This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft File: dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft (raw, json) Hash identifier: 79yr2JQA+gqCTCB02RYuiHWcHWLop7HTNNrNADqumaI= Subject key identifier: D5:79:CE:E4:10:6D:63:40:AF:0E:CB:96:9C:3C:B3:4C:80:F4:E1:0E Authority key identifier: 76:52:A2:2F:C2:50:FA:AA:E3:AB:2C:0C:2A:FD:D0:4E:30:47:E5:07 Certificate issuer: /CN=A917ADD1/serialNumber=7652A22FC250FAAAE3AB2C0C2AFDD04E3047E507 Certificate serial: 01BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft Manifest number: 01BB Signing time: Tue 23 Dec 2025 02:04:27 +0000 Manifest this update: Tue 23 Dec 2025 02:04:27 +0000 Manifest next update: Tue 30 Dec 2025 02:04:27 +0000 Files and hashes: 1: dlKiL8JQ-qrjqywMKv3QTjBH5Qc.crl (hash: a9tyw0CUVGyCAh+FB5WPRFqLsaX5PfE1vM0KvEmYdtA=) 2: 8D0C1E0E37EF11EE82AF270BC4F9AE02.roa (hash: GFGPvdmy2vrmiAyM3NUeTKYyq91wUi+ACbGsbCoh47g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.crl rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:04:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 446 (0x1be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ADD1, serialNumber=7652A22FC250FAAAE3AB2C0C2AFDD04E3047E507 Validity Not Before: Dec 23 02:04:27 2025 GMT Not After : Dec 30 02:04:27 2025 GMT Subject: CN=6949f8ab-2d1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:46:68:d3:57:f6:1d:6d:43:06:75:90:c3:ae: 29:d1:e3:20:72:ca:5f:af:91:7a:ca:61:79:bc:13: cc:ec:4e:f5:39:d3:d2:ce:61:cd:00:c3:0c:b1:e8: d5:13:c5:4a:68:e7:69:92:d4:0a:ef:7b:20:33:b6: f5:19:72:b5:bb:35:54:f5:73:3b:f9:3a:ff:96:23: fd:bc:55:80:17:b5:e5:3d:19:df:30:18:3f:8e:3c: 7a:54:b3:69:15:69:5d:e5:70:6c:7b:d6:6c:f8:32: b7:22:9e:f1:48:e4:0e:26:f8:c7:7b:9d:8d:d3:a2: 0f:6f:1a:89:47:6b:df:59:eb:d6:df:2c:2e:db:fa: ef:eb:eb:92:de:2c:ca:17:32:78:7e:0d:0b:52:99: 85:1f:e3:89:9e:b0:2d:ba:c5:00:e7:dd:aa:42:31: e9:7f:62:ce:8f:73:20:98:79:fb:c8:50:fc:3c:25: 7b:b5:f2:32:3a:da:05:74:ac:78:d0:e2:6a:49:87: ed:6f:51:a5:7c:8e:b2:95:25:21:df:ef:68:3c:8d: c9:b7:4f:bd:3d:b5:0c:b6:dc:df:9a:30:33:c2:54: ff:80:4c:42:b0:0b:94:92:97:73:4f:83:44:56:78: 1d:b4:de:e8:36:96:4d:7c:83:b3:09:e7:bd:5e:02: b2:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:79:CE:E4:10:6D:63:40:AF:0E:CB:96:9C:3C:B3:4C:80:F4:E1:0E X509v3 Authority Key Identifier: keyid:76:52:A2:2F:C2:50:FA:AA:E3:AB:2C:0C:2A:FD:D0:4E:30:47:E5:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:77:29:83:05:25:15:95:bc:01:de:01:b4:a1:e4:3f:aa:27: f2:9a:1a:48:20:5e:79:46:de:69:36:8a:b1:83:24:5a:f1:61: d0:88:38:79:2b:e6:e4:52:91:65:d7:9d:db:8c:80:de:28:8b: 48:f5:23:a7:8e:96:89:64:d2:e6:d4:47:e9:1a:6d:07:75:66: aa:54:31:67:8d:1b:9d:77:2f:cf:4d:50:da:08:f9:2f:16:66: 8e:da:5f:53:d4:fa:42:07:cb:c3:34:f8:27:89:0e:70:62:51: 34:61:5c:3a:e8:76:df:e4:c6:f8:64:0b:25:fe:34:36:e9:bd: 63:f3:f8:5b:58:46:fd:af:45:91:e0:ee:15:ce:c4:49:3a:61: bb:25:33:d5:27:48:d1:94:bf:ad:99:ce:4a:93:6b:e9:db:b2: 6c:af:16:9c:1b:9b:97:b7:39:e6:ae:09:5f:ed:89:4e:6d:43: 66:45:ce:aa:60:c8:2d:08:c0:a6:ee:1c:87:fc:a9:2b:c9:af: 67:c9:40:50:87:a1:a1:73:3f:47:b1:a6:01:c6:81:3d:3b:e8: 51:e1:2e:38:cd:7d:6a:22:cf:c2:43:56:e8:8c:b6:8d:14:f6: 04:f6:71:5f:d1:89:92:e8:cb:29:88:96:69:be:1b:e2:d2:db: a1:e2:26:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FERDExMTAvBgNVBAUTKDc2NTJBMjJGQzI1MEZBQUFFM0FCMkMwQzJBRkREMDRF MzA0N0U1MDcwHhcNMjUxMjIzMDIwNDI3WhcNMjUxMjMwMDIwNDI3WjAYMRYwFAYD VQQDDA02OTQ5ZjhhYi0yZDFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0UZo01f2HW1DBnWQw64p0eMgcspfr5F6ymF5vBPM7E71OdPSzmHNAMMMsejV E8VKaOdpktQK73sgM7b1GXK1uzVU9XM7+Tr/liP9vFWAF7XlPRnfMBg/jjx6VLNp FWld5XBse9Zs+DK3Ip7xSOQOJvjHe52N06IPbxqJR2vfWevW3ywu2/rv6+uS3izK FzJ4fg0LUpmFH+OJnrAtusUA592qQjHpf2LOj3MgmHn7yFD8PCV7tfIyOtoFdKx4 0OJqSYftb1GlfI6ylSUh3+9oPI3Jt0+9PbUMttzfmjAzwlT/gExCsAuUkpdzT4NE VngdtN7oNpZNfIOzCee9XgKyewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNV5zuQQ bWNArw7Llpw8s0yA9OEOMB8GA1UdIwQYMBaAFHZSoi/CUPqq46ssDCr90E4wR+UH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUREMS9EMDA2QzBERTM3 RUUxMUVFOThERjM2NjZDNEY5QUUwMi9kbEtpTDhKUS1xcmpxeXdNS3YzUVRqQkg1 UWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RsS2lMOEpRLXFyanF5d01LdjNRVGpCSDVRYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUREMS9EMDA2QzBERTM3RUUxMUVFOThERjM2NjZDNEY5QUUwMi9kbEtpTDhKUS1x cmpxeXdNS3YzUVRqQkg1UWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIdymDBSUVlbwB3gG0oeQ/qifymhpIIF55Rt5pNoqxgyRa8WHQiDh5 K+bkUpFl153bjIDeKItI9SOnjpaJZNLm1EfpGm0HdWaqVDFnjRuddy/PTVDaCPkv FmaO2l9T1PpCB8vDNPgniQ5wYlE0YVw66Hbf5Mb4ZAsl/jQ26b1j8/hbWEb9r0WR 4O4VzsRJOmG7JTPVJ0jRlL+tmc5Kk2vp27JsrxacG5uXtznmrglf7YlObUNmRc6q YMgtCMCm7hyH/Kkrya9nyUBQh6Ghcz9HsaYBxoE9O+hR4S44zX1qIs/CQ1bojLaN FPYE9nFf0YmS6MspiJZpvhvi0tuh4ibo -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:15 2025 by rpki-client