This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft File: 28byJW3eXCxGqA6yQy8lcu3FN9Y.mft (raw, json) Hash identifier: WagYd9YOgFY+YgbECkS8ao45fh2zIelLBbH4/zbQOZI= Subject key identifier: 1D:4F:BD:93:2D:2A:7B:9F:BC:C6:A8:83:A1:A6:FA:20:40:A3:BA:1D Authority key identifier: DB:C6:F2:25:6D:DE:5C:2C:46:A8:0E:B2:43:2F:25:72:ED:C5:37:D6 Certificate issuer: /CN=A914D0E3/serialNumber=DBC6F2256DDE5C2C46A80EB2432F2572EDC537D6 Certificate serial: DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft Manifest number: DE Signing time: Tue 23 Dec 2025 04:31:26 +0000 Manifest this update: Tue 23 Dec 2025 04:31:25 +0000 Manifest next update: Tue 30 Dec 2025 04:31:25 +0000 Files and hashes: 1: 28byJW3eXCxGqA6yQy8lcu3FN9Y.crl (hash: FzQ2fDZJTitL/WfLq8cOZtE3amIcRVIh0bTH4eBUpic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.crl rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:31:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D0E3, serialNumber=DBC6F2256DDE5C2C46A80EB2432F2572EDC537D6 Validity Not Before: Dec 23 04:31:25 2025 GMT Not After : Dec 30 04:31:25 2025 GMT Subject: CN=694a1b1d-47da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:57:13:43:c2:49:b9:6c:63:b2:76:85:f4:e6: 48:ca:a1:1d:e2:a5:40:7b:c7:50:b2:bb:cc:e2:f1: 82:5e:c4:28:a8:ab:b3:ad:20:87:c3:5e:a9:c4:34: 63:ad:74:81:e8:88:a7:4f:2c:af:a2:bf:76:20:ea: f0:4b:70:1b:fb:e1:ef:9d:ee:99:1e:7d:7f:fc:d7: 9b:71:95:fd:3b:e5:67:fd:31:17:d5:52:c8:38:46: 5f:0d:06:c8:6e:26:ea:bd:2b:0c:48:bb:64:da:22: a2:9f:19:5f:b8:e6:58:50:66:64:08:f0:eb:f9:7c: 4c:29:74:45:14:17:1e:4a:94:81:62:5b:17:ba:9e: 58:e8:38:58:3f:d5:f7:67:a9:6c:2a:24:36:39:9e: 5c:3d:85:a1:ed:0a:fe:cb:47:18:ac:d4:e6:93:a0: f2:41:d7:cd:c8:bb:19:41:b7:e5:06:b7:6f:72:b8: ec:7a:70:85:b4:b0:e7:b6:bf:f9:9e:a8:77:5d:aa: 8a:ac:09:73:e0:f0:01:95:f1:cb:df:11:91:ff:b8: 48:75:d2:00:dc:90:eb:32:ad:70:e8:f0:0b:ce:e5: 5f:72:86:ff:81:13:31:f1:67:a2:4d:ad:4e:38:ea: 16:fa:b7:33:85:92:b9:27:07:cf:ac:2e:fb:ef:9e: 00:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:4F:BD:93:2D:2A:7B:9F:BC:C6:A8:83:A1:A6:FA:20:40:A3:BA:1D X509v3 Authority Key Identifier: keyid:DB:C6:F2:25:6D:DE:5C:2C:46:A8:0E:B2:43:2F:25:72:ED:C5:37:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:c3:a7:bd:25:11:03:a8:c8:3c:be:8a:56:f4:49:17:10:ff: f1:08:36:a3:59:df:01:73:1f:9b:9d:fb:b4:d8:5b:ec:de:f0: b4:44:3a:e6:6b:e8:12:f8:66:ae:7a:ab:8f:2b:09:71:03:64: 2f:5e:96:42:5e:9e:40:ec:5f:0f:bc:07:1e:33:dc:6e:e1:ec: 60:35:b5:18:7c:86:dc:f7:ec:8b:83:71:48:9e:60:cd:a2:e3: b9:f0:49:03:43:12:da:b4:ae:07:d3:d6:00:3c:14:97:09:cc: fe:44:2b:bc:40:de:7b:ef:08:f9:de:0f:30:1b:cd:a5:12:71: aa:06:76:5a:d9:34:48:52:ec:6b:f1:c1:6b:a3:8d:d9:5c:eb: e0:69:32:ed:6a:a0:35:f1:25:a9:f3:78:fd:56:e4:0c:3b:90: ea:fa:4e:1b:f0:e3:50:20:a9:a8:ee:bf:d1:63:9b:f2:74:c0: 87:61:f6:97:b1:43:15:e1:c2:09:cc:1f:ef:ac:c8:50:9a:b3: 48:b3:bf:55:3f:f1:47:02:b3:0e:78:14:59:44:80:1c:82:19: bc:10:6a:24:6f:6c:cb:e6:6d:20:d4:90:aa:6b:f5:de:bf:9c: 45:5d:90:35:a1:b5:76:cf:01:36:ff:4e:78:c6:58:a9:cb:02: e1:17:7a:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQwRTMxMTAvBgNVBAUTKERCQzZGMjI1NkRERTVDMkM0NkE4MEVCMjQzMkYyNTcy RURDNTM3RDYwHhcNMjUxMjIzMDQzMTI1WhcNMjUxMjMwMDQzMTI1WjAYMRYwFAYD VQQDDA02OTRhMWIxZC00N2RhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA51cTQ8JJuWxjsnaF9OZIyqEd4qVAe8dQsrvM4vGCXsQoqKuzrSCHw16pxDRj rXSB6IinTyyvor92IOrwS3Ab++Hvne6ZHn1//NebcZX9O+Vn/TEX1VLIOEZfDQbI bibqvSsMSLtk2iKinxlfuOZYUGZkCPDr+XxMKXRFFBceSpSBYlsXup5Y6DhYP9X3 Z6lsKiQ2OZ5cPYWh7Qr+y0cYrNTmk6DyQdfNyLsZQbflBrdvcrjsenCFtLDntr/5 nqh3XaqKrAlz4PABlfHL3xGR/7hIddIA3JDrMq1w6PALzuVfcob/gRMx8WeiTa1O OOoW+rczhZK5JwfPrC77754AnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB1PvZMt KnufvMaog6Gm+iBAo7odMB8GA1UdIwQYMBaAFNvG8iVt3lwsRqgOskMvJXLtxTfW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDBFMy9CMzVBQjlGQThD N0UxMUVGOEU5MkU3MUJDNEY5QUUwMi8yOGJ5SlczZVhDeEdxQTZ5UXk4bGN1M0ZO OVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI4YnlKVzNlWEN4R3FBNnlReThsY3UzRk45WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDBFMy9CMzVBQjlGQThDN0UxMUVGOEU5MkU3MUJDNEY5QUUwMi8yOGJ5SlczZVhD eEdxQTZ5UXk4bGN1M0ZOOVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGw6e9JREDqMg8vopW9EkXEP/xCDajWd8Bcx+bnfu02Fvs3vC0RDrm a+gS+GauequPKwlxA2QvXpZCXp5A7F8PvAceM9xu4exgNbUYfIbc9+yLg3FInmDN ouO58EkDQxLatK4H09YAPBSXCcz+RCu8QN577wj53g8wG82lEnGqBnZa2TRIUuxr 8cFro43ZXOvgaTLtaqA18SWp83j9VuQMO5Dq+k4b8ONQIKmo7r/RY5vydMCHYfaX sUMV4cIJzB/vrMhQmrNIs79VP/FHArMOeBRZRIAcghm8EGokb2zL5m0g1JCqa/Xe v5xFXZA1obV2zwE2/054xlipywLhF3rh -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:29 2025 by rpki-client