This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft File: Di3qFP18_9DQqeo-N0N7keRUsjY.mft (raw, json) Hash identifier: 2NQXPGPYYNbfKkWE7Jp9lznCNmBuUEDMnE1DbDjckJI= Subject key identifier: 4C:B5:0F:3B:FB:F1:BD:7A:68:9D:C8:85:AC:67:FB:BF:1A:07:52:FD Authority key identifier: 0E:2D:EA:14:FD:7C:FF:D0:D0:A9:EA:3E:37:43:7B:91:E4:54:B2:36 Certificate issuer: /CN=A91560A3/serialNumber=0E2DEA14FD7CFFD0D0A9EA3E37437B91E454B236 Certificate serial: 11E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Di3qFP18_9DQqeo-N0N7keRUsjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft Manifest number: 11E3 Signing time: Wed 24 Dec 2025 16:55:19 +0000 Manifest this update: Wed 24 Dec 2025 16:55:18 +0000 Manifest next update: Wed 31 Dec 2025 16:55:18 +0000 Files and hashes: 1: Di3qFP18_9DQqeo-N0N7keRUsjY.crl (hash: bpMe7zCsu72SnMwRAap8JyVBlb7PX5paMyruIPDpdYE=) 2: 2245CE0A606811EB80E3D531C4F9AE02.roa (hash: PSSQDCbjfGOv5hsREHHq3AE69qVBQBbQjxmYclshFuc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.crl rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Di3qFP18_9DQqeo-N0N7keRUsjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 16:55:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4585 (0x11e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91560A3, serialNumber=0E2DEA14FD7CFFD0D0A9EA3E37437B91E454B236 Validity Not Before: Dec 24 16:55:18 2025 GMT Not After : Dec 31 16:55:18 2025 GMT Subject: CN=694c1af7-d7f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d3:0f:64:6b:be:73:f4:7a:0d:15:fd:7b:fb: 0f:bd:d5:66:2e:8b:2b:04:2b:1f:99:b9:20:7e:af: 5a:76:45:e9:9a:ef:5c:aa:e2:8d:d5:02:0f:7e:ed: aa:a9:15:e7:f4:69:63:7c:b4:b4:e2:c6:2b:c5:6c: 5a:eb:6a:50:b3:af:6f:81:da:d0:c0:c4:bc:be:c9: 42:6d:19:07:1e:ab:d3:19:7e:c3:9a:0b:a5:d9:37: f2:d7:73:e8:05:a4:b3:a1:74:64:dd:96:fd:f1:ae: 66:f1:4f:5e:89:ef:18:00:89:2b:dd:40:6f:17:cc: b4:df:2d:a9:ee:67:18:38:a8:9c:cb:f1:1b:9a:38: a3:35:06:b8:38:6a:32:fd:c6:5a:e4:de:21:4c:5c: 42:25:52:7a:21:bd:a9:7e:bb:4a:dc:34:29:47:ee: f4:62:35:12:1f:56:59:90:db:ed:50:ce:60:78:8b: d3:bd:d1:1b:69:5b:09:97:74:54:86:b1:32:eb:ce: de:9e:7f:36:ce:ee:8a:96:9e:19:69:d0:cb:73:b3: 73:54:d8:c6:af:5a:ea:d2:61:19:1d:77:a9:51:ce: 3e:69:3b:1f:df:22:79:68:28:45:f3:33:5d:f4:4e: 77:6d:cb:be:7f:25:34:91:90:24:29:8a:b3:f5:49: 6f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:B5:0F:3B:FB:F1:BD:7A:68:9D:C8:85:AC:67:FB:BF:1A:07:52:FD X509v3 Authority Key Identifier: keyid:0E:2D:EA:14:FD:7C:FF:D0:D0:A9:EA:3E:37:43:7B:91:E4:54:B2:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Di3qFP18_9DQqeo-N0N7keRUsjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:c0:db:30:df:48:bc:53:2b:7d:11:4c:2e:61:d2:c8:50:de: 7d:2f:cc:10:d9:2d:43:22:8e:af:31:57:1f:b3:a6:e9:94:3b: 3d:e0:8c:8f:dd:2e:0e:2c:1f:db:88:26:67:68:25:ab:03:ec: 7e:31:b0:be:ce:8a:4c:da:20:41:b8:4a:7a:4d:62:45:ab:df: 61:f3:86:9f:ff:21:64:63:78:01:a0:10:db:76:cd:eb:e7:4b: 7b:62:07:1f:ca:81:c0:14:f1:25:72:69:17:7a:40:70:58:8c: 06:ac:64:19:34:88:15:fd:73:fe:05:00:4d:0b:ef:24:52:b5: 48:36:d7:35:2d:d6:5a:e6:a6:aa:27:9a:23:be:e6:42:19:56: 48:59:39:78:c3:c5:08:e3:04:f1:6d:d7:be:69:cb:fd:4c:ef: c4:79:dc:63:76:9c:5c:6f:61:44:39:ec:03:2d:15:53:88:37: 5d:66:7b:7f:36:95:ec:e9:2e:f7:b6:03:ae:c8:db:b2:78:a7: e7:49:03:08:e0:68:91:bb:17:10:e8:b8:69:75:bf:e8:3a:c4: b8:7d:d7:cc:a0:1c:75:4d:1d:2a:bd:d1:19:8d:5f:0e:4f:0e: 12:bb:96:33:83:3c:97:db:7d:bb:b7:46:21:33:22:26:f8:f2: 9b:fe:ed:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYwQTMxMTAvBgNVBAUTKDBFMkRFQTE0RkQ3Q0ZGRDBEMEE5RUEzRTM3NDM3Qjkx RTQ1NEIyMzYwHhcNMjUxMjI0MTY1NTE4WhcNMjUxMjMxMTY1NTE4WjAYMRYwFAYD VQQDDA02OTRjMWFmNy1kN2Y2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyNMPZGu+c/R6DRX9e/sPvdVmLosrBCsfmbkgfq9adkXpmu9cquKN1QIPfu2q qRXn9GljfLS04sYrxWxa62pQs69vgdrQwMS8vslCbRkHHqvTGX7Dmgul2Tfy13Po BaSzoXRk3Zb98a5m8U9eie8YAIkr3UBvF8y03y2p7mcYOKicy/EbmjijNQa4OGoy /cZa5N4hTFxCJVJ6Ib2pfrtK3DQpR+70YjUSH1ZZkNvtUM5geIvTvdEbaVsJl3RU hrEy687enn82zu6Klp4ZadDLc7NzVNjGr1rq0mEZHXepUc4+aTsf3yJ5aChF8zNd 9E53bcu+fyU0kZAkKYqz9Ulv4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEy1Dzv7 8b16aJ3Ihaxn+78aB1L9MB8GA1UdIwQYMBaAFA4t6hT9fP/Q0KnqPjdDe5HkVLI2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjBBMy9FNERGOTZBQUZE RjgxMUU4QUQyQzEyNjJDNEY5QUUwMi9EaTNxRlAxOF85RFFxZW8tTjBON2tlUlVz alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RpM3FGUDE4XzlEUXFlby1OME43a2VSVXNqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjBBMy9FNERGOTZBQUZERjgxMUU4QUQyQzEyNjJDNEY5QUUwMi9EaTNxRlAxOF85 RFFxZW8tTjBON2tlUlVzalkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAwNsw30i8Uyt9EUwuYdLIUN59L8wQ2S1DIo6vMVcfs6bplDs94IyP 3S4OLB/biCZnaCWrA+x+MbC+zopM2iBBuEp6TWJFq99h84af/yFkY3gBoBDbds3r 50t7YgcfyoHAFPElcmkXekBwWIwGrGQZNIgV/XP+BQBNC+8kUrVINtc1LdZa5qaq J5ojvuZCGVZIWTl4w8UI4wTxbde+acv9TO/Eedxjdpxcb2FEOewDLRVTiDddZnt/ NpXs6S73tgOuyNuyeKfnSQMI4GiRuxcQ6Lhpdb/oOsS4fdfMoBx1TR0qvdEZjV8O Tw4Su5YzgzyX2327t0YhMyIm+PKb/u03 -----END CERTIFICATE-----Generated at Wed Dec 24 19:31:31 2025 by rpki-client