This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.mft File: DDegHLYzYjRPtzlnYP2U2cm5fHo.mft (raw, json) Hash identifier: epercG3iSE/JnT2Hkb+eaVYJMsJZdNKL26O5jH9piiM= Subject key identifier: 85:E9:A5:22:CB:66:51:61:12:50:04:E5:0F:45:06:5D:00:6F:42:0A Authority key identifier: 0C:37:A0:1C:B6:33:62:34:4F:B7:39:67:60:FD:94:D9:C9:B9:7C:7A Certificate issuer: /CN=A912B64D/serialNumber=0C37A01CB63362344FB7396760FD94D9C9B97C7A Certificate serial: 01AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DDegHLYzYjRPtzlnYP2U2cm5fHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.mft Manifest number: 01A9 Signing time: Fri 05 Dec 2025 01:27:27 +0000 Manifest this update: Fri 05 Dec 2025 01:27:26 +0000 Manifest next update: Fri 12 Dec 2025 01:27:26 +0000 Files and hashes: 1: DDegHLYzYjRPtzlnYP2U2cm5fHo.crl (hash: iw2U8ekSZVBOgUTzFOuKMuvbHpsRsCPIvIMARoO+h0w=) 2: 865B3F7C467C11EEBDE3D43CC4F9AE02.roa (hash: jXDiNUfmAph8KmmhKCwstWhLejYXnSu0uk3x3qOWIK4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.crl rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DDegHLYzYjRPtzlnYP2U2cm5fHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:27:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 428 (0x1ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B64D, serialNumber=0C37A01CB63362344FB7396760FD94D9C9B97C7A Validity Not Before: Dec 5 01:27:26 2025 GMT Not After : Dec 12 01:27:26 2025 GMT Subject: CN=693234ff-a355 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:65:f5:68:72:f0:de:c5:9f:b3:34:9e:ea:6f: 85:30:61:f2:24:14:9d:c2:8b:66:a5:fd:8a:48:a4: a7:db:b9:b5:ae:d6:ef:db:a1:26:38:e3:97:53:db: 98:55:9e:1a:67:e3:70:33:34:7f:d7:ea:44:b0:00: e6:aa:95:dc:c0:4e:ec:2d:d9:bd:06:5c:4c:b8:56: 6e:80:04:3a:94:ba:f2:80:53:f2:85:9c:40:cc:ce: 65:93:09:fb:5c:36:c3:d3:19:1d:64:43:de:63:1a: 2f:a2:e7:62:4a:9f:6b:7e:cd:a6:8b:09:9b:2a:d4: 71:ed:cd:a3:d7:6f:e6:96:f3:61:ac:ba:c2:70:fc: d4:81:31:b8:68:1b:dd:f0:82:aa:c2:0e:04:9b:a5: b5:e6:c6:f3:35:f2:6a:fe:df:ea:b3:0c:75:58:1e: f5:77:14:67:7a:ec:36:0b:f4:7f:7e:7e:c8:a5:c0: 7a:2b:0c:34:dc:0c:12:5d:cb:1c:47:52:fb:77:38: 5e:08:ba:a8:4e:3c:94:e4:77:67:b5:af:5c:19:b0: 97:6a:f8:25:bf:f4:b2:5d:be:23:29:a4:1f:cb:d8: e2:5c:03:55:11:bf:93:0f:d4:96:e6:7d:dd:c3:64: 39:5b:d3:8f:47:2a:db:0a:59:64:ac:bb:44:d6:a8: 61:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:E9:A5:22:CB:66:51:61:12:50:04:E5:0F:45:06:5D:00:6F:42:0A X509v3 Authority Key Identifier: keyid:0C:37:A0:1C:B6:33:62:34:4F:B7:39:67:60:FD:94:D9:C9:B9:7C:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DDegHLYzYjRPtzlnYP2U2cm5fHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:42:75:f8:88:0e:61:5d:f3:c4:c0:e6:fa:ac:ac:7f:ed:50: c0:9f:8d:91:20:f8:d2:d3:87:39:df:75:03:a4:5c:30:3b:56: b6:39:57:fa:13:af:ab:79:9a:0a:fa:f6:8f:c2:b0:42:9a:a1: 73:56:cd:f3:11:86:d3:63:ba:5b:3a:f0:0a:c3:47:31:a9:1b: 7b:1d:2c:d3:3b:85:e8:80:9a:21:64:2e:1e:ca:19:b2:5a:ba: ef:57:6b:da:60:4e:42:ef:cf:04:fd:46:8c:22:cf:6c:9e:97: 23:62:d7:9f:60:ea:6e:6b:83:89:d8:81:b5:47:e6:c7:8b:c9: 7d:dc:88:64:01:fa:46:7e:03:98:2d:2c:ca:27:a3:7c:09:48: 57:bb:86:fd:51:15:c3:d9:4c:12:3c:0b:a5:bd:c5:c5:08:6a: 4e:b4:06:16:15:eb:20:6d:2a:8b:69:90:0a:1e:be:78:4d:06: dc:5f:85:3b:dd:73:0c:c4:69:34:53:0a:f1:1c:4e:95:f8:53: 56:79:36:2b:cd:9b:d9:2e:74:f1:6c:db:ce:22:03:e2:9a:80: bf:bc:06:97:32:45:82:8b:f6:b7:06:6d:87:51:d9:f3:cb:72: a7:f9:88:9d:04:12:05:5e:72:49:6a:a9:8a:fd:db:3e:5b:55: fc:0e:a5:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI2NEQxMTAvBgNVBAUTKDBDMzdBMDFDQjYzMzYyMzQ0RkI3Mzk2NzYwRkQ5NEQ5 QzlCOTdDN0EwHhcNMjUxMjA1MDEyNzI2WhcNMjUxMjEyMDEyNzI2WjAYMRYwFAYD VQQDEw02OTMyMzRmZi1hMzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0GX1aHLw3sWfszSe6m+FMGHyJBSdwotmpf2KSKSn27m1rtbv26EmOOOXU9uY VZ4aZ+NwMzR/1+pEsADmqpXcwE7sLdm9BlxMuFZugAQ6lLrygFPyhZxAzM5lkwn7 XDbD0xkdZEPeYxovoudiSp9rfs2miwmbKtRx7c2j12/mlvNhrLrCcPzUgTG4aBvd 8IKqwg4Em6W15sbzNfJq/t/qswx1WB71dxRneuw2C/R/fn7IpcB6Kww03AwSXcsc R1L7dzheCLqoTjyU5Hdnta9cGbCXavglv/SyXb4jKaQfy9jiXANVEb+TD9SW5n3d w2Q5W9OPRyrbCllkrLtE1qhhFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIXppSLL ZlFhElAE5Q9FBl0Ab0IKMB8GA1UdIwQYMBaAFAw3oBy2M2I0T7c5Z2D9lNnJuXx6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjY0RC8yQkJFNDAxNDQ2 N0MxMUVFOTJENjQ2M0NDNEY5QUUwMi9ERGVnSExZellqUlB0emxuWVAyVTJjbTVm SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0REZWdITFl6WWpSUHR6bG5ZUDJVMmNtNWZIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjY0RC8yQkJFNDAxNDQ2N0MxMUVFOTJENjQ2M0NDNEY5QUUwMi9ERGVnSExZellq UlB0emxuWVAyVTJjbTVmSG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhQnX4iA5hXfPEwOb6rKx/7VDAn42RIPjS04c533UDpFwwO1a2OVf6 E6+reZoK+vaPwrBCmqFzVs3zEYbTY7pbOvAKw0cxqRt7HSzTO4XogJohZC4eyhmy WrrvV2vaYE5C788E/UaMIs9snpcjYtefYOpua4OJ2IG1R+bHi8l93IhkAfpGfgOY LSzKJ6N8CUhXu4b9URXD2UwSPAulvcXFCGpOtAYWFesgbSqLaZAKHr54TQbcX4U7 3XMMxGk0UwrxHE6V+FNWeTYrzZvZLnTxbNvOIgPimoC/vAaXMkWCi/a3Bm2HUdnz y3Kn+YidBBIFXnJJaqmK/ds+W1X8DqXJ -----END CERTIFICATE-----Generated at Sat Dec 6 15:59:04 2025 by rpki-client