This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft File: D429p9DJoeyhlFxhtykg9aoOlGc.mft (raw, json) Hash identifier: aJp1Dmebg+9ki+uM2TGfJ2j3Sxjj2n/wCKr+BA5+KRc= Subject key identifier: ED:AB:70:70:6F:DB:6B:B5:C0:F1:A1:C1:CD:1B:93:AC:2E:21:F0:2E Authority key identifier: 0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 Certificate issuer: /CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Certificate serial: 1C52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft Manifest number: 1C40 Signing time: Wed 10 Dec 2025 15:49:52 +0000 Manifest this update: Wed 10 Dec 2025 15:49:52 +0000 Manifest next update: Wed 17 Dec 2025 15:49:52 +0000 Files and hashes: 1: D429p9DJoeyhlFxhtykg9aoOlGc.crl (hash: bB/K9vHbFx1YjLMFeAfAHjEAxf/4PmZoyaWMDBJJj/4=) 2: D59EA6F4F5C611E6A4FFEF0AC4F9AE02.roa (hash: 3uXMO0UCJNabKr8uzhOcc7C4VV56oSmRiKoTg6QuV1A=) 3: C3ACDB568E9311E9AA8A2877C4F9AE02.roa (hash: u6rekZJ0jZc3ISHqsLCTcc0e5DQkPjPm3qL6iQKKzgs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 15:49:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7250 (0x1c52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAF20, serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Validity Not Before: Dec 10 15:49:52 2025 GMT Not After : Dec 17 15:49:52 2025 GMT Subject: CN=693996a0-6cc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:2f:5c:31:53:ad:94:2e:39:33:38:60:35:b8: ed:5d:a8:88:c3:15:63:4b:d6:e1:fb:7f:b2:58:f0: 5e:97:4e:2e:a0:50:1c:00:96:72:cf:1c:d1:ee:4f: 22:4e:97:fe:51:4e:90:28:ac:54:18:f1:ba:95:f2: 20:54:b7:30:a4:42:99:dd:9e:4e:18:26:f1:82:ff: f9:09:1f:5d:8e:1d:b0:1b:e8:53:d5:b3:ee:8c:ee: 53:38:f2:77:bc:ba:d7:c2:ed:0c:57:5d:23:85:a5: 33:33:1d:19:f0:d9:cd:3b:a5:73:ec:64:a1:f6:da: 8b:18:c1:a5:62:ac:80:83:2d:8f:d8:28:9e:5e:17: 00:f2:f6:39:22:bf:82:3e:6f:11:ba:db:48:09:45: b1:43:62:ee:77:86:72:cb:c4:df:af:35:f2:b7:69: a5:55:95:34:17:67:98:2a:2a:bf:e7:79:a0:c1:99: 65:d6:0b:a7:d6:36:02:f4:20:19:72:24:31:e9:fd: 40:0a:0f:cd:c0:82:ca:a1:32:ce:c6:55:75:a3:fb: d0:3b:db:bb:9d:29:b7:2a:ba:77:b4:64:7b:c3:69: f1:59:57:d1:66:4f:26:6d:00:8d:c4:a6:c0:0e:6a: 71:2b:ff:23:33:c2:7f:ea:a4:e3:6a:14:9e:59:b0: 8e:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:AB:70:70:6F:DB:6B:B5:C0:F1:A1:C1:CD:1B:93:AC:2E:21:F0:2E X509v3 Authority Key Identifier: keyid:0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:a5:fc:72:36:95:7c:ca:12:60:3d:45:8f:58:44:d0:54:45: d3:99:f1:5f:ec:58:88:38:42:a1:fc:e2:8b:a5:96:92:33:ef: af:63:ff:a4:43:22:67:2b:17:cf:35:16:55:33:f7:29:3c:88: 97:42:96:70:ae:94:33:ed:9e:bd:9a:7f:7b:60:f5:3e:47:20: 95:b0:a8:ca:36:8b:04:4d:4c:ae:38:02:39:e3:ef:43:bc:6a: 36:66:d6:2a:c1:fe:61:d8:b0:04:d6:5b:81:a8:b6:ae:bf:43: 96:ea:6c:5c:a7:89:52:71:9a:d7:d8:dd:97:24:94:13:76:4d: 62:90:17:e5:90:66:1d:cc:74:6d:b7:e8:3a:06:92:b7:1a:11: 83:88:5a:d0:65:12:a7:be:96:ac:ef:e7:09:a8:48:b5:09:37: 1c:0c:d6:4d:08:4b:3c:0a:16:80:8b:49:3a:e5:9c:89:74:83: 39:79:e4:ff:32:2f:77:39:ad:61:41:e2:70:92:44:0a:23:ef: 0e:5b:fb:ee:8a:42:0c:97:a3:83:d4:f7:3a:a2:d7:77:b6:33: 51:ee:12:33:68:2e:72:ce:1e:2a:c6:38:ab:1a:c9:7c:7f:f1: 55:41:e0:90:f4:73:3b:b1:2d:b0:50:cb:86:c6:15:b3:ec:1c: 0a:68:18:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHFIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGMjAxMTAvBgNVBAUTKDBGOERCREE3RDBDOUExRUNBMTk0NUM2MUI3MjkyMEY1 QUEwRTk0NjcwHhcNMjUxMjEwMTU0OTUyWhcNMjUxMjE3MTU0OTUyWjAYMRYwFAYD VQQDEw02OTM5OTZhMC02Y2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzS9cMVOtlC45MzhgNbjtXaiIwxVjS9bh+3+yWPBel04uoFAcAJZyzxzR7k8i Tpf+UU6QKKxUGPG6lfIgVLcwpEKZ3Z5OGCbxgv/5CR9djh2wG+hT1bPujO5TOPJ3 vLrXwu0MV10jhaUzMx0Z8NnNO6Vz7GSh9tqLGMGlYqyAgy2P2CieXhcA8vY5Ir+C Pm8RuttICUWxQ2Lud4Zyy8TfrzXyt2mlVZU0F2eYKiq/53mgwZll1gun1jYC9CAZ ciQx6f1ACg/NwILKoTLOxlV1o/vQO9u7nSm3Krp3tGR7w2nxWVfRZk8mbQCNxKbA DmpxK/8jM8J/6qTjahSeWbCOAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO2rcHBv 22u1wPGhwc0bk6wuIfAuMB8GA1UdIwQYMBaAFA+NvafQyaHsoZRcYbcpIPWqDpRn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUYyMC82NUE5QTI0MkY1 QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9leWhsRnhodHlrZzlhb09s R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q0MjlwOURKb2V5aGxGeGh0eWtnOWFvT2xHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUYyMC82NUE5QTI0MkY1QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9l eWhsRnhodHlrZzlhb09sR2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJpfxyNpV8yhJgPUWPWETQVEXTmfFf7FiIOEKh/OKLpZaSM++vY/+k QyJnKxfPNRZVM/cpPIiXQpZwrpQz7Z69mn97YPU+RyCVsKjKNosETUyuOAI54+9D vGo2ZtYqwf5h2LAE1luBqLauv0OW6mxcp4lScZrX2N2XJJQTdk1ikBflkGYdzHRt t+g6BpK3GhGDiFrQZRKnvpas7+cJqEi1CTccDNZNCEs8ChaAi0k65ZyJdIM5eeT/ Mi93Oa1hQeJwkkQKI+8OW/vuikIMl6OD1Pc6otd3tjNR7hIzaC5yzh4qxjirGsl8 f/FVQeCQ9HM7sS2wUMuGxhWz7BwKaBh7 -----END CERTIFICATE-----Generated at Fri Dec 12 13:03:04 2025 by rpki-client