This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft File: DHxNa-htVb5Ey0rZZmbBU1GT93I.mft (raw, json) Hash identifier: PZrqD0BRjosMqxmbBBd+m3f/hQBZFmDFwoW/nQE1qaM= Subject key identifier: CB:18:85:B4:61:D7:E7:BD:88:EB:7C:3B:91:58:19:1C:9C:F8:79:F0 Authority key identifier: 0C:7C:4D:6B:E8:6D:55:BE:44:CB:4A:D9:66:66:C1:53:51:93:F7:72 Certificate issuer: /CN=A9123CA4/serialNumber=0C7C4D6BE86D55BE44CB4AD96666C1535193F772 Certificate serial: 0189 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft Manifest number: 0184 Signing time: Sun 07 Dec 2025 02:07:24 +0000 Manifest this update: Sun 07 Dec 2025 02:07:23 +0000 Manifest next update: Sun 14 Dec 2025 02:07:23 +0000 Files and hashes: 1: DHxNa-htVb5Ey0rZZmbBU1GT93I.crl (hash: GJwwaVqWBSnNKUYzu4HlkaAyhFkfAbd/JH3W00a9ckk=) 2: 300438B6C03511EFA42E9085C4F9AE02.roa (hash: oBJXc8GYCJgJm/47m5fsAm6DbvpC1fTX4mDB8Bng8Io=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.crl rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 02:07:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 393 (0x189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123CA4, serialNumber=0C7C4D6BE86D55BE44CB4AD96666C1535193F772 Validity Not Before: Dec 7 02:07:23 2025 GMT Not After : Dec 14 02:07:23 2025 GMT Subject: CN=6934e15b-8342 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:73:2b:cb:31:4d:5c:ac:25:d7:2c:fd:4c:66: 85:95:fb:ef:88:e3:25:d4:c7:3b:2f:92:2e:2c:2e: 91:58:49:b3:ee:e2:4e:3b:68:31:95:16:47:02:1b: 7e:2e:ab:c7:6c:aa:86:61:8f:2c:37:4f:2d:9d:10: 1a:cb:a0:c0:13:50:57:2f:45:1a:c8:25:93:93:8b: 1b:55:e8:04:72:13:31:bc:9e:0f:93:de:f3:79:f7: 37:f9:40:56:a2:0e:0d:ff:e8:44:80:dc:c6:6d:98: 50:91:3f:57:58:bc:33:da:f0:df:67:96:d6:3f:80: 94:4e:d8:32:d5:df:c0:c7:67:22:51:a2:ce:27:0a: 88:72:1b:c6:f7:24:0f:51:69:b6:2f:96:2c:f0:13: 3c:32:6f:05:90:5e:15:d2:d9:d0:f7:00:70:3d:e2: e1:4d:66:9f:72:2f:b1:da:a8:b0:25:89:5b:99:c1: 9d:31:ee:af:a1:bc:9d:f6:d3:c3:91:d0:a9:b6:96: 96:25:7f:78:13:27:c7:07:80:06:6c:fb:00:a7:e3: ba:66:b9:23:b7:9c:a7:f1:23:bb:11:c3:71:e3:6f: bf:01:3b:3f:8e:10:78:4c:ac:68:0f:b0:d1:48:b7: a1:a6:5f:b4:f0:79:bd:08:da:e2:8e:8b:2c:bf:80: 52:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:18:85:B4:61:D7:E7:BD:88:EB:7C:3B:91:58:19:1C:9C:F8:79:F0 X509v3 Authority Key Identifier: keyid:0C:7C:4D:6B:E8:6D:55:BE:44:CB:4A:D9:66:66:C1:53:51:93:F7:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:54:73:84:29:dc:95:8c:cb:8c:7f:81:12:ce:63:84:0f:a1: 59:57:b0:57:a5:4d:10:3a:02:dd:65:24:31:54:29:43:f7:1c: 72:1f:a6:f8:1d:0e:d3:4a:7b:da:46:60:92:48:45:52:af:95: bd:a6:30:b4:89:fa:db:e0:da:4a:1c:a0:97:c7:73:4c:42:3d: 66:7c:2d:b2:64:4c:32:bc:2d:3e:0d:83:25:a0:c7:0b:f3:1f: 00:82:b1:6e:e9:b6:8c:e5:d9:25:f1:bb:c7:b5:f7:c4:c6:ef: 88:c7:e1:c1:df:5b:29:0d:52:1e:21:d7:6c:92:8a:89:bc:3e: c3:75:75:15:24:fd:86:cb:c8:5e:bd:b3:73:51:b5:ed:6d:6f: a0:11:40:b3:28:3e:c0:98:04:11:16:af:c7:2b:fa:40:f8:09: b4:33:de:8f:e4:cb:1e:92:fe:7c:12:e3:8a:68:b3:e3:7a:6c: a9:b2:52:77:98:f9:b2:3b:02:64:61:f0:82:05:b0:27:bc:a3: 47:dc:2e:c3:df:ef:38:33:b0:93:92:ea:07:0d:42:54:bd:56: e4:43:d0:08:3a:1f:68:2d:96:27:8a:16:80:a2:14:3a:da:54: 81:49:bf:1e:4c:e1:6f:aa:0f:1c:63:23:62:86:0c:e5:ec:f3: 0e:51:37:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNDQTQxMTAvBgNVBAUTKDBDN0M0RDZCRTg2RDU1QkU0NENCNEFEOTY2NjZDMTUz NTE5M0Y3NzIwHhcNMjUxMjA3MDIwNzIzWhcNMjUxMjE0MDIwNzIzWjAYMRYwFAYD VQQDEw02OTM0ZTE1Yi04MzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8HMryzFNXKwl1yz9TGaFlfvviOMl1Mc7L5IuLC6RWEmz7uJOO2gxlRZHAht+ LqvHbKqGYY8sN08tnRAay6DAE1BXL0UayCWTk4sbVegEchMxvJ4Pk97zefc3+UBW og4N/+hEgNzGbZhQkT9XWLwz2vDfZ5bWP4CUTtgy1d/Ax2ciUaLOJwqIchvG9yQP UWm2L5Ys8BM8Mm8FkF4V0tnQ9wBwPeLhTWafci+x2qiwJYlbmcGdMe6vobyd9tPD kdCptpaWJX94EyfHB4AGbPsAp+O6Zrkjt5yn8SO7EcNx42+/ATs/jhB4TKxoD7DR SLehpl+08Hm9CNrijossv4BSqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMsYhbRh 1+e9iOt8O5FYGRyc+HnwMB8GA1UdIwQYMBaAFAx8TWvobVW+RMtK2WZmwVNRk/dy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0NBNC9CNzUxNkIxMDg5 QjYxMUVFOTk1MTJBNkRDNEY5QUUwMi9ESHhOYS1odFZiNUV5MHJaWm1iQlUxR1Q5 M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RIeE5hLWh0VmI1RXkwclpabWJCVTFHVDkzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0NBNC9CNzUxNkIxMDg5QjYxMUVFOTk1MTJBNkRDNEY5QUUwMi9ESHhOYS1odFZi NUV5MHJaWm1iQlUxR1Q5M0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuVHOEKdyVjMuMf4ESzmOED6FZV7BXpU0QOgLdZSQxVClD9xxyH6b4 HQ7TSnvaRmCSSEVSr5W9pjC0ifrb4NpKHKCXx3NMQj1mfC2yZEwyvC0+DYMloMcL 8x8AgrFu6baM5dkl8bvHtffExu+Ix+HB31spDVIeIddskoqJvD7DdXUVJP2Gy8he vbNzUbXtbW+gEUCzKD7AmAQRFq/HK/pA+Am0M96P5Msekv58EuOKaLPjemypslJ3 mPmyOwJkYfCCBbAnvKNH3C7D3+84M7CTkuoHDUJUvVbkQ9AIOh9oLZYnihaAohQ6 2lSBSb8eTOFvqg8cYyNihgzl7PMOUTdB -----END CERTIFICATE-----Generated at Sun Dec 7 05:24:51 2025 by rpki-client