This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft File: DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft (raw, json) Hash identifier: 8zDFui2cMg0ZDKKPhgMcbIStQodOIcwvhXGDFPKYaD4= Subject key identifier: 8C:D8:5C:A9:55:80:DA:66:E5:48:92:7C:44:B4:9D:FF:14:45:FC:0C Authority key identifier: 0D:03:46:C8:A2:66:BE:6A:DC:E4:B7:E8:39:50:AF:5F:E1:EB:E5:C4 Certificate issuer: /CN=A9112BDE/serialNumber=0D0346C8A266BE6ADCE4B7E83950AF5FE1EBE5C4 Certificate serial: 0774 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft Manifest number: 076E Signing time: Sat 06 Dec 2025 20:37:19 +0000 Manifest this update: Sat 06 Dec 2025 20:37:19 +0000 Manifest next update: Sat 13 Dec 2025 20:37:19 +0000 Files and hashes: 1: DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.crl (hash: sKbwDZcXqDagBkvk1eaHObT2GoZu0lx3yI/wS3qoPYQ=) 2: 511EBFFE3E7E11EB979F564CC4F9AE02.roa (hash: Vr7eqcQZAVOzBkNtRv4RGA5ST9LjW4Xtker8ajEEVvQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.crl rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 20:37:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1908 (0x774) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112BDE, serialNumber=0D0346C8A266BE6ADCE4B7E83950AF5FE1EBE5C4 Validity Not Before: Dec 6 20:37:19 2025 GMT Not After : Dec 13 20:37:19 2025 GMT Subject: CN=693493ff-fa71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:5b:ab:a8:8d:2f:34:93:e9:e0:c1:67:cf:2d: c5:c5:12:16:60:f0:26:b4:cc:1c:3b:70:c3:ca:17: 16:40:5c:52:b1:6e:ad:e3:95:01:59:bd:e3:9e:d7: 3e:6c:d3:d3:e4:3e:27:5c:30:3b:f4:8c:28:b7:a6: 8b:d3:77:75:17:29:73:5e:79:49:4d:e6:2d:43:7b: 35:da:c2:45:e6:15:63:ac:14:30:b8:44:c7:0b:4e: 2f:3a:a3:64:09:be:87:83:9d:06:66:95:96:74:27: a6:00:84:8e:65:ba:84:bc:7f:05:25:ad:92:02:77: 0b:fa:9b:93:6e:d5:01:de:f9:05:e8:b3:0e:02:1e: ac:6b:a0:9e:c6:ba:74:d7:ca:c8:be:8e:1a:10:83: 5c:a4:3b:ef:91:16:7d:ef:4a:3f:3f:58:13:75:8d: 69:f1:2c:c5:3d:22:1c:6a:ef:56:38:04:68:66:c1: 6d:f8:b3:62:a3:c7:cc:69:f5:ca:fd:8a:9b:c3:b0: df:96:35:f1:23:d7:53:14:d5:c4:86:32:9a:8b:95: 06:0b:73:68:56:8f:c3:44:49:76:0b:f1:81:66:b3: 9e:f1:30:97:b8:fb:68:9a:53:38:b7:20:c3:44:a7: dc:8f:8a:ce:24:05:94:5c:0c:c2:de:c4:40:d6:72: 87:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:D8:5C:A9:55:80:DA:66:E5:48:92:7C:44:B4:9D:FF:14:45:FC:0C X509v3 Authority Key Identifier: keyid:0D:03:46:C8:A2:66:BE:6A:DC:E4:B7:E8:39:50:AF:5F:E1:EB:E5:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:02:81:0e:01:65:fb:5d:bd:48:70:39:0f:04:de:4b:d5:4f: b5:94:8a:56:f0:fc:64:2f:22:39:ba:41:b2:28:db:1f:ea:1d: 66:87:14:03:3b:fa:a2:b9:f2:0b:9a:60:6c:9c:31:fb:4b:e2: 6a:c1:fc:55:02:ca:60:45:84:f0:dd:82:a9:42:63:38:2e:f1: 5e:f0:48:d7:e8:0a:ea:d2:3a:83:a1:1f:ba:f4:4d:f0:18:6a: 14:d4:8a:3c:7d:49:fe:77:a9:d4:c3:8e:a3:d2:7d:50:15:db: 85:d4:95:93:d7:b8:62:9b:dd:f7:77:14:28:c0:59:46:a6:19: be:4f:9a:b6:4e:a4:68:5f:b3:a6:47:92:3e:d6:86:3b:86:41: ca:59:3e:fd:63:93:ec:7a:b0:2a:c7:2e:fa:b6:0f:22:bb:bf: 30:60:05:ea:e4:ac:f6:a2:d6:9a:79:c5:30:9f:85:23:be:af: df:cd:8e:b9:d9:00:4c:a6:7d:97:1b:e0:4c:a7:08:74:87:1c: 3a:38:7c:45:46:ff:85:c2:be:64:3a:ff:ca:7f:fb:e4:3d:03: 10:26:4e:4c:bf:32:ea:fe:5b:f7:78:2a:46:ae:d7:47:77:3d: c3:95:76:7b:28:6d:51:d9:79:38:f8:4e:55:1b:e1:4b:f3:a5: 82:cb:9d:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJCREUxMTAvBgNVBAUTKDBEMDM0NkM4QTI2NkJFNkFEQ0U0QjdFODM5NTBBRjVG RTFFQkU1QzQwHhcNMjUxMjA2MjAzNzE5WhcNMjUxMjEzMjAzNzE5WjAYMRYwFAYD VQQDEw02OTM0OTNmZi1mYTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxVurqI0vNJPp4MFnzy3FxRIWYPAmtMwcO3DDyhcWQFxSsW6t45UBWb3jntc+ bNPT5D4nXDA79Iwot6aL03d1FylzXnlJTeYtQ3s12sJF5hVjrBQwuETHC04vOqNk Cb6Hg50GZpWWdCemAISOZbqEvH8FJa2SAncL+puTbtUB3vkF6LMOAh6sa6Cexrp0 18rIvo4aEINcpDvvkRZ970o/P1gTdY1p8SzFPSIcau9WOARoZsFt+LNio8fMafXK /Yqbw7DfljXxI9dTFNXEhjKai5UGC3NoVo/DREl2C/GBZrOe8TCXuPtomlM4tyDD RKfcj4rOJAWUXAzC3sRA1nKHrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIzYXKlV gNpm5UiSfES0nf8URfwMMB8GA1UdIwQYMBaAFA0DRsiiZr5q3OS36DlQr1/h6+XE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkJERS81RTEyOEZGQzNF N0QxMUVCQkJFRjI3NENDNEY5QUUwMi9EUU5HeUtKbXZtcmM1TGZvT1ZDdlgtSHI1 Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RRTkd5S0ptdm1yYzVMZm9PVkN2WC1IcjVjUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkJERS81RTEyOEZGQzNFN0QxMUVCQkJFRjI3NENDNEY5QUUwMi9EUU5HeUtKbXZt cmM1TGZvT1ZDdlgtSHI1Y1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRAoEOAWX7Xb1IcDkPBN5L1U+1lIpW8PxkLyI5ukGyKNsf6h1mhxQD O/qiufILmmBsnDH7S+JqwfxVAspgRYTw3YKpQmM4LvFe8EjX6Arq0jqDoR+69E3w GGoU1Io8fUn+d6nUw46j0n1QFduF1JWT17him933dxQowFlGphm+T5q2TqRoX7Om R5I+1oY7hkHKWT79Y5PserAqxy76tg8iu78wYAXq5Kz2otaaecUwn4Ujvq/fzY65 2QBMpn2XG+BMpwh0hxw6OHxFRv+Fwr5kOv/Kf/vkPQMQJk5MvzLq/lv3eCpGrtdH dz3DlXZ7KG1R2Xk4+E5VG+FL86WCy53B -----END CERTIFICATE-----Generated at Sun Dec 7 01:09:13 2025 by rpki-client