This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.mft File: dQWoa19PqlBUPSSMbwhUxQWu3A8.mft (raw, json) Hash identifier: STTICsC8hvLCRnZdqT/DblcldqWKDuBGJnAZeClvDmI= Subject key identifier: D6:EE:77:1A:1E:B7:AE:25:E8:AF:CF:60:05:13:BF:59:4D:B7:1A:F1 Authority key identifier: 75:05:A8:6B:5F:4F:AA:50:54:3D:24:8C:6F:08:54:C5:05:AE:DC:0F Certificate issuer: /CN=A918D0E6/serialNumber=7505A86B5F4FAA50543D248C6F0854C505AEDC0F Certificate serial: 0BA0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQWoa19PqlBUPSSMbwhUxQWu3A8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.mft Manifest number: 0B91 Signing time: Mon 22 Dec 2025 18:34:09 +0000 Manifest this update: Mon 22 Dec 2025 18:34:09 +0000 Manifest next update: Mon 29 Dec 2025 18:34:09 +0000 Files and hashes: 1: dQWoa19PqlBUPSSMbwhUxQWu3A8.crl (hash: DbHm9VXOdfdzpfP7wUY2/KyYTQVVuTaAdYorjJUbA0k=) 2: 4B1D295E9EA211EB901A9532C4F9AE02.roa (hash: 6+05b8G0TEW8X4nNCgb84dRnZnbGJzRjWgQsJpxv0jY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.crl rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQWoa19PqlBUPSSMbwhUxQWu3A8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:34:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2976 (0xba0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0E6, serialNumber=7505A86B5F4FAA50543D248C6F0854C505AEDC0F Validity Not Before: Dec 22 18:34:09 2025 GMT Not After : Dec 29 18:34:09 2025 GMT Subject: CN=69498f21-a832 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:58:87:c7:9e:f4:46:e7:6c:97:9a:78:53:88: 49:df:98:c9:8d:a9:5b:92:e9:59:ec:2e:c7:02:6d: 71:c3:ce:50:f5:20:f4:6a:e8:0b:fc:82:a8:d6:07: 48:1b:5f:cb:3b:b2:ee:8d:94:76:d4:6c:37:51:b2: a8:68:d8:e1:ea:8b:3a:ce:d3:22:1d:97:de:e7:3f: 14:7b:09:63:2e:46:e8:4f:cf:73:fc:b3:88:08:c5: 50:37:94:52:cf:54:04:fe:37:8b:b1:bc:00:32:30: 23:16:d0:35:5f:2d:fe:ac:82:fe:97:e4:67:ee:ac: 34:70:a5:dd:6c:f2:3c:0b:63:b1:ce:2a:01:3a:ad: 63:5e:f2:af:78:9a:ea:57:04:8a:24:4f:f2:2b:6d: f5:00:eb:f1:cf:d1:eb:90:ec:ed:95:21:c5:f5:11: ed:16:d8:58:79:a8:c5:e0:e1:c6:ec:ad:3d:ba:1f: 5d:21:90:bf:a3:b6:c5:7e:31:cd:d6:52:32:5d:a2: 88:e6:c4:8c:d1:a7:cc:7a:fd:07:99:ec:9a:ce:15: 60:cd:b7:db:39:3a:63:ca:6e:34:6d:4e:80:02:97: 30:e2:1f:da:7a:eb:9c:ea:48:b8:1d:eb:3f:8d:17: 6c:e7:15:4c:e1:4a:cf:6a:46:d8:74:18:13:e6:82: ee:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:EE:77:1A:1E:B7:AE:25:E8:AF:CF:60:05:13:BF:59:4D:B7:1A:F1 X509v3 Authority Key Identifier: keyid:75:05:A8:6B:5F:4F:AA:50:54:3D:24:8C:6F:08:54:C5:05:AE:DC:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQWoa19PqlBUPSSMbwhUxQWu3A8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:4e:df:6f:c2:10:35:6e:bb:9c:9f:51:35:01:74:95:f4:da: 22:f5:35:7b:67:40:3c:69:c1:77:62:da:ef:76:8b:3e:dd:9e: 8c:16:20:18:74:01:9e:55:1e:fc:c6:e0:57:f1:cb:ee:08:03: 52:52:fa:e4:b6:d0:91:fc:72:5a:db:e5:6c:96:17:95:d5:0b: 4f:c2:a9:86:72:3e:ad:20:3a:a7:22:98:6d:35:e8:93:b2:e6: 2c:38:4c:ca:14:43:2d:b2:70:b9:10:a6:d0:c4:18:ff:5a:93: 05:93:cc:d4:bd:73:8b:62:7f:38:2d:fc:74:fe:81:9a:24:d4: b3:bf:aa:31:28:29:81:7c:1f:27:23:a6:89:fa:97:88:b8:17: f3:37:32:57:fb:05:51:94:b9:12:53:78:e0:0f:ff:2e:d7:b0: e4:ea:27:f9:6a:9f:8a:81:25:81:fb:87:7d:c6:93:9e:89:c4: 70:96:79:aa:22:5a:98:05:7f:65:ed:87:d5:cf:4b:91:98:d1: 66:56:a1:8a:ec:13:91:6e:41:03:61:be:01:cd:c9:dc:dc:4f: 94:f7:13:80:b0:77:15:c4:a6:89:76:ed:a8:02:4d:93:46:12: 59:ef:21:9c:0c:92:94:37:43:50:f5:25:64:b6:19:79:4e:3e: e8:0d:ad:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwRTYxMTAvBgNVBAUTKDc1MDVBODZCNUY0RkFBNTA1NDNEMjQ4QzZGMDg1NEM1 MDVBRURDMEYwHhcNMjUxMjIyMTgzNDA5WhcNMjUxMjI5MTgzNDA5WjAYMRYwFAYD VQQDDA02OTQ5OGYyMS1hODMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArFiHx570Rudsl5p4U4hJ35jJjalbkulZ7C7HAm1xw85Q9SD0augL/IKo1gdI G1/LO7LujZR21Gw3UbKoaNjh6os6ztMiHZfe5z8UewljLkboT89z/LOICMVQN5RS z1QE/jeLsbwAMjAjFtA1Xy3+rIL+l+Rn7qw0cKXdbPI8C2OxzioBOq1jXvKveJrq VwSKJE/yK231AOvxz9HrkOztlSHF9RHtFthYeajF4OHG7K09uh9dIZC/o7bFfjHN 1lIyXaKI5sSM0afMev0HmeyazhVgzbfbOTpjym40bU6AApcw4h/aeuuc6ki4Hes/ jRds5xVM4UrPakbYdBgT5oLuAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNbudxoe t64l6K/PYAUTv1lNtxrxMB8GA1UdIwQYMBaAFHUFqGtfT6pQVD0kjG8IVMUFrtwP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBFNi9EOEFERDk0MjNG MzcxMUVBQTc4NjQzNEJDNEY5QUUwMi9kUVdvYTE5UHFsQlVQU1NNYndoVXhRV3Uz QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RRV29hMTlQcWxCVVBTU01id2hVeFFXdTNBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBFNi9EOEFERDk0MjNGMzcxMUVBQTc4NjQzNEJDNEY5QUUwMi9kUVdvYTE5UHFs QlVQU1NNYndoVXhRV3UzQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4Tt9vwhA1brucn1E1AXSV9Noi9TV7Z0A8acF3Ytrvdos+3Z6MFiAY dAGeVR78xuBX8cvuCANSUvrkttCR/HJa2+VslheV1QtPwqmGcj6tIDqnIphtNeiT suYsOEzKFEMtsnC5EKbQxBj/WpMFk8zUvXOLYn84Lfx0/oGaJNSzv6oxKCmBfB8n I6aJ+peIuBfzNzJX+wVRlLkSU3jgD/8u17Dk6if5ap+KgSWB+4d9xpOeicRwlnmq IlqYBX9l7YfVz0uRmNFmVqGK7BORbkEDYb4Bzcnc3E+U9xOAsHcVxKaJdu2oAk2T RhJZ7yGcDJKUN0NQ9SVkthl5Tj7oDa00 -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:55 2025 by rpki-client