This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft File: DGhYIowwF0gr3H85geiYuVbaoCk.mft (raw, json) Hash identifier: juL+Y3CJWjGQ/Jxl6uFGjXkVrIQszM0AJ4h5QUw/BvU= Subject key identifier: 32:7D:23:7E:6C:F3:1A:EA:A9:8C:51:23:F9:23:3F:5F:56:A1:80:11 Authority key identifier: 0C:68:58:22:8C:30:17:48:2B:DC:7F:39:81:E8:98:B9:56:DA:A0:29 Certificate issuer: /CN=A9170975/serialNumber=0C6858228C3017482BDC7F3981E898B956DAA029 Certificate serial: 65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft Manifest number: 64 Signing time: Sun 07 Dec 2025 05:06:14 +0000 Manifest this update: Sun 07 Dec 2025 05:06:13 +0000 Manifest next update: Sun 14 Dec 2025 05:06:13 +0000 Files and hashes: 1: DGhYIowwF0gr3H85geiYuVbaoCk.crl (hash: E7Kvye3fi5PhRythQQR/NbMT05bnmKVjHyh/VYexRkc=) 2: B12A39803A2A11F09E37DB48C4F9AE02.roa (hash: k8LJciNO3nbjiZjsCJ8G57U38keqVi40DfjRW/V+QTI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.crl rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 05:06:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170975, serialNumber=0C6858228C3017482BDC7F3981E898B956DAA029 Validity Not Before: Dec 7 05:06:13 2025 GMT Not After : Dec 14 05:06:13 2025 GMT Subject: CN=69350b46-8f9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4a:77:37:10:8e:5e:af:88:a3:a1:39:a8:2a: 14:01:fe:94:94:82:c8:b0:90:e4:e8:49:41:56:c2: 11:a8:b9:6a:65:83:2a:76:d9:69:4b:90:7a:35:8d: 32:7d:d6:fb:65:f2:1c:65:cb:3a:5d:87:48:25:79: b0:7b:22:35:90:80:47:39:64:8c:8c:71:be:96:32: d5:e9:40:ee:e3:c5:29:45:77:e0:fa:cf:59:e2:de: d8:78:a5:06:b6:28:94:79:95:78:69:34:94:af:b8: eb:8e:3b:ed:45:24:63:39:0b:1c:9a:3e:a7:55:5b: 32:65:4a:96:22:3e:53:2e:b7:fe:24:57:49:89:6a: 89:44:26:12:54:d4:8e:c9:77:68:c1:e2:07:36:e6: d0:63:f6:72:db:42:02:57:e1:cc:3c:10:f4:2c:9c: 68:88:e0:b8:18:57:75:be:99:a8:06:27:79:e4:28: 5e:c2:37:2e:1a:00:e9:16:85:c7:d9:31:1e:77:3f: 7c:5c:47:6a:91:d5:19:7b:d8:2f:06:ec:7f:e5:1b: 43:f5:26:17:06:19:b2:de:0d:9a:82:a0:44:57:85: 69:4b:1f:9d:2c:d7:20:07:bf:ca:46:a7:1d:52:2e: 33:9c:9e:47:7c:21:7a:c7:76:b6:f7:70:9a:13:71: 58:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:7D:23:7E:6C:F3:1A:EA:A9:8C:51:23:F9:23:3F:5F:56:A1:80:11 X509v3 Authority Key Identifier: keyid:0C:68:58:22:8C:30:17:48:2B:DC:7F:39:81:E8:98:B9:56:DA:A0:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:19:c2:6e:99:3d:46:83:99:6e:89:6a:7b:31:e3:15:40:38: c8:19:c5:c1:11:c4:7c:92:6e:f0:9d:bd:ab:8c:d0:c1:22:81: 5d:7b:14:ad:9a:64:0b:40:e5:26:fd:e3:cc:25:a4:04:56:12: ab:86:07:45:3e:94:dc:c5:f7:e8:e8:30:1b:57:af:4d:7b:42: 8b:47:c1:dd:d9:8f:50:c6:e4:66:e9:c4:e9:e0:d3:81:a9:5e: ee:f0:6f:a4:2a:bc:fc:ba:ff:6f:4e:5a:20:1d:77:1e:ab:9d: ce:fb:d9:3b:c8:63:1b:d7:df:02:db:25:19:d4:44:eb:0f:ca: de:12:7d:55:ce:25:d8:84:8e:a5:ad:b4:d9:ac:85:bf:3c:f7: 15:9e:f2:ca:88:b3:d9:36:c8:cb:a1:15:40:69:1b:ae:7f:4b: 42:41:87:96:a3:fb:67:6c:d3:16:8e:8e:f8:af:e1:38:a5:bf: fe:f4:f8:41:49:1d:ff:c0:fc:58:94:26:a0:d4:34:b1:bd:46: 58:12:4e:e4:ce:bf:e2:2f:56:1d:32:47:0c:32:7c:af:39:d1: b6:79:52:aa:8c:ca:29:7d:af:35:99:54:f7:35:60:be:88:44: 69:2a:7c:04:02:3b:4b:2f:04:2c:9a:f9:7b:61:44:c5:f0:92: 51:85:48:c9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MDk3NTExMC8GA1UEBRMoMEM2ODU4MjI4QzMwMTc0ODJCREM3RjM5ODFFODk4Qjk1 NkRBQTAyOTAeFw0yNTEyMDcwNTA2MTNaFw0yNTEyMTQwNTA2MTNaMBgxFjAUBgNV BAMTDTY5MzUwYjQ2LThmOWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrSnc3EI5er4ijoTmoKhQB/pSUgsiwkOToSUFWwhGouWplgyp22WlLkHo1jTJ9 1vtl8hxlyzpdh0glebB7IjWQgEc5ZIyMcb6WMtXpQO7jxSlFd+D6z1ni3th4pQa2 KJR5lXhpNJSvuOuOO+1FJGM5CxyaPqdVWzJlSpYiPlMut/4kV0mJaolEJhJU1I7J d2jB4gc25tBj9nLbQgJX4cw8EPQsnGiI4LgYV3W+magGJ3nkKF7CNy4aAOkWhcfZ MR53P3xcR2qR1Rl72C8G7H/lG0P1JhcGGbLeDZqCoERXhWlLH50s1yAHv8pGpx1S LjOcnkd8IXrHdrb3cJoTcVhbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMn0jfmzz GuqpjFEj+SM/X1ahgBEwHwYDVR0jBBgwFoAUDGhYIowwF0gr3H85geiYuVbaoCkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwOTc1LzY3QzdBNDJBM0Ey NjExRjBCQ0NGNUUxRkM0RjlBRTAyL0RHaFlJb3d3RjBncjNIODVnZWlZdVZiYW9D ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvREdoWUlvd3dGMGdyM0g4NWdlaVl1VmJhb0NrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw OTc1LzY3QzdBNDJBM0EyNjExRjBCQ0NGNUUxRkM0RjlBRTAyL0RHaFlJb3d3RjBn cjNIODVnZWlZdVZiYW9Day5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHAZwm6ZPUaDmW6Jansx4xVAOMgZxcERxHySbvCdvauM0MEigV17FK2a ZAtA5Sb948wlpARWEquGB0U+lNzF9+joMBtXr017QotHwd3Zj1DG5GbpxOng04Gp Xu7wb6QqvPy6/29OWiAddx6rnc772TvIYxvX3wLbJRnUROsPyt4SfVXOJdiEjqWt tNmshb889xWe8sqIs9k2yMuhFUBpG65/S0JBh5aj+2ds0xaOjviv4Tilv/70+EFJ Hf/A/FiUJqDUNLG9RlgSTuTOv+IvVh0yRwwyfK850bZ5UqqMyil9rzWZVPc1YL6I RGkqfAQCO0svBCya+XthRMXwklGFSMk= -----END CERTIFICATE-----Generated at Mon Dec 8 06:12:01 2025 by rpki-client