This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft File: dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft (raw, json) Hash identifier: qzBHBQ9cmUstoBThcGC8pJL/atOX6TDMZh7q8ladpuc= Subject key identifier: BE:50:15:4A:B4:E9:4E:A6:85:85:9A:81:09:10:69:2D:BE:6A:05:D3 Authority key identifier: 75:11:CB:31:3E:B8:3F:1C:39:02:AA:63:C4:3B:7A:03:6A:CC:63:17 Certificate issuer: /CN=A91273B6/serialNumber=7511CB313EB83F1C3902AA63C43B7A036ACC6317 Certificate serial: 3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dRHLMT64Pxw5AqpjxDt6A2rMYxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft Manifest number: 3D Signing time: Tue 23 Dec 2025 06:17:57 +0000 Manifest this update: Tue 23 Dec 2025 06:17:57 +0000 Manifest next update: Tue 30 Dec 2025 06:17:57 +0000 Files and hashes: 1: dRHLMT64Pxw5AqpjxDt6A2rMYxc.crl (hash: gCnLRhbEb6+9gd91NSQn0KkGZ4QVNGBa4FQzVAAXKMI=) 2: 5F9C3E0681AB11F09884FA0BC4F9AE02.roa (hash: F4Qio5WYvuiwdHGB0kchv0Q5AZIoWb0UXCVdpuPI1Cs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.crl rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dRHLMT64Pxw5AqpjxDt6A2rMYxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 06:17:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91273B6, serialNumber=7511CB313EB83F1C3902AA63C43B7A036ACC6317 Validity Not Before: Dec 23 06:17:57 2025 GMT Not After : Dec 30 06:17:57 2025 GMT Subject: CN=694a3415-8cdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:7e:ca:b9:98:35:84:5a:a5:ed:14:91:bc:d4: 9e:eb:ef:d6:c4:1d:b8:c5:05:eb:a5:3a:db:86:8e: 2f:a3:cd:25:ee:82:e7:c6:6f:70:ed:44:40:f3:39: 99:a3:51:2b:5b:3e:a0:b7:88:13:dc:c6:17:a7:43: 89:7d:4d:c6:b2:e4:f3:62:32:08:b6:35:74:86:8a: f7:7a:28:59:97:40:19:59:9c:46:d4:5e:6f:54:6b: d4:54:f7:bc:b4:14:27:c6:79:c8:29:f4:e8:ca:c3: 41:fe:0b:24:27:2d:06:34:d5:a9:b7:d6:3f:7a:01: c8:94:af:b1:ac:d7:db:f0:f3:a6:9a:dc:46:1c:7a: bd:37:82:58:f5:02:b2:94:80:d2:f2:05:b3:a4:bc: 25:41:3b:a2:51:a0:46:36:d1:53:5f:a0:15:11:77: c6:1b:d8:ed:6f:fa:18:2e:93:d7:ae:cf:fd:d9:2f: b2:e5:c2:c9:1f:ad:0c:56:56:e1:1c:af:bc:2d:2d: 3d:18:73:58:67:e2:e2:1d:8d:a4:45:6d:b8:f2:d4: 3e:a4:31:96:60:d0:fc:1c:14:7c:50:91:01:d8:ca: 0d:a0:27:86:b7:b2:14:81:28:03:d3:ef:37:24:5e: db:1a:52:68:bc:e4:42:d0:97:74:70:f7:ec:33:f2: 85:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:50:15:4A:B4:E9:4E:A6:85:85:9A:81:09:10:69:2D:BE:6A:05:D3 X509v3 Authority Key Identifier: keyid:75:11:CB:31:3E:B8:3F:1C:39:02:AA:63:C4:3B:7A:03:6A:CC:63:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dRHLMT64Pxw5AqpjxDt6A2rMYxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:96:ba:fc:82:d3:ec:bd:25:26:78:2c:e4:7d:8c:f1:56:6f: e4:18:58:87:58:bc:73:5f:0f:4a:94:3a:e4:67:31:c8:e2:bc: 3f:f3:c6:2d:7c:3e:22:68:5a:7c:41:c8:26:64:1c:70:ed:78: 92:ea:6c:19:71:c1:2c:9c:63:6e:2d:b3:35:87:51:0b:e1:16: 98:1c:81:bf:bc:da:f5:00:ff:35:2d:68:d0:7a:b3:78:20:56: c7:03:bc:34:c9:90:ce:09:35:ea:17:ba:f5:7e:0d:9d:78:e5: 83:4a:0a:7b:55:31:e4:83:c0:a7:f8:b7:3a:9a:02:23:de:a1: ac:ba:9c:73:40:f5:af:78:19:ad:89:4d:94:0a:6a:32:de:42: c5:06:c1:be:1c:d5:07:c8:70:27:d6:ad:23:82:70:c8:e6:a9: b4:f4:36:e2:70:a2:be:77:f1:94:48:fc:4f:3e:4b:28:f0:47: 86:42:61:05:c7:9d:1f:03:2a:26:1f:b9:03:dd:c9:46:eb:f1: b0:e8:7f:b8:1a:40:54:88:e3:66:ec:44:66:7e:1d:96:28:9c: 6a:0e:73:14:43:8e:ef:78:39:f5:7c:38:fc:48:98:69:07:d3: 5d:68:a4:13:c7:01:20:aa:39:a0:89:fb:20:e9:15:7c:b6:12: 81:4b:ed:d1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NzNCNjExMC8GA1UEBRMoNzUxMUNCMzEzRUI4M0YxQzM5MDJBQTYzQzQzQjdBMDM2 QUNDNjMxNzAeFw0yNTEyMjMwNjE3NTdaFw0yNTEyMzAwNjE3NTdaMBgxFjAUBgNV BAMMDTY5NGEzNDE1LThjZGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZfsq5mDWEWqXtFJG81J7r79bEHbjFBeulOtuGji+jzSXugufGb3DtREDzOZmj UStbPqC3iBPcxhenQ4l9Tcay5PNiMgi2NXSGivd6KFmXQBlZnEbUXm9Ua9RU97y0 FCfGecgp9OjKw0H+CyQnLQY01am31j96AciUr7Gs19vw86aa3EYcer03glj1ArKU gNLyBbOkvCVBO6JRoEY20VNfoBURd8Yb2O1v+hguk9euz/3ZL7LlwskfrQxWVuEc r7wtLT0Yc1hn4uIdjaRFbbjy1D6kMZZg0PwcFHxQkQHYyg2gJ4a3shSBKAPT7zck XtsaUmi85ELQl3Rw9+wz8oWvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvlAVSrTp TqaFhZqBCRBpLb5qBdMwHwYDVR0jBBgwFoAUdRHLMT64Pxw5AqpjxDt6A2rMYxcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3M0I2LzU0ODFBRkMwODFB QTExRjBCNENEQUQxQ0M0RjlBRTAyL2RSSExNVDY0UHh3NUFxcGp4RHQ2QTJyTVl4 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZFJITE1UNjRQeHc1QXFwanhEdDZBMnJNWXhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3 M0I2LzU0ODFBRkMwODFBQTExRjBCNENEQUQxQ0M0RjlBRTAyL2RSSExNVDY0UHh3 NUFxcGp4RHQ2QTJyTVl4Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMuWuvyC0+y9JSZ4LOR9jPFWb+QYWIdYvHNfD0qUOuRnMcjivD/zxi18 PiJoWnxByCZkHHDteJLqbBlxwSycY24tszWHUQvhFpgcgb+82vUA/zUtaNB6s3gg VscDvDTJkM4JNeoXuvV+DZ145YNKCntVMeSDwKf4tzqaAiPeoay6nHNA9a94Ga2J TZQKajLeQsUGwb4c1QfIcCfWrSOCcMjmqbT0NuJwor538ZRI/E8+SyjwR4ZCYQXH nR8DKiYfuQPdyUbr8bDof7gaQFSI42bsRGZ+HZYonGoOcxRDju94OfV8OPxImGkH 011opBPHASCqOaCJ+yDpFXy2EoFL7dE= -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:14 2025 by rpki-client