUWlqVDdyUlJfQThpTTJhWEZ3Vl9pck5tay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjE2NS82QTNFQjhCNkMyQjExMUVBOTIwQkI5NEFDNEY5QUUwMi8yZ1FpalQ3clJS X0E4aU0yYVhGd1ZfaXJObWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHjrEYjohsbXSCzvleeIt2vvYQGhxPQM+/iPluOXt1kOwHK/Y5jkRM jOacQKWt4vKAgC1nnCtdLMC8dj3Pb465+HNCV8ReXNLIPCf1t2HeYiDxiT/xDfXY ra51slNApz5Wukt9Y9I7s2S1D15hlCABmVObSrSlf/H6Shpffv60NmO+R/B0R+3E NCAHHViPbnOPVVQpJO0gyiq9V+qYva02xJ8l03eh3KVcEYv6zDz+xEBHfrzhbK7a Gbs8uUFxSdFfvmJs83GtvM87JSXsj5xegOF7LUskkkbJWaPN6XohfQ7HYvQgGe3T bYBvh546xzlXOMkQuYAZ/BZA9H8WBwjK -----END CERTIFICATE-----Generated at Sat Dec 6 22:18:05 2025 by rpki-client