This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft File: DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft (raw, json) Hash identifier: 1vTBKehUeyN9jGMkveYK5Mx7EK72gytxFuOtwzWuRn8= Subject key identifier: 2E:B2:6F:0F:AE:24:CA:DF:F3:11:A0:B5:88:7F:0B:26:0C:5A:64:30 Authority key identifier: 0C:4C:17:22:9C:6A:B6:7F:54:3F:EC:9C:4D:03:E5:FE:E4:ED:2F:F6 Certificate issuer: /CN=A9157ADC/serialNumber=0C4C17229C6AB67F543FEC9C4D03E5FEE4ED2FF6 Certificate serial: 0296 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft Manifest number: 0292 Signing time: Sun 21 Dec 2025 00:45:37 +0000 Manifest this update: Sun 21 Dec 2025 00:45:36 +0000 Manifest next update: Sun 28 Dec 2025 00:45:36 +0000 Files and hashes: 1: DEwXIpxqtn9UP-ycTQPl_uTtL_Y.crl (hash: XTfGfdNE5NoijK21ZRuf4jmIyKQmdDcPELHWzC9Xe88=) 2: 88FCD2C62DBA11ED94AFED62C4F9AE02.roa (hash: 0JYQSMYaFvaLhjpHDbKJtAOfDwR2Txci9jlqVoFvh1Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.crl rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:45:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 662 (0x296) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157ADC, serialNumber=0C4C17229C6AB67F543FEC9C4D03E5FEE4ED2FF6 Validity Not Before: Dec 21 00:45:36 2025 GMT Not After : Dec 28 00:45:36 2025 GMT Subject: CN=69474331-9211 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:0f:ec:28:a3:02:ea:f1:12:3a:3f:4d:40:14: 02:51:3c:04:8c:40:cf:c9:db:a0:69:60:9e:95:a0: f4:fc:ca:b1:53:37:cf:c9:1a:e2:ce:7c:dc:f4:33: cc:fb:63:a8:c6:54:74:5e:43:5e:6e:e6:58:4e:de: 56:f7:45:ae:e5:78:73:24:d3:3a:78:5b:b0:51:19: be:a7:47:c3:f0:89:d6:00:e3:50:5a:c3:18:99:e0: 32:b3:13:ca:c8:fc:88:8d:1c:26:b5:d5:e9:75:44: a3:af:dd:bf:e5:09:65:80:f2:21:40:44:7f:a6:3d: 9d:7d:b7:3b:65:b7:bb:05:79:da:c9:01:3c:0d:26: 40:27:d3:fa:1a:92:90:44:95:d3:7e:03:81:ed:a0: 06:f6:09:0d:35:6e:4e:09:a7:04:b2:a4:a3:34:a3: 0e:dc:41:71:47:47:82:61:21:79:cf:0f:96:9c:e3: ce:d7:b0:06:da:9e:7f:1d:7d:50:d8:fe:ed:7d:f2: 93:d6:19:52:5c:5d:ae:89:fc:51:87:db:29:49:b3: f4:fb:10:d5:e8:76:72:43:c6:ae:1a:f6:d4:32:01: 0b:2d:b6:5a:97:af:a5:8f:c3:e9:bc:9d:fd:90:4a: f7:d7:8d:cc:6c:2f:92:82:91:b6:ed:84:66:91:fe: 16:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:B2:6F:0F:AE:24:CA:DF:F3:11:A0:B5:88:7F:0B:26:0C:5A:64:30 X509v3 Authority Key Identifier: keyid:0C:4C:17:22:9C:6A:B6:7F:54:3F:EC:9C:4D:03:E5:FE:E4:ED:2F:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:9e:69:29:3f:82:cf:13:44:16:36:a4:e1:26:1e:63:9c:7c: 1f:32:96:f3:ae:52:9b:16:d0:aa:97:d3:08:be:07:14:da:0e: c5:a5:cd:f2:08:a7:c4:b9:3d:ac:8a:9e:dc:43:c3:a2:8b:9b: 6a:28:68:e5:f4:76:07:6f:d6:4e:f9:e5:0b:c6:88:16:2c:e4: 4f:e8:f1:da:80:4c:ae:3b:e9:da:0e:35:8d:52:cd:e2:b2:bf: 69:b3:6b:40:0a:00:af:a4:b5:bc:d4:24:33:bf:f8:2d:39:c5: f9:03:d1:1e:9d:0b:66:39:5e:69:98:4a:30:6a:38:b9:d5:10: b6:76:d2:d0:b3:c7:66:a1:f9:67:12:f0:47:db:56:f5:68:77: 79:9c:87:2a:0b:7b:10:3f:1f:56:58:36:c8:40:f7:a6:69:47: 76:aa:a6:1b:93:db:a6:99:63:6c:70:ac:93:03:45:5b:89:5c: 68:10:1f:00:ac:25:3b:36:c9:ce:f0:4e:c5:ff:e1:e4:09:3d: cb:ba:75:74:4e:5f:13:3a:2d:c6:c1:50:f8:67:b4:94:0b:83: 0c:0c:37:7e:03:3e:9e:5b:24:8e:4a:c4:4a:d2:48:a3:96:0f: 1f:81:65:d6:ab:e4:13:ea:2b:c0:f2:21:67:9c:6d:ad:3d:90: b9:f5:cd:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdBREMxMTAvBgNVBAUTKDBDNEMxNzIyOUM2QUI2N0Y1NDNGRUM5QzREMDNFNUZF RTRFRDJGRjYwHhcNMjUxMjIxMDA0NTM2WhcNMjUxMjI4MDA0NTM2WjAYMRYwFAYD VQQDDA02OTQ3NDMzMS05MjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6w/sKKMC6vESOj9NQBQCUTwEjEDPydugaWCelaD0/MqxUzfPyRriznzc9DPM +2OoxlR0XkNebuZYTt5W90Wu5XhzJNM6eFuwURm+p0fD8InWAONQWsMYmeAysxPK yPyIjRwmtdXpdUSjr92/5QllgPIhQER/pj2dfbc7Zbe7BXnayQE8DSZAJ9P6GpKQ RJXTfgOB7aAG9gkNNW5OCacEsqSjNKMO3EFxR0eCYSF5zw+WnOPO17AG2p5/HX1Q 2P7tffKT1hlSXF2uifxRh9spSbP0+xDV6HZyQ8auGvbUMgELLbZal6+lj8PpvJ39 kEr3143MbC+SgpG27YRmkf4WFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC6ybw+u JMrf8xGgtYh/CyYMWmQwMB8GA1UdIwQYMBaAFAxMFyKcarZ/VD/snE0D5f7k7S/2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0FEQy9GNTc1ODlFMjJE QjYxMUVEODIxNTlCNUVDNEY5QUUwMi9ERXdYSXB4cXRuOVVQLXljVFFQbF91VHRM X1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RFd1hJcHhxdG45VVAteWNUUVBsX3VUdExfWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0FEQy9GNTc1ODlFMjJEQjYxMUVEODIxNTlCNUVDNEY5QUUwMi9ERXdYSXB4cXRu OVVQLXljVFFQbF91VHRMX1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRnmkpP4LPE0QWNqThJh5jnHwfMpbzrlKbFtCql9MIvgcU2g7Fpc3y CKfEuT2sip7cQ8Oii5tqKGjl9HYHb9ZO+eULxogWLORP6PHagEyuO+naDjWNUs3i sr9ps2tACgCvpLW81CQzv/gtOcX5A9EenQtmOV5pmEowaji51RC2dtLQs8dmofln EvBH21b1aHd5nIcqC3sQPx9WWDbIQPemaUd2qqYbk9ummWNscKyTA0VbiVxoEB8A rCU7NsnO8E7F/+HkCT3LunV0Tl8TOi3GwVD4Z7SUC4MMDDd+Az6eWySOSsRK0kij lg8fgWXWq+QT6ivA8iFnnG2tPZC59c3S -----END CERTIFICATE-----Generated at Mon Dec 22 02:38:02 2025 by rpki-client