This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.mft File: dQVeDYzbFO-fBPi5XayLiclozd0.mft (raw, json) Hash identifier: BcCmOIO7MJodAsix5HyP8mQy6LsgA4JlC0cQGixmyQ0= Subject key identifier: D4:D7:9C:6E:C8:89:69:E5:24:C9:8D:B2:AF:FF:C3:21:AF:D0:5B:2A Authority key identifier: 75:05:5E:0D:8C:DB:14:EF:9F:04:F8:B9:5D:AC:8B:89:C9:68:CD:DD Certificate issuer: /CN=A912C4DB/serialNumber=75055E0D8CDB14EF9F04F8B95DAC8B89C968CDDD Certificate serial: 0CA8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQVeDYzbFO-fBPi5XayLiclozd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.mft Manifest number: 0C9B Signing time: Thu 04 Dec 2025 17:51:59 +0000 Manifest this update: Thu 04 Dec 2025 17:51:58 +0000 Manifest next update: Thu 11 Dec 2025 17:51:58 +0000 Files and hashes: 1: dQVeDYzbFO-fBPi5XayLiclozd0.crl (hash: MJkV2whKkYq1rAliFoZ1hNiwwKtEogU6OedcBdfQQFo=) 2: 3E0EDBC83E0111ECA3AF5462C4F9AE02.roa (hash: lExXs/ZWSysLfoXLqxxqgj7BhKcNAbWDLDuu5558YHQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.crl rsync://rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQVeDYzbFO-fBPi5XayLiclozd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 17:51:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3240 (0xca8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C4DB, serialNumber=75055E0D8CDB14EF9F04F8B95DAC8B89C968CDDD Validity Not Before: Dec 4 17:51:58 2025 GMT Not After : Dec 11 17:51:58 2025 GMT Subject: CN=6931ca3f-9a1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b5:a4:30:d1:54:da:3d:af:a5:3d:7e:a7:9b: 9b:66:57:b2:7f:60:b2:10:c3:ee:ce:30:4e:1c:51: 35:3e:64:1c:e2:cc:b5:f3:bf:b7:09:52:14:07:a1: e5:16:ae:9f:f0:53:a3:d5:40:67:ef:2a:93:55:79: df:bd:88:d1:a8:c2:95:62:14:7e:46:22:ec:cb:15: 67:80:54:ba:49:c1:ad:1e:97:93:6f:dd:4f:07:20: ac:ae:b2:bd:8d:12:90:83:97:72:65:68:54:43:36: 98:69:6e:8e:cd:2a:38:35:bf:9f:2e:0e:b3:5c:bc: 29:6b:3e:d0:5a:04:50:b0:4c:0c:86:44:c8:98:ac: 2f:84:52:ec:1c:37:40:8b:41:e6:f3:ef:68:f5:79: 36:7a:04:28:f6:7c:ce:8e:d1:12:5c:97:2b:87:fc: 0c:1c:d1:5b:7f:dd:49:b9:0e:eb:55:a4:ef:eb:a9: 58:9f:67:75:dc:7f:0f:60:00:71:67:01:45:ab:0b: 57:25:a1:b7:6f:ba:dc:aa:98:0b:65:e1:6f:38:ce: 23:c8:47:75:25:4a:41:bc:07:aa:15:92:d0:6e:3f: c5:e5:63:aa:5c:47:79:58:13:f4:aa:e2:56:9d:93: 23:7e:6c:63:1d:ce:34:67:2e:a5:4d:6d:0f:77:85: d0:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:D7:9C:6E:C8:89:69:E5:24:C9:8D:B2:AF:FF:C3:21:AF:D0:5B:2A X509v3 Authority Key Identifier: keyid:75:05:5E:0D:8C:DB:14:EF:9F:04:F8:B9:5D:AC:8B:89:C9:68:CD:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQVeDYzbFO-fBPi5XayLiclozd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:fe:76:b7:39:8c:9d:6b:4b:5b:b0:c4:cf:08:4b:70:dd:48: 46:b5:eb:b4:6e:30:d9:b3:3c:60:94:cf:76:88:9c:28:30:ad: fd:d5:f2:80:b1:37:27:3f:db:03:b7:30:9e:db:55:d2:c2:b8: a7:c3:a8:55:1c:65:17:f3:7b:45:d7:15:5a:60:e1:1a:97:29: e0:a2:43:c8:9a:39:c7:88:89:87:b9:b7:34:fa:5e:12:21:64: 14:fe:60:86:30:5c:c8:a8:6d:a5:c7:47:a1:cc:19:6a:a6:41: f9:d5:e9:43:4a:8e:96:5a:9b:4c:91:6d:5c:5a:63:d5:bd:b2: 7c:b8:04:d8:75:7c:92:db:0b:4c:f7:71:eb:c0:ce:d7:91:a8: 22:95:e3:1e:4d:6c:f0:b3:53:e6:94:4a:ef:20:6c:17:1c:d4: f8:d1:d7:f9:ae:45:e1:72:26:1c:e2:68:05:b3:41:f3:a8:09: 32:96:66:8f:c5:9e:c0:a7:0f:e5:12:e5:7d:a5:e0:f3:67:3e: d7:bc:c9:3b:1f:bc:38:76:70:8b:91:c0:ab:6a:81:a5:de:ab: 6b:82:77:78:26:64:6b:8c:26:c5:15:13:2c:ad:ba:0b:42:d9: ad:2b:6f:11:9c:eb:fd:b0:f6:0b:ca:5f:f6:ee:98:bf:c6:8c: 97:f5:8c:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM0REIxMTAvBgNVBAUTKDc1MDU1RTBEOENEQjE0RUY5RjA0RjhCOTVEQUM4Qjg5 Qzk2OENEREQwHhcNMjUxMjA0MTc1MTU4WhcNMjUxMjExMTc1MTU4WjAYMRYwFAYD VQQDEw02OTMxY2EzZi05YTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsbWkMNFU2j2vpT1+p5ubZleyf2CyEMPuzjBOHFE1PmQc4sy187+3CVIUB6Hl Fq6f8FOj1UBn7yqTVXnfvYjRqMKVYhR+RiLsyxVngFS6ScGtHpeTb91PByCsrrK9 jRKQg5dyZWhUQzaYaW6OzSo4Nb+fLg6zXLwpaz7QWgRQsEwMhkTImKwvhFLsHDdA i0Hm8+9o9Xk2egQo9nzOjtESXJcrh/wMHNFbf91JuQ7rVaTv66lYn2d13H8PYABx ZwFFqwtXJaG3b7rcqpgLZeFvOM4jyEd1JUpBvAeqFZLQbj/F5WOqXEd5WBP0quJW nZMjfmxjHc40Zy6lTW0Pd4XQswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNTXnG7I iWnlJMmNsq//wyGv0FsqMB8GA1UdIwQYMBaAFHUFXg2M2xTvnwT4uV2si4nJaM3d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzREQi9EN0RGRDZDQTA4 RjgxMUVBOUQxOEFFNjhDNEY5QUUwMi9kUVZlRFl6YkZPLWZCUGk1WGF5TGljbG96 ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RRVmVEWXpiRk8tZkJQaTVYYXlMaWNsb3pkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzREQi9EN0RGRDZDQTA4RjgxMUVBOUQxOEFFNjhDNEY5QUUwMi9kUVZlRFl6YkZP LWZCUGk1WGF5TGljbG96ZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBO/na3OYyda0tbsMTPCEtw3UhGteu0bjDZszxglM92iJwoMK391fKA sTcnP9sDtzCe21XSwrinw6hVHGUX83tF1xVaYOEalyngokPImjnHiImHubc0+l4S IWQU/mCGMFzIqG2lx0ehzBlqpkH51elDSo6WWptMkW1cWmPVvbJ8uATYdXyS2wtM 93HrwM7XkagileMeTWzws1PmlErvIGwXHNT40df5rkXhciYc4mgFs0HzqAkylmaP xZ7Apw/lEuV9peDzZz7XvMk7H7w4dnCLkcCraoGl3qtrgnd4JmRrjCbFFRMsrboL QtmtK28RnOv9sPYLyl/27pi/xoyX9Yw1 -----END CERTIFICATE-----Generated at Sat Dec 6 16:14:08 2025 by rpki-client