This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft File: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft (raw, json) Hash identifier: tDSRL7pDMVBhovhvRrD5n06z9rJYe+5jiBfGe7O7U7I= Subject key identifier: 81:A6:60:5A:71:BF:6C:F2:5B:A1:64:4D:D9:08:59:E3:A4:8D:DF:06 Authority key identifier: D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B Certificate issuer: /CN=A9197277/serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft Manifest number: 0165 Signing time: Sun 07 Dec 2025 02:24:09 +0000 Manifest this update: Sun 07 Dec 2025 02:24:08 +0000 Manifest next update: Sun 14 Dec 2025 02:24:08 +0000 Files and hashes: 1: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl (hash: cjc5Ye5xxvH5Z9TwPB4S222WXC48dEtX4k5KzpMEFc8=) 2: 2DCC0688B57211EEBB68526DC4F9AE02.roa (hash: 3pfVChkV7zELWja+oHQv3Km6INJzdWSQS1Y4XK0gQXg=) 3: 2E31B8FCB57211EEBB68526DC4F9AE02.roa (hash: sp0oN6M3b0vKQWiSIdTtVM/z4x+pZK5BNETB2TbgZ2E=) 4: 6F5F30B8B56111EE91C72951C4F9AE02.roa (hash: ipvSSCsuIB7+MwYDiVzzG4/g5ky54F8EF1XYBBpIM6E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197277, serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Validity Not Before: Dec 7 02:24:08 2025 GMT Not After : Dec 14 02:24:08 2025 GMT Subject: CN=6934e549-07bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b0:9d:85:5c:f6:cd:cf:b7:81:4d:49:29:d5: 10:11:57:6d:78:41:8a:fe:12:83:cf:f3:3a:d8:c8: bd:13:d9:be:e5:6f:a7:fc:c3:dc:7e:25:88:5d:b1: 0a:ac:03:95:98:ff:ac:18:ff:51:f0:47:3a:11:68: 6b:f3:24:52:75:ec:86:91:6f:2f:1f:8f:0f:6d:ef: 54:aa:17:8d:d0:1a:af:19:54:0e:33:0c:e2:2c:ab: a0:e8:a1:5b:fe:21:47:0c:43:ef:94:db:0a:6b:59: 52:1a:51:5d:87:7e:1e:3d:6c:67:2f:cf:74:2b:b3: 41:da:54:54:9b:58:12:a3:e1:f5:3c:55:3f:f6:70: 19:23:ca:1b:ed:01:1d:66:98:d7:29:c9:00:21:bb: e5:f9:92:73:0f:19:ad:60:0f:e5:73:be:3b:9d:21: 2c:8b:ee:de:ff:42:e6:ea:63:b3:97:c7:75:b9:19: 9a:75:1d:a6:3d:03:6d:65:31:64:ae:33:06:e4:ec: bb:28:d3:34:77:82:3b:ff:48:be:97:4e:a1:3f:b6: 3c:a2:d7:1f:5d:df:c0:c5:06:9a:f8:75:2b:71:5c: 2c:f6:ff:a1:81:ab:0c:17:30:9a:ed:d9:18:d3:75: 71:18:c2:c5:34:6d:fc:84:9b:98:0a:d2:33:e1:99: dd:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:A6:60:5A:71:BF:6C:F2:5B:A1:64:4D:D9:08:59:E3:A4:8D:DF:06 X509v3 Authority Key Identifier: keyid:D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:d3:f0:90:54:4e:90:cc:e5:cb:a4:80:26:a1:17:37:d4:a2: 71:63:d6:60:75:28:b8:bd:0a:7c:4f:50:a6:e7:6b:48:e0:f0: 47:14:df:d7:70:19:c3:5c:d6:66:d0:3b:4c:9b:f4:58:38:c3: 68:53:72:bc:71:f0:35:99:06:21:0f:c3:ef:7d:26:f1:af:7a: 1b:16:b2:68:7d:9f:a3:15:4e:1e:9b:96:8e:55:04:2b:ae:d1: 90:87:e4:42:2e:78:4c:58:95:08:5c:27:76:7c:15:64:dd:f9: 6c:bc:cb:05:99:06:3a:40:d7:a3:16:f0:6b:21:a5:63:06:c3: 56:4d:2d:61:aa:39:6f:69:a4:95:fc:49:1b:e8:76:4d:15:66: b4:35:41:bc:ab:a0:b4:63:e1:36:bd:65:99:bb:76:0f:3d:ff: e6:9e:16:94:41:5f:27:b7:37:f3:29:9b:5e:6b:82:a7:5d:90: 91:eb:2f:f3:41:3a:a5:23:8d:ab:5a:13:66:0a:ff:d5:be:67: 55:fa:fa:e8:dd:c5:c6:a8:94:1e:6d:8b:9c:97:bf:09:04:61: c9:9c:15:1f:9f:f5:1c:a0:de:51:71:66:a0:a7:81:ca:93:4a: 6f:0f:d9:17:60:12:df:ce:dd:05:4e:75:49:27:98:c3:a3:4f: 57:1b:b0:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyNzcxMTAvBgNVBAUTKEQ4M0I5M0UzMUU5Mzk5MzdEOENCMTVGRTM5Q0E1RTZF OEZFQUZBOUIwHhcNMjUxMjA3MDIyNDA4WhcNMjUxMjE0MDIyNDA4WjAYMRYwFAYD VQQDEw02OTM0ZTU0OS0wN2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxrCdhVz2zc+3gU1JKdUQEVdteEGK/hKDz/M62Mi9E9m+5W+n/MPcfiWIXbEK rAOVmP+sGP9R8Ec6EWhr8yRSdeyGkW8vH48Pbe9UqheN0BqvGVQOMwziLKug6KFb /iFHDEPvlNsKa1lSGlFdh34ePWxnL890K7NB2lRUm1gSo+H1PFU/9nAZI8ob7QEd ZpjXKckAIbvl+ZJzDxmtYA/lc747nSEsi+7e/0Lm6mOzl8d1uRmadR2mPQNtZTFk rjMG5Oy7KNM0d4I7/0i+l06hP7Y8otcfXd/AxQaa+HUrcVws9v+hgasMFzCa7dkY 03VxGMLFNG38hJuYCtIz4ZndTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIGmYFpx v2zyW6FkTdkIWeOkjd8GMB8GA1UdIwQYMBaAFNg7k+Mek5k32MsV/jnKXm6P6vqb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzI3Ny80M0E3RTg5NEI1 NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1UZll5eFgtT2NwZWJvX3Et cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJEdVQ0eDZUbVRmWXl4WC1PY3BlYm9fcS1wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzI3Ny80M0E3RTg5NEI1NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1U Zll5eFgtT2NwZWJvX3EtcHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBK0/CQVE6QzOXLpIAmoRc31KJxY9ZgdSi4vQp8T1Cm52tI4PBHFN/X cBnDXNZm0DtMm/RYOMNoU3K8cfA1mQYhD8PvfSbxr3obFrJofZ+jFU4em5aOVQQr rtGQh+RCLnhMWJUIXCd2fBVk3flsvMsFmQY6QNejFvBrIaVjBsNWTS1hqjlvaaSV /Ekb6HZNFWa0NUG8q6C0Y+E2vWWZu3YPPf/mnhaUQV8ntzfzKZtea4KnXZCR6y/z QTqlI42rWhNmCv/VvmdV+vro3cXGqJQebYucl78JBGHJnBUfn/UcoN5RcWagp4HK k0pvD9kXYBLfzt0FTnVJJ5jDo09XG7Do -----END CERTIFICATE-----Generated at Sun Dec 7 03:47:58 2025 by rpki-client