This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft File: dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft (raw, json) Hash identifier: MuBAgI9iTr2fS014mrbY9brV1KOHpIJcpeBiWTQ32SA= Subject key identifier: DD:20:1E:44:59:B1:9B:6C:8B:37:86:C1:62:9D:EB:93:44:06:DA:32 Authority key identifier: 74:A1:16:69:C4:3E:53:B0:F2:1D:4B:41:3F:92:D9:EA:91:31:55:03 Certificate issuer: /CN=A9178424/serialNumber=74A11669C43E53B0F21D4B413F92D9EA91315503 Certificate serial: 0119 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dKEWacQ-U7DyHUtBP5LZ6pExVQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft Manifest number: 0116 Signing time: Tue 23 Dec 2025 03:51:32 +0000 Manifest this update: Tue 23 Dec 2025 03:51:32 +0000 Manifest next update: Tue 30 Dec 2025 03:51:32 +0000 Files and hashes: 1: dKEWacQ-U7DyHUtBP5LZ6pExVQM.crl (hash: kITCnt5AO/+d1+dJHmMUmhCswe2/sz+vuh6AX4hS+P4=) 2: D672BC9638E411EF8BF0C15EC4F9AE02.roa (hash: BbrjGfo0UoZCcLf+k7hQstWYPdgNNbc+IXBk8J2BWwE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.crl rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dKEWacQ-U7DyHUtBP5LZ6pExVQM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:51:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 281 (0x119) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178424, serialNumber=74A11669C43E53B0F21D4B413F92D9EA91315503 Validity Not Before: Dec 23 03:51:32 2025 GMT Not After : Dec 30 03:51:32 2025 GMT Subject: CN=694a11c4-19ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:ab:87:06:98:b4:ee:42:e0:1b:78:be:43:6b: 5a:ae:5e:2a:13:aa:4a:ff:d5:82:2c:90:2c:38:80: c2:38:82:72:f9:0d:73:e2:74:9b:25:6e:0d:9a:6d: 93:28:2e:51:75:37:14:00:91:eb:82:2d:24:01:64: d8:a8:a9:e8:40:34:6d:f3:5e:0e:ed:78:7a:b6:f9: 2f:c2:ce:ad:ad:cc:4a:f6:9f:36:d0:00:dd:de:e0: 0b:57:b5:53:b4:33:32:7c:8e:3a:a1:0c:aa:03:b5: 45:04:38:2c:95:39:ed:68:cd:b8:67:fc:6c:d0:c6: 09:c2:55:b0:bd:00:1d:e7:89:29:3e:b6:0e:9e:5c: a7:1f:53:21:5d:f8:24:74:07:6f:21:b4:fc:0b:8a: 8a:42:2e:92:19:b2:55:8c:fd:35:ec:f1:c8:ea:46: 9f:86:b3:76:25:79:16:c5:9a:8f:0d:b8:be:ad:61: 0a:d5:ec:f6:8d:11:b0:92:0c:87:ec:6b:43:09:98: 19:61:e6:88:db:b7:11:0a:9c:8d:5c:f8:7d:3f:ef: f5:ec:f0:e4:7e:28:46:38:f4:9c:9e:68:3a:49:00: ed:2e:01:cc:d8:44:2f:30:d7:a6:cc:fb:6b:af:62: e3:a0:33:65:34:91:ca:b2:5e:bc:40:70:98:56:94: ee:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:20:1E:44:59:B1:9B:6C:8B:37:86:C1:62:9D:EB:93:44:06:DA:32 X509v3 Authority Key Identifier: keyid:74:A1:16:69:C4:3E:53:B0:F2:1D:4B:41:3F:92:D9:EA:91:31:55:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dKEWacQ-U7DyHUtBP5LZ6pExVQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:8b:0e:09:dc:67:aa:1c:e7:33:ce:00:05:a0:63:78:87:83: 6f:34:70:99:ca:8b:62:a1:e7:02:23:8e:7c:f4:7a:8f:06:66: 50:f5:e7:e2:bf:34:c8:5c:2e:a6:ac:5b:af:01:66:fa:13:21: 83:cf:5c:27:15:f2:fc:3c:1a:60:2c:dc:e4:6b:fe:a9:ff:14: 71:e1:a2:44:9f:08:ee:75:e8:23:00:01:f4:59:22:8a:c3:c3: 6e:f8:51:a4:a4:83:2f:0b:58:78:5e:61:1e:22:61:fa:92:7f: 6a:0d:dc:d9:a2:db:ae:fd:d7:63:83:4b:6d:13:c8:40:dc:53: 30:d7:93:ed:f3:ca:6a:50:a5:aa:52:1c:17:56:62:ff:f2:64: 43:0f:7c:cb:48:a8:be:a5:2d:39:27:45:9a:45:2a:91:44:0a: 42:87:68:c3:4c:1d:11:bf:23:43:c3:50:4c:a9:d6:9d:ad:fa: b5:f5:94:79:0d:3a:35:52:d4:fc:51:cd:f6:db:e0:61:24:0f: e5:4a:1e:ba:45:2e:28:bf:0b:7d:43:ff:0d:6a:4e:6f:36:35: 1a:14:23:58:d5:0f:b1:ac:c7:d6:32:3e:93:49:c6:be:84:85: 3d:2d:e5:96:89:bf:f0:59:97:c9:12:ca:df:a5:f1:32:38:ee: d8:e2:84:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzg0MjQxMTAvBgNVBAUTKDc0QTExNjY5QzQzRTUzQjBGMjFENEI0MTNGOTJEOUVB OTEzMTU1MDMwHhcNMjUxMjIzMDM1MTMyWhcNMjUxMjMwMDM1MTMyWjAYMRYwFAYD VQQDDA02OTRhMTFjNC0xOWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7KuHBpi07kLgG3i+Q2tarl4qE6pK/9WCLJAsOIDCOIJy+Q1z4nSbJW4Nmm2T KC5RdTcUAJHrgi0kAWTYqKnoQDRt814O7Xh6tvkvws6trcxK9p820ADd3uALV7VT tDMyfI46oQyqA7VFBDgslTntaM24Z/xs0MYJwlWwvQAd54kpPrYOnlynH1MhXfgk dAdvIbT8C4qKQi6SGbJVjP017PHI6kafhrN2JXkWxZqPDbi+rWEK1ez2jRGwkgyH 7GtDCZgZYeaI27cRCpyNXPh9P+/17PDkfihGOPScnmg6SQDtLgHM2EQvMNemzPtr r2LjoDNlNJHKsl68QHCYVpTuYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN0gHkRZ sZtsizeGwWKd65NEBtoyMB8GA1UdIwQYMBaAFHShFmnEPlOw8h1LQT+S2eqRMVUD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODQyNC83OTNFQTZEQTM4 RTMxMUVGOTE0QjJGMzNDNEY5QUUwMi9kS0VXYWNRLVU3RHlIVXRCUDVMWjZwRXhW UU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RLRVdhY1EtVTdEeUhVdEJQNUxaNnBFeFZRTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 ODQyNC83OTNFQTZEQTM4RTMxMUVGOTE0QjJGMzNDNEY5QUUwMi9kS0VXYWNRLVU3 RHlIVXRCUDVMWjZwRXhWUU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOiw4J3GeqHOczzgAFoGN4h4NvNHCZyotioecCI4589HqPBmZQ9efi vzTIXC6mrFuvAWb6EyGDz1wnFfL8PBpgLNzka/6p/xRx4aJEnwjudegjAAH0WSKK w8Nu+FGkpIMvC1h4XmEeImH6kn9qDdzZotuu/ddjg0ttE8hA3FMw15Pt88pqUKWq UhwXVmL/8mRDD3zLSKi+pS05J0WaRSqRRApCh2jDTB0RvyNDw1BMqdadrfq19ZR5 DTo1UtT8Uc322+BhJA/lSh66RS4ovwt9Q/8Nak5vNjUaFCNY1Q+xrMfWMj6TSca+ hIU9LeWWib/wWZfJEsrfpfEyOO7Y4oQQ -----END CERTIFICATE-----Generated at Tue Dec 23 14:36:18 2025 by rpki-client