This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft File: DGlwyrnfjpvRDhw-kYkaCafojCA.mft (raw, json) Hash identifier: 4t1uVzzGQwuTx8nNw4yZZtIjTs4P6QArlI4cBnXf0eU= Subject key identifier: E1:D4:D2:7A:12:A0:A6:03:33:44:21:55:11:30:25:0C:AD:14:1D:A9 Authority key identifier: 0C:69:70:CA:B9:DF:8E:9B:D1:0E:1C:3E:91:89:1A:09:A7:E8:8C:20 Certificate issuer: /CN=A9179672/serialNumber=0C6970CAB9DF8E9BD10E1C3E91891A09A7E88C20 Certificate serial: BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGlwyrnfjpvRDhw-kYkaCafojCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft Manifest number: B8 Signing time: Tue 23 Dec 2025 04:09:44 +0000 Manifest this update: Tue 23 Dec 2025 04:09:44 +0000 Manifest next update: Tue 30 Dec 2025 04:09:44 +0000 Files and hashes: 1: DGlwyrnfjpvRDhw-kYkaCafojCA.crl (hash: 3zBRPHaf6j8QJDC9k4a5jj42AP5/Pq3HToDqb6jTlGI=) 2: D1C1AFB2135511F0976BA50CC4F9AE02.roa (hash: xHWD/+6Z6mOfeTNp4+pdNaNQc1T99Xc2O7Zqfmln3YE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.crl rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGlwyrnfjpvRDhw-kYkaCafojCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:09:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179672, serialNumber=0C6970CAB9DF8E9BD10E1C3E91891A09A7E88C20 Validity Not Before: Dec 23 04:09:44 2025 GMT Not After : Dec 30 04:09:44 2025 GMT Subject: CN=694a1608-275b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:84:69:5c:92:21:b0:22:fd:d4:a2:92:48:8d: b4:57:59:16:70:e0:c4:fb:dd:11:ef:40:8f:f9:1c: 71:41:36:10:7f:4c:be:fe:d9:3f:7e:8e:63:0e:54: 20:76:73:fd:1f:40:1e:d0:3c:f3:9a:73:70:36:11: 5a:26:51:6c:32:d1:f3:eb:83:86:9b:76:87:d5:1b: 67:11:8d:e8:d4:88:8a:03:06:0f:8b:08:b8:6e:9f: 9c:4e:60:fb:56:4c:76:58:28:33:a5:de:6c:4d:e0: e8:ba:fe:86:f4:e5:28:59:63:11:3f:26:99:bd:2d: 00:13:6a:d3:b6:25:20:88:fe:35:e0:95:35:6a:e5: 67:a4:d9:81:e1:f8:b2:58:ad:7a:d9:44:fb:f3:30: bd:32:9d:0b:a4:da:53:a5:21:88:99:46:38:44:97: 80:1e:31:f9:2d:a5:16:a8:25:7b:76:c1:60:85:d6: c4:0d:a1:98:2e:0d:a2:1b:fc:51:f8:df:34:c0:bf: ad:18:17:92:e8:15:fe:4f:d9:6f:a5:b0:3d:45:fd: dc:ae:23:ad:33:24:41:a4:69:24:b8:92:40:99:35: a8:2e:53:a9:47:20:e2:0f:0e:8d:6e:36:44:a5:6e: 0d:58:eb:54:a3:49:da:3a:ab:2c:af:4e:01:f6:ce: 18:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:D4:D2:7A:12:A0:A6:03:33:44:21:55:11:30:25:0C:AD:14:1D:A9 X509v3 Authority Key Identifier: keyid:0C:69:70:CA:B9:DF:8E:9B:D1:0E:1C:3E:91:89:1A:09:A7:E8:8C:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGlwyrnfjpvRDhw-kYkaCafojCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:94:4a:db:23:28:80:05:3d:7d:92:25:5c:fc:24:24:db:95: e0:89:5d:a9:d6:72:7d:9d:8c:3f:ac:6a:2f:7e:2d:78:61:76: 6c:75:8b:2e:14:31:0e:6e:6b:dc:65:04:6f:45:93:71:88:d4: 36:b4:17:02:63:0b:74:92:24:e9:5c:63:55:ad:86:b0:41:bb: f0:b7:bb:7a:03:07:28:0e:45:28:24:0d:8a:b4:27:d5:02:48: 62:0b:22:93:9f:2f:46:d1:88:ad:a3:3e:bd:8b:10:fc:87:5b: 8d:21:20:f5:43:9c:43:18:94:af:ff:65:70:9d:05:e9:d9:4d: fb:0f:aa:37:76:a0:bf:48:c5:c2:93:2b:32:66:a6:8b:7b:41: b5:19:b5:ac:12:26:7d:1c:3c:e3:7f:9b:73:c8:51:31:a2:d1: a1:24:00:61:3f:a2:fe:30:b9:d4:b6:04:c7:a4:f2:9b:d1:75: ee:06:dd:cb:74:da:b9:0c:87:38:9a:de:f1:60:10:71:17:05: e3:08:98:27:95:80:05:c7:fc:3a:20:1f:01:35:26:70:e5:05: 4c:ef:47:5f:ff:ef:81:c6:ec:02:67:bd:1d:86:d3:ae:a9:0f: 3f:dc:28:a1:5f:fa:da:e0:e1:41:0a:8f:c9:c3:d3:ed:40:e6: 2c:dc:2a:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk2NzIxMTAvBgNVBAUTKDBDNjk3MENBQjlERjhFOUJEMTBFMUMzRTkxODkxQTA5 QTdFODhDMjAwHhcNMjUxMjIzMDQwOTQ0WhcNMjUxMjMwMDQwOTQ0WjAYMRYwFAYD VQQDDA02OTRhMTYwOC0yNzViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApoRpXJIhsCL91KKSSI20V1kWcODE+90R70CP+RxxQTYQf0y+/tk/fo5jDlQg dnP9H0Ae0DzzmnNwNhFaJlFsMtHz64OGm3aH1RtnEY3o1IiKAwYPiwi4bp+cTmD7 Vkx2WCgzpd5sTeDouv6G9OUoWWMRPyaZvS0AE2rTtiUgiP414JU1auVnpNmB4fiy WK162UT78zC9Mp0LpNpTpSGImUY4RJeAHjH5LaUWqCV7dsFghdbEDaGYLg2iG/xR +N80wL+tGBeS6BX+T9lvpbA9Rf3criOtMyRBpGkkuJJAmTWoLlOpRyDiDw6NbjZE pW4NWOtUo0naOqssr04B9s4Y8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOHU0noS oKYDM0QhVREwJQytFB2pMB8GA1UdIwQYMBaAFAxpcMq5346b0Q4cPpGJGgmn6Iwg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTY3Mi84OEFEQ0E5OENC RUYxMUVGOTE2NUMyNDZDNEY5QUUwMi9ER2x3eXJuZmpwdlJEaHcta1lrYUNhZm9q Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RHbHd5cm5manB2UkRody1rWWthQ2Fmb2pDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTY3Mi84OEFEQ0E5OENCRUYxMUVGOTE2NUMyNDZDNEY5QUUwMi9ER2x3eXJuZmpw dlJEaHcta1lrYUNhZm9qQ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7lErbIyiABT19kiVc/CQk25XgiV2p1nJ9nYw/rGovfi14YXZsdYsu FDEObmvcZQRvRZNxiNQ2tBcCYwt0kiTpXGNVrYawQbvwt7t6AwcoDkUoJA2KtCfV AkhiCyKTny9G0Yitoz69ixD8h1uNISD1Q5xDGJSv/2VwnQXp2U37D6o3dqC/SMXC kysyZqaLe0G1GbWsEiZ9HDzjf5tzyFExotGhJABhP6L+MLnUtgTHpPKb0XXuBt3L dNq5DIc4mt7xYBBxFwXjCJgnlYAFx/w6IB8BNSZw5QVM70df/++BxuwCZ70dhtOu qQ8/3CihX/ra4OFBCo/Jw9PtQOYs3Cp0 -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:00 2025 by rpki-client