This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.mft File: 0DLgYUkj9KWCM463Y2w5aErtUe0.mft (raw, json) Hash identifier: UKSpE+/favfYJ1jOU0+eTH7BvzaRaAQoNGvjIpMPoLk= Subject key identifier: 30:56:B1:86:37:65:65:EA:67:94:AC:8C:CC:AB:4C:A9:AD:E6:D2:7A Authority key identifier: D0:32:E0:61:49:23:F4:A5:82:33:8E:B7:63:6C:39:68:4A:ED:51:ED Certificate issuer: /CN=A913559B/serialNumber=D032E0614923F4A582338EB7636C39684AED51ED Certificate serial: 10CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DLgYUkj9KWCM463Y2w5aErtUe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.mft Manifest number: 10C2 Signing time: Sat 06 Dec 2025 16:49:10 +0000 Manifest this update: Sat 06 Dec 2025 16:49:09 +0000 Manifest next update: Sat 13 Dec 2025 16:49:09 +0000 Files and hashes: 1: 0DLgYUkj9KWCM463Y2w5aErtUe0.crl (hash: wQXzwDj1xWLUetWFLPvLrj2fA55cUW3rL8ziOD9B9Ls=) 2: DBC08AD4457911E9BA84DA51C4F9AE02.roa (hash: 2WzkstGBbGRj/Y7Ml4qowog4ksR3on7JJQYm4a6p25I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.crl rsync://rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DLgYUkj9KWCM463Y2w5aErtUe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4302 (0x10ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913559B, serialNumber=D032E0614923F4A582338EB7636C39684AED51ED Validity Not Before: Dec 6 16:49:09 2025 GMT Not After : Dec 13 16:49:09 2025 GMT Subject: CN=69345e86-7caf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:bf:25:23:15:4b:85:3e:fb:0b:c8:f1:30:05: ce:7c:40:5f:56:59:e7:16:bb:97:ce:db:0e:ab:5f: 15:61:b4:bf:b4:5f:2e:21:06:1c:5a:1b:4c:4e:41: 26:08:45:1a:af:9f:d1:9b:74:64:23:ad:81:6a:47: 9d:ff:6d:3b:bb:af:00:38:f2:5d:13:93:97:7f:1a: 7c:d7:79:c2:f9:cf:be:82:2c:95:e2:a5:e9:93:81: 69:54:ca:07:b8:67:75:7a:c9:e0:88:a1:33:8c:a6: da:bd:e1:1c:53:ee:c7:2c:e6:c8:0f:58:2a:91:3c: 45:95:7d:40:d5:86:16:07:0a:42:69:ec:44:17:25: f3:18:a3:ec:4d:88:64:e0:35:36:6c:9b:55:c3:32: f6:26:17:e2:88:bc:02:a5:e2:b0:0e:86:f1:d2:20: 2f:e8:eb:ef:24:6e:df:4a:c0:68:30:a7:d0:8c:56: 61:ad:10:9b:a5:ce:58:55:63:46:a7:46:1f:b5:e7: b6:f8:52:e5:d8:75:2a:79:05:f6:53:97:a2:94:8a: 3b:a9:83:10:f1:b4:17:44:32:fe:8c:ca:1d:6c:06: 6c:bf:fb:d7:2c:5a:8a:cc:95:21:8c:f5:52:2a:32: 8e:a0:0c:8d:d7:fa:85:82:0f:5f:24:3b:bb:21:4d: c8:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:56:B1:86:37:65:65:EA:67:94:AC:8C:CC:AB:4C:A9:AD:E6:D2:7A X509v3 Authority Key Identifier: keyid:D0:32:E0:61:49:23:F4:A5:82:33:8E:B7:63:6C:39:68:4A:ED:51:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DLgYUkj9KWCM463Y2w5aErtUe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:12:6a:82:08:bd:61:4f:cb:e7:32:15:9f:95:23:ad:2d:9e: ec:49:e4:59:58:ab:28:d7:58:34:65:01:37:30:9f:2d:5c:45: e8:a7:39:6a:1a:5a:ca:8c:76:e9:6f:3b:b2:48:38:6f:22:45: 2d:17:13:ce:71:76:f1:8f:3b:ef:b1:f1:9c:1b:1c:97:73:07: e6:0a:6e:d9:99:2f:1b:52:d8:b9:f7:a5:5f:a5:53:03:d0:e1: e8:39:4e:9b:34:c2:14:dd:95:ec:2c:48:f1:97:62:e6:da:4b: ac:ac:80:eb:86:19:1a:02:3c:ee:1e:a5:bd:69:e3:a0:80:70: f8:53:56:c3:f4:4f:25:ea:fc:aa:0f:69:99:91:ff:f6:59:c0: 52:17:26:c2:c8:36:15:3d:ac:9d:9c:a8:55:56:43:e0:76:c2: fa:b2:2b:f3:6f:2a:ae:74:df:36:bd:4b:df:35:84:e2:fe:b9: bc:49:c0:29:da:d2:c3:02:b0:06:dd:58:bc:20:05:c2:bd:8a: 07:8d:2c:2e:fa:bc:9d:25:4c:52:40:b7:af:03:33:2d:7c:8c: e3:17:42:24:56:33:a9:cf:51:34:f2:d5:14:e3:25:91:af:ca: 27:be:89:ec:61:35:de:d5:32:50:32:8f:39:28:40:82:f5:45: 63:6c:54:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU1OUIxMTAvBgNVBAUTKEQwMzJFMDYxNDkyM0Y0QTU4MjMzOEVCNzYzNkMzOTY4 NEFFRDUxRUQwHhcNMjUxMjA2MTY0OTA5WhcNMjUxMjEzMTY0OTA5WjAYMRYwFAYD VQQDEw02OTM0NWU4Ni03Y2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5r8lIxVLhT77C8jxMAXOfEBfVlnnFruXztsOq18VYbS/tF8uIQYcWhtMTkEm CEUar5/Rm3RkI62Baked/207u68AOPJdE5OXfxp813nC+c++giyV4qXpk4FpVMoH uGd1esngiKEzjKbaveEcU+7HLObID1gqkTxFlX1A1YYWBwpCaexEFyXzGKPsTYhk 4DU2bJtVwzL2JhfiiLwCpeKwDobx0iAv6OvvJG7fSsBoMKfQjFZhrRCbpc5YVWNG p0Yftee2+FLl2HUqeQX2U5eilIo7qYMQ8bQXRDL+jModbAZsv/vXLFqKzJUhjPVS KjKOoAyN1/qFgg9fJDu7IU3IkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDBWsYY3 ZWXqZ5SsjMyrTKmt5tJ6MB8GA1UdIwQYMBaAFNAy4GFJI/SlgjOOt2NsOWhK7VHt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTU5Qi82QzFBMEVGQTM2 N0MxMUU5QjI3OEY5M0JDNEY5QUUwMi8wRExnWVVrajlLV0NNNDYzWTJ3NWFFcnRV ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBETGdZVWtqOUtXQ000NjNZMnc1YUVydFVlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTU5Qi82QzFBMEVGQTM2N0MxMUU5QjI3OEY5M0JDNEY5QUUwMi8wRExnWVVrajlL V0NNNDYzWTJ3NWFFcnRVZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGEmqCCL1hT8vnMhWflSOtLZ7sSeRZWKso11g0ZQE3MJ8tXEXopzlq GlrKjHbpbzuySDhvIkUtFxPOcXbxjzvvsfGcGxyXcwfmCm7ZmS8bUti596VfpVMD 0OHoOU6bNMIU3ZXsLEjxl2Lm2kusrIDrhhkaAjzuHqW9aeOggHD4U1bD9E8l6vyq D2mZkf/2WcBSFybCyDYVPaydnKhVVkPgdsL6sivzbyqudN82vUvfNYTi/rm8ScAp 2tLDArAG3Vi8IAXCvYoHjSwu+rydJUxSQLevAzMtfIzjF0IkVjOpz1E08tUU4yWR r8onvonsYTXe1TJQMo85KECC9UVjbFQf -----END CERTIFICATE-----Generated at Sat Dec 6 22:08:32 2025 by rpki-client