This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.mft File: dp1E2bQcu8_FNnE7m5Uo9sq4fFw.mft (raw, json) Hash identifier: qLiy0wheE1VAOF13VgXDjWODhAJaT+To09cntK5hVUY= Subject key identifier: 66:09:32:9C:50:D9:3C:17:94:BB:91:23:D4:9F:7A:10:E1:F3:4F:F1 Authority key identifier: 76:9D:44:D9:B4:1C:BB:CF:C5:36:71:3B:9B:95:28:F6:CA:B8:7C:5C Certificate issuer: /CN=A9150733/serialNumber=769D44D9B41CBBCFC536713B9B9528F6CAB87C5C Certificate serial: 01CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.mft Manifest number: 0D59 Signing time: Sat 20 Dec 2025 18:36:07 +0000 Manifest this update: Sat 20 Dec 2025 18:36:06 +0000 Manifest next update: Sat 27 Dec 2025 18:36:06 +0000 Files and hashes: 1: dp1E2bQcu8_FNnE7m5Uo9sq4fFw.crl (hash: 9sC+L5Abax8VdU90z/yswxDe0FOmdVg5Yrz3pWNZSTI=) 2: DC41F9C4214411EEBC685C79C4F9AE02.roa (hash: EII0j0htPqZRd+8Muval63G6bvgUY1532bbGJQef7wo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.crl rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:36:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 463 (0x1cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150733, serialNumber=769D44D9B41CBBCFC536713B9B9528F6CAB87C5C Validity Not Before: Dec 20 18:36:06 2025 GMT Not After : Dec 27 18:36:06 2025 GMT Subject: CN=6946ec97-8f08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:63:67:66:7d:22:00:9b:c8:ed:aa:55:52:05: 6e:45:5c:93:bb:ad:ed:c5:41:ac:dd:c5:35:fd:04: de:66:a0:2b:3d:8c:18:f0:a6:55:68:59:80:ad:d0: a2:49:4b:b3:a4:06:f0:db:ac:ae:1c:4e:40:29:60: 6c:36:b9:b3:8a:a7:3e:87:fe:ec:e1:f6:6f:9b:6d: 44:f1:3c:2a:10:37:3f:75:2c:87:7f:81:4a:6d:1b: 45:4d:26:a6:2a:40:57:49:30:80:4a:36:4a:7b:0b: a4:7c:c2:a3:3f:77:7a:36:16:c7:fa:11:b9:a7:66: af:12:33:9a:a7:b5:fb:7d:12:19:23:31:76:a5:0c: f9:67:25:cc:c8:5c:8d:63:d8:4f:63:3e:ed:b8:bd: ab:43:dd:b1:81:7d:55:58:39:d1:f4:70:42:a8:d8: 5e:ba:04:1e:f5:3d:e4:c6:aa:9c:56:0d:45:66:92: 3e:26:b6:39:d0:6d:34:8b:13:3e:aa:c3:34:d5:b9: 09:f8:bc:5d:d2:92:23:ec:5b:31:22:fe:54:f1:c8: d7:79:4f:d4:2a:21:ad:76:24:7f:be:df:fb:0b:db: a9:c1:7c:a0:fc:f3:6e:31:ae:83:c1:43:b5:8f:49: 2b:6e:8b:ce:92:32:63:15:f5:bb:7c:c6:33:18:97: f5:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:09:32:9C:50:D9:3C:17:94:BB:91:23:D4:9F:7A:10:E1:F3:4F:F1 X509v3 Authority Key Identifier: keyid:76:9D:44:D9:B4:1C:BB:CF:C5:36:71:3B:9B:95:28:F6:CA:B8:7C:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:2d:0b:ad:28:f0:db:31:df:67:59:b3:47:ab:7e:48:b7:61: a6:e3:15:1d:6a:61:55:da:23:52:ae:f7:7b:95:de:17:9f:72: eb:29:eb:9e:89:89:67:38:90:bf:6e:8f:fa:4d:a1:cc:f4:e1: 91:ad:32:69:5d:cc:79:20:d2:ee:e3:4c:5d:19:7a:b9:23:44: 0c:ec:8a:f2:3b:5c:e2:a0:0f:8c:79:ce:ed:73:e5:68:ef:67: 5d:01:c8:8b:7f:72:69:04:7c:0b:91:bc:ed:d3:f3:eb:92:b2: 0b:35:cf:4c:cf:69:ab:2a:8b:f0:e6:f6:21:93:36:22:bb:ae: ef:e5:96:f6:5d:93:b3:ea:13:46:83:0e:e8:49:fa:3e:86:6b: a3:81:0c:92:50:15:9b:86:22:23:83:03:15:2b:db:b3:ea:a6: 31:16:5f:4c:af:02:1f:28:4c:e0:17:33:78:55:87:df:28:1d: a2:f9:ae:eb:4c:9b:4f:46:c1:00:d4:18:cd:59:67:ae:3a:f5: 7b:1d:40:8a:0a:0c:b9:f7:70:6c:82:35:43:9c:e6:ed:b7:bb: b4:2b:5c:0a:4f:2c:d4:07:13:68:18:45:04:a8:76:79:49:46: e7:fe:8e:76:27:22:2a:1f:85:a8:c2:da:08:48:44:0e:9c:70: 21:a2:91:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA3MzMxMTAvBgNVBAUTKDc2OUQ0NEQ5QjQxQ0JCQ0ZDNTM2NzEzQjlCOTUyOEY2 Q0FCODdDNUMwHhcNMjUxMjIwMTgzNjA2WhcNMjUxMjI3MTgzNjA2WjAYMRYwFAYD VQQDDA02OTQ2ZWM5Ny04ZjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6mNnZn0iAJvI7apVUgVuRVyTu63txUGs3cU1/QTeZqArPYwY8KZVaFmArdCi SUuzpAbw26yuHE5AKWBsNrmziqc+h/7s4fZvm21E8TwqEDc/dSyHf4FKbRtFTSam KkBXSTCASjZKewukfMKjP3d6NhbH+hG5p2avEjOap7X7fRIZIzF2pQz5ZyXMyFyN Y9hPYz7tuL2rQ92xgX1VWDnR9HBCqNheugQe9T3kxqqcVg1FZpI+JrY50G00ixM+ qsM01bkJ+Lxd0pIj7FsxIv5U8cjXeU/UKiGtdiR/vt/7C9upwXyg/PNuMa6DwUO1 j0krbovOkjJjFfW7fMYzGJf1jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGYJMpxQ 2TwXlLuRI9SfehDh80/xMB8GA1UdIwQYMBaAFHadRNm0HLvPxTZxO5uVKPbKuHxc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDczMy8yMTc4NjhDRTNE QjUxMUVBQTY0OTEzMTJDNEY5QUUwMi9kcDFFMmJRY3U4X0ZObkU3bTVVbzlzcTRm RncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RwMUUyYlFjdThfRk5uRTdtNVVvOXNxNGZGdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDczMy8yMTc4NjhDRTNEQjUxMUVBQTY0OTEzMTJDNEY5QUUwMi9kcDFFMmJRY3U4 X0ZObkU3bTVVbzlzcTRmRncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVLQutKPDbMd9nWbNHq35It2Gm4xUdamFV2iNSrvd7ld4Xn3LrKeue iYlnOJC/bo/6TaHM9OGRrTJpXcx5INLu40xdGXq5I0QM7IryO1zioA+Mec7tc+Vo 72ddAciLf3JpBHwLkbzt0/PrkrILNc9Mz2mrKovw5vYhkzYiu67v5Zb2XZOz6hNG gw7oSfo+hmujgQySUBWbhiIjgwMVK9uz6qYxFl9MrwIfKEzgFzN4VYffKB2i+a7r TJtPRsEA1BjNWWeuOvV7HUCKCgy593BsgjVDnObtt7u0K1wKTyzUBxNoGEUEqHZ5 SUbn/o52JyIqH4WowtoISEQOnHAhopEh -----END CERTIFICATE-----Generated at Mon Dec 22 10:20:19 2025 by rpki-client