This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.mft File: 2szbgPh19VKJMaiCXRqvoYCpsXk.mft (raw, json) Hash identifier: c+0Y3FjuDw5SlZEsW8GsIG9T1tDMBzvggFl69ng1OWc= Subject key identifier: EF:E2:7B:4E:D6:C1:53:55:D2:99:49:E0:5A:04:9D:98:57:A2:80:FA Authority key identifier: DA:CC:DB:80:F8:75:F5:52:89:31:A8:82:5D:1A:AF:A1:80:A9:B1:79 Certificate issuer: /CN=A918D701/serialNumber=DACCDB80F875F5528931A8825D1AAFA180A9B179 Certificate serial: 0204 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2szbgPh19VKJMaiCXRqvoYCpsXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.mft Manifest number: 01FE Signing time: Fri 05 Dec 2025 00:45:16 +0000 Manifest this update: Fri 05 Dec 2025 00:45:15 +0000 Manifest next update: Fri 12 Dec 2025 00:45:15 +0000 Files and hashes: 1: 2szbgPh19VKJMaiCXRqvoYCpsXk.crl (hash: U3/2DsO6xCZqqV9uINZjcRyQq/gL9Wdp58GSg36kH2Y=) 2: 98D5AE30C88C11ED907C1C0EC4F9AE02.roa (hash: YcDeh2t6Hw3AD0IzEUacGsgBDExXh3a14o3dMVwYFKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.crl rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2szbgPh19VKJMaiCXRqvoYCpsXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:45:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 516 (0x204) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D701, serialNumber=DACCDB80F875F5528931A8825D1AAFA180A9B179 Validity Not Before: Dec 5 00:45:15 2025 GMT Not After : Dec 12 00:45:15 2025 GMT Subject: CN=69322b1b-569f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:1f:a7:bc:74:91:ba:18:63:4a:31:cf:06:98: 79:80:aa:f3:ce:7e:9a:72:45:03:5f:fa:ac:8d:28: ac:7e:d1:10:05:32:0a:f7:6e:ef:88:4e:65:a6:b7: 04:9f:65:0d:98:08:ef:6b:12:47:e9:a9:e5:f8:61: fe:34:eb:32:b7:e9:c0:e2:b4:03:46:ef:02:33:cc: 72:fb:d1:08:69:19:b4:bd:d1:c3:47:65:fe:d2:ac: e3:bd:dc:2e:bb:ac:0d:4b:f9:23:ee:92:32:41:f3: 8a:cb:17:2e:eb:55:0a:37:50:42:6b:c1:eb:77:01: 94:3c:39:92:bc:f6:f0:a5:f1:61:10:ac:15:41:19: 7f:a7:a4:51:3a:10:6b:77:22:58:e1:f0:fa:40:f4: 9e:ec:cf:83:79:79:ec:33:af:81:54:3e:b3:16:04: 22:c6:53:d4:a2:e8:ea:b4:83:3b:1d:73:88:90:a1: f4:0a:17:30:76:f0:cd:13:53:98:a7:bd:a6:ea:63: 01:58:fe:dc:b4:9a:98:2c:f4:dc:95:b0:49:3d:59: 88:d2:16:09:9f:d5:6a:dc:de:ac:52:9a:e1:13:63: 29:2a:62:5b:7f:90:39:d4:94:ce:8f:5c:52:3e:8f: e0:88:22:38:75:9c:43:83:b6:03:85:31:6b:24:3a: 1a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:E2:7B:4E:D6:C1:53:55:D2:99:49:E0:5A:04:9D:98:57:A2:80:FA X509v3 Authority Key Identifier: keyid:DA:CC:DB:80:F8:75:F5:52:89:31:A8:82:5D:1A:AF:A1:80:A9:B1:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2szbgPh19VKJMaiCXRqvoYCpsXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:93:8e:f9:ff:2d:74:59:9c:bc:b5:ff:1b:36:b0:6e:be:c7: 45:d1:47:55:4a:0f:8a:ab:d3:b2:71:b8:f8:1f:47:ca:01:8b: 11:bd:5d:1b:25:19:81:4d:ef:b7:f5:0d:81:3d:f7:0e:92:85: 6f:b4:ff:b1:d1:8e:8f:48:a0:bc:a4:b6:2b:99:7d:79:f0:88: 67:a1:ca:9a:57:e7:60:e0:43:aa:df:da:12:25:be:48:5a:ba: 14:bd:39:15:d5:f5:3d:dd:d7:84:6d:48:de:b9:19:e2:de:be: a3:18:66:75:5c:d2:22:e8:64:10:6c:b8:1d:e6:64:63:d1:75: 25:0a:38:dc:bb:b4:58:b9:3d:99:ff:6d:56:1a:d3:69:fa:af: 6e:d9:37:f2:1d:45:4b:d6:2e:ad:aa:46:0a:b0:21:60:56:96: 73:24:93:66:b1:2d:d2:80:6c:31:1b:82:8c:64:37:9d:b8:94: 1c:85:3b:f2:7e:f7:3c:48:75:69:bb:3f:44:7a:4e:dc:9d:6c: d2:0a:07:ee:7f:5d:23:ba:1b:4a:22:a8:cd:f2:c0:b2:1b:c2: 23:67:ff:4c:33:97:9a:00:ad:bc:89:1d:20:5f:a7:48:f6:75: b7:c0:79:69:34:1b:6d:bc:e2:c4:6d:58:71:8c:c6:59:75:f0: 10:b8:21:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ3MDExMTAvBgNVBAUTKERBQ0NEQjgwRjg3NUY1NTI4OTMxQTg4MjVEMUFBRkEx ODBBOUIxNzkwHhcNMjUxMjA1MDA0NTE1WhcNMjUxMjEyMDA0NTE1WjAYMRYwFAYD VQQDEw02OTMyMmIxYi01NjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvh+nvHSRuhhjSjHPBph5gKrzzn6ackUDX/qsjSisftEQBTIK927viE5lprcE n2UNmAjvaxJH6anl+GH+NOsyt+nA4rQDRu8CM8xy+9EIaRm0vdHDR2X+0qzjvdwu u6wNS/kj7pIyQfOKyxcu61UKN1BCa8HrdwGUPDmSvPbwpfFhEKwVQRl/p6RROhBr dyJY4fD6QPSe7M+DeXnsM6+BVD6zFgQixlPUoujqtIM7HXOIkKH0ChcwdvDNE1OY p72m6mMBWP7ctJqYLPTclbBJPVmI0hYJn9Vq3N6sUprhE2MpKmJbf5A51JTOj1xS Po/giCI4dZxDg7YDhTFrJDoaFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO/ie07W wVNV0plJ4FoEnZhXooD6MB8GA1UdIwQYMBaAFNrM24D4dfVSiTGogl0ar6GAqbF5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDcwMS9EMTg3OEVGNkM4 ODcxMUVEQkJFNkEzMkJDNEY5QUUwMi8yc3piZ1BoMTlWS0pNYWlDWFJxdm9ZQ3Bz WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJzemJnUGgxOVZLSk1haUNYUnF2b1lDcHNYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDcwMS9EMTg3OEVGNkM4ODcxMUVEQkJFNkEzMkJDNEY5QUUwMi8yc3piZ1BoMTlW S0pNYWlDWFJxdm9ZQ3BzWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXk475/y10WZy8tf8bNrBuvsdF0UdVSg+Kq9Oycbj4H0fKAYsRvV0b JRmBTe+39Q2BPfcOkoVvtP+x0Y6PSKC8pLYrmX158IhnocqaV+dg4EOq39oSJb5I WroUvTkV1fU93deEbUjeuRni3r6jGGZ1XNIi6GQQbLgd5mRj0XUlCjjcu7RYuT2Z /21WGtNp+q9u2TfyHUVL1i6tqkYKsCFgVpZzJJNmsS3SgGwxG4KMZDeduJQchTvy fvc8SHVpuz9Eek7cnWzSCgfuf10juhtKIqjN8sCyG8IjZ/9MM5eaAK28iR0gX6dI 9nW3wHlpNBttvOLEbVhxjMZZdfAQuCGl -----END CERTIFICATE-----Generated at Sat Dec 6 22:20:28 2025 by rpki-client