This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft File: dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft (raw, json) Hash identifier: eRqyKKY9rpl1o6emerS/iFlvwgTOgrNh0LdvlP7Z8g8= Subject key identifier: BC:3F:83:66:B5:8B:99:C0:13:4A:38:E9:CE:46:2B:16:B6:6F:C7:DA Authority key identifier: 75:11:CB:31:3E:B8:3F:1C:39:02:AA:63:C4:3B:7A:03:6A:CC:63:17 Certificate issuer: /CN=A91273B6/serialNumber=7511CB313EB83F1C3902AA63C43B7A036ACC6317 Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dRHLMT64Pxw5AqpjxDt6A2rMYxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft Manifest number: 34 Signing time: Fri 05 Dec 2025 05:22:34 +0000 Manifest this update: Fri 05 Dec 2025 05:22:34 +0000 Manifest next update: Fri 12 Dec 2025 05:22:34 +0000 Files and hashes: 1: dRHLMT64Pxw5AqpjxDt6A2rMYxc.crl (hash: MrE6dTAjAHhO+ue/bdw80aqQNwzVk51Cert2asTWQEI=) 2: 5F9C3E0681AB11F09884FA0BC4F9AE02.roa (hash: F4Qio5WYvuiwdHGB0kchv0Q5AZIoWb0UXCVdpuPI1Cs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.crl rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dRHLMT64Pxw5AqpjxDt6A2rMYxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:22:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91273B6, serialNumber=7511CB313EB83F1C3902AA63C43B7A036ACC6317 Validity Not Before: Dec 5 05:22:34 2025 GMT Not After : Dec 12 05:22:34 2025 GMT Subject: CN=69326c1a-c506 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:7d:85:5f:39:d6:65:b2:48:ba:7d:4f:08:87: b5:2c:dd:ca:7d:e0:0f:08:a6:7c:24:a4:9e:7a:ce: ad:9a:f8:57:6a:05:aa:30:ae:b3:b3:30:81:cc:9c: 80:48:b0:38:3a:6c:01:92:3a:ee:9c:6d:ce:a0:1a: 87:a6:a0:c7:cb:ed:ac:f6:34:2d:9b:ea:83:ad:31: c4:95:0d:8c:51:94:b6:c1:3e:37:a1:12:3b:c0:f5: fc:af:d9:c0:57:eb:98:75:99:c5:60:e3:4b:f9:2c: 8e:92:f4:a8:4a:d4:e6:c7:d5:5d:4f:a0:f7:e0:3e: f9:87:2a:8b:24:0a:5d:e0:76:53:ac:35:f5:94:a5: df:4d:28:c4:9c:45:c3:2f:2c:8a:83:3c:c8:1d:53: 3f:af:43:8f:ad:19:dd:5a:ab:0e:ec:7d:ee:bc:7d: 1e:5f:3f:71:36:5d:43:f5:82:96:74:bb:d1:fc:4f: 12:4f:3b:43:f9:95:10:9c:f5:f2:7f:75:d1:f1:cc: 3a:5d:94:e6:e6:34:22:9e:f2:3e:da:b3:c1:f0:b2: d7:a8:23:f6:f1:75:0a:65:6c:62:ee:ad:39:6b:1b: f0:79:f7:ff:68:c1:38:90:5b:f2:13:ca:38:61:42: 1b:37:2e:04:5c:1e:5b:19:f0:b9:34:23:d0:17:d9: 83:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:3F:83:66:B5:8B:99:C0:13:4A:38:E9:CE:46:2B:16:B6:6F:C7:DA X509v3 Authority Key Identifier: keyid:75:11:CB:31:3E:B8:3F:1C:39:02:AA:63:C4:3B:7A:03:6A:CC:63:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dRHLMT64Pxw5AqpjxDt6A2rMYxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:62:97:62:00:82:3e:a4:ed:cb:03:2a:64:98:75:09:f0:4a: 55:9c:7f:a3:32:f5:42:a3:0b:b4:22:e3:88:98:56:e0:a0:bc: ca:48:a5:7b:5d:67:73:d7:ab:c9:89:9f:11:b6:8f:ef:b7:88: 5e:f9:79:cf:58:07:55:57:f7:f6:39:1c:97:f4:9c:43:7f:76: 3e:ea:4d:99:6b:9a:72:c6:73:e8:00:6a:e4:a2:e8:75:5b:7d: 5b:bc:99:69:99:91:8d:a0:5e:68:07:bb:e4:61:80:b0:76:c1: d0:72:8a:bf:b2:3b:96:be:b9:5e:e9:20:fb:86:72:7f:16:4d: a7:98:1c:41:32:5b:75:ef:94:e7:bb:40:bf:c1:03:7c:5c:db: c3:3d:f3:82:8f:d4:62:e9:43:46:39:10:1c:6e:0c:ba:aa:94: a5:64:cd:55:e0:1d:a6:fb:97:ed:99:e9:ef:03:1f:fd:1e:af: f4:98:7d:92:c3:29:55:98:af:12:7d:82:2a:21:fe:f3:2e:81: 66:92:77:83:53:dd:94:8e:c6:c4:13:9d:15:c5:0b:93:62:9e: 51:fb:97:97:2f:28:eb:d6:9c:a2:52:cf:7b:af:c4:f8:82:6f: 0f:2e:cf:b0:71:48:04:1b:6c:b4:04:7e:85:1c:8f:b1:f0:de: 69:4e:db:87 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NzNCNjExMC8GA1UEBRMoNzUxMUNCMzEzRUI4M0YxQzM5MDJBQTYzQzQzQjdBMDM2 QUNDNjMxNzAeFw0yNTEyMDUwNTIyMzRaFw0yNTEyMTIwNTIyMzRaMBgxFjAUBgNV BAMTDTY5MzI2YzFhLWM1MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPfYVfOdZlski6fU8Ih7Us3cp94A8IpnwkpJ56zq2a+FdqBaowrrOzMIHMnIBI sDg6bAGSOu6cbc6gGoemoMfL7az2NC2b6oOtMcSVDYxRlLbBPjehEjvA9fyv2cBX 65h1mcVg40v5LI6S9KhK1ObH1V1PoPfgPvmHKoskCl3gdlOsNfWUpd9NKMScRcMv LIqDPMgdUz+vQ4+tGd1aqw7sfe68fR5fP3E2XUP1gpZ0u9H8TxJPO0P5lRCc9fJ/ ddHxzDpdlObmNCKe8j7as8HwsteoI/bxdQplbGLurTlrG/B59/9owTiQW/ITyjhh Qhs3LgRcHlsZ8Lk0I9AX2YMhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvD+DZrWL mcATSjjpzkYrFrZvx9owHwYDVR0jBBgwFoAUdRHLMT64Pxw5AqpjxDt6A2rMYxcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3M0I2LzU0ODFBRkMwODFB QTExRjBCNENEQUQxQ0M0RjlBRTAyL2RSSExNVDY0UHh3NUFxcGp4RHQ2QTJyTVl4 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZFJITE1UNjRQeHc1QXFwanhEdDZBMnJNWXhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3 M0I2LzU0ODFBRkMwODFBQTExRjBCNENEQUQxQ0M0RjlBRTAyL2RSSExNVDY0UHh3 NUFxcGp4RHQ2QTJyTVl4Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHtil2IAgj6k7csDKmSYdQnwSlWcf6My9UKjC7Qi44iYVuCgvMpIpXtd Z3PXq8mJnxG2j++3iF75ec9YB1VX9/Y5HJf0nEN/dj7qTZlrmnLGc+gAauSi6HVb fVu8mWmZkY2gXmgHu+RhgLB2wdByir+yO5a+uV7pIPuGcn8WTaeYHEEyW3XvlOe7 QL/BA3xc28M984KP1GLpQ0Y5EBxuDLqqlKVkzVXgHab7l+2Z6e8DH/0er/SYfZLD KVWYrxJ9gioh/vMugWaSd4NT3ZSOxsQTnRXFC5NinlH7l5cvKOvWnKJSz3uvxPiC bw8uz7BxSAQbbLQEfoUcj7Hw3mlO24c= -----END CERTIFICATE-----Generated at Sun Dec 7 01:58:09 2025 by rpki-client