This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft File: DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft (raw, json) Hash identifier: POTVldTWX3DX3HuVaUB64jnc5hapo506/KQYq2Fr8SY= Subject key identifier: 2B:2A:CD:25:1A:F2:38:EA:31:F7:C3:BC:13:19:E2:A3:40:07:E7:4F Authority key identifier: 0D:03:46:C8:A2:66:BE:6A:DC:E4:B7:E8:39:50:AF:5F:E1:EB:E5:C4 Certificate issuer: /CN=A9112BDE/serialNumber=0D0346C8A266BE6ADCE4B7E83950AF5FE1EBE5C4 Certificate serial: 077C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft Manifest number: 0776 Signing time: Mon 22 Dec 2025 20:52:50 +0000 Manifest this update: Mon 22 Dec 2025 20:52:50 +0000 Manifest next update: Mon 29 Dec 2025 20:52:50 +0000 Files and hashes: 1: DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.crl (hash: CdkrgxAr7jXX9ulCdJWqIzN1I39m3AxglDb683/sa6s=) 2: 511EBFFE3E7E11EB979F564CC4F9AE02.roa (hash: Vr7eqcQZAVOzBkNtRv4RGA5ST9LjW4Xtker8ajEEVvQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.crl rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:52:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1916 (0x77c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112BDE, serialNumber=0D0346C8A266BE6ADCE4B7E83950AF5FE1EBE5C4 Validity Not Before: Dec 22 20:52:50 2025 GMT Not After : Dec 29 20:52:50 2025 GMT Subject: CN=6949afa2-e96f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:01:31:be:a7:37:c1:7c:f2:52:1b:4b:89:11: 0a:75:67:f3:87:2a:79:94:8a:74:a7:7d:4b:47:fe: e6:8f:62:87:3a:4b:12:ce:1f:fd:a1:7f:eb:f2:03: 2a:f8:c9:01:0e:e8:44:26:b9:dd:20:f1:db:1b:a6: 9e:93:da:a3:08:1e:c0:db:8e:ad:c9:25:5c:c0:0f: 58:d4:32:1d:23:92:8d:67:1a:f9:75:05:87:ac:42: 21:c3:84:95:08:cf:74:70:14:29:3d:e7:2a:c5:72: 29:81:61:87:f0:ad:bb:72:13:d3:50:c6:b2:6a:34: d0:67:12:a8:61:a4:cf:74:90:a9:4d:93:0e:21:cf: 00:6a:22:bc:42:30:28:aa:7e:5b:63:0f:00:2e:15: 55:7b:79:83:8d:21:3b:20:cd:ca:ec:c1:7e:71:70: ca:3c:6d:65:50:9a:f1:a8:7d:43:04:59:77:8c:c7: 1a:bf:52:bd:86:bb:94:0c:87:00:db:96:a8:2a:06: ac:bd:46:13:d6:f7:bd:e3:3a:50:55:9f:86:cb:d2: 81:0a:d7:a3:d2:33:83:d0:99:95:24:3b:c2:fb:12: 4b:c4:da:af:f7:f5:7b:48:48:09:ec:fb:98:37:7a: 90:db:1b:f7:3b:57:8d:e4:e2:b8:00:6a:d4:7f:1f: 5e:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:2A:CD:25:1A:F2:38:EA:31:F7:C3:BC:13:19:E2:A3:40:07:E7:4F X509v3 Authority Key Identifier: keyid:0D:03:46:C8:A2:66:BE:6A:DC:E4:B7:E8:39:50:AF:5F:E1:EB:E5:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:02:7c:be:b7:c3:03:ab:58:1d:03:47:1d:3c:92:df:d8:18: 48:e5:63:cc:0f:b0:d0:e7:93:ec:be:f9:1e:0b:e4:dc:25:63: 76:b6:cd:a1:fe:55:12:cc:31:43:9b:a0:6b:1b:fc:7b:a1:ba: e2:bb:e0:63:3f:1d:bb:c2:58:2a:99:39:0b:d1:8d:ba:6c:1d: a1:8e:26:96:2f:ea:8d:1c:87:85:70:b6:9b:bb:7c:20:23:f4: b8:d6:92:3e:df:1b:00:eb:ce:db:22:11:e2:7b:2d:65:bc:3b: fb:b3:cf:76:d0:41:66:53:61:00:3b:5a:f2:49:2c:d1:39:bf: 76:f4:f5:dc:55:dc:a4:dc:d1:13:a5:bc:d3:5f:47:35:90:9a: a3:3c:32:bc:d5:db:e2:52:fa:e8:b6:48:42:3e:86:bf:bf:a9: 8f:f4:f0:38:58:51:45:ef:3f:f3:44:d2:d5:0b:b6:87:16:df: 2c:b4:44:78:3a:24:02:82:97:a3:2a:d3:c1:3a:9f:8e:62:32: 83:5f:10:01:fc:3c:fc:9f:19:18:e5:8e:c2:50:83:35:62:7f: 21:e2:50:cf:6a:64:99:c9:71:08:e5:75:fc:32:02:5e:75:e2: 98:85:72:73:33:48:35:03:01:a0:37:b8:88:31:eb:72:3e:b6: 98:f5:b7:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJCREUxMTAvBgNVBAUTKDBEMDM0NkM4QTI2NkJFNkFEQ0U0QjdFODM5NTBBRjVG RTFFQkU1QzQwHhcNMjUxMjIyMjA1MjUwWhcNMjUxMjI5MjA1MjUwWjAYMRYwFAYD VQQDDA02OTQ5YWZhMi1lOTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjQExvqc3wXzyUhtLiREKdWfzhyp5lIp0p31LR/7mj2KHOksSzh/9oX/r8gMq +MkBDuhEJrndIPHbG6aek9qjCB7A246tySVcwA9Y1DIdI5KNZxr5dQWHrEIhw4SV CM90cBQpPecqxXIpgWGH8K27chPTUMayajTQZxKoYaTPdJCpTZMOIc8AaiK8QjAo qn5bYw8ALhVVe3mDjSE7IM3K7MF+cXDKPG1lUJrxqH1DBFl3jMcav1K9hruUDIcA 25aoKgasvUYT1ve94zpQVZ+Gy9KBCtej0jOD0JmVJDvC+xJLxNqv9/V7SEgJ7PuY N3qQ2xv3O1eN5OK4AGrUfx9e3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCsqzSUa 8jjqMffDvBMZ4qNAB+dPMB8GA1UdIwQYMBaAFA0DRsiiZr5q3OS36DlQr1/h6+XE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkJERS81RTEyOEZGQzNF N0QxMUVCQkJFRjI3NENDNEY5QUUwMi9EUU5HeUtKbXZtcmM1TGZvT1ZDdlgtSHI1 Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RRTkd5S0ptdm1yYzVMZm9PVkN2WC1IcjVjUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkJERS81RTEyOEZGQzNFN0QxMUVCQkJFRjI3NENDNEY5QUUwMi9EUU5HeUtKbXZt cmM1TGZvT1ZDdlgtSHI1Y1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiAny+t8MDq1gdA0cdPJLf2BhI5WPMD7DQ55PsvvkeC+TcJWN2ts2h /lUSzDFDm6BrG/x7obriu+BjPx27wlgqmTkL0Y26bB2hjiaWL+qNHIeFcLabu3wg I/S41pI+3xsA687bIhHiey1lvDv7s8920EFmU2EAO1rySSzROb929PXcVdyk3NET pbzTX0c1kJqjPDK81dviUvrotkhCPoa/v6mP9PA4WFFF7z/zRNLVC7aHFt8stER4 OiQCgpejKtPBOp+OYjKDXxAB/Dz8nxkY5Y7CUIM1Yn8h4lDPamSZyXEI5XX8MgJe deKYhXJzM0g1AwGgN7iIMetyPraY9bcy -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:49 2025 by rpki-client