This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft File: DO-JBd1l6R5Qazs5nCCiIork_T8.mft (raw, json) Hash identifier: QlyTJtBJLhwvHZU08jn1/JnSHq3UghQCQHAquZ5Ko40= Subject key identifier: CC:E3:06:0E:7D:45:7F:6A:D2:03:F5:85:4C:2B:8C:29:F2:D8:B2:4C Authority key identifier: 0C:EF:89:05:DD:65:E9:1E:50:6B:3B:39:9C:20:A2:22:8A:E4:FD:3F Certificate issuer: /CN=A91DB421/serialNumber=0CEF8905DD65E91E506B3B399C20A2228AE4FD3F Certificate serial: 0993 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft Manifest number: 098D Signing time: Mon 22 Dec 2025 19:26:22 +0000 Manifest this update: Mon 22 Dec 2025 19:26:22 +0000 Manifest next update: Mon 29 Dec 2025 19:26:22 +0000 Files and hashes: 1: DO-JBd1l6R5Qazs5nCCiIork_T8.crl (hash: J4Oy2uKZjfEawMS0hLIAAtBwEX2pa60VtrBC9tqMQH8=) 2: A9511B7AA0B511EA94365A38C4F9AE02.roa (hash: 8rvezRlfEmng/UgYNLuDBBrL/AQ4sVZHRDguwah88WU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.crl rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:26:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2451 (0x993) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB421, serialNumber=0CEF8905DD65E91E506B3B399C20A2228AE4FD3F Validity Not Before: Dec 22 19:26:22 2025 GMT Not After : Dec 29 19:26:22 2025 GMT Subject: CN=69499b5e-8a89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:18:10:fd:c6:1f:1a:42:33:b1:e0:92:41:4c: 8a:43:c7:d1:a2:d5:83:fc:ed:75:2f:db:37:c7:20: 5f:d3:7c:bb:8f:92:c1:8f:86:f8:d8:90:4b:6f:1b: 60:43:6d:8a:1b:f1:89:d1:5e:ef:80:e1:61:8b:c2: c9:3e:6d:a2:93:10:d2:e0:36:78:97:fd:95:6d:2a: 02:fd:5c:a7:6e:65:41:df:64:46:ed:63:27:c1:b6: 6c:65:d7:86:5a:19:b0:bd:d2:96:a0:3a:95:e0:04: 57:dd:6c:51:a5:83:fd:1e:b2:39:e8:ad:73:84:7f: 98:0a:0e:ff:5f:9b:ef:92:1c:83:5b:63:d1:97:3b: d6:08:43:11:73:a1:73:7f:ac:ba:ca:05:48:fb:59: 82:48:3d:f0:f3:a4:61:23:fe:8f:3e:98:69:ff:4b: 71:ff:97:90:ce:d6:b8:91:cb:c6:25:ed:2b:89:80: 43:2e:98:01:ed:8c:f2:a1:24:9b:1e:87:94:af:49: ad:9b:f7:46:64:67:30:17:31:b3:85:97:ef:99:e3: f5:78:6e:f8:64:d7:33:bf:5b:8e:b2:d8:de:72:2a: ef:31:5a:5f:8d:1e:a1:b5:21:3e:7b:95:c6:7f:e4: aa:bc:b4:79:93:3b:0f:6c:2e:77:e6:e1:9c:08:a0: 48:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:E3:06:0E:7D:45:7F:6A:D2:03:F5:85:4C:2B:8C:29:F2:D8:B2:4C X509v3 Authority Key Identifier: keyid:0C:EF:89:05:DD:65:E9:1E:50:6B:3B:39:9C:20:A2:22:8A:E4:FD:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:f3:14:89:55:1c:c6:14:9a:32:5b:9b:93:83:7f:9e:37:4e: ed:6f:c3:35:7b:30:df:ae:ea:18:1c:2c:b7:02:fb:39:78:8c: 2a:03:e2:ac:c1:49:e6:52:fe:7a:94:49:97:27:94:96:0f:78: bb:f8:a9:9a:3b:f9:25:8a:80:84:15:2e:1f:c2:01:e7:4e:0c: a3:46:e3:ee:74:d0:f7:b3:80:3a:4d:2d:92:de:03:76:ed:fb: 8c:8d:67:46:2b:fa:54:48:87:2c:a6:a2:93:93:18:25:08:bf: 02:c3:a3:cb:dc:90:7f:2b:57:f1:03:03:fb:1f:07:29:d1:5a: b3:3a:7e:d5:ab:30:1d:23:08:a9:1f:fb:6e:7c:c4:7c:ba:af: 85:a1:25:88:34:9f:7d:3c:3b:2d:e3:4d:1e:cc:29:25:e2:7d: d1:f8:76:fa:78:b7:d0:d8:62:4e:d0:96:0b:9b:11:87:a7:b6: 1d:dc:6c:b3:0d:75:ca:8e:5d:df:c6:27:af:6b:29:76:97:3a: 34:d6:4f:31:47:01:cd:75:e4:97:b7:04:84:b4:38:62:1b:b7: 70:be:24:5d:15:d7:ee:5b:d4:64:f8:14:de:74:c1:ca:75:99: 6e:89:9d:e0:df:c9:bb:5d:84:ba:8e:95:15:f4:40:1d:c7:a1: 62:f6:5d:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0MjExMTAvBgNVBAUTKDBDRUY4OTA1REQ2NUU5MUU1MDZCM0IzOTlDMjBBMjIy OEFFNEZEM0YwHhcNMjUxMjIyMTkyNjIyWhcNMjUxMjI5MTkyNjIyWjAYMRYwFAYD VQQDDA02OTQ5OWI1ZS04YTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoxgQ/cYfGkIzseCSQUyKQ8fRotWD/O11L9s3xyBf03y7j5LBj4b42JBLbxtg Q22KG/GJ0V7vgOFhi8LJPm2ikxDS4DZ4l/2VbSoC/VynbmVB32RG7WMnwbZsZdeG WhmwvdKWoDqV4ARX3WxRpYP9HrI56K1zhH+YCg7/X5vvkhyDW2PRlzvWCEMRc6Fz f6y6ygVI+1mCSD3w86RhI/6PPphp/0tx/5eQzta4kcvGJe0riYBDLpgB7YzyoSSb HoeUr0mtm/dGZGcwFzGzhZfvmeP1eG74ZNczv1uOstjecirvMVpfjR6htSE+e5XG f+SqvLR5kzsPbC535uGcCKBI7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMzjBg59 RX9q0gP1hUwrjCny2LJMMB8GA1UdIwQYMBaAFAzviQXdZekeUGs7OZwgoiKK5P0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjQyMS8xMTk4MDYwQUEw QjQxMUVBOTc3MTlFMzVDNEY5QUUwMi9ETy1KQmQxbDZSNVFhenM1bkNDaUlvcmtf VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPLUpCZDFsNlI1UWF6czVuQ0NpSW9ya19UOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjQyMS8xMTk4MDYwQUEwQjQxMUVBOTc3MTlFMzVDNEY5QUUwMi9ETy1KQmQxbDZS NVFhenM1bkNDaUlvcmtfVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDM8xSJVRzGFJoyW5uTg3+eN07tb8M1ezDfruoYHCy3Avs5eIwqA+Ks wUnmUv56lEmXJ5SWD3i7+KmaO/klioCEFS4fwgHnTgyjRuPudND3s4A6TS2S3gN2 7fuMjWdGK/pUSIcspqKTkxglCL8Cw6PL3JB/K1fxAwP7Hwcp0VqzOn7VqzAdIwip H/tufMR8uq+FoSWINJ99PDst400ezCkl4n3R+Hb6eLfQ2GJO0JYLmxGHp7Yd3Gyz DXXKjl3fxievayl2lzo01k8xRwHNdeSXtwSEtDhiG7dwviRdFdfuW9Rk+BTedMHK dZluiZ3g38m7XYS6jpUV9EAdx6Fi9l1f -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:46 2025 by rpki-client