This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft File: dOW7m208x_jCmoO9yEkrllnw7hc.mft (raw, json) Hash identifier: K6euLafwOe39OWGs8CH+3hyDhgaqlDtgDv3JmftqdXc= Subject key identifier: C3:0B:9D:93:9B:34:26:76:24:9A:91:77:ED:65:89:9E:2F:06:E0:78 Authority key identifier: 74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17 Certificate issuer: /CN=A91620E0/serialNumber=74E5BB9B6D3CC7F8C29A83BDC8492B9659F0EE17 Certificate serial: 0F48 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft Manifest number: 0DEA Signing time: Sat 06 Dec 2025 18:13:42 +0000 Manifest this update: Sat 06 Dec 2025 18:13:42 +0000 Manifest next update: Sat 13 Dec 2025 18:13:42 +0000 Files and hashes: 1: dOW7m208x_jCmoO9yEkrllnw7hc.crl (hash: jJ1VM/UV0OXPVSCIVicf5xnbcGJe1hGBgTIvjZtF2JY=) 2: DA216556B3D411F090043E0CC4F9AE02.roa (hash: pIx/wyTZ/mFvR/CaDn3nAJ9l4rXxPDSa6Yv+8kWw7kQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.crl rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 18:13:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3912 (0xf48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91620E0, serialNumber=74E5BB9B6D3CC7F8C29A83BDC8492B9659F0EE17 Validity Not Before: Dec 6 18:13:42 2025 GMT Not After : Dec 13 18:13:42 2025 GMT Subject: CN=69347256-1705 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d1:aa:b1:6f:6a:f5:d9:c3:b4:4a:b5:6e:4f: bb:99:84:b1:85:4e:88:53:6e:e8:4a:ad:48:07:d3: e3:87:23:5a:51:78:c0:b5:6f:ec:d8:ba:21:d6:a2: 6e:19:f3:3f:e6:93:23:33:e8:09:9c:f5:8d:8d:a1: c1:02:33:5b:be:54:ad:b7:7f:e8:54:ac:4e:75:d8: 6c:1e:f4:1f:45:c2:d1:d4:87:a1:02:9f:8c:bf:83: 37:5a:6d:48:81:ee:95:58:f3:96:4b:45:05:f9:1f: 66:4e:5a:f7:c3:b9:5a:88:8a:36:0d:1b:14:80:48: cd:bb:13:c3:73:d6:9f:e6:fb:46:77:d0:47:30:d0: a1:fb:d7:bf:90:79:f9:08:37:17:8b:82:30:fd:3d: 0f:6b:7c:47:c9:ea:8a:0a:b4:2e:56:b0:9b:b8:0a: 97:87:28:1c:b5:18:f4:b7:8d:12:f3:d4:93:27:39: f8:29:f8:0e:ab:e1:67:1a:d6:59:46:d0:55:15:d0: d8:85:db:34:ac:0d:0f:85:f7:21:df:31:60:96:17: ae:fd:3e:4b:4d:ba:10:b3:99:19:ce:8b:b6:52:17: c5:a8:77:6b:92:05:65:7c:98:c5:af:fa:37:9a:48: 17:90:34:db:70:c6:b4:41:83:f1:31:73:db:cb:7d: 2c:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:0B:9D:93:9B:34:26:76:24:9A:91:77:ED:65:89:9E:2F:06:E0:78 X509v3 Authority Key Identifier: keyid:74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:84:24:7b:17:65:f6:62:97:fd:80:d1:ce:91:36:22:64:8f: 9a:ef:eb:c8:f0:0a:45:a0:06:56:ba:2f:33:28:0c:d8:9b:1e: a8:ee:10:68:d1:6f:6e:0e:a2:33:c5:22:bc:10:5b:59:f0:7a: ee:ba:75:b0:81:5d:96:9f:af:de:b3:05:be:6c:0e:d9:85:01: ed:1c:87:28:9e:40:8e:db:dc:f7:77:78:10:d2:14:60:d6:51: 09:e9:8f:f8:cd:f9:d7:6f:fd:ff:df:79:c8:85:40:ce:65:17: 99:fc:5a:90:e3:12:e6:2c:f1:23:8b:52:43:b9:20:6c:11:21: ce:23:1e:88:5c:d6:4e:0f:b1:e2:0c:74:a9:d1:2d:b7:ce:80: 12:f0:15:dd:ce:65:de:90:ee:84:41:58:77:04:01:13:1c:6d: 0d:78:57:7f:4e:ef:87:84:2b:70:f9:8b:fd:60:cb:69:12:6e: 55:54:39:20:40:7c:b2:e8:4e:5d:56:c7:f6:b7:3f:3e:eb:5b: 88:24:32:bb:65:f2:43:97:5c:d3:6c:f4:b7:75:df:00:1d:f4: 1e:01:7a:3f:a7:62:15:2f:32:78:cb:f4:6c:0e:e9:dd:25:a1: 0a:66:33:32:0d:26:34:e3:d1:e8:81:fc:30:66:7c:89:dc:9a: 25:75:80:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD0gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjIwRTAxMTAvBgNVBAUTKDc0RTVCQjlCNkQzQ0M3RjhDMjlBODNCREM4NDkyQjk2 NTlGMEVFMTcwHhcNMjUxMjA2MTgxMzQyWhcNMjUxMjEzMTgxMzQyWjAYMRYwFAYD VQQDEw02OTM0NzI1Ni0xNzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq9GqsW9q9dnDtEq1bk+7mYSxhU6IU27oSq1IB9PjhyNaUXjAtW/s2Loh1qJu GfM/5pMjM+gJnPWNjaHBAjNbvlStt3/oVKxOddhsHvQfRcLR1IehAp+Mv4M3Wm1I ge6VWPOWS0UF+R9mTlr3w7laiIo2DRsUgEjNuxPDc9af5vtGd9BHMNCh+9e/kHn5 CDcXi4Iw/T0Pa3xHyeqKCrQuVrCbuAqXhygctRj0t40S89STJzn4KfgOq+FnGtZZ RtBVFdDYhds0rA0Phfch3zFglheu/T5LTboQs5kZzou2UhfFqHdrkgVlfJjFr/o3 mkgXkDTbcMa0QYPxMXPby30sIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMMLnZOb NCZ2JJqRd+1liZ4vBuB4MB8GA1UdIwQYMBaAFHTlu5ttPMf4wpqDvchJK5ZZ8O4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjBFMC9EOTY0QjQ4MjMx MEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9kT1c3bTIwOHhfakNtb085eUVrcmxsbnc3 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RPVzdtMjA4eF9qQ21vTzl5RWtybGxudzdoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjBFMC9EOTY0QjQ4MjMxMEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9kT1c3bTIwOHhf akNtb085eUVrcmxsbnc3aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0hCR7F2X2Ypf9gNHOkTYiZI+a7+vI8ApFoAZWui8zKAzYmx6o7hBo 0W9uDqIzxSK8EFtZ8HruunWwgV2Wn6/eswW+bA7ZhQHtHIconkCO29z3d3gQ0hRg 1lEJ6Y/4zfnXb/3/33nIhUDOZReZ/FqQ4xLmLPEji1JDuSBsESHOIx6IXNZOD7Hi DHSp0S23zoAS8BXdzmXekO6EQVh3BAETHG0NeFd/Tu+HhCtw+Yv9YMtpEm5VVDkg QHyy6E5dVsf2tz8+61uIJDK7ZfJDl1zTbPS3dd8AHfQeAXo/p2IVLzJ4y/RsDund JaEKZjMyDSY049HogfwwZnyJ3JoldYAA -----END CERTIFICATE-----Generated at Sun Dec 7 18:55:13 2025 by rpki-client