This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft File: PS2TrIsQhlgX2adMyBoDDX010HQ.mft (raw, json) Hash identifier: PSZmtU4pKDfDIJPpTAuY9uat2I2AN7W/Cwl8a6+mbuw= Subject key identifier: D8:E2:8D:E3:BB:1C:CA:C8:0D:A2:98:C7:04:BE:39:31:A3:BC:48:79 Authority key identifier: 3D:2D:93:AC:8B:10:86:58:17:D9:A7:4C:C8:1A:03:0D:7D:35:D0:74 Certificate issuer: /CN=A9196D9E/serialNumber=3D2D93AC8B10865817D9A74CC81A030D7D35D074 Certificate serial: 0186 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft Manifest number: 0184 Signing time: Fri 05 Dec 2025 01:49:40 +0000 Manifest this update: Fri 05 Dec 2025 01:49:40 +0000 Manifest next update: Fri 12 Dec 2025 01:49:40 +0000 Files and hashes: 1: PS2TrIsQhlgX2adMyBoDDX010HQ.crl (hash: q3lvPYVmGAhqnnjKt0jbGNGGK8U9cqW1TyB/Xs1iISU=) 2: C8BDA37CF68A11EFB7F91E24C4F9AE02.roa (hash: mArtjyT247pE1lA//+boJTcqB+yh5REahIcbkP9BBs0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.crl rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:49:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 390 (0x186) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196D9E, serialNumber=3D2D93AC8B10865817D9A74CC81A030D7D35D074 Validity Not Before: Dec 5 01:49:40 2025 GMT Not After : Dec 12 01:49:40 2025 GMT Subject: CN=69323a34-a0d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:ed:0b:99:d9:05:3b:c1:ab:a6:82:57:83:60: 6b:4c:76:9a:9c:f1:f8:0c:22:08:c5:7b:47:04:fe: e9:a7:8c:ec:cf:83:5a:84:30:0e:a8:e1:d1:e1:84: 4e:b2:52:5a:45:92:6f:bd:4d:ae:d0:67:40:46:ec: a4:23:97:84:88:03:0a:50:8a:33:e5:3e:ba:b6:90: f4:65:28:7d:0e:7d:98:a8:e7:fa:1d:49:cf:bd:80: ec:42:65:40:98:96:26:7d:3a:7c:f0:47:43:2b:a8: 77:f4:6c:99:58:12:08:b6:62:7c:eb:36:4f:9e:83: 96:1e:56:fc:b6:25:7c:ea:7b:3b:63:96:b7:d1:87: db:fd:b3:5a:53:f4:a5:f9:0b:cb:88:15:40:0c:b3: db:eb:22:d1:96:2e:2d:cf:f9:46:be:a7:0a:ad:7b: af:9c:71:ad:72:19:3f:8e:7f:0d:0d:c8:87:11:04: 25:97:21:6d:86:65:d1:99:c8:99:77:53:e8:d6:ea: 32:b6:e8:ca:23:42:42:60:52:60:5d:58:56:70:eb: 8e:62:c3:50:29:bb:b9:49:58:17:bb:8f:d2:67:18: e1:ac:77:0a:06:a7:41:7a:68:23:d2:5f:83:0d:68: 7f:c0:7c:cc:70:27:45:e5:32:ef:47:b0:31:73:2e: cd:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:E2:8D:E3:BB:1C:CA:C8:0D:A2:98:C7:04:BE:39:31:A3:BC:48:79 X509v3 Authority Key Identifier: keyid:3D:2D:93:AC:8B:10:86:58:17:D9:A7:4C:C8:1A:03:0D:7D:35:D0:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:d3:a6:c9:68:aa:a8:1f:3a:80:3c:f5:e2:ec:a5:9d:39:99: e9:da:e2:39:4f:0b:0a:4c:e7:e0:ba:b0:80:16:8a:f1:9f:1b: 14:60:86:bf:d8:48:fc:79:99:ab:d2:2b:58:f1:08:86:28:19: ef:d7:77:6c:90:ef:50:02:92:03:a0:8e:91:06:62:07:7a:6a: a9:3d:94:9a:38:27:26:b3:f1:02:86:63:df:85:48:9d:28:7e: d3:31:ba:df:aa:0c:d4:b5:05:e2:28:1b:33:d8:a0:e4:29:ff: 91:86:65:2e:e7:de:0e:18:65:69:ee:66:ce:c8:40:39:67:45: 6d:98:20:0d:06:d6:82:a4:9c:36:47:d1:2c:65:8b:c1:34:9f: 6b:93:fd:be:90:ff:18:82:e4:2d:30:7b:d3:d6:ad:9b:4d:77: ee:d9:3d:55:04:e8:c1:e0:6c:de:13:8a:05:96:ef:36:5e:39: 76:5f:15:87:f7:99:be:93:1f:2e:b6:ce:0f:67:ef:e3:a8:57: 2c:2e:c9:8e:1c:b1:87:73:25:f1:89:84:e0:ec:74:91:12:dc: 69:51:f9:52:89:bf:5b:e1:67:82:c8:8e:ed:b5:5a:4a:b3:a6: a3:41:45:03:2b:d8:c8:80:d8:da:8c:cf:43:ce:e8:b8:93:b3: e2:72:46:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZEOUUxMTAvBgNVBAUTKDNEMkQ5M0FDOEIxMDg2NTgxN0Q5QTc0Q0M4MUEwMzBE N0QzNUQwNzQwHhcNMjUxMjA1MDE0OTQwWhcNMjUxMjEyMDE0OTQwWjAYMRYwFAYD VQQDEw02OTMyM2EzNC1hMGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm+0LmdkFO8GrpoJXg2BrTHaanPH4DCIIxXtHBP7pp4zsz4NahDAOqOHR4YRO slJaRZJvvU2u0GdARuykI5eEiAMKUIoz5T66tpD0ZSh9Dn2YqOf6HUnPvYDsQmVA mJYmfTp88EdDK6h39GyZWBIItmJ86zZPnoOWHlb8tiV86ns7Y5a30Yfb/bNaU/Sl +QvLiBVADLPb6yLRli4tz/lGvqcKrXuvnHGtchk/jn8NDciHEQQllyFthmXRmciZ d1Po1uoytujKI0JCYFJgXVhWcOuOYsNQKbu5SVgXu4/SZxjhrHcKBqdBemgj0l+D DWh/wHzMcCdF5TLvR7Axcy7NzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNjijeO7 HMrIDaKYxwS+OTGjvEh5MB8GA1UdIwQYMBaAFD0tk6yLEIZYF9mnTMgaAw19NdB0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkQ5RS83N0JCOTg0QzdE NjExMUVFQjQ2M0M4NUFDNEY5QUUwMi9QUzJUcklzUWhsZ1gyYWRNeUJvRERYMDEw SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BTMlRySXNRaGxnWDJhZE15Qm9ERFgwMTBIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkQ5RS83N0JCOTg0QzdENjExMUVFQjQ2M0M4NUFDNEY5QUUwMi9QUzJUcklzUWhs Z1gyYWRNeUJvRERYMDEwSFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAK06bJaKqoHzqAPPXi7KWdOZnp2uI5TwsKTOfgurCAForxnxsUYIa/ 2Ej8eZmr0itY8QiGKBnv13dskO9QApIDoI6RBmIHemqpPZSaOCcms/EChmPfhUid KH7TMbrfqgzUtQXiKBsz2KDkKf+RhmUu594OGGVp7mbOyEA5Z0VtmCANBtaCpJw2 R9EsZYvBNJ9rk/2+kP8YguQtMHvT1q2bTXfu2T1VBOjB4GzeE4oFlu82Xjl2XxWH 95m+kx8uts4PZ+/jqFcsLsmOHLGHcyXxiYTg7HSREtxpUflSib9b4WeCyI7ttVpK s6ajQUUDK9jIgNjajM9Dzui4k7PickYy -----END CERTIFICATE-----Generated at Sat Dec 6 21:19:52 2025 by rpki-client