This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft File: 2H4ClpVGrcVaesygjK2yh5vGmck.mft (raw, json) Hash identifier: Jb5LOgwrEtP6wMkE1Mew/pYfcSTqaV47gPkVdSQA/RQ= Subject key identifier: 0F:35:9E:21:CE:F7:C7:6F:9E:2C:82:25:AE:9E:7A:F2:3B:2E:ED:FC Authority key identifier: D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 Certificate issuer: /CN=A9185B5F/serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Certificate serial: 01E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft Manifest number: 01E2 Signing time: Fri 05 Dec 2025 00:58:17 +0000 Manifest this update: Fri 05 Dec 2025 00:58:16 +0000 Manifest next update: Fri 12 Dec 2025 00:58:16 +0000 Files and hashes: 1: 2H4ClpVGrcVaesygjK2yh5vGmck.crl (hash: FXF+p6p2gIkGPFr11nYPSSRpEynwnh9cXfmzTcsSLIo=) 2: A4B0D326F0A311ED99A1471CC4F9AE02.roa (hash: 0/Ic5iho+pqF4si9nqRdEW+r600hwTvuyP9trzSoxtE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:58:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 486 (0x1e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B5F, serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Validity Not Before: Dec 5 00:58:16 2025 GMT Not After : Dec 12 00:58:16 2025 GMT Subject: CN=69322e29-4468 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4a:9d:3c:70:27:be:7a:b2:b0:72:51:f3:1d: 49:dd:25:aa:79:43:c2:08:0c:df:d3:d0:14:da:87: a5:35:2a:0e:33:ae:25:6e:31:2e:a3:2f:ee:7e:8c: 28:d8:20:7d:e3:01:62:98:c1:7e:30:d3:d0:ad:2d: 17:97:91:49:8e:39:c8:62:5e:e9:d7:c8:97:87:e8: 10:89:76:46:f0:53:c2:63:f0:4b:2c:78:9d:d8:1c: b1:25:62:02:22:39:4b:b3:92:5d:42:7a:af:22:4f: 98:c8:d5:fc:c2:c9:46:e2:68:45:66:94:94:c7:61: d9:df:67:25:01:1e:c3:ab:5d:3c:93:fc:e1:d1:d0: fb:27:5d:3a:a0:50:1c:84:43:94:a4:47:cc:ab:eb: 9f:c7:e9:50:d7:5d:a6:ac:fa:66:f1:af:e3:d7:2d: 73:1b:1e:9e:8f:17:67:1b:f1:4d:7e:b5:5e:ad:3e: 42:bb:8c:2f:96:41:b6:6f:e0:43:9d:9c:0b:f9:2b: 39:2d:85:01:88:93:29:a2:c0:d6:0f:69:90:a9:d9: ad:a2:e1:09:99:9d:c0:3e:d8:b4:53:b5:62:bc:6a: 7b:42:1a:5d:51:07:81:4d:94:4c:cb:2b:2b:d8:03: 27:67:81:28:73:da:6e:25:15:64:10:98:3d:8c:16: de:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:35:9E:21:CE:F7:C7:6F:9E:2C:82:25:AE:9E:7A:F2:3B:2E:ED:FC X509v3 Authority Key Identifier: keyid:D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:51:9c:6f:5e:01:5d:4e:da:8e:4a:8e:ff:ce:44:44:93:95: ff:86:90:73:04:d2:3b:ed:47:be:53:09:4f:32:b9:c5:4e:bd: ad:04:0f:72:ee:e6:ec:98:84:0d:c6:f1:6a:a4:48:0c:3a:3c: e9:2a:ab:9d:c2:f5:50:41:97:56:89:96:94:27:73:a5:0b:b1: c4:c0:da:48:ed:64:15:89:20:de:fb:76:04:d2:08:83:9d:35: 92:62:b2:bd:da:25:b3:e8:b4:71:aa:48:af:15:07:f6:a7:ea: 36:f1:b0:c1:0f:1f:7a:e6:36:8f:33:65:a9:d2:96:33:b5:f5: 61:1f:a6:88:6d:73:0e:c0:85:34:5c:f6:ed:07:5a:f2:9e:57: 54:b9:40:a3:43:ed:d3:ae:d9:cc:40:72:d0:48:e9:5a:80:a9: c6:96:ef:6c:35:9f:dd:e1:ee:c3:b6:ea:b6:2f:27:c0:9d:c6: 32:ac:70:12:b2:a9:ac:74:4a:02:79:c4:43:54:db:4c:d7:c7: 3b:56:ed:d9:20:a5:b3:0c:b5:77:e3:6d:10:03:ca:1a:a8:1d: 76:bf:10:5a:c2:de:98:a4:85:2b:e6:42:72:42:5f:99:48:8b: c3:42:af:ef:cb:3d:89:c0:ef:d6:df:db:d7:21:29:ef:2c:20: 21:1d:4d:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNUYxMTAvBgNVBAUTKEQ4N0UwMjk2OTU0NkFEQzU1QTdBQ0NBMDhDQURCMjg3 OUJDNjk5QzkwHhcNMjUxMjA1MDA1ODE2WhcNMjUxMjEyMDA1ODE2WjAYMRYwFAYD VQQDEw02OTMyMmUyOS00NDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvkqdPHAnvnqysHJR8x1J3SWqeUPCCAzf09AU2oelNSoOM64lbjEuoy/ufowo 2CB94wFimMF+MNPQrS0Xl5FJjjnIYl7p18iXh+gQiXZG8FPCY/BLLHid2ByxJWIC IjlLs5JdQnqvIk+YyNX8wslG4mhFZpSUx2HZ32clAR7Dq108k/zh0dD7J106oFAc hEOUpEfMq+ufx+lQ112mrPpm8a/j1y1zGx6ejxdnG/FNfrVerT5Cu4wvlkG2b+BD nZwL+Ss5LYUBiJMposDWD2mQqdmtouEJmZ3APti0U7VivGp7QhpdUQeBTZRMyysr 2AMnZ4Eoc9puJRVkEJg9jBbeXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA81niHO 98dvniyCJa6eevI7Lu38MB8GA1UdIwQYMBaAFNh+ApaVRq3FWnrMoIytsoebxpnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI1Ri84RTQxODAyMEYw OUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3JjVmFlc3lnaksyeWg1dkdt Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJINENscFZHcmNWYWVzeWdqSzJ5aDV2R21jay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUI1Ri84RTQxODAyMEYwOUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3Jj VmFlc3lnaksyeWg1dkdtY2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCUZxvXgFdTtqOSo7/zkREk5X/hpBzBNI77Ue+UwlPMrnFTr2tBA9y 7ubsmIQNxvFqpEgMOjzpKqudwvVQQZdWiZaUJ3OlC7HEwNpI7WQViSDe+3YE0giD nTWSYrK92iWz6LRxqkivFQf2p+o28bDBDx965jaPM2Wp0pYztfVhH6aIbXMOwIU0 XPbtB1rynldUuUCjQ+3TrtnMQHLQSOlagKnGlu9sNZ/d4e7Dtuq2LyfAncYyrHAS sqmsdEoCecRDVNtM18c7Vu3ZIKWzDLV3420QA8oaqB12vxBawt6YpIUr5kJyQl+Z SIvDQq/vyz2JwO/W39vXISnvLCAhHU3r -----END CERTIFICATE-----Generated at Sun Dec 7 00:01:36 2025 by rpki-client