This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft File: D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft (raw, json) Hash identifier: T6ZijsM0l1ehGpNagdzkeFBsGUk20aD2og5PesN6LfQ= Subject key identifier: 97:30:26:5C:0D:3C:E0:32:89:96:99:B2:A0:4F:37:B5:66:8E:47:9F Authority key identifier: 0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 Certificate issuer: /CN=A91A7C68/serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Certificate serial: 023C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft Manifest number: 022F Signing time: Tue 23 Dec 2025 01:08:53 +0000 Manifest this update: Tue 23 Dec 2025 01:08:52 +0000 Manifest next update: Tue 30 Dec 2025 01:08:52 +0000 Files and hashes: 1: D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl (hash: nLzLotbSMhYOK6IZ35ZMYlgnvgxgtFoq/hFLVpAZc0g=) 2: BC72661A972911ED8CBCA476C4F9AE02.roa (hash: 50hi2vNUebBRUz8ceA03XMTbcW3zeli1X+BmJSriA30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:08:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 572 (0x23c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C68, serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Validity Not Before: Dec 23 01:08:52 2025 GMT Not After : Dec 30 01:08:52 2025 GMT Subject: CN=6949eba5-10be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ee:bc:a8:50:3c:4c:cb:4b:82:86:cc:d5:44: 4c:45:0f:5b:0d:f2:8f:c7:e9:0d:52:be:3e:97:d7: e9:19:50:89:c9:18:0b:93:7b:c9:55:7a:a9:8f:26: bb:be:ee:aa:a1:68:32:08:54:46:7f:98:ba:43:0c: ca:cf:d7:78:fc:bd:6c:75:14:cf:8b:4b:c7:2d:63: 72:3e:99:31:6e:ce:03:e5:51:67:68:f8:04:b8:2f: d7:cb:b0:1e:eb:3f:47:28:2a:7e:60:52:38:68:fe: 74:b7:e7:07:b9:f4:63:fa:d0:40:0c:5e:03:8f:4e: 2e:3a:fd:e7:fc:4e:d8:00:b0:db:4f:1d:6c:c7:e3: 5e:db:8b:6a:60:3e:5d:b4:e5:0c:b0:42:36:df:7b: 83:4a:ab:25:e6:4d:8f:98:e6:cc:9f:f1:80:5f:7a: 68:66:b5:e4:05:2d:86:4e:9f:6a:b4:7f:46:fa:0a: 7a:e8:32:78:d2:6c:06:86:09:a9:d9:00:64:89:90: 81:f4:85:90:c6:fd:b4:86:30:bd:87:50:e3:87:30: b0:f9:ed:5c:e9:d4:83:c5:8e:4a:c0:1d:d5:9f:b4: 13:74:21:38:85:3d:a0:a2:9e:80:b0:85:a7:61:c0: d8:7e:11:80:c2:ca:44:3e:f4:74:8a:92:45:96:1d: a1:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:30:26:5C:0D:3C:E0:32:89:96:99:B2:A0:4F:37:B5:66:8E:47:9F X509v3 Authority Key Identifier: keyid:0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:b7:b1:57:73:e6:f9:3d:89:49:14:c5:f9:da:e6:a5:e4:13: 12:3d:35:fa:38:1e:f4:36:03:cd:22:00:9a:52:34:9c:be:64: 22:94:e9:1a:d1:98:39:83:91:35:2c:fe:e4:63:04:6e:37:37: c8:1b:43:77:30:81:bc:be:b7:72:46:28:81:e9:7e:50:bb:24: 78:1a:92:27:23:4f:69:5d:ea:60:79:10:d8:e0:2a:df:82:09: ee:64:cc:bd:16:e4:5b:3e:e1:4a:8b:2b:0a:3c:40:12:8a:40: bb:df:02:ad:45:cf:04:9c:b4:2a:75:fb:10:25:1c:b1:fe:ec: b1:c0:96:b8:55:08:80:21:7f:43:d9:f1:9f:c6:3b:a8:73:4c: 57:12:72:04:e2:38:47:b6:0a:ff:7c:fb:d9:e3:dc:f1:00:66: 01:59:87:90:25:52:50:23:0b:b3:89:8d:79:ba:e8:23:b3:e7: ef:36:e7:57:75:a9:b2:bf:43:d3:e4:e8:49:b6:ee:64:74:7c: c9:8f:46:02:88:55:fc:17:38:37:ff:9b:97:fd:c6:94:59:b9: bc:aa:e8:84:bd:0e:8a:c3:26:81:c5:d1:bc:77:d5:0a:c9:10: 11:01:8e:de:0c:de:69:8d:f7:9f:d8:1a:cd:d2:67:d1:82:9f: 78:99:2d:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNjgxMTAvBgNVBAUTKDBGNjI2QTMyNjRENkZFQ0NDQkZFQjJEOTlCMURCRjhB RkZFQzNCMzQwHhcNMjUxMjIzMDEwODUyWhcNMjUxMjMwMDEwODUyWjAYMRYwFAYD VQQDDA02OTQ5ZWJhNS0xMGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAue68qFA8TMtLgobM1URMRQ9bDfKPx+kNUr4+l9fpGVCJyRgLk3vJVXqpjya7 vu6qoWgyCFRGf5i6QwzKz9d4/L1sdRTPi0vHLWNyPpkxbs4D5VFnaPgEuC/Xy7Ae 6z9HKCp+YFI4aP50t+cHufRj+tBADF4Dj04uOv3n/E7YALDbTx1sx+Ne24tqYD5d tOUMsEI233uDSqsl5k2PmObMn/GAX3poZrXkBS2GTp9qtH9G+gp66DJ40mwGhgmp 2QBkiZCB9IWQxv20hjC9h1DjhzCw+e1c6dSDxY5KwB3Vn7QTdCE4hT2gop6AsIWn YcDYfhGAwspEPvR0ipJFlh2hAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJcwJlwN POAyiZaZsqBPN7VmjkefMB8GA1UdIwQYMBaAFA9iajJk1v7My/6y2Zsdv4r/7Ds0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M2OC80MjM5ODZGNjk3 MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19zekxfckxabXgyX2l2X3NP elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QySnFNbVRXX3N6TF9yTFpteDJfaXZfc096US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M2OC80MjM5ODZGNjk3MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19z ekxfckxabXgyX2l2X3NPelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYt7FXc+b5PYlJFMX52ual5BMSPTX6OB70NgPNIgCaUjScvmQilOka 0Zg5g5E1LP7kYwRuNzfIG0N3MIG8vrdyRiiB6X5QuyR4GpInI09pXepgeRDY4Crf ggnuZMy9FuRbPuFKiysKPEASikC73wKtRc8EnLQqdfsQJRyx/uyxwJa4VQiAIX9D 2fGfxjuoc0xXEnIE4jhHtgr/fPvZ49zxAGYBWYeQJVJQIwuziY15uugjs+fvNudX damyv0PT5OhJtu5kdHzJj0YCiFX8Fzg3/5uX/caUWbm8quiEvQ6KwyaBxdG8d9UK yRARAY7eDN5pjfef2BrN0mfRgp94mS1h -----END CERTIFICATE-----Generated at Tue Dec 23 06:07:24 2025 by rpki-client