This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft File: DfoUcOPJ6yHxewN7BM9O1UJO88k.mft (raw, json) Hash identifier: XzT7lkmAUeLth7TiQtQ7uf9wZSY3FZupa7nzZ7467/c= Subject key identifier: 4C:11:6F:9B:EB:A4:9E:8C:93:B6:F7:D8:76:F9:40:AE:22:85:7A:F2 Authority key identifier: 0D:FA:14:70:E3:C9:EB:21:F1:7B:03:7B:04:CF:4E:D5:42:4E:F3:C9 Certificate issuer: /CN=A91B588F/serialNumber=0DFA1470E3C9EB21F17B037B04CF4ED5424EF3C9 Certificate serial: 1D96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft Manifest number: 1D87 Signing time: Mon 22 Dec 2025 15:55:16 +0000 Manifest this update: Mon 22 Dec 2025 15:55:16 +0000 Manifest next update: Mon 29 Dec 2025 15:55:16 +0000 Files and hashes: 1: DfoUcOPJ6yHxewN7BM9O1UJO88k.crl (hash: BXKhfkXAOGJCa4wFydjkarbbfNHNLoaTrrM5+/kG++k=) 2: 09DBF798B76311E6AF11523EC4F9AE02.roa (hash: KJtFM/La7mL3fu5dlcMqDcraRcAtERap2FuVwdqAgkc=) 3: 234A77E28D2111ECB33BB01AC4F9AE02.roa (hash: k8TIUAQe/uhiGTZr6cgQAthXD90vdh6WA7DCNugyFL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.crl rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:55:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7574 (0x1d96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B588F, serialNumber=0DFA1470E3C9EB21F17B037B04CF4ED5424EF3C9 Validity Not Before: Dec 22 15:55:16 2025 GMT Not After : Dec 29 15:55:16 2025 GMT Subject: CN=694969e4-b75f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ce:bd:81:28:f7:a9:fc:a7:36:1b:92:43:01: 95:8b:4a:8f:90:88:0f:c4:0c:ba:98:f7:d7:86:a3: 7d:be:14:3b:4c:a0:c6:b5:1c:ba:3e:7e:c4:d7:cd: 4c:1c:a3:07:c4:03:38:4a:c8:9d:76:57:24:43:90: 48:b1:f3:f0:5c:04:28:d1:7c:47:0c:f4:9f:b5:83: 2e:0e:77:6b:3a:09:dd:9a:3d:0d:61:b6:19:c7:31: f0:e2:32:4f:06:c7:10:ca:3b:8e:5f:f7:ef:55:f3: 81:d4:a8:b2:36:76:e9:51:36:52:e2:2e:e2:4c:c2: 30:e9:d8:c1:ea:c7:62:b6:35:31:9c:0f:90:4d:d4: e8:06:67:49:44:e6:0b:a8:6d:0e:0a:8f:d6:a4:5f: a2:a1:a2:10:0a:24:4d:b1:c2:82:0b:7b:28:ab:ff: c4:36:38:a9:60:1d:ce:4c:87:2b:00:e5:e9:f1:96: 22:1d:ba:43:41:7a:8d:48:6e:e2:2e:e4:a8:19:93: 79:7f:0a:ea:ca:f9:fa:4c:2c:06:72:e7:02:63:a5: 19:c4:90:b5:d9:16:26:e0:a5:de:8a:83:43:3e:91: 93:46:53:31:c8:b1:b2:f3:86:bc:1e:67:f3:2a:85: 68:7b:07:f8:a1:5b:60:1e:6d:54:b0:59:85:fc:cc: e8:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:11:6F:9B:EB:A4:9E:8C:93:B6:F7:D8:76:F9:40:AE:22:85:7A:F2 X509v3 Authority Key Identifier: keyid:0D:FA:14:70:E3:C9:EB:21:F1:7B:03:7B:04:CF:4E:D5:42:4E:F3:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:62:67:cf:70:29:cc:e5:f1:f6:d6:ca:ee:d0:37:00:ee:a7: 39:fa:b9:50:20:45:e0:33:e0:3b:77:59:d7:e4:8a:89:0f:80: cf:60:d6:de:2c:1b:36:46:f9:10:59:7e:ed:a5:99:31:d5:76: 2b:16:6f:96:92:bf:76:93:1f:38:95:30:05:f5:47:0c:21:be: 8f:16:0c:34:f1:0d:e2:3f:79:81:ff:32:81:72:3f:99:bb:1f: a9:a1:7b:01:68:fa:9b:f9:81:1e:e6:af:3c:9a:6e:5f:d9:3c: 06:9d:f6:69:45:c4:df:16:91:9b:4c:20:1f:46:7f:11:99:0b: e1:b4:f5:9e:5f:7b:65:b5:22:7a:90:bd:45:0a:6f:ed:50:f1: 59:ab:2d:42:d2:61:75:5e:05:6d:6a:1f:30:79:c8:83:dd:25: c9:74:ff:82:ce:a9:e0:f2:e8:ca:33:32:28:cf:fe:1b:81:d4: de:e1:ab:61:cd:f4:e6:d4:65:68:45:a2:78:05:31:6b:04:cd: 50:85:45:9d:d6:43:2c:d2:1b:bb:70:d1:c5:3a:97:6f:12:e6: 2e:e6:54:e8:f2:49:9e:90:c9:47:66:2f:83:50:f6:c1:32:8d: c6:97:3b:e9:c9:8f:e4:dc:9c:62:f0:2f:41:a3:57:a7:dd:cc: 9d:0c:90:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU4OEYxMTAvBgNVBAUTKDBERkExNDcwRTNDOUVCMjFGMTdCMDM3QjA0Q0Y0RUQ1 NDI0RUYzQzkwHhcNMjUxMjIyMTU1NTE2WhcNMjUxMjI5MTU1NTE2WjAYMRYwFAYD VQQDDA02OTQ5NjllNC1iNzVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAus69gSj3qfynNhuSQwGVi0qPkIgPxAy6mPfXhqN9vhQ7TKDGtRy6Pn7E181M HKMHxAM4SsiddlckQ5BIsfPwXAQo0XxHDPSftYMuDndrOgndmj0NYbYZxzHw4jJP BscQyjuOX/fvVfOB1KiyNnbpUTZS4i7iTMIw6djB6sditjUxnA+QTdToBmdJROYL qG0OCo/WpF+ioaIQCiRNscKCC3soq//ENjipYB3OTIcrAOXp8ZYiHbpDQXqNSG7i LuSoGZN5fwrqyvn6TCwGcucCY6UZxJC12RYm4KXeioNDPpGTRlMxyLGy84a8Hmfz KoVoewf4oVtgHm1UsFmF/Mzo5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEwRb5vr pJ6Mk7b32Hb5QK4ihXryMB8GA1UdIwQYMBaAFA36FHDjyesh8XsDewTPTtVCTvPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTg4Ri83ODREOTRCOEI3 NjExMUU2QjExNzVBM0NDNEY5QUUwMi9EZm9VY09QSjZ5SHhld043Qk05TzFVSk84 OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Rmb1VjT1BKNnlIeGV3TjdCTTlPMVVKTzg4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTg4Ri83ODREOTRCOEI3NjExMUU2QjExNzVBM0NDNEY5QUUwMi9EZm9VY09QSjZ5 SHhld043Qk05TzFVSk84OGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATYmfPcCnM5fH21sru0DcA7qc5+rlQIEXgM+A7d1nX5IqJD4DPYNbe LBs2RvkQWX7tpZkx1XYrFm+Wkr92kx84lTAF9UcMIb6PFgw08Q3iP3mB/zKBcj+Z ux+poXsBaPqb+YEe5q88mm5f2TwGnfZpRcTfFpGbTCAfRn8RmQvhtPWeX3tltSJ6 kL1FCm/tUPFZqy1C0mF1XgVtah8weciD3SXJdP+Czqng8ujKMzIoz/4bgdTe4ath zfTm1GVoRaJ4BTFrBM1QhUWd1kMs0hu7cNHFOpdvEuYu5lTo8kmekMlHZi+DUPbB Mo3GlzvpyY/k3Jxi8C9Bo1en3cydDJCQ -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:09 2025 by rpki-client