This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft File: 2CKi28iCNPgPcORngrLU2c0_m9w.mft (raw, json) Hash identifier: DZFkm/oUhFin55OH17mtRc4D9XGAhgaHRenf+4Z/bZM= Subject key identifier: 20:64:E3:F5:69:64:64:0F:FC:D1:9F:9A:D1:4F:A2:78:FC:27:2D:DB Authority key identifier: D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC Certificate issuer: /CN=A9176B32/serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Certificate serial: 0293 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft Manifest number: 0289 Signing time: Thu 04 Dec 2025 23:55:55 +0000 Manifest this update: Thu 04 Dec 2025 23:55:55 +0000 Manifest next update: Thu 11 Dec 2025 23:55:55 +0000 Files and hashes: 1: 2CKi28iCNPgPcORngrLU2c0_m9w.crl (hash: PPDWnKnYMGenB3wfb3YH08JriVXgVapxH6TGyvWug/Q=) 2: 3A281348C8FF11F0A8BC2876C4F9AE02.roa (hash: pYe0+bHqCYcW1iVEEt6tk6dblnlCH5OApr9vBfmnQiE=) 3: C3A9035CC8FF11F0BE76E779C4F9AE02.roa (hash: jU5Md8Gh4CBr/ZHApHJnxAlGLX6cvpq9zc86CFRKi+8=) 4: C4149072C8FF11F0AC8AE779C4F9AE02.roa (hash: 60cLUiwIo3OFkat+dtGQ2GzMMVBuPgmzgGRtVgQi3Xo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:55:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 659 (0x293) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176B32, serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Validity Not Before: Dec 4 23:55:55 2025 GMT Not After : Dec 11 23:55:55 2025 GMT Subject: CN=69321f8b-0d19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:11:7d:ec:f7:09:8c:c4:db:d2:44:49:09:37: c8:19:eb:cf:04:c2:dc:16:d1:d5:b5:42:14:75:0b: 08:34:a2:54:d3:e4:49:61:65:d9:06:83:4b:07:7d: 43:cb:bc:c3:89:1a:91:12:63:e0:ed:e6:99:5e:13: ec:bf:16:9b:fe:44:6a:d0:cd:80:e2:56:2c:f2:77: a3:54:7a:10:0d:11:f5:32:2f:86:dd:f6:a5:ff:ad: 92:17:d7:12:a7:f6:30:e4:0b:98:65:44:77:ba:46: f6:2c:ec:48:08:c1:1e:3b:76:f2:3f:ed:4d:a9:d4: 82:74:35:1b:fc:f2:65:30:25:92:d1:56:67:23:a6: 81:41:63:fe:c0:06:59:d0:36:7f:58:db:30:c6:ba: d1:03:2b:8e:cd:0d:21:9a:6e:c1:b8:c0:72:ac:ba: 03:d5:6b:be:5a:aa:85:3a:35:d4:88:4d:a7:55:cf: 47:05:12:2e:32:6b:bf:a9:b7:c6:44:68:21:24:3f: 31:db:b0:93:e3:2b:f9:f2:ba:26:05:d0:21:6a:fb: d9:a3:84:c7:cb:0d:2e:0e:dd:bb:49:04:6f:21:0a: ca:e1:11:76:50:d9:8b:0c:4d:f8:dd:06:43:26:d1: a0:96:09:0c:6d:3f:f4:29:9a:ef:82:67:aa:f7:da: 64:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:64:E3:F5:69:64:64:0F:FC:D1:9F:9A:D1:4F:A2:78:FC:27:2D:DB X509v3 Authority Key Identifier: keyid:D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:19:3e:3a:d9:24:8a:92:c2:30:de:39:c1:d9:6d:a2:dd:87: 82:e7:75:4e:b0:97:d3:c5:a6:1e:e8:83:1d:bd:d6:4f:18:bc: 11:eb:c0:f2:ec:a9:f3:46:7d:20:1c:10:a7:2a:58:e7:d5:a3: b3:83:a2:27:60:27:2d:6b:46:a8:b6:da:2c:7d:3f:cb:63:16: fc:db:77:89:f7:b6:0b:78:1f:bc:a7:8d:35:ad:cc:7c:51:36: a1:38:a7:28:f2:95:27:eb:5f:03:fa:df:a7:12:3d:63:dc:94: 7a:3f:79:ba:9b:a2:12:c2:78:37:08:8b:04:b6:d0:8b:5f:c0: bc:63:27:2b:68:87:22:ea:13:eb:3d:60:99:2e:13:7d:43:98: 1b:9c:70:42:c8:35:44:e6:17:2d:8b:51:ff:94:19:aa:b1:ba: ae:85:e2:d5:78:f1:0d:96:d0:e0:54:59:3c:88:67:74:e4:c6: 71:c8:a3:a5:db:58:6f:89:9e:be:b5:e4:5f:c7:5b:72:8d:cb: 68:77:e9:98:56:8e:4c:fb:f4:ba:fd:47:df:a8:90:32:c3:ee: 1a:dd:bf:85:d6:69:87:f9:71:7b:dc:91:90:ca:ef:b6:bd:6f: 6c:38:1b:70:56:36:51:e5:74:65:31:e6:11:f7:5f:5e:ba:80: 43:12:b6:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCMzIxMTAvBgNVBAUTKEQ4MjJBMkRCQzg4MjM0RjgwRjcwRTQ2NzgyQjJENEQ5 Q0QzRjlCREMwHhcNMjUxMjA0MjM1NTU1WhcNMjUxMjExMjM1NTU1WjAYMRYwFAYD VQQDEw02OTMyMWY4Yi0wZDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsxF97PcJjMTb0kRJCTfIGevPBMLcFtHVtUIUdQsINKJU0+RJYWXZBoNLB31D y7zDiRqREmPg7eaZXhPsvxab/kRq0M2A4lYs8nejVHoQDRH1Mi+G3fal/62SF9cS p/Yw5AuYZUR3ukb2LOxICMEeO3byP+1NqdSCdDUb/PJlMCWS0VZnI6aBQWP+wAZZ 0DZ/WNswxrrRAyuOzQ0hmm7BuMByrLoD1Wu+WqqFOjXUiE2nVc9HBRIuMmu/qbfG RGghJD8x27CT4yv58romBdAhavvZo4THyw0uDt27SQRvIQrK4RF2UNmLDE343QZD JtGglgkMbT/0KZrvgmeq99pkMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCBk4/Vp ZGQP/NGfmtFPonj8Jy3bMB8GA1UdIwQYMBaAFNgiotvIgjT4D3DkZ4Ky1NnNP5vc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkIzMi83Mzg3OTYxODJG MzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05QZ1BjT1JuZ3JMVTJjMF9t OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDS2kyOGlDTlBnUGNPUm5nckxVMmMwX205dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkIzMi83Mzg3OTYxODJGMzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05Q Z1BjT1JuZ3JMVTJjMF9tOXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7GT462SSKksIw3jnB2W2i3YeC53VOsJfTxaYe6IMdvdZPGLwR68Dy 7KnzRn0gHBCnKljn1aOzg6InYCcta0aottosfT/LYxb823eJ97YLeB+8p401rcx8 UTahOKco8pUn618D+t+nEj1j3JR6P3m6m6ISwng3CIsEttCLX8C8YycraIci6hPr PWCZLhN9Q5gbnHBCyDVE5hcti1H/lBmqsbquheLVePENltDgVFk8iGd05MZxyKOl 21hviZ6+teRfx1tyjctod+mYVo5M+/S6/UffqJAyw+4a3b+F1mmH+XF73JGQyu+2 vW9sOBtwVjZR5XRlMeYR919euoBDErZL -----END CERTIFICATE-----Generated at Sat Dec 6 12:25:21 2025 by rpki-client