This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft File: D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft (raw, json) Hash identifier: lPPib6ZIDkhSxk2XzhwLNnErkc7ex43gSuHvvYUkJtM= Subject key identifier: 5D:E4:C5:4C:34:8D:6C:85:69:E6:A5:61:4D:18:B2:7E:CA:E6:2E:60 Authority key identifier: 0F:61:42:AE:41:68:DF:0B:18:05:FA:58:1D:20:39:47:67:AA:22:58 Certificate issuer: /CN=A9134BB0/serialNumber=0F6142AE4168DF0B1805FA581D20394767AA2258 Certificate serial: 01DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft Manifest number: 01D8 Signing time: Sun 21 Dec 2025 02:01:59 +0000 Manifest this update: Sun 21 Dec 2025 02:01:59 +0000 Manifest next update: Sun 28 Dec 2025 02:01:59 +0000 Files and hashes: 1: D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl (hash: rj4dY8OM+kDs/MmXZgLJPzCSeWqaTFYIV3F/dWAoE3Q=) 2: 075B4CC80AC511EEB25A152AC4F9AE02.roa (hash: oHGClGt0Y+/Ca/fTjOnKQ8pJUUYEh+Yq1JxoBHlpH4s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 02:01:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 476 (0x1dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134BB0, serialNumber=0F6142AE4168DF0B1805FA581D20394767AA2258 Validity Not Before: Dec 21 02:01:59 2025 GMT Not After : Dec 28 02:01:59 2025 GMT Subject: CN=69475517-dfca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e2:46:b8:19:b5:73:a0:de:46:73:7b:1a:d6: 03:c8:c0:aa:18:7e:38:02:a1:b7:3c:8f:13:f6:31: 7c:03:21:e3:bc:e0:a7:67:91:07:9a:95:42:37:09: 4b:fd:64:98:23:4a:43:63:07:3b:6c:25:ac:ff:31: 39:51:06:d7:77:88:49:6c:2e:24:15:46:dd:9e:30: ad:dc:d4:e5:6d:20:26:3e:c4:43:55:33:85:da:b8: a5:9b:85:86:83:a2:47:2e:76:8d:d7:8d:c4:f1:7a: 4f:2c:25:32:b2:53:2a:bb:b5:11:bb:f9:e3:fb:f6: 97:2b:ad:80:4d:f3:f9:25:89:1b:12:d1:cd:77:07: f3:39:07:df:11:eb:e8:f3:f0:11:d6:02:c9:33:a9: 47:49:35:36:e9:55:99:5f:e2:23:b7:a3:a3:f1:9b: fb:e5:2b:0e:42:36:f4:b4:b6:84:f8:e0:06:ef:59: 43:91:34:a0:23:f7:58:56:52:3b:dc:4d:1c:4d:5d: 0d:51:c2:30:e8:92:12:2b:5e:b3:ba:af:dc:ec:4a: 0b:75:31:ad:c6:cb:9a:ba:e8:37:7b:7d:70:e7:6f: 4b:bf:9a:c3:fb:e1:06:88:d8:20:8d:c6:d5:7e:de: 15:53:3b:85:48:3e:33:3a:13:21:4e:36:9f:be:2b: 28:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:E4:C5:4C:34:8D:6C:85:69:E6:A5:61:4D:18:B2:7E:CA:E6:2E:60 X509v3 Authority Key Identifier: keyid:0F:61:42:AE:41:68:DF:0B:18:05:FA:58:1D:20:39:47:67:AA:22:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:89:9b:30:d6:ee:63:a5:55:ee:6f:45:d9:73:38:c9:5d:1b: 2b:44:47:31:bc:eb:be:7a:45:01:17:b3:fb:d0:43:c1:be:d9: dd:4d:64:a7:3f:53:99:58:05:71:70:f3:fe:0b:5f:79:ea:47: e2:de:74:d8:e4:f1:6b:36:26:86:15:81:e5:27:aa:5e:ca:49: 71:87:65:8b:19:55:64:88:ae:4e:a4:9e:d6:0e:da:ec:8f:a1: 30:e9:f2:6d:1d:96:3d:e4:ca:33:6f:fe:25:06:7d:f9:77:10: 19:f2:df:97:ba:3c:d9:d3:88:91:65:09:ac:b6:e8:bb:f6:fb: 70:5a:09:eb:8d:db:f9:a1:7b:4a:80:81:f9:b7:8d:be:8c:71: 0a:3c:4f:73:e4:71:09:7a:20:95:45:b9:46:fe:47:bc:aa:ce: 38:a5:12:7d:1e:0f:5b:85:60:fc:a4:84:e4:0e:e1:2a:25:dc: 3f:cc:60:5c:1a:3d:a7:f9:35:89:72:7f:5c:b0:21:de:6b:3a: 6b:35:6c:27:25:38:e4:5f:60:d5:6b:db:12:bb:35:ad:67:f6: 1b:e1:bb:10:e5:d2:21:08:63:76:ab:a5:a1:5b:1b:38:b4:ed: 5d:29:9d:c9:f8:b3:cd:06:3b:ae:47:7b:1b:7b:c8:e3:13:f4: fb:b1:81:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRCQjAxMTAvBgNVBAUTKDBGNjE0MkFFNDE2OERGMEIxODA1RkE1ODFEMjAzOTQ3 NjdBQTIyNTgwHhcNMjUxMjIxMDIwMTU5WhcNMjUxMjI4MDIwMTU5WjAYMRYwFAYD VQQDDA02OTQ3NTUxNy1kZmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAteJGuBm1c6DeRnN7GtYDyMCqGH44AqG3PI8T9jF8AyHjvOCnZ5EHmpVCNwlL /WSYI0pDYwc7bCWs/zE5UQbXd4hJbC4kFUbdnjCt3NTlbSAmPsRDVTOF2rilm4WG g6JHLnaN143E8XpPLCUyslMqu7URu/nj+/aXK62ATfP5JYkbEtHNdwfzOQffEevo 8/AR1gLJM6lHSTU26VWZX+Ijt6Oj8Zv75SsOQjb0tLaE+OAG71lDkTSgI/dYVlI7 3E0cTV0NUcIw6JISK16zuq/c7EoLdTGtxsuauug3e31w529Lv5rD++EGiNggjcbV ft4VUzuFSD4zOhMhTjafvisofQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF3kxUw0 jWyFaealYU0Ysn7K5i5gMB8GA1UdIwQYMBaAFA9hQq5BaN8LGAX6WB0gOUdnqiJY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEJCMC9ERDQ3MzhFMDBB QkQxMUVFOTE3REE2NTVDNEY5QUUwMi9EMkZDcmtGbzN3c1lCZnBZSFNBNVIyZXFJ bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QyRkNya0ZvM3dzWUJmcFlIU0E1UjJlcUlsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEJCMC9ERDQ3MzhFMDBBQkQxMUVFOTE3REE2NTVDNEY5QUUwMi9EMkZDcmtGbzN3 c1lCZnBZSFNBNVIyZXFJbGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyiZsw1u5jpVXub0XZczjJXRsrREcxvOu+ekUBF7P70EPBvtndTWSn P1OZWAVxcPP+C1956kfi3nTY5PFrNiaGFYHlJ6peyklxh2WLGVVkiK5OpJ7WDtrs j6Ew6fJtHZY95Mozb/4lBn35dxAZ8t+XujzZ04iRZQmstui79vtwWgnrjdv5oXtK gIH5t42+jHEKPE9z5HEJeiCVRblG/ke8qs44pRJ9Hg9bhWD8pITkDuEqJdw/zGBc Gj2n+TWJcn9csCHeazprNWwnJTjkX2DVa9sSuzWtZ/Yb4bsQ5dIhCGN2q6WhWxs4 tO1dKZ3J+LPNBjuuR3sbe8jjE/T7sYHI -----END CERTIFICATE-----Generated at Mon Dec 22 22:37:22 2025 by rpki-client