This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft File: 2h2yzTH0VPaVYdhmXck--BLzl7A.mft (raw, json) Hash identifier: j+TZ5pOGtZ0lNEOGwioMHZ3AvDU5wqqzsb4kdqfySD0= Subject key identifier: D9:07:16:56:BF:EF:44:BC:45:0C:B2:EC:00:21:09:9C:76:B0:F7:E9 Authority key identifier: DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 Certificate issuer: /CN=A919A7CA/serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Certificate serial: 0190 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft Manifest number: 0186 Signing time: Fri 05 Dec 2025 01:50:12 +0000 Manifest this update: Fri 05 Dec 2025 01:50:11 +0000 Manifest next update: Fri 12 Dec 2025 01:50:11 +0000 Files and hashes: 1: 2h2yzTH0VPaVYdhmXck--BLzl7A.crl (hash: eS9AYAHKHNF/8pYWApmaKCjpY55CVN1qObKtFKhRXDs=) 2: 730B201A81E911EEAEFE7735C4F9AE02.roa (hash: s0CFqQaJE4zfLQbz4CeHwWhJkg8L6CDsaxGgDdisTeI=) 3: 4317395081E611EE9EFE132BC4F9AE02.roa (hash: tQp/nzqfCovKInVuREO99dY4qu3efR3x/X9HpDvqlY0=) 4: E71AB92A7F7D11EE8C183162C4F9AE02.roa (hash: Dsh7pIT1SQfv6ivkNmsm2ZCHRytBDFAmEgjeRNzC7do=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 400 (0x190) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A7CA, serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Validity Not Before: Dec 5 01:50:11 2025 GMT Not After : Dec 12 01:50:11 2025 GMT Subject: CN=69323a53-3f2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0f:f2:c2:75:54:4f:71:89:7f:59:80:58:d6: 52:5d:f9:61:83:da:d8:25:34:76:47:02:a3:e7:67: 44:e9:0d:a1:af:8b:d9:b0:7e:f7:76:3f:99:9a:1c: c3:72:40:38:09:0a:13:fa:f0:8d:6b:88:a3:a3:f1: 9a:27:61:dd:7a:83:a1:eb:62:71:93:b3:c9:60:5a: 81:35:a1:03:28:57:cd:47:fb:f0:b4:3d:0e:b4:10: 81:41:59:a4:fc:96:e4:06:b8:3f:8a:e5:68:22:76: d4:4c:1e:75:30:13:7c:d6:1c:6c:db:2d:44:7c:5d: f3:a2:4c:38:0e:d9:3a:47:06:69:b2:83:6c:24:f7: e0:d7:08:24:9e:04:6d:7d:0f:23:e4:2c:58:7a:50: 4e:5a:29:52:c9:0e:9c:67:1b:21:8f:27:69:58:61: 89:2c:88:dc:e5:8f:ff:a7:28:47:4c:c2:e5:18:17: 5f:78:38:4b:91:4d:fa:e9:39:1d:fb:f6:3b:16:f3: b7:0f:c5:1d:68:9e:83:d0:08:63:d8:c5:e0:a6:ab: 50:8e:a6:9a:aa:64:0c:76:a5:a0:98:61:df:1d:db: 8e:53:59:12:4e:96:52:b0:44:3a:0c:64:1f:93:4a: 1e:cf:af:d1:7b:9a:63:b6:03:46:c0:11:1e:f8:e6: 48:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:07:16:56:BF:EF:44:BC:45:0C:B2:EC:00:21:09:9C:76:B0:F7:E9 X509v3 Authority Key Identifier: keyid:DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:33:f3:7f:af:ff:d2:4c:cf:71:63:f5:8d:d9:e0:ad:99:57: d8:e4:84:43:e0:64:e9:a3:cc:18:f9:42:b3:1a:28:1d:db:db: cc:80:a4:46:ef:f3:e3:51:44:bd:45:bd:c5:d2:4a:da:b9:a0: 1d:d4:97:a4:88:93:7d:14:bd:e8:a5:18:a5:66:a8:5e:96:e5: 7f:ee:2e:09:4e:2f:db:cf:59:cb:ce:76:c2:1f:18:6e:e4:e5: ec:c4:c4:b0:0b:a6:e9:b8:a5:4b:e8:71:e9:6a:91:1d:75:32: 1b:de:27:6c:41:4f:1c:3c:8b:72:35:03:c2:f2:96:e0:5b:21: ac:d7:ba:9c:c3:62:cf:ce:5d:ce:25:56:74:6f:14:99:11:c2: f1:0b:2d:52:6e:53:5b:d9:c5:9a:8c:a2:35:db:68:03:59:c9: 2f:e8:de:13:82:29:b6:61:1d:86:0a:59:6e:bc:50:4d:cf:52: cf:95:0d:3c:95:a6:d9:3c:ed:d7:2c:1b:52:8d:a9:06:33:73: c7:89:6e:a6:80:e1:2e:05:18:e5:d2:76:26:06:fb:a0:42:bc: 25:d5:be:6d:5e:4b:df:ff:dd:df:88:62:10:94:58:53:8e:e7: b8:cd:b0:b7:dd:00:ce:10:6b:5e:19:b9:47:64:8b:f1:fd:19: 28:ec:14:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE3Q0ExMTAvBgNVBAUTKERBMURCMkNEMzFGNDU0RjY5NTYxRDg2NjVEQzkzRUY4 MTJGMzk3QjAwHhcNMjUxMjA1MDE1MDExWhcNMjUxMjEyMDE1MDExWjAYMRYwFAYD VQQDEw02OTMyM2E1My0zZjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxA/ywnVUT3GJf1mAWNZSXflhg9rYJTR2RwKj52dE6Q2hr4vZsH73dj+ZmhzD ckA4CQoT+vCNa4ijo/GaJ2HdeoOh62Jxk7PJYFqBNaEDKFfNR/vwtD0OtBCBQVmk /JbkBrg/iuVoInbUTB51MBN81hxs2y1EfF3zokw4Dtk6RwZpsoNsJPfg1wgkngRt fQ8j5CxYelBOWilSyQ6cZxshjydpWGGJLIjc5Y//pyhHTMLlGBdfeDhLkU366Tkd +/Y7FvO3D8UdaJ6D0Ahj2MXgpqtQjqaaqmQMdqWgmGHfHduOU1kSTpZSsEQ6DGQf k0oez6/Re5pjtgNGwBEe+OZIzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNkHFla/ 70S8RQyy7AAhCZx2sPfpMB8GA1UdIwQYMBaAFNodss0x9FT2lWHYZl3JPvgS85ew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTdDQS80Q0Y3RjE1ODdF QjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQYVZZZGhtWGNrLS1CTHps N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJoMnl6VEgwVlBhVllkaG1YY2stLUJMemw3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTdDQS80Q0Y3RjE1ODdFQjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQ YVZZZGhtWGNrLS1CTHpsN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARM/N/r//STM9xY/WN2eCtmVfY5IRD4GTpo8wY+UKzGigd29vMgKRG 7/PjUUS9Rb3F0krauaAd1JekiJN9FL3opRilZqheluV/7i4JTi/bz1nLznbCHxhu 5OXsxMSwC6bpuKVL6HHpapEddTIb3idsQU8cPItyNQPC8pbgWyGs17qcw2LPzl3O JVZ0bxSZEcLxCy1SblNb2cWajKI122gDWckv6N4Tgim2YR2GClluvFBNz1LPlQ08 labZPO3XLBtSjakGM3PHiW6mgOEuBRjl0nYmBvugQrwl1b5tXkvf/93fiGIQlFhT jue4zbC33QDOEGteGblHZIvx/Rko7BRi -----END CERTIFICATE-----Generated at Sat Dec 6 22:10:26 2025 by rpki-client