This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft File: dmhXuj98cotoBSWsQfp84qHwCS0.mft (raw, json) Hash identifier: uS/OPoAN98rV9mx9hIERR+cQPRrmI+z1uNGEz0ljM7A= Subject key identifier: 29:54:DA:7D:41:D5:49:4B:D8:24:DE:07:7C:FA:5D:87:F9:EA:B2:FF Authority key identifier: 76:68:57:BA:3F:7C:72:8B:68:05:25:AC:41:FA:7C:E2:A1:F0:09:2D Certificate issuer: /CN=A9148AC0/serialNumber=766857BA3F7C728B680525AC41FA7CE2A1F0092D Certificate serial: 01CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmhXuj98cotoBSWsQfp84qHwCS0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft Manifest number: 01C2 Signing time: Sun 21 Dec 2025 02:15:54 +0000 Manifest this update: Sun 21 Dec 2025 02:15:54 +0000 Manifest next update: Sun 28 Dec 2025 02:15:54 +0000 Files and hashes: 1: dmhXuj98cotoBSWsQfp84qHwCS0.crl (hash: eON4FyiDop7KkWZCsMsqieUGuhMfnwJtjEi0C01v/hY=) 2: 5C9259B631DA11EEBE28A546C4F9AE02.roa (hash: pvpEbEfqZdjndo8RBto5eKruE3bPcyFLbyyWJ+EWD5A=) 3: 47854B9031DB11EEA02CF647C4F9AE02.roa (hash: XVtV3NO49JrPSfLphj8CdUoavYWmfkFqZk0gohfrU5A=) 4: 5D313B1C31DA11EEBE28A546C4F9AE02.roa (hash: 8C0fcjEA2IcfNRUG4kX2e0bXX39iEcsL5wzsa0/yvL4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.crl rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmhXuj98cotoBSWsQfp84qHwCS0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 02:15:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 463 (0x1cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148AC0, serialNumber=766857BA3F7C728B680525AC41FA7CE2A1F0092D Validity Not Before: Dec 21 02:15:54 2025 GMT Not After : Dec 28 02:15:54 2025 GMT Subject: CN=6947585a-78df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7a:88:b2:37:d9:23:0e:7b:9a:d2:ac:24:75: df:9c:b2:24:0b:10:76:c3:88:cc:36:fc:bb:41:3d: 4a:c2:80:e1:15:c0:92:e9:5e:b9:76:d5:56:25:64: ee:d7:7b:b0:b9:33:50:7b:c0:2b:90:e6:66:17:e0: dd:06:2a:6f:6f:f5:b8:41:4a:63:c5:16:2b:89:3b: 1c:6f:0d:dd:0f:4b:ee:61:40:b6:2c:ac:e4:21:7b: ef:85:88:78:25:46:99:91:79:d7:da:ec:71:67:88: ae:3d:47:d7:65:61:68:14:32:cd:43:da:4d:d0:94: d9:7d:7c:9b:73:42:11:9d:29:35:d8:9d:1e:91:93: 29:c4:07:06:80:2d:3b:8d:d2:d5:33:9f:85:6b:62: cb:f3:19:ef:9d:e8:0b:7f:b6:1a:46:00:4b:72:f5: f5:44:bd:e5:2f:5c:b3:8c:c0:63:36:b3:d0:49:2c: 1c:8a:41:92:19:13:15:75:f7:b2:d7:61:13:84:9b: c8:bd:c1:b7:57:d8:41:98:fc:eb:b5:c2:95:4b:bf: d4:05:e4:9e:1c:89:4b:f8:89:9e:90:22:76:ba:1b: de:45:7d:75:3e:0e:11:4a:e2:44:4e:a3:4a:50:3c: b7:bc:73:6e:fc:d7:48:ca:19:65:38:7c:0e:31:ab: e3:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:54:DA:7D:41:D5:49:4B:D8:24:DE:07:7C:FA:5D:87:F9:EA:B2:FF X509v3 Authority Key Identifier: keyid:76:68:57:BA:3F:7C:72:8B:68:05:25:AC:41:FA:7C:E2:A1:F0:09:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmhXuj98cotoBSWsQfp84qHwCS0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:e7:ee:9e:ad:d6:b6:25:52:3c:3a:51:08:79:df:4f:ae:8b: 6b:18:a0:82:ea:1d:28:bb:12:e9:9f:95:eb:20:8c:d9:37:ce: a5:d1:c0:a3:7f:89:fd:35:e6:81:b3:f2:f4:1b:c8:39:63:c0: c4:83:8c:37:b3:d2:b0:dc:00:e3:ae:56:47:3b:9b:fe:25:5d: ac:40:ef:4d:a8:c1:15:2c:c7:e2:39:f5:fb:45:29:45:ef:d3: a1:ce:87:41:e3:a3:ab:0b:cb:d0:b5:58:8b:81:cb:e8:7c:4a: 01:0a:58:fa:a3:a7:d2:5d:fc:3d:a7:3c:19:b0:68:eb:a9:78: dc:88:a1:c8:50:f3:07:8d:fd:35:84:4d:be:db:28:11:20:3f: 89:2b:fb:6b:90:4d:0e:73:ad:36:e1:77:f5:48:61:ee:7d:c8: a6:4a:8d:ba:69:46:64:b6:b8:98:95:18:9b:ce:78:57:fe:16: c8:e5:14:96:b7:2a:91:6a:ce:60:41:7c:16:0a:42:da:b1:26: 40:99:d5:07:99:77:28:be:0e:52:45:d1:29:49:b4:2c:8f:78: 74:b8:4d:01:12:24:86:45:2e:85:5e:c2:e9:75:99:be:a5:1f: de:8d:81:cf:af:d0:22:4a:8c:3d:8c:4a:f6:d8:7e:0b:37:64: 21:74:b0:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhBQzAxMTAvBgNVBAUTKDc2Njg1N0JBM0Y3QzcyOEI2ODA1MjVBQzQxRkE3Q0Uy QTFGMDA5MkQwHhcNMjUxMjIxMDIxNTU0WhcNMjUxMjI4MDIxNTU0WjAYMRYwFAYD VQQDDA02OTQ3NTg1YS03OGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwnqIsjfZIw57mtKsJHXfnLIkCxB2w4jMNvy7QT1KwoDhFcCS6V65dtVWJWTu 13uwuTNQe8ArkOZmF+DdBipvb/W4QUpjxRYriTscbw3dD0vuYUC2LKzkIXvvhYh4 JUaZkXnX2uxxZ4iuPUfXZWFoFDLNQ9pN0JTZfXybc0IRnSk12J0ekZMpxAcGgC07 jdLVM5+Fa2LL8xnvnegLf7YaRgBLcvX1RL3lL1yzjMBjNrPQSSwcikGSGRMVdfey 12EThJvIvcG3V9hBmPzrtcKVS7/UBeSeHIlL+ImekCJ2uhveRX11Pg4RSuJETqNK UDy3vHNu/NdIyhllOHwOMavjZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFClU2n1B 1UlL2CTeB3z6XYf56rL/MB8GA1UdIwQYMBaAFHZoV7o/fHKLaAUlrEH6fOKh8Akt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEFDMC9FNEVENTM5NDMx RDgxMUVFODMwMDZBNDFDNEY5QUUwMi9kbWhYdWo5OGNvdG9CU1dzUWZwODRxSHdD UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RtaFh1ajk4Y290b0JTV3NRZnA4NHFId0NTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEFDMC9FNEVENTM5NDMxRDgxMUVFODMwMDZBNDFDNEY5QUUwMi9kbWhYdWo5OGNv dG9CU1dzUWZwODRxSHdDUzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/5+6erda2JVI8OlEIed9ProtrGKCC6h0ouxLpn5XrIIzZN86l0cCj f4n9NeaBs/L0G8g5Y8DEg4w3s9Kw3ADjrlZHO5v+JV2sQO9NqMEVLMfiOfX7RSlF 79OhzodB46OrC8vQtViLgcvofEoBClj6o6fSXfw9pzwZsGjrqXjciKHIUPMHjf01 hE2+2ygRID+JK/trkE0Oc6024Xf1SGHufcimSo26aUZktriYlRibznhX/hbI5RSW tyqRas5gQXwWCkLasSZAmdUHmXcovg5SRdEpSbQsj3h0uE0BEiSGRS6FXsLpdZm+ pR/ejYHPr9AiSow9jEr22H4LN2QhdLDp -----END CERTIFICATE-----Generated at Sun Dec 21 20:57:00 2025 by rpki-client