This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.mft File: dmH1l-po7_TJKXNjm7Z11_A5CXE.mft (raw, json) Hash identifier: ipsbGrl2DqozfKeBtXcw8NXGg/qWddGSYu9MxlmEOAU= Subject key identifier: 93:69:2C:65:7C:7D:BC:97:B4:53:D3:20:C3:08:D3:95:85:DE:F0:73 Authority key identifier: 76:61:F5:97:EA:68:EF:F4:C9:29:73:63:9B:B6:75:D7:F0:39:09:71 Certificate issuer: /CN=A91EA176/serialNumber=7661F597EA68EFF4C92973639BB675D7F0390971 Certificate serial: 0673 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.mft Manifest number: 0661 Signing time: Mon 22 Dec 2025 21:50:08 +0000 Manifest this update: Mon 22 Dec 2025 21:50:08 +0000 Manifest next update: Mon 29 Dec 2025 21:50:08 +0000 Files and hashes: 1: dmH1l-po7_TJKXNjm7Z11_A5CXE.crl (hash: VMnR/tdfgFsGv+6pFHLEqHmKPosn61j+UEQYrUHOMa4=) 2: 10123D12E34E11ECB9CB283EC4F9AE02.roa (hash: 79HGgLT4UvpWXoWIU4dQI1xmx9s6FLe8XfJ4mBLvcew=) 3: 6595CE9CB29011EBBBF4F548C4F9AE02.roa (hash: 6WTlAebSNT3dRwlxKbzoaSgBI3lIZqiUGPWCDMJw06Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.crl rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:50:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1651 (0x673) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA176, serialNumber=7661F597EA68EFF4C92973639BB675D7F0390971 Validity Not Before: Dec 22 21:50:08 2025 GMT Not After : Dec 29 21:50:08 2025 GMT Subject: CN=6949bd10-a545 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ea:89:eb:71:c0:b0:04:fb:41:a7:b6:50:a1: e5:8c:ec:e4:fe:b4:22:91:ac:3f:b7:d6:33:35:50: 3b:a8:ea:c7:72:74:d0:cd:26:cd:f2:36:63:08:53: 6a:7a:46:3d:30:48:15:a0:05:2d:6c:b3:85:4c:c2: 7f:18:6e:43:3e:84:5b:4a:ed:b2:1a:45:3a:ee:05: 4e:20:ef:bd:64:4b:84:5b:ad:0c:08:5d:6f:66:e6: e1:fd:ff:56:8c:42:28:f0:b1:6d:16:d5:92:1e:2f: c8:f8:8a:a7:9c:8e:e9:d9:45:5d:3a:d5:77:e8:d4: db:21:bf:52:66:e3:4d:2c:c9:8e:d0:a7:4f:a6:3b: 46:7c:15:de:32:9a:e4:4e:70:72:68:12:9b:01:5c: 76:22:48:59:52:f6:1e:02:f8:20:d9:7e:a7:72:e5: c9:ed:3d:8d:86:92:4d:0e:73:ad:0d:6b:32:9f:05: 67:b4:e6:b5:20:32:12:e9:34:35:6a:e6:5f:05:24: 34:fb:3b:73:bd:4f:1b:3c:89:ec:c9:64:81:4b:59: b0:91:b3:a0:6a:98:d5:d7:26:75:26:8d:43:c8:f9: 53:f0:de:e8:43:e6:db:2b:b1:31:3b:1f:d7:a4:6b: f8:32:02:6e:6c:f9:aa:36:31:45:e6:ab:c1:4a:a6: bd:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:69:2C:65:7C:7D:BC:97:B4:53:D3:20:C3:08:D3:95:85:DE:F0:73 X509v3 Authority Key Identifier: keyid:76:61:F5:97:EA:68:EF:F4:C9:29:73:63:9B:B6:75:D7:F0:39:09:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:2c:c8:a4:96:77:f6:cb:35:d7:89:33:15:d8:e3:6d:c5:24: 2d:87:3d:04:b2:26:a2:0a:a7:dc:34:b8:5b:a3:4f:7f:34:6d: c4:17:f7:0d:fb:47:2d:46:f6:9a:45:8c:30:95:63:57:de:99: cb:ac:58:f1:91:93:45:a2:1d:b7:ef:cc:46:de:c3:e1:e7:c9: 87:04:fb:01:cf:7b:7f:46:96:bd:6c:41:0f:5f:70:1f:f5:02: 7a:9e:23:5a:84:c8:ca:61:97:f9:62:db:18:b9:32:a7:4d:55: 26:4c:aa:7d:ba:53:9a:1b:9b:07:a5:3a:24:79:5a:aa:94:bf: 66:72:a6:84:85:1a:c7:e2:c8:0d:71:b3:68:bd:30:bc:52:bd: 73:5b:e2:a4:6f:67:0d:49:81:f2:2f:35:64:d2:a8:c1:fa:ff: 7a:d0:93:69:51:47:59:b8:44:b3:57:85:70:10:a4:98:6f:e2: 04:c6:2b:6f:24:89:ae:3c:08:7e:75:cd:4c:67:b0:3e:27:ac: ff:39:90:52:03:3e:7f:e9:da:fb:6c:23:e9:bc:8c:2b:3c:52: 93:75:17:8e:92:69:dc:5a:a9:03:cc:90:a2:02:0d:0f:8e:2c: 36:3c:33:3b:65:80:34:c6:d5:ee:3a:d9:ce:0b:87:64:a5:fc: 34:39:ed:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExNzYxMTAvBgNVBAUTKDc2NjFGNTk3RUE2OEVGRjRDOTI5NzM2MzlCQjY3NUQ3 RjAzOTA5NzEwHhcNMjUxMjIyMjE1MDA4WhcNMjUxMjI5MjE1MDA4WjAYMRYwFAYD VQQDDA02OTQ5YmQxMC1hNTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOqJ63HAsAT7Qae2UKHljOzk/rQikaw/t9YzNVA7qOrHcnTQzSbN8jZjCFNq ekY9MEgVoAUtbLOFTMJ/GG5DPoRbSu2yGkU67gVOIO+9ZEuEW60MCF1vZubh/f9W jEIo8LFtFtWSHi/I+IqnnI7p2UVdOtV36NTbIb9SZuNNLMmO0KdPpjtGfBXeMprk TnByaBKbAVx2IkhZUvYeAvgg2X6ncuXJ7T2NhpJNDnOtDWsynwVntOa1IDIS6TQ1 auZfBSQ0+ztzvU8bPInsyWSBS1mwkbOgapjV1yZ1Jo1DyPlT8N7oQ+bbK7ExOx/X pGv4MgJubPmqNjFF5qvBSqa9XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJNpLGV8 fbyXtFPTIMMI05WF3vBzMB8GA1UdIwQYMBaAFHZh9ZfqaO/0ySlzY5u2ddfwOQlx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE3Ni9BREQzQUVDRUIy OEUxMUVCOTREMjE4NDdDNEY5QUUwMi9kbUgxbC1wbzdfVEpLWE5qbTdaMTFfQTVD WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RtSDFsLXBvN19USktYTmptN1oxMV9BNUNYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTE3Ni9BREQzQUVDRUIyOEUxMUVCOTREMjE4NDdDNEY5QUUwMi9kbUgxbC1wbzdf VEpLWE5qbTdaMTFfQTVDWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4LMiklnf2yzXXiTMV2ONtxSQthz0EsiaiCqfcNLhbo09/NG3EF/cN +0ctRvaaRYwwlWNX3pnLrFjxkZNFoh2378xG3sPh58mHBPsBz3t/Rpa9bEEPX3Af 9QJ6niNahMjKYZf5YtsYuTKnTVUmTKp9ulOaG5sHpTokeVqqlL9mcqaEhRrH4sgN cbNovTC8Ur1zW+Kkb2cNSYHyLzVk0qjB+v960JNpUUdZuESzV4VwEKSYb+IExitv JImuPAh+dc1MZ7A+J6z/OZBSAz5/6dr7bCPpvIwrPFKTdReOkmncWqkDzJCiAg0P jiw2PDM7ZYA0xtXuOtnOC4dkpfw0Oe3n -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:28 2025 by rpki-client