This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft File: Df2AHulmIu0X31XXqqZMce_5t70.mft (raw, json) Hash identifier: DL5yvMKit1AIQZrZfLlbGPe7Ns2jpjGjsjPPEAQBcm8= Subject key identifier: D6:74:AF:F1:2A:0E:1A:1F:21:A3:C1:C2:EB:03:D2:5B:DA:53:5F:12 Authority key identifier: 0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD Certificate issuer: /CN=A91F4E89/serialNumber=0DFD801EE96622ED17DF55D7AAA64C71EFF9B7BD Certificate serial: 0BEF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft Manifest number: 0BE8 Signing time: Mon 22 Dec 2025 18:24:23 +0000 Manifest this update: Mon 22 Dec 2025 18:24:23 +0000 Manifest next update: Mon 29 Dec 2025 18:24:23 +0000 Files and hashes: 1: Df2AHulmIu0X31XXqqZMce_5t70.crl (hash: xBdCdC62pGrfwiEJmw6oFURuJZiRj/j8UpjGf+zIQnY=) 2: 72F52C962AF511EA8C989441C4F9AE02.roa (hash: NQK2jP5eRyYwsuTuPQtjKV7k3gO8QkcM0nqIbV3IUnI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.crl rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:24:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3055 (0xbef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4E89, serialNumber=0DFD801EE96622ED17DF55D7AAA64C71EFF9B7BD Validity Not Before: Dec 22 18:24:23 2025 GMT Not After : Dec 29 18:24:23 2025 GMT Subject: CN=69498cd7-8080 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:ce:4e:b2:d9:ba:c7:15:5b:38:df:32:33:9b: ec:1f:99:04:25:8d:6e:fd:ec:61:f8:08:bc:a7:26: d5:87:bb:c3:b3:84:6f:52:14:7d:61:40:de:3d:f5: 4e:8f:0e:d3:06:65:cc:58:96:c9:53:72:37:18:35: d1:70:25:06:4d:71:47:d4:f9:87:70:6d:10:34:d7: f0:72:a2:b5:fd:32:5c:f9:cd:dc:9e:43:5d:58:f1: 27:a2:0d:81:33:8c:99:e4:7e:ce:e5:64:38:cc:5d: e7:bd:78:71:90:01:3d:47:8e:e4:6c:99:58:11:81: 13:f2:cf:fc:a3:a9:cf:89:bb:9c:9b:ff:0a:e9:87: 3a:ed:50:77:7c:5e:6b:22:fe:45:6f:f9:48:eb:a1: ba:a5:98:9e:5c:f3:96:b4:59:7b:78:f8:2a:88:ea: f3:e9:ac:55:90:ac:a8:ad:22:03:f2:fc:09:ee:74: b0:9c:e2:3d:5a:da:e7:ad:b3:11:be:3f:14:26:de: 23:08:42:ff:dc:23:fe:ed:2a:89:4a:be:eb:43:41: c9:79:f0:db:11:13:9a:38:6d:cb:64:58:b6:72:69: 25:c3:80:1b:58:ef:77:1f:ee:f5:64:f1:f6:6f:b1: 76:2c:9f:32:1d:3a:15:f9:de:cf:74:66:66:11:fb: 31:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:74:AF:F1:2A:0E:1A:1F:21:A3:C1:C2:EB:03:D2:5B:DA:53:5F:12 X509v3 Authority Key Identifier: keyid:0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:aa:94:c1:29:cb:d8:8c:4b:1b:64:92:5d:ae:c1:8b:84:38: 36:ad:ee:fc:83:91:28:62:8b:f1:9e:41:95:36:a1:18:9a:08: f7:b8:d4:2a:f1:2b:c3:f5:73:7d:a3:af:d4:06:4a:32:c6:a2: e3:82:f7:3f:fb:9a:dc:1d:55:13:2e:b4:f6:12:0e:69:f9:61: eb:18:26:d6:5c:fa:be:97:d7:72:60:65:f8:66:c0:f2:86:59: c8:6e:ac:91:df:da:41:ee:22:62:b1:31:e0:a2:51:c9:ce:5b: 80:c1:02:52:8c:2a:da:1f:3e:b0:3f:e7:86:e9:41:17:f1:42: 2f:32:33:97:3a:db:b8:8f:d2:72:c0:cd:7f:b1:bb:ec:a1:04: 56:59:ad:a5:89:8a:60:2d:a1:4b:50:3d:c4:04:94:f3:f2:a8: 63:b9:21:80:21:82:49:ed:d0:a2:29:1e:56:19:36:69:7c:8a: f3:c4:14:89:62:00:84:d0:cb:68:f7:53:81:ad:70:80:a8:a0: 9a:dc:ec:b9:ee:28:d3:69:e9:6f:db:5a:53:90:65:19:f5:f3: e0:e7:ac:22:ed:23:44:c3:69:18:d7:d5:0a:e3:de:4d:19:2b: ab:5f:17:d9:77:8e:a3:51:9c:17:b6:b7:b4:c2:0b:27:97:f4: b8:8e:dc:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRFODkxMTAvBgNVBAUTKDBERkQ4MDFFRTk2NjIyRUQxN0RGNTVEN0FBQTY0Qzcx RUZGOUI3QkQwHhcNMjUxMjIyMTgyNDIzWhcNMjUxMjI5MTgyNDIzWjAYMRYwFAYD VQQDDA02OTQ5OGNkNy04MDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6s5Ostm6xxVbON8yM5vsH5kEJY1u/exh+Ai8pybVh7vDs4RvUhR9YUDePfVO jw7TBmXMWJbJU3I3GDXRcCUGTXFH1PmHcG0QNNfwcqK1/TJc+c3cnkNdWPEnog2B M4yZ5H7O5WQ4zF3nvXhxkAE9R47kbJlYEYET8s/8o6nPibucm/8K6Yc67VB3fF5r Iv5Fb/lI66G6pZieXPOWtFl7ePgqiOrz6axVkKyorSID8vwJ7nSwnOI9WtrnrbMR vj8UJt4jCEL/3CP+7SqJSr7rQ0HJefDbEROaOG3LZFi2cmklw4AbWO93H+71ZPH2 b7F2LJ8yHToV+d7PdGZmEfsxzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNZ0r/Eq DhofIaPBwusD0lvaU18SMB8GA1UdIwQYMBaAFA39gB7pZiLtF99V16qmTHHv+be9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEU4OS9DNTMzRDcyNDJB RjQxMUVBQTQ4RjE1NDFDNEY5QUUwMi9EZjJBSHVsbUl1MFgzMVhYcXFaTWNlXzV0 NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RmMkFIdWxtSXUwWDMxWFhxcVpNY2VfNXQ3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEU4OS9DNTMzRDcyNDJBRjQxMUVBQTQ4RjE1NDFDNEY5QUUwMi9EZjJBSHVsbUl1 MFgzMVhYcXFaTWNlXzV0NzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPqpTBKcvYjEsbZJJdrsGLhDg2re78g5EoYovxnkGVNqEYmgj3uNQq 8SvD9XN9o6/UBkoyxqLjgvc/+5rcHVUTLrT2Eg5p+WHrGCbWXPq+l9dyYGX4ZsDy hlnIbqyR39pB7iJisTHgolHJzluAwQJSjCraHz6wP+eG6UEX8UIvMjOXOtu4j9Jy wM1/sbvsoQRWWa2liYpgLaFLUD3EBJTz8qhjuSGAIYJJ7dCiKR5WGTZpfIrzxBSJ YgCE0Mto91OBrXCAqKCa3Oy57ijTaelv21pTkGUZ9fPg56wi7SNEw2kY19UK495N GSurXxfZd46jUZwXtre0wgsnl/S4jtyk -----END CERTIFICATE-----Generated at Tue Dec 23 11:23:04 2025 by rpki-client