This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9154961/FEBBFA801BE211EDAF17A558C4F9AE02/M7DVaJUEg2wR6ezdDRGcBY0_dgs.mft File: M7DVaJUEg2wR6ezdDRGcBY0_dgs.mft (raw, json) Hash identifier: VLBPhPgZqszI7dKZXey9/3JXq53LLQO5TlXxVSGvBOY= Subject key identifier: 39:01:2A:BE:6E:AE:95:DD:53:35:95:C7:C2:2B:E9:D6:A3:29:3B:25 Authority key identifier: 33:B0:D5:68:95:04:83:6C:11:E9:EC:DD:0D:11:9C:05:8D:3F:76:0B Certificate issuer: /CN=A9154961/serialNumber=33B0D5689504836C11E9ECDD0D119C058D3F760B Certificate serial: 02C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7DVaJUEg2wR6ezdDRGcBY0_dgs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154961/FEBBFA801BE211EDAF17A558C4F9AE02/M7DVaJUEg2wR6ezdDRGcBY0_dgs.mft Manifest number: 02BE Signing time: Tue 23 Dec 2025 00:26:24 +0000 Manifest this update: Tue 23 Dec 2025 00:26:23 +0000 Manifest next update: Tue 30 Dec 2025 00:26:23 +0000 Files and hashes: 1: M7DVaJUEg2wR6ezdDRGcBY0_dgs.crl (hash: F3zMrGj6VIWQBz/zFvUjWt7BocNA9nKYIgUrUi5hJTo=) 2: 7359F5C43A4A11ED9B8FF35AC4F9AE02.roa (hash: ExbEkd7oCoyYXXiOdOycDgRHQS6NdbUqsudnvKbSXwU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154961/FEBBFA801BE211EDAF17A558C4F9AE02/M7DVaJUEg2wR6ezdDRGcBY0_dgs.crl rsync://rpki.apnic.net/member_repository/A9154961/FEBBFA801BE211EDAF17A558C4F9AE02/M7DVaJUEg2wR6ezdDRGcBY0_dgs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7DVaJUEg2wR6ezdDRGcBY0_dgs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:26:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 709 (0x2c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154961, serialNumber=33B0D5689504836C11E9ECDD0D119C058D3F760B Validity Not Before: Dec 23 00:26:23 2025 GMT Not After : Dec 30 00:26:23 2025 GMT Subject: CN=6949e1b0-c05f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:a7:99:d4:24:ed:b6:df:ea:91:af:78:32:a2: 7a:b1:4f:5b:94:5a:46:82:af:f7:4b:3c:79:ab:b9: dd:92:38:c5:db:c6:c9:29:88:76:f7:bc:ca:fd:0f: 5c:9e:e3:d6:ac:70:91:6e:cc:d2:ae:1b:76:8f:28: 14:2b:15:32:54:57:18:ba:d5:d5:26:7b:48:e5:19: a4:63:a0:31:6c:b9:96:c1:60:e2:f6:df:d2:bc:f9: 40:54:a5:57:b8:e1:00:fb:c5:0e:60:1b:ba:9b:15: e0:08:11:79:fa:21:21:05:81:b0:7d:22:05:3c:88: 60:f1:ad:bd:f1:64:05:c4:43:4a:5b:b3:fa:77:3a: d2:35:6d:91:8f:95:d3:b3:e8:ba:b5:8e:c2:9a:c8: 6e:c4:62:50:73:51:32:47:ab:98:a8:4a:44:ba:71: 62:2d:b5:6c:c6:71:fb:15:b4:d0:ca:6e:65:8b:16: 0b:55:c1:3b:8a:2b:69:2d:a7:43:4f:1a:98:c2:68: d5:cb:ed:65:4d:d0:da:2d:17:73:ab:74:a2:b4:24: 0d:5e:fb:3d:9e:5b:fe:a6:43:05:85:62:bf:04:d5: 1c:49:29:37:a3:93:77:fa:5e:20:54:ce:04:7b:68: 0b:fb:f1:b7:2d:b9:bf:de:e7:1a:b4:67:01:09:06: 8f:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:01:2A:BE:6E:AE:95:DD:53:35:95:C7:C2:2B:E9:D6:A3:29:3B:25 X509v3 Authority Key Identifier: keyid:33:B0:D5:68:95:04:83:6C:11:E9:EC:DD:0D:11:9C:05:8D:3F:76:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154961/FEBBFA801BE211EDAF17A558C4F9AE02/M7DVaJUEg2wR6ezdDRGcBY0_dgs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7DVaJUEg2wR6ezdDRGcBY0_dgs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154961/FEBBFA801BE211EDAF17A558C4F9AE02/M7DVaJUEg2wR6ezdDRGcBY0_dgs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:cb:fe:fa:fb:cd:39:06:9d:e7:33:2e:29:2f:e3:9b:6c:97: f3:e5:5e:80:43:91:9e:b5:f2:e7:15:f1:52:95:2c:ef:88:5c: 82:f3:b2:11:1e:f5:ce:8b:ee:d7:a4:b2:da:e4:94:1d:c5:5b: 15:bf:6b:b4:86:07:8b:85:a3:94:b5:81:2e:55:f4:c9:55:3a: 48:3d:91:b2:38:40:f3:c3:0c:55:48:51:cf:d7:e3:dc:07:b7: 5b:22:9d:b1:a7:39:48:3d:32:5b:82:ae:94:5d:84:8c:d7:a7: d3:24:5e:d6:57:38:58:8e:01:7b:a7:03:9d:8f:01:b5:0e:90: 3e:b4:72:94:11:39:90:63:19:b1:f9:e0:87:34:f8:4b:47:86: 59:22:1e:2b:58:25:d1:cb:b2:59:90:9c:e9:3e:db:0f:a0:c7: c4:dc:44:0d:a5:ec:39:fa:fc:8a:af:be:c6:3f:e6:cf:79:ea: 81:e5:c3:0f:2f:94:9a:e6:87:6d:dc:6c:ee:63:1b:7c:d6:29: 95:40:ca:89:b8:cc:5a:ce:f9:d6:9e:57:d8:bf:c7:ed:f1:eb: 90:32:18:26:8f:38:53:fd:b0:91:4b:51:53:06:c7:78:85:90: fb:b4:4b:1e:21:b6:0f:34:55:68:2e:f0:ce:3e:a0:f7:35:0b: c4:e5:f4:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ5NjExMTAvBgNVBAUTKDMzQjBENTY4OTUwNDgzNkMxMUU5RUNERDBEMTE5QzA1 OEQzRjc2MEIwHhcNMjUxMjIzMDAyNjIzWhcNMjUxMjMwMDAyNjIzWjAYMRYwFAYD VQQDDA02OTQ5ZTFiMC1jMDVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7KeZ1CTttt/qka94MqJ6sU9blFpGgq/3Szx5q7ndkjjF28bJKYh297zK/Q9c nuPWrHCRbszSrht2jygUKxUyVFcYutXVJntI5RmkY6AxbLmWwWDi9t/SvPlAVKVX uOEA+8UOYBu6mxXgCBF5+iEhBYGwfSIFPIhg8a298WQFxENKW7P6dzrSNW2Rj5XT s+i6tY7CmshuxGJQc1EyR6uYqEpEunFiLbVsxnH7FbTQym5lixYLVcE7iitpLadD TxqYwmjVy+1lTdDaLRdzq3SitCQNXvs9nlv+pkMFhWK/BNUcSSk3o5N3+l4gVM4E e2gL+/G3Lbm/3ucatGcBCQaPPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDkBKr5u rpXdUzWVx8Ir6dajKTslMB8GA1UdIwQYMBaAFDOw1WiVBINsEens3Q0RnAWNP3YL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDk2MS9GRUJCRkE4MDFC RTIxMUVEQUYxN0E1NThDNEY5QUUwMi9NN0RWYUpVRWcyd1I2ZXpkRFJHY0JZMF9k Z3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL003RFZhSlVFZzJ3UjZlemREUkdjQlkwX2Rncy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDk2MS9GRUJCRkE4MDFCRTIxMUVEQUYxN0E1NThDNEY5QUUwMi9NN0RWYUpVRWcy d1I2ZXpkRFJHY0JZMF9kZ3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQy/76+805Bp3nMy4pL+ObbJfz5V6AQ5GetfLnFfFSlSzviFyC87IR HvXOi+7XpLLa5JQdxVsVv2u0hgeLhaOUtYEuVfTJVTpIPZGyOEDzwwxVSFHP1+Pc B7dbIp2xpzlIPTJbgq6UXYSM16fTJF7WVzhYjgF7pwOdjwG1DpA+tHKUETmQYxmx +eCHNPhLR4ZZIh4rWCXRy7JZkJzpPtsPoMfE3EQNpew5+vyKr77GP+bPeeqB5cMP L5Sa5odt3GzuYxt81imVQMqJuMxazvnWnlfYv8ft8euQMhgmjzhT/bCRS1FTBsd4 hZD7tEseIbYPNFVoLvDOPqD3NQvE5fSE -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:56 2025 by rpki-client