This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91348C9/CFC10E0ACE9711EE923F0470C4F9AE02/DHYrLJAks0yYhILx1x10mufcSus.mft File: DHYrLJAks0yYhILx1x10mufcSus.mft (raw, json) Hash identifier: TPs4GyRgjt7ctYTMZvFegeYtXm4E2sygcaiv4+Eimb0= Subject key identifier: 65:D2:FE:0F:D1:44:4D:50:EB:29:B7:CF:3E:A9:20:65:32:14:6F:75 Authority key identifier: 0C:76:2B:2C:90:24:B3:4C:98:84:82:F1:D7:1D:74:9A:E7:DC:4A:EB Certificate issuer: /CN=A91348C9/serialNumber=0C762B2C9024B34C988482F1D71D749AE7DC4AEB Certificate serial: 0168 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHYrLJAks0yYhILx1x10mufcSus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91348C9/CFC10E0ACE9711EE923F0470C4F9AE02/DHYrLJAks0yYhILx1x10mufcSus.mft Manifest number: 015A Signing time: Sun 07 Dec 2025 02:35:06 +0000 Manifest this update: Sun 07 Dec 2025 02:35:05 +0000 Manifest next update: Sun 14 Dec 2025 02:35:05 +0000 Files and hashes: 1: DHYrLJAks0yYhILx1x10mufcSus.crl (hash: EHw0zqXDAu4hnc6X7yEaVujMncpPAefI0EdYCEsrFrw=) 2: 79F7221E892911EF896D1145C4F9AE02.roa (hash: hGdMrY8+O6zApibMjg/vy58aibxku7iV/ch2aVDa82w=) 3: 9B6126AEE1D811EF881A2765C4F9AE02.roa (hash: A9dIkj8J76tWHGXSX/3Ud9jZf1nkfnJcE726ptgm7cw=) 4: F8B24A3C127911F09BCB8B7AC4F9AE02.roa (hash: v+1b4BSfVaZyzyzYkzqzeT7Ee1I3/7A+8jt9kQpxCPc=) 5: F278C026892911EFB08D7746C4F9AE02.roa (hash: Vz6AnYUqxQMrtm1fqPuY9YKct5u+kfmwLL8MJ80Qjc4=) 6: 5D31D17ACE9811EE9392467BC4F9AE02.roa (hash: 1Q/6I9YvTdRroG4PgU/vX7AvoYDmVeBiDmXzSwZyFRo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91348C9/CFC10E0ACE9711EE923F0470C4F9AE02/DHYrLJAks0yYhILx1x10mufcSus.crl rsync://rpki.apnic.net/member_repository/A91348C9/CFC10E0ACE9711EE923F0470C4F9AE02/DHYrLJAks0yYhILx1x10mufcSus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHYrLJAks0yYhILx1x10mufcSus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 02:35:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 360 (0x168) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91348C9, serialNumber=0C762B2C9024B34C988482F1D71D749AE7DC4AEB Validity Not Before: Dec 7 02:35:05 2025 GMT Not After : Dec 14 02:35:05 2025 GMT Subject: CN=6934e7d9-055c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:23:7a:1e:43:28:f1:7f:52:a2:21:6c:6e:ea: 21:f2:46:a2:dc:86:d0:2c:d2:c6:4d:17:f1:0d:6b: ef:a8:aa:fe:f3:7b:2b:3c:68:b8:f1:ff:b7:d8:65: 85:f9:70:f4:54:55:42:0d:b3:ab:81:cb:62:b7:96: 53:01:eb:33:79:65:f2:1e:90:40:e4:62:f0:3b:f3: b2:4f:bf:00:45:68:57:3c:47:50:3f:48:2d:65:87: 8f:80:c9:c4:3a:56:f2:fe:2a:1d:8c:a7:b7:59:a9: 7d:d3:4c:58:23:51:7e:70:a7:1f:5e:c3:94:0e:09: 4d:88:91:a9:0a:59:cf:3c:f2:da:3b:7a:ac:cb:52: 37:ae:03:48:56:64:c5:6d:eb:31:fc:f8:ae:13:6c: 4e:b2:a2:d5:82:bf:2f:c2:2c:60:ad:aa:55:61:07: ca:20:21:eb:f5:a1:db:a1:80:b7:78:a1:6c:a9:47: 5d:f4:71:ac:1f:22:21:23:a3:93:ec:01:2f:92:73: 29:e3:6b:49:71:3d:ba:01:ac:5e:76:3f:6a:66:6e: aa:a2:db:64:f0:f9:7d:b6:af:30:e0:d5:3f:6e:5a: 1a:ae:2a:54:43:3d:34:17:35:bd:67:75:a4:83:2c: 61:a4:f9:60:de:ce:e7:dc:82:b6:56:35:9a:16:ad: a7:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:D2:FE:0F:D1:44:4D:50:EB:29:B7:CF:3E:A9:20:65:32:14:6F:75 X509v3 Authority Key Identifier: keyid:0C:76:2B:2C:90:24:B3:4C:98:84:82:F1:D7:1D:74:9A:E7:DC:4A:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91348C9/CFC10E0ACE9711EE923F0470C4F9AE02/DHYrLJAks0yYhILx1x10mufcSus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHYrLJAks0yYhILx1x10mufcSus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91348C9/CFC10E0ACE9711EE923F0470C4F9AE02/DHYrLJAks0yYhILx1x10mufcSus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:39:2e:c1:6b:08:dc:ef:00:59:19:94:5b:c2:98:c3:2e:32: 45:71:83:0a:a9:33:84:ea:ee:d1:29:2e:83:c4:e4:e4:96:6f: 5d:0b:52:a0:11:69:e8:24:5a:94:ab:c5:63:d3:7e:68:32:68: a2:ff:70:57:39:8c:c6:00:4e:ef:d4:4b:ca:a8:d0:52:ae:ab: 35:c8:a7:a9:77:cd:83:a6:c9:cf:6c:d1:a8:6d:fe:54:65:88: 89:96:5f:fb:ec:30:e2:c4:d1:6a:d6:33:41:5b:25:83:b7:0a: e3:0a:f7:62:44:17:fd:60:a0:43:be:8d:34:f7:03:32:df:06: a3:62:2f:6f:fe:b8:6f:0c:d6:9b:21:29:e1:c0:5a:17:9e:16: 7d:9a:f6:50:91:20:61:80:19:6e:33:08:31:20:01:15:e5:98: 79:70:84:f7:93:5e:0e:71:61:45:3f:10:3d:b7:9f:3b:02:e6: e8:bc:b9:10:e1:bd:dc:71:59:44:cf:bf:ea:78:e2:f6:3d:ac: 1e:45:81:15:34:6d:e8:7c:35:b8:44:5d:f8:bf:7b:d1:a2:08: ff:1c:34:4e:4d:e0:37:76:32:49:31:74:0c:d4:95:7e:7e:36: d2:c1:35:db:7b:ab:25:f2:07:32:85:1b:23:f0:c1:e2:11:cf: d6:4f:a8:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ4QzkxMTAvBgNVBAUTKDBDNzYyQjJDOTAyNEIzNEM5ODg0ODJGMUQ3MUQ3NDlB RTdEQzRBRUIwHhcNMjUxMjA3MDIzNTA1WhcNMjUxMjE0MDIzNTA1WjAYMRYwFAYD VQQDEw02OTM0ZTdkOS0wNTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3CN6HkMo8X9SoiFsbuoh8kai3IbQLNLGTRfxDWvvqKr+83srPGi48f+32GWF +XD0VFVCDbOrgctit5ZTAeszeWXyHpBA5GLwO/OyT78ARWhXPEdQP0gtZYePgMnE Olby/iodjKe3Wal900xYI1F+cKcfXsOUDglNiJGpClnPPPLaO3qsy1I3rgNIVmTF besx/PiuE2xOsqLVgr8vwixgrapVYQfKICHr9aHboYC3eKFsqUdd9HGsHyIhI6OT 7AEvknMp42tJcT26Aaxedj9qZm6qottk8Pl9tq8w4NU/bloaripUQz00FzW9Z3Wk gyxhpPlg3s7n3IK2VjWaFq2nSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGXS/g/R RE1Q6ym3zz6pIGUyFG91MB8GA1UdIwQYMBaAFAx2KyyQJLNMmISC8dcddJrn3Err MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDhDOS9DRkMxMEUwQUNF OTcxMUVFOTIzRjA0NzBDNEY5QUUwMi9ESFlyTEpBa3MweVloSUx4MXgxMG11ZmNT dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RIWXJMSkFrczB5WWhJTHgxeDEwbXVmY1N1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDhDOS9DRkMxMEUwQUNFOTcxMUVFOTIzRjA0NzBDNEY5QUUwMi9ESFlyTEpBa3Mw eVloSUx4MXgxMG11ZmNTdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNOS7Bawjc7wBZGZRbwpjDLjJFcYMKqTOE6u7RKS6DxOTklm9dC1Kg EWnoJFqUq8Vj035oMmii/3BXOYzGAE7v1EvKqNBSrqs1yKepd82DpsnPbNGobf5U ZYiJll/77DDixNFq1jNBWyWDtwrjCvdiRBf9YKBDvo009wMy3wajYi9v/rhvDNab ISnhwFoXnhZ9mvZQkSBhgBluMwgxIAEV5Zh5cIT3k14OcWFFPxA9t587AubovLkQ 4b3ccVlEz7/qeOL2PaweRYEVNG3ofDW4RF34v3vRogj/HDROTeA3djJJMXQM1JV+ fjbSwTXbe6sl8gcyhRsj8MHiEc/WT6iO -----END CERTIFICATE-----Generated at Sun Dec 7 15:10:47 2025 by rpki-client