This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.mft File: dmXig10WAIXjHsJFIi1LL35IRAk.mft (raw, json) Hash identifier: V9Urit9n6t4Hcc86gBpDZGQ0elNMHawosS7FYHs28q8= Subject key identifier: A1:33:F6:1B:93:58:FC:C0:49:E7:05:96:5D:0E:8C:D5:AB:23:16:B3 Authority key identifier: 76:65:E2:83:5D:16:00:85:E3:1E:C2:45:22:2D:4B:2F:7E:48:44:09 Certificate issuer: /CN=A911DFC9/serialNumber=7665E2835D160085E31EC245222D4B2F7E484409 Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dmXig10WAIXjHsJFIi1LL35IRAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.mft Manifest number: 6C Signing time: Fri 05 Dec 2025 04:51:00 +0000 Manifest this update: Fri 05 Dec 2025 04:50:59 +0000 Manifest next update: Fri 12 Dec 2025 04:50:59 +0000 Files and hashes: 1: dmXig10WAIXjHsJFIi1LL35IRAk.crl (hash: l8NKWS/bV8JIafw9ooxjdasa1Fr/F3Ciz+XJnGp+SVk=) 2: CAE10F4030E111F09B76D311C4F9AE02.roa (hash: 4EnYQ2VSNQD0o3dL265fkKkyLcx5j9mcOc/dYLCsIwo=) 3: 570B12E0562611F09F085F44C4F9AE02.roa (hash: CaHNy+5XgMUOPof5CFjhIu8D1eRPSffz8Arg3q0Y77U=) 4: CA5B991430E111F09B76D311C4F9AE02.roa (hash: KDnCMQ2nRjU0Va+lifX6vSdvj7g5AOqm8qx3ZCAL398=) 5: CB4E186A30E111F09B76D311C4F9AE02.roa (hash: xPkqxoVSxyXeKSaq5jtn4/m5jr8BJckiAgNe5WWb60U=) 6: CC3E7A3A30E111F09B76D311C4F9AE02.roa (hash: qvmxAIblo8LoVtJQCEVB0mOCUBhb2PQ/53hCphSqwWE=) 7: E73A5E40A28C11F0A6491A72C4F9AE02.roa (hash: tcOXOuYgGu+RB0bUc2Sne4w/DApsR3iV2dNestsnCuc=) 8: CBDD09E430E111F09B76D311C4F9AE02.roa (hash: fV/0Vo51myrGthfe3wjSyvx/kYCAyZZZpPfFqvBV/w4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.crl rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dmXig10WAIXjHsJFIi1LL35IRAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:50:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DFC9, serialNumber=7665E2835D160085E31EC245222D4B2F7E484409 Validity Not Before: Dec 5 04:50:59 2025 GMT Not After : Dec 12 04:50:59 2025 GMT Subject: CN=693264b4-df6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:39:a1:29:7e:e5:97:98:bd:66:23:5e:51:6a: 91:3e:40:2f:d3:29:bf:3b:ec:88:69:7c:b0:33:83: 03:56:4b:3a:56:39:3d:38:a8:d0:b9:ab:39:bf:75: 08:df:c8:21:62:b9:16:18:1b:6f:64:aa:17:94:47: 0e:db:36:0b:df:45:04:dc:fa:86:7c:c3:53:85:95: e4:7e:3e:30:e0:7d:70:f3:96:25:e8:7a:8b:15:ee: 3f:17:48:42:97:87:be:5c:a8:54:7d:d6:34:05:3c: 54:e8:95:d3:45:f9:f6:4f:b6:7d:0a:06:47:55:ba: 8e:ee:76:a6:76:41:a9:3f:d9:b4:72:ff:39:c4:e6: bb:7f:5f:2a:05:f7:f8:3e:76:55:be:f3:05:15:62: 2e:b8:5b:cb:76:be:39:af:c4:a1:a6:93:de:e4:ce: 20:ef:58:4d:de:26:57:44:47:95:97:d3:2f:56:3c: 56:a9:05:bf:e9:7a:dd:59:27:40:84:be:62:de:84: 15:1d:40:03:d4:bd:d4:8d:17:ec:d8:69:73:06:27: eb:13:0c:fa:bd:ed:b0:b5:d4:3b:0f:2e:48:b6:42: 4a:07:57:16:be:40:e2:42:2c:3c:13:7a:c7:4c:73: 2c:f8:ec:12:31:35:2a:fa:e1:c6:ca:32:94:18:1c: 3f:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:33:F6:1B:93:58:FC:C0:49:E7:05:96:5D:0E:8C:D5:AB:23:16:B3 X509v3 Authority Key Identifier: keyid:76:65:E2:83:5D:16:00:85:E3:1E:C2:45:22:2D:4B:2F:7E:48:44:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dmXig10WAIXjHsJFIi1LL35IRAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:af:6a:60:4d:f3:ed:9f:c8:95:14:69:f3:b0:66:23:b8:99: eb:ee:88:5f:e0:73:23:5c:f2:4a:5f:74:3a:6f:cd:1e:87:df: f6:32:5e:4d:88:d3:53:04:bc:8e:aa:ac:9b:10:70:71:33:ac: f6:ed:5a:dc:97:34:30:11:1d:61:b2:29:b8:b6:10:c5:15:4e: 85:f3:fb:73:a4:14:43:b6:3d:c7:ff:2b:d6:f5:21:50:57:29: f6:38:49:39:a2:24:cc:31:87:18:8c:6f:32:37:ed:d7:07:c5: e9:ef:37:4d:89:bf:17:ff:cd:5d:8b:f3:d7:0c:08:6a:50:be: 20:6b:c5:f9:80:d6:14:09:59:6a:d5:0c:62:b5:84:dc:da:1a: 01:a5:15:27:37:2d:3b:40:52:68:5f:a2:6e:da:e5:74:1b:f1: 7c:e3:cb:ed:3d:21:9e:96:f7:d2:1f:f8:db:4d:03:91:84:30: ff:b5:60:80:93:b3:76:5a:f5:50:57:6b:fa:e3:5b:8a:02:5c: 74:13:b4:30:81:48:d1:37:2f:ec:b1:2c:65:3d:b0:3d:23:02: 6f:0d:90:50:cf:87:0e:08:2f:54:07:99:ea:4b:d5:d2:cd:ef: 88:7e:36:f1:6b:54:93:ce:b1:be:21:63:03:3d:b4:47:5e:ef: a6:55:5c:56 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx REZDOTExMC8GA1UEBRMoNzY2NUUyODM1RDE2MDA4NUUzMUVDMjQ1MjIyRDRCMkY3 RTQ4NDQwOTAeFw0yNTEyMDUwNDUwNTlaFw0yNTEyMTIwNDUwNTlaMBgxFjAUBgNV BAMTDTY5MzI2NGI0LWRmNmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCOaEpfuWXmL1mI15RapE+QC/TKb877IhpfLAzgwNWSzpWOT04qNC5qzm/dQjf yCFiuRYYG29kqheURw7bNgvfRQTc+oZ8w1OFleR+PjDgfXDzliXoeosV7j8XSEKX h75cqFR91jQFPFToldNF+fZPtn0KBkdVuo7udqZ2Qak/2bRy/znE5rt/XyoF9/g+ dlW+8wUVYi64W8t2vjmvxKGmk97kziDvWE3eJldER5WX0y9WPFapBb/pet1ZJ0CE vmLehBUdQAPUvdSNF+zYaXMGJ+sTDPq97bC11DsPLki2QkoHVxa+QOJCLDwTesdM cyz47BIxNSr64cbKMpQYHD+ZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUoTP2G5NY /MBJ5wWWXQ6M1asjFrMwHwYDVR0jBBgwFoAUdmXig10WAIXjHsJFIi1LL35IRAkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFERkM5LzhEMzVFODJFMzAy QzExRjA4Nzc2NEEyQkM0RjlBRTAyL2RtWGlnMTBXQUlYakhzSkZJaTFMTDM1SVJB ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZG1YaWcxMFdBSVhqSHNKRklpMUxMMzVJUkFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFE RkM5LzhEMzVFODJFMzAyQzExRjA4Nzc2NEEyQkM0RjlBRTAyL2RtWGlnMTBXQUlY akhzSkZJaTFMTDM1SVJBay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKGvamBN8+2fyJUUafOwZiO4mevuiF/gcyNc8kpfdDpvzR6H3/YyXk2I 01MEvI6qrJsQcHEzrPbtWtyXNDARHWGyKbi2EMUVToXz+3OkFEO2Pcf/K9b1IVBX KfY4STmiJMwxhxiMbzI37dcHxenvN02Jvxf/zV2L89cMCGpQviBrxfmA1hQJWWrV DGK1hNzaGgGlFSc3LTtAUmhfom7a5XQb8Xzjy+09IZ6W99If+NtNA5GEMP+1YICT s3Za9VBXa/rjW4oCXHQTtDCBSNE3L+yxLGU9sD0jAm8NkFDPhw4IL1QHmepL1dLN 74h+NvFrVJPOsb4hYwM9tEde76ZVXFY= -----END CERTIFICATE-----Generated at Sat Dec 6 18:03:01 2025 by rpki-client