This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft File: du8ZOVeobWTTw83rngdGdG70KQo.mft (raw, json) Hash identifier: IJPpXktYBpAYDLuSNOmKI23T2FF/F5K95XIH73h1E7U= Subject key identifier: 8B:6D:C6:84:F8:2F:DF:49:69:15:0F:47:DE:90:51:BF:DA:1E:C0:EB Authority key identifier: 76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A Certificate issuer: /CN=A91C40D6/serialNumber=76EF193957A86D64D3C3CDEB9E0746746EF4290A Certificate serial: 015E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft Manifest number: 015A Signing time: Tue 02 Dec 2025 19:31:25 +0000 Manifest this update: Tue 02 Dec 2025 19:31:24 +0000 Manifest next update: Tue 09 Dec 2025 19:31:24 +0000 Files and hashes: 1: du8ZOVeobWTTw83rngdGdG70KQo.crl (hash: 8uBoSEmNSbIW6GNpZN5xQCI7KI1MAV35RLMuOF2ejko=) 2: DF4EFA76CA7811EE838E0A73C4F9AE02.roa (hash: meGg1NN20MfvaZAVYfetTEGVIcZuhqOuDHstRQMemWU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.crl rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 19:31:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 350 (0x15e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D6, serialNumber=76EF193957A86D64D3C3CDEB9E0746746EF4290A Validity Not Before: Dec 2 19:31:24 2025 GMT Not After : Dec 9 19:31:24 2025 GMT Subject: CN=692f3e8d-138a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:3f:4e:b6:5a:e5:58:97:af:7a:b7:13:06:28: 94:3d:4d:a7:3e:46:53:c2:2c:c0:28:0c:13:23:5c: 3b:ee:fd:83:ae:98:a5:d0:0d:5d:cc:2c:65:7f:44: 81:d2:35:35:c8:07:71:ba:f5:84:dd:9d:8a:51:05: f4:4e:22:2b:89:ee:19:3c:7b:52:17:c0:8e:63:5e: f9:ee:4e:84:20:7b:81:d1:d7:55:1c:a0:f7:b2:64: 2b:f3:5b:89:6e:16:94:f4:86:d5:f9:bc:76:7f:b2: b8:a2:df:6b:cd:25:6d:32:26:b1:97:35:b7:33:3e: 0a:f7:c0:b1:7a:2a:75:e0:1c:cc:a2:ab:37:d9:da: 46:26:d7:d8:98:58:72:2b:7f:77:10:7a:94:96:53: 4a:b7:d6:2e:9d:b5:a0:df:9c:44:1a:44:bb:7e:b5: be:12:68:64:6d:ca:72:cb:68:6f:4f:fb:64:d4:25: 78:d4:0e:f2:57:26:e2:41:c4:32:55:f6:49:d9:4e: 7d:4d:9f:3e:db:b1:37:81:49:91:89:a2:3b:be:b9: 33:1e:5c:4d:4b:3e:ed:9d:a7:45:40:31:6e:2b:db: a8:c3:11:a3:fb:0d:af:b8:f6:bd:89:43:f0:f0:4d: 55:b9:16:30:00:38:95:94:57:21:28:9b:79:27:f1: cc:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:6D:C6:84:F8:2F:DF:49:69:15:0F:47:DE:90:51:BF:DA:1E:C0:EB X509v3 Authority Key Identifier: keyid:76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:8c:5d:3a:5c:45:99:74:b1:f1:cf:70:69:f0:c1:7b:d7:fe: 93:81:fd:14:df:72:d1:85:b0:3d:cf:31:f2:93:6e:d5:2f:91: de:a2:eb:9a:46:e5:1d:7d:21:b4:56:f0:c9:de:15:71:8d:4b: e3:c8:ad:28:6f:ea:1c:96:4b:e7:7d:58:91:64:9a:ea:b7:a0: de:84:71:d9:e4:4c:fe:23:09:86:ba:c6:c5:5e:5c:86:48:c2: 00:5a:4a:36:cf:ca:e1:42:b6:01:d7:63:a2:75:f7:f5:28:40: 3b:55:7b:8e:2c:49:d2:0b:73:5d:2b:6d:15:24:54:1c:ba:72: 4a:27:83:a0:67:91:6d:5e:72:c5:88:df:53:f0:e0:c7:3b:dc: 1d:d3:c7:a4:81:e7:62:32:86:42:12:81:de:a0:40:88:64:8f: 3b:41:ef:2d:27:30:37:5c:ac:01:d4:a4:7c:89:14:9d:de:76: 41:2b:19:32:10:fd:c5:ad:0c:5d:75:e5:10:f1:18:55:6f:7f: 6e:4b:41:15:05:d5:94:e8:4e:17:ba:8d:e4:0e:85:dd:b2:2b: 57:e3:32:46:e4:17:cf:bb:51:9f:5e:f0:2d:e5:f8:f1:0a:0c: 23:c7:cf:3e:b8:58:7e:fc:82:58:28:e1:2c:e8:f6:01:3d:ff: 31:15:87:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDYxMTAvBgNVBAUTKDc2RUYxOTM5NTdBODZENjREM0MzQ0RFQjlFMDc0Njc0 NkVGNDI5MEEwHhcNMjUxMjAyMTkzMTI0WhcNMjUxMjA5MTkzMTI0WjAYMRYwFAYD VQQDEw02OTJmM2U4ZC0xMzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1D9OtlrlWJevercTBiiUPU2nPkZTwizAKAwTI1w77v2Drpil0A1dzCxlf0SB 0jU1yAdxuvWE3Z2KUQX0TiIrie4ZPHtSF8COY1757k6EIHuB0ddVHKD3smQr81uJ bhaU9IbV+bx2f7K4ot9rzSVtMiaxlzW3Mz4K98Cxeip14BzMoqs32dpGJtfYmFhy K393EHqUllNKt9YunbWg35xEGkS7frW+Emhkbcpyy2hvT/tk1CV41A7yVybiQcQy VfZJ2U59TZ8+27E3gUmRiaI7vrkzHlxNSz7tnadFQDFuK9uowxGj+w2vuPa9iUPw 8E1VuRYwADiVlFchKJt5J/HMXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIttxoT4 L99JaRUPR96QUb/aHsDrMB8GA1UdIwQYMBaAFHbvGTlXqG1k08PN654HRnRu9CkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBENi8wNUY4NjAxNEM1 MzcxMUVFQjY3QUVCNzlDNEY5QUUwMi9kdThaT1Zlb2JXVFR3ODNybmdkR2RHNzBL UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2R1OFpPVmVvYldUVHc4M3JuZ2RHZEc3MEtRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDBENi8wNUY4NjAxNEM1MzcxMUVFQjY3QUVCNzlDNEY5QUUwMi9kdThaT1Zlb2JX VFR3ODNybmdkR2RHNzBLUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFjF06XEWZdLHxz3Bp8MF71/6Tgf0U33LRhbA9zzHyk27VL5Heouua RuUdfSG0VvDJ3hVxjUvjyK0ob+oclkvnfViRZJrqt6DehHHZ5Ez+IwmGusbFXlyG SMIAWko2z8rhQrYB12Oidff1KEA7VXuOLEnSC3NdK20VJFQcunJKJ4OgZ5FtXnLF iN9T8ODHO9wd08ekgediMoZCEoHeoECIZI87Qe8tJzA3XKwB1KR8iRSd3nZBKxky EP3FrQxddeUQ8RhVb39uS0EVBdWU6E4Xuo3kDoXdsitX4zJG5BfPu1GfXvAt5fjx Cgwjx88+uFh+/IJYKOEs6PYBPf8xFYda -----END CERTIFICATE-----Generated at Wed Dec 3 16:51:37 2025 by rpki-client