This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft File: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft (raw, json) Hash identifier: lu8LJovm/eycNXjxrXcbxQCLy7c5x15R/hKAclofn7U= Subject key identifier: ED:A0:F4:A6:2D:4A:45:6E:64:AA:F1:A3:DA:06:C6:C7:C2:EF:1C:21 Authority key identifier: D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 Certificate issuer: /CN=A914C4ED/serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Certificate serial: 023D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft Manifest number: 0238 Signing time: Thu 04 Dec 2025 23:04:54 +0000 Manifest this update: Thu 04 Dec 2025 23:04:54 +0000 Manifest next update: Thu 11 Dec 2025 23:04:54 +0000 Files and hashes: 1: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl (hash: iNyrL55EmHacfPugVUZOZNDy+0wU75NlSlrWYNr3gFk=) 2: F060FF0E720D11EDA84BE02EC4F9AE02.roa (hash: MTvQaAV2j4a15rRSTpoB41scqYTwrnry9bJaizx2K5M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:04:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 573 (0x23d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED, serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Validity Not Before: Dec 4 23:04:54 2025 GMT Not After : Dec 11 23:04:54 2025 GMT Subject: CN=69321396-3201 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:44:d4:9b:a8:ef:32:13:92:92:e6:8a:ee:6b: a5:82:eb:c7:c6:b7:31:af:77:e8:01:7c:0f:50:46: 5b:a8:54:cb:f5:02:10:e8:8c:d3:50:ae:8e:af:9e: 3b:4d:b7:24:ae:7e:04:23:69:81:ae:45:84:5f:24: 7b:ea:39:57:95:6b:8e:ed:86:f2:fe:8a:6b:f3:99: f6:64:dd:1e:b4:17:02:7e:06:21:58:c3:00:92:c1: 5b:8d:27:3f:4c:05:05:25:d7:35:a7:51:73:21:a3: a9:09:d7:2e:f2:55:92:72:8b:f2:f4:e1:5a:26:f2: 7b:e8:e8:ff:12:a1:e2:23:e2:68:8a:f9:e8:1e:c9: af:74:25:56:56:9c:94:db:70:d2:4f:f3:70:e0:55: 42:ad:7c:83:f6:a4:cb:d4:6d:b8:7e:25:5a:a9:94: e2:03:8b:94:f6:44:df:27:ef:a7:49:03:05:e8:10: 8a:27:cb:f2:14:e7:41:3d:46:8c:9f:fd:f7:bb:55: 9d:58:ca:a2:39:4f:53:92:75:a6:2d:bd:30:c0:7d: e4:c7:08:d9:a0:c8:b1:a1:1d:8c:cf:3b:92:ab:cf: 82:65:fe:f8:1c:34:75:06:b0:99:49:81:44:00:a2: d3:aa:b2:fd:11:3f:ab:f2:dd:84:e0:76:60:56:c9: fd:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:A0:F4:A6:2D:4A:45:6E:64:AA:F1:A3:DA:06:C6:C7:C2:EF:1C:21 X509v3 Authority Key Identifier: keyid:D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:0f:fa:f4:c0:33:0c:2e:c4:62:37:4e:6a:eb:11:8c:1c:c3: 74:5e:74:d0:26:22:9c:cc:80:8c:86:39:8c:50:a1:e6:93:93: 2e:10:56:c5:7f:37:ad:96:de:f8:71:be:d4:3c:f3:1a:74:ba: 6c:d9:bf:99:ff:87:f5:5f:35:2e:27:1f:92:3b:1c:47:aa:90: 4e:b9:ce:66:a5:75:c6:2a:21:e4:38:58:44:7a:b6:9c:63:c7: 88:4e:7b:b2:ee:91:3e:6e:27:c3:be:5c:13:7e:5a:33:6d:8b: 57:a8:d8:ad:ca:06:57:92:f0:2c:05:6b:78:22:33:03:8a:f6: 49:63:b1:64:c7:6e:ba:d2:9d:93:b4:aa:cf:1a:57:8c:2d:c3: 84:a7:b4:84:55:da:b6:62:90:d9:55:61:c2:86:42:67:90:6f: 2b:77:9a:c6:48:9f:42:72:3f:c7:eb:f2:dd:b2:35:41:ba:64: 10:7f:9f:69:13:09:30:80:33:7d:9e:8a:01:7f:8c:b8:b0:61: 7b:09:61:a5:a2:fe:0f:80:d7:d4:56:bd:7f:fa:7c:2a:f9:ec: 75:e4:ca:43:cd:fb:12:e2:df:b1:d4:32:ab:fc:ee:b4:c4:0d: 64:72:02:d2:87:33:f3:31:1b:24:4f:7e:43:02:27:ae:70:aa: cd:2d:fb:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKEQ5ODUyOTE0OENCQTVEREVEM0I3M0Q2MDUyRUUwNTE2 QzAyNEM0RjMwHhcNMjUxMjA0MjMwNDU0WhcNMjUxMjExMjMwNDU0WjAYMRYwFAYD VQQDEw02OTMyMTM5Ni0zMjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0kTUm6jvMhOSkuaK7mulguvHxrcxr3foAXwPUEZbqFTL9QIQ6IzTUK6Or547 Tbckrn4EI2mBrkWEXyR76jlXlWuO7Yby/opr85n2ZN0etBcCfgYhWMMAksFbjSc/ TAUFJdc1p1FzIaOpCdcu8lWScovy9OFaJvJ76Oj/EqHiI+JoivnoHsmvdCVWVpyU 23DST/Nw4FVCrXyD9qTL1G24fiVaqZTiA4uU9kTfJ++nSQMF6BCKJ8vyFOdBPUaM n/33u1WdWMqiOU9TknWmLb0wwH3kxwjZoMixoR2MzzuSq8+CZf74HDR1BrCZSYFE AKLTqrL9ET+r8t2E4HZgVsn9WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO2g9KYt SkVuZKrxo9oGxsfC7xwhMB8GA1UdIwQYMBaAFNmFKRSMul3e07c9YFLuBRbAJMTz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC83NTk4NDQ0NDcy MEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5NlhkN1R0ejFnVXU0RkZzQWt4 UE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJZVXBGSXk2WGQ3VHR6MWdVdTRGRnNBa3hQTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRFRC83NTk4NDQ0NDcyMEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5Nlhk N1R0ejFnVXU0RkZzQWt4UE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgD/r0wDMMLsRiN05q6xGMHMN0XnTQJiKczICMhjmMUKHmk5MuEFbF fzetlt74cb7UPPMadLps2b+Z/4f1XzUuJx+SOxxHqpBOuc5mpXXGKiHkOFhEerac Y8eITnuy7pE+bifDvlwTflozbYtXqNitygZXkvAsBWt4IjMDivZJY7Fkx2660p2T tKrPGleMLcOEp7SEVdq2YpDZVWHChkJnkG8rd5rGSJ9Ccj/H6/LdsjVBumQQf59p EwkwgDN9nooBf4y4sGF7CWGlov4PgNfUVr1/+nwq+ex15MpDzfsS4t+x1DKr/O60 xA1kcgLShzPzMRskT35DAieucKrNLft4 -----END CERTIFICATE-----Generated at Sun Dec 7 00:57:36 2025 by rpki-client