This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft File: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft (raw, json) Hash identifier: +EPZTXeft+VbcTzNlPmEs5QOHtMdoNzU72d3is1s0SY= Subject key identifier: 07:7C:CA:D1:61:41:66:C5:66:C9:29:42:61:2A:79:94:B3:19:7C:C2 Authority key identifier: D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 Certificate issuer: /CN=A9159ECD/serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Certificate serial: 0110 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft Manifest number: 010D Signing time: Sat 06 Dec 2025 22:05:19 +0000 Manifest this update: Sat 06 Dec 2025 22:05:19 +0000 Manifest next update: Sat 13 Dec 2025 22:05:19 +0000 Files and hashes: 1: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl (hash: jV1RM4PK/7/q5lp0qBJnMI55BfNWJ5BFlvniuFwWAXM=) 2: 5A4723DA6F3C11EF8FD45F13C4F9AE02.roa (hash: nJrP5XyTG2U3goSrQUjPEnvTLR/1/bqUd5TtsJOT5YA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159ECD, serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Validity Not Before: Dec 6 22:05:19 2025 GMT Not After : Dec 13 22:05:19 2025 GMT Subject: CN=6934a89f-47df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d0:6d:de:72:d8:6b:e5:37:1a:4d:2f:33:f9: 52:0e:94:18:63:fb:e4:66:9a:88:ab:96:4e:e4:30: 5f:32:ac:8c:60:a1:0e:d0:f3:76:95:de:9b:9f:3f: 4a:a8:e9:4b:c4:61:89:6e:b7:15:d1:0f:11:2a:70: a1:cf:e0:ef:c7:da:e4:9b:aa:e5:e3:c2:d7:e0:b8: 0d:40:0e:51:7c:0b:2e:39:06:da:7d:fd:df:c1:02: d9:bc:c4:eb:56:20:4d:9d:bc:f5:da:da:42:91:ea: 52:b1:1d:5f:a7:f2:88:d8:4e:71:eb:a7:4d:3d:34: d7:3c:b5:e0:40:41:eb:4b:3f:ee:d6:14:31:2e:5c: 8c:85:0c:f2:73:e6:4c:0f:0e:14:b9:70:a7:79:47: 11:91:64:10:58:ae:ff:88:b8:aa:d8:16:9f:0c:4c: 39:54:72:8c:a0:cb:52:48:d5:37:2e:f3:06:3f:b4: 8b:a9:24:4a:a3:07:b2:27:ae:40:d4:c0:c6:29:18: d4:ba:4f:83:ab:27:00:6e:12:e7:48:64:79:10:56: 15:80:aa:8f:a0:be:c7:9c:8e:25:ca:65:f0:35:48: a1:2f:44:74:97:f0:29:e7:af:21:60:30:9d:a8:54: cc:0a:61:b1:5d:46:8c:0f:06:85:1e:a6:c4:ba:76: f8:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:7C:CA:D1:61:41:66:C5:66:C9:29:42:61:2A:79:94:B3:19:7C:C2 X509v3 Authority Key Identifier: keyid:D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:25:c2:13:34:46:94:1d:a1:c5:2e:b2:e1:42:d7:df:1d:a5: b6:21:3a:74:67:20:81:76:f1:89:fe:9f:46:1b:b5:15:c8:8e: 0b:53:19:2c:c7:e3:84:84:77:06:6a:6a:76:36:a3:34:28:41: 2f:11:4d:33:93:c5:fe:24:cd:77:9e:92:6c:66:bc:5f:9a:68: be:2c:e8:82:b9:ef:ef:86:59:76:e0:c9:5d:25:03:ee:0c:9d: 06:15:ae:62:1a:ba:e5:e6:1b:ec:cb:64:8b:4e:33:db:d3:06: 7e:7d:a6:45:d1:d4:62:3d:0b:50:9f:e6:f4:93:1a:28:58:c2: 7d:17:7f:ed:f4:f1:4c:2b:2e:ea:58:0b:ae:29:d9:78:93:e0: 74:67:32:ed:b9:58:56:9a:48:32:91:91:84:7c:f6:d5:ba:bd: 51:58:02:5f:3a:59:8f:6e:33:3a:54:fc:8d:b7:c0:d4:c5:23: 68:70:bc:90:67:55:16:c0:b5:18:03:b0:05:e9:4f:fd:db:70: ab:40:f1:9b:ef:91:ab:cf:d8:d1:32:b1:ff:22:e6:94:fe:57: 39:60:e3:7a:bb:f4:13:c4:3d:ac:27:3e:24:5b:8b:37:28:f2: 3d:09:6e:4e:8c:11:54:16:68:b4:c5:8d:b3:ae:3e:25:57:e3: 8e:b2:59:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlFQ0QxMTAvBgNVBAUTKEQ5NURBMTE3MTQxMjMwMEFCNTNCM0U0ODcwRjJGNDQx RjA2QzgxMjQwHhcNMjUxMjA2MjIwNTE5WhcNMjUxMjEzMjIwNTE5WjAYMRYwFAYD VQQDEw02OTM0YTg5Zi00N2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0tBt3nLYa+U3Gk0vM/lSDpQYY/vkZpqIq5ZO5DBfMqyMYKEO0PN2ld6bnz9K qOlLxGGJbrcV0Q8RKnChz+Dvx9rkm6rl48LX4LgNQA5RfAsuOQbaff3fwQLZvMTr ViBNnbz12tpCkepSsR1fp/KI2E5x66dNPTTXPLXgQEHrSz/u1hQxLlyMhQzyc+ZM Dw4UuXCneUcRkWQQWK7/iLiq2BafDEw5VHKMoMtSSNU3LvMGP7SLqSRKoweyJ65A 1MDGKRjUuk+DqycAbhLnSGR5EFYVgKqPoL7HnI4lymXwNUihL0R0l/Ap568hYDCd qFTMCmGxXUaMDwaFHqbEunb4+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAd8ytFh QWbFZskpQmEqeZSzGXzCMB8GA1UdIwQYMBaAFNldoRcUEjAKtTs+SHDy9EHwbIEk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUVDRC9FRjYzODNFMjNE OUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01BcTFPejVJY1BMMFFmQnNn U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJWMmhGeFFTTUFxMU96NUljUEwwUWZCc2dTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OUVDRC9FRjYzODNFMjNEOUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01B cTFPejVJY1BMMFFmQnNnU1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwJcITNEaUHaHFLrLhQtffHaW2ITp0ZyCBdvGJ/p9GG7UVyI4LUxks x+OEhHcGamp2NqM0KEEvEU0zk8X+JM13npJsZrxfmmi+LOiCue/vhll24MldJQPu DJ0GFa5iGrrl5hvsy2SLTjPb0wZ+faZF0dRiPQtQn+b0kxooWMJ9F3/t9PFMKy7q WAuuKdl4k+B0ZzLtuVhWmkgykZGEfPbVur1RWAJfOlmPbjM6VPyNt8DUxSNocLyQ Z1UWwLUYA7AF6U/923CrQPGb75Grz9jRMrH/IuaU/lc5YON6u/QTxD2sJz4kW4s3 KPI9CW5OjBFUFmi0xY2zrj4lV+OOslkq -----END CERTIFICATE-----Generated at Sun Dec 7 03:39:46 2025 by rpki-client