This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft File: DmxKtne94a1EYD_XN9olwGAcRZw.mft (raw, json) Hash identifier: N7d3TGZk0VjBTjT/OxY1jtTwwWcQHdTEBgaNPKBzYMM= Subject key identifier: 1E:F8:C2:52:5B:B3:52:DC:CA:E6:AE:86:E9:7B:2A:76:D8:F2:45:C9 Authority key identifier: 0E:6C:4A:B6:77:BD:E1:AD:44:60:3F:D7:37:DA:25:C0:60:1C:45:9C Certificate issuer: /CN=A91939CF/serialNumber=0E6C4AB677BDE1AD44603FD737DA25C0601C459C Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmxKtne94a1EYD_XN9olwGAcRZw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft Manifest number: 94 Signing time: Tue 23 Dec 2025 05:23:08 +0000 Manifest this update: Tue 23 Dec 2025 05:23:07 +0000 Manifest next update: Tue 30 Dec 2025 05:23:07 +0000 Files and hashes: 1: DmxKtne94a1EYD_XN9olwGAcRZw.crl (hash: aPZRrJM15FxfhoHYkBd41ONRWRDJPc6XTE+qohYtBgQ=) 2: C488A080FB5911EFA827FD17C4F9AE02.roa (hash: JCV9BgemXhUBaAgBPhl6UiNH0ukdvH/wrcQapOQQK+U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.crl rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmxKtne94a1EYD_XN9olwGAcRZw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:23:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91939CF, serialNumber=0E6C4AB677BDE1AD44603FD737DA25C0601C459C Validity Not Before: Dec 23 05:23:07 2025 GMT Not After : Dec 30 05:23:07 2025 GMT Subject: CN=694a273b-82c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:63:6d:55:16:d8:ec:43:7e:4e:c8:01:aa:f9: ba:45:3f:e2:8c:a6:ef:0d:88:8a:a1:5a:24:99:9e: b3:e2:0a:e8:ec:13:15:5d:0c:5e:0f:82:d7:70:eb: d9:1b:d6:1e:38:cc:bd:2d:3d:52:3b:36:0d:25:67: fc:94:40:f4:e9:d8:71:fa:eb:1f:88:38:d4:a3:38: ae:68:c0:8f:b5:e4:d6:c3:50:8a:c9:39:3b:e9:8f: 8e:3a:3a:29:c6:e1:ea:0e:7c:df:7b:14:8b:96:3f: 01:7a:5f:81:f2:4a:21:ff:f9:5b:93:9e:e4:39:fe: 9f:47:d6:b5:6b:ed:69:f4:80:0d:bf:23:4d:38:5b: 23:f7:9e:0d:2d:64:52:7e:78:08:21:e6:75:6e:8e: f8:5b:5b:e9:7f:13:5d:30:83:a4:d9:60:2c:9a:1b: 55:72:7b:0e:a3:62:15:f3:68:e6:2b:11:91:18:e6: 9b:09:ce:e8:15:76:64:8c:77:39:0f:0d:f0:1e:11: 91:fe:48:7a:59:cb:16:e6:5b:4d:16:b2:ea:dd:c9: 9b:a2:e8:01:ea:9c:1c:dd:80:82:4e:71:5e:24:dd: 4c:8d:dc:c0:78:6f:c7:b4:fd:e6:6a:cb:19:f3:0e: e7:2e:d2:69:b4:95:3f:99:32:15:01:6b:a2:d9:52: a6:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:F8:C2:52:5B:B3:52:DC:CA:E6:AE:86:E9:7B:2A:76:D8:F2:45:C9 X509v3 Authority Key Identifier: keyid:0E:6C:4A:B6:77:BD:E1:AD:44:60:3F:D7:37:DA:25:C0:60:1C:45:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmxKtne94a1EYD_XN9olwGAcRZw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:2d:88:6e:5c:98:6a:53:19:23:6b:5d:f6:72:9e:10:19:c9: cf:46:58:4f:71:06:04:f5:da:ae:28:ef:3e:0d:20:d2:15:aa: 5a:f5:ed:8d:35:74:4e:f8:0d:40:66:7e:26:00:9e:7c:3a:50: 73:8a:b6:ea:83:e6:1f:b9:8d:0d:4c:4c:de:b9:fc:93:4a:4e: 51:72:91:c4:59:14:03:38:0e:88:db:f8:be:fd:5f:d2:44:da: ce:64:6e:63:91:2f:76:52:31:ae:1a:5e:4a:9c:6c:c7:4c:39: 64:22:4c:86:09:02:2b:7e:de:3f:77:41:91:8d:83:43:d8:d5: 23:66:24:d9:36:4b:9a:29:86:d0:34:38:80:70:28:ec:89:5d: 73:58:ae:dc:b5:ac:8b:f4:61:42:8b:04:7c:04:9d:10:e0:93: f2:7f:34:db:d9:d8:72:b7:61:47:8b:31:66:29:af:6d:d6:43: a3:df:e0:7c:dd:72:44:c6:61:b1:72:02:b0:48:60:00:07:56: 76:7e:e0:45:9f:85:5d:39:c3:0d:b9:6e:0b:d8:f3:a4:3f:27: 9a:22:63:8c:ef:55:9c:14:b0:4d:bb:7d:d3:28:aa:c7:8d:2d: 9b:22:0d:14:55:c9:3b:e8:04:71:e2:74:bc:0a:00:65:58:cc: 0c:cf:fc:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM5Q0YxMTAvBgNVBAUTKDBFNkM0QUI2NzdCREUxQUQ0NDYwM0ZENzM3REEyNUMw NjAxQzQ1OUMwHhcNMjUxMjIzMDUyMzA3WhcNMjUxMjMwMDUyMzA3WjAYMRYwFAYD VQQDDA02OTRhMjczYi04MmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArGNtVRbY7EN+TsgBqvm6RT/ijKbvDYiKoVokmZ6z4gro7BMVXQxeD4LXcOvZ G9YeOMy9LT1SOzYNJWf8lED06dhx+usfiDjUoziuaMCPteTWw1CKyTk76Y+OOjop xuHqDnzfexSLlj8Bel+B8koh//lbk57kOf6fR9a1a+1p9IANvyNNOFsj954NLWRS fngIIeZ1bo74W1vpfxNdMIOk2WAsmhtVcnsOo2IV82jmKxGRGOabCc7oFXZkjHc5 Dw3wHhGR/kh6WcsW5ltNFrLq3cmbougB6pwc3YCCTnFeJN1MjdzAeG/HtP3massZ 8w7nLtJptJU/mTIVAWui2VKmMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB74wlJb s1Lcyuauhul7KnbY8kXJMB8GA1UdIwQYMBaAFA5sSrZ3veGtRGA/1zfaJcBgHEWc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzlDRi81NkYzMUZCNEZC NTkxMUVGODY1MDI3MTdDNEY5QUUwMi9EbXhLdG5lOTRhMUVZRF9YTjlvbHdHQWNS WncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RteEt0bmU5NGExRVlEX1hOOW9sd0dBY1Jady5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzlDRi81NkYzMUZCNEZCNTkxMUVGODY1MDI3MTdDNEY5QUUwMi9EbXhLdG5lOTRh MUVZRF9YTjlvbHdHQWNSWncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6LYhuXJhqUxkja132cp4QGcnPRlhPcQYE9dquKO8+DSDSFapa9e2N NXRO+A1AZn4mAJ58OlBzirbqg+YfuY0NTEzeufyTSk5RcpHEWRQDOA6I2/i+/V/S RNrOZG5jkS92UjGuGl5KnGzHTDlkIkyGCQIrft4/d0GRjYND2NUjZiTZNkuaKYbQ NDiAcCjsiV1zWK7ctayL9GFCiwR8BJ0Q4JPyfzTb2dhyt2FHizFmKa9t1kOj3+B8 3XJExmGxcgKwSGAAB1Z2fuBFn4VdOcMNuW4L2POkPyeaImOM71WcFLBNu33TKKrH jS2bIg0UVck76ARx4nS8CgBlWMwMz/wx -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:29 2025 by rpki-client