This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.mft File: DwvO4VrbbVfQLNBLRSI6uAZqVF0.mft (raw, json) Hash identifier: X0UWpLt2+nmu6gyVP66i5dq3v6/KI+ClzV5VSTK1G6g= Subject key identifier: A6:42:6B:0D:56:B6:F6:4B:05:2F:CA:D4:72:F8:D9:AE:0F:DD:5B:92 Authority key identifier: 0F:0B:CE:E1:5A:DB:6D:57:D0:2C:D0:4B:45:22:3A:B8:06:6A:54:5D Certificate issuer: /CN=A91E8161/serialNumber=0F0BCEE15ADB6D57D02CD04B45223AB8066A545D Certificate serial: 172F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DwvO4VrbbVfQLNBLRSI6uAZqVF0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.mft Manifest number: 171E Signing time: Thu 18 Dec 2025 17:14:22 +0000 Manifest this update: Thu 18 Dec 2025 17:14:21 +0000 Manifest next update: Thu 25 Dec 2025 17:14:21 +0000 Files and hashes: 1: DwvO4VrbbVfQLNBLRSI6uAZqVF0.crl (hash: mecsy0A2iOwT66z+QAMyYmZR+x+bX8GcM2m4W2vNHak=) 2: C109FFF4FC0511E7BAFB3E48C4F9AE02.roa (hash: UklyO+zUtTPQ+1U54UPe5WnHbws0xqnE6hJtphNdrmo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.crl rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DwvO4VrbbVfQLNBLRSI6uAZqVF0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:14:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5935 (0x172f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8161, serialNumber=0F0BCEE15ADB6D57D02CD04B45223AB8066A545D Validity Not Before: Dec 18 17:14:21 2025 GMT Not After : Dec 25 17:14:21 2025 GMT Subject: CN=6944366d-9ba9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7c:66:4e:ce:f0:60:58:c6:70:16:51:01:e4: b2:50:1c:d2:d6:e0:44:e5:6b:d0:74:48:9a:da:6e: ed:66:f7:f2:e5:b7:af:98:55:4d:12:ed:6d:9e:06: dc:6e:1e:45:0d:80:19:f6:57:e1:8a:29:31:f7:33: 27:ba:c9:6f:83:e6:50:a4:93:4f:05:6b:93:42:8a: 6a:f3:7e:30:8d:c7:44:10:03:9e:2f:7d:df:86:69: 78:06:00:cd:39:8f:ed:5c:bb:a3:2d:05:2e:ec:c6: b3:51:65:72:57:13:7a:b2:54:d1:0d:da:34:75:c6: 11:69:9d:92:e7:1a:d3:65:41:07:c8:02:1a:f6:af: 4a:2f:67:e9:dd:25:ae:c9:f1:2d:a0:1e:4c:71:f6: 8f:5d:94:a9:37:78:6c:ff:23:8a:e6:7d:49:d4:c2: ad:7c:f9:58:25:0b:17:cb:28:a9:d6:5f:f6:6e:e7: 96:f3:98:31:7c:2b:51:b5:b6:1b:08:53:b6:0d:ab: 94:9f:85:44:ce:7d:af:61:c2:98:11:12:e1:b3:e6: 70:7b:12:5d:93:c5:75:9f:32:1a:e1:55:e5:46:84: c1:1e:f0:b4:41:ee:94:f8:b5:55:12:92:5b:a7:ac: 29:5a:22:f6:ca:a2:dc:ce:43:bd:bc:8e:62:19:2e: 2b:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:42:6B:0D:56:B6:F6:4B:05:2F:CA:D4:72:F8:D9:AE:0F:DD:5B:92 X509v3 Authority Key Identifier: keyid:0F:0B:CE:E1:5A:DB:6D:57:D0:2C:D0:4B:45:22:3A:B8:06:6A:54:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DwvO4VrbbVfQLNBLRSI6uAZqVF0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:d2:c0:47:f4:70:85:bf:fe:65:b7:4a:1a:91:2a:b1:3b:13: 57:d1:94:6a:9e:c1:73:9b:1d:c7:ac:0e:07:bd:9e:10:d1:a4: a6:de:15:ac:81:61:17:41:47:88:44:81:46:f7:16:b3:84:59: 0a:99:69:74:27:23:0f:13:71:79:0a:94:ed:04:3b:3f:3e:6a: 9f:3f:5c:33:4b:62:45:06:c3:98:9b:fd:6a:32:6c:a4:b0:a7: cb:c0:04:ec:e3:9a:77:5f:df:6d:31:cb:dd:17:30:07:1c:69: e9:8a:22:e3:84:2d:ba:8f:3b:2c:2f:bb:a1:8e:d7:87:86:d5: bb:65:e2:e8:11:fd:8e:bf:92:5c:c3:a7:70:78:54:8d:45:4a: e5:e7:9e:a3:0c:8d:7a:47:d3:5f:af:74:72:71:60:04:65:a7: 07:2a:92:6d:1c:96:ad:27:75:f2:7a:57:56:df:f1:f0:89:ba: 93:0e:e5:6e:46:60:13:89:2b:95:20:0f:2c:55:7f:39:e2:0b: 7c:ad:90:6e:63:7c:c8:56:5f:d1:f4:65:1e:67:01:e2:05:ef: 61:44:93:bf:2b:b8:61:a4:2c:56:6b:f5:30:16:46:84:a9:27: 16:ee:58:4f:95:68:85:20:ab:6c:0f:11:bb:f2:bc:fe:9b:54: b3:e3:7b:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFy8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RTgxNjExMTAvBgNVBAUTKDBGMEJDRUUxNUFEQjZENTdEMDJDRDA0QjQ1MjIzQUI4 MDY2QTU0NUQwHhcNMjUxMjE4MTcxNDIxWhcNMjUxMjI1MTcxNDIxWjAYMRYwFAYD VQQDDA02OTQ0MzY2ZC05YmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHxmTs7wYFjGcBZRAeSyUBzS1uBE5WvQdEia2m7tZvfy5bevmFVNEu1tngbc bh5FDYAZ9lfhiikx9zMnuslvg+ZQpJNPBWuTQopq834wjcdEEAOeL33fhml4BgDN OY/tXLujLQUu7MazUWVyVxN6slTRDdo0dcYRaZ2S5xrTZUEHyAIa9q9KL2fp3SWu yfEtoB5McfaPXZSpN3hs/yOK5n1J1MKtfPlYJQsXyyip1l/2bueW85gxfCtRtbYb CFO2DauUn4VEzn2vYcKYERLhs+ZwexJdk8V1nzIa4VXlRoTBHvC0Qe6U+LVVEpJb p6wpWiL2yqLczkO9vI5iGS4rjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKZCaw1W tvZLBS/K1HL42a4P3VuSMB8GA1UdIwQYMBaAFA8LzuFa221X0CzQS0UiOrgGalRd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODE2MS82NzA2MTJCMEZB NjQxMUU3QTRDMjY5M0VDNEY5QUUwMi9Ed3ZPNFZyYmJWZlFMTkJMUlNJNnVBWnFW RjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0R3dk80VnJiYlZmUUxOQkxSU0k2dUFacVZGMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODE2MS82NzA2MTJCMEZBNjQxMUU3QTRDMjY5M0VDNEY5QUUwMi9Ed3ZPNFZyYmJW ZlFMTkJMUlNJNnVBWnFWRjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDU0sBH9HCFv/5lt0oakSqxOxNX0ZRqnsFzmx3HrA4HvZ4Q0aSm3hWs gWEXQUeIRIFG9xazhFkKmWl0JyMPE3F5CpTtBDs/PmqfP1wzS2JFBsOYm/1qMmyk sKfLwATs45p3X99tMcvdFzAHHGnpiiLjhC26jzssL7uhjteHhtW7ZeLoEf2Ov5Jc w6dweFSNRUrl556jDI16R9Nfr3RycWAEZacHKpJtHJatJ3XyeldW3/HwibqTDuVu RmATiSuVIA8sVX854gt8rZBuY3zIVl/R9GUeZwHiBe9hRJO/K7hhpCxWa/UwFkaE qScW7lhPlWiFIKtsDxG78rz+m1Sz43tl -----END CERTIFICATE-----Generated at Sat Dec 20 01:57:13 2025 by rpki-client