This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft File: dOW7m208x_jCmoO9yEkrllnw7hc.mft (raw, json) Hash identifier: kPm1sJsF0mmM4DnSOeQp4oM10kiica11kgyuGDCGSnw= Subject key identifier: 7D:76:37:11:07:2E:6B:EA:DC:DE:44:8B:BD:E5:21:BE:F0:52:33:7D Authority key identifier: 74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17 Certificate issuer: /CN=A91620E0/serialNumber=74E5BB9B6D3CC7F8C29A83BDC8492B9659F0EE17 Certificate serial: 0F47 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft Manifest number: 0DE9 Signing time: Thu 04 Dec 2025 18:18:28 +0000 Manifest this update: Thu 04 Dec 2025 18:18:28 +0000 Manifest next update: Thu 11 Dec 2025 18:18:28 +0000 Files and hashes: 1: dOW7m208x_jCmoO9yEkrllnw7hc.crl (hash: e5ZzEj5ahECm8dt5X3ycVhcuytsJ0mZP9ukaV6JUd5U=) 2: DA216556B3D411F090043E0CC4F9AE02.roa (hash: pIx/wyTZ/mFvR/CaDn3nAJ9l4rXxPDSa6Yv+8kWw7kQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.crl rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:18:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3911 (0xf47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91620E0, serialNumber=74E5BB9B6D3CC7F8C29A83BDC8492B9659F0EE17 Validity Not Before: Dec 4 18:18:28 2025 GMT Not After : Dec 11 18:18:28 2025 GMT Subject: CN=6931d074-6a13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:2b:e7:9e:1a:87:f5:73:9e:e5:ef:c7:d1:ec: 1b:d0:93:6f:d2:19:46:8a:5a:ac:f2:e1:94:40:2b: 30:dd:8c:5f:8b:85:d5:6b:39:f2:b3:0b:33:b3:4f: f9:25:82:58:f1:6a:ea:87:4d:9c:69:77:ce:c8:ff: a8:56:a2:20:cb:e0:d9:72:64:fa:96:27:fe:78:8c: 78:12:81:dc:41:70:56:c2:8f:11:e3:ff:31:6b:ce: 1f:af:e7:6a:c9:ec:0c:76:e5:55:e4:01:6f:dc:d8: e7:f0:74:09:63:20:5a:f4:43:d0:80:77:9c:a7:c9: a8:55:e9:a3:6f:17:d8:19:58:32:6f:c9:68:db:b0: c6:f1:06:1a:e8:1b:22:ac:cc:ef:1f:85:94:98:fe: ee:8c:bd:fe:46:bf:48:cc:d4:21:24:b4:04:ae:4d: d3:10:f8:80:5c:f7:68:f2:40:ba:55:6f:aa:58:45: 35:b6:bc:c6:52:a5:17:da:34:cd:b5:62:33:09:ee: fc:b2:f4:e2:3e:e8:7a:88:d0:50:91:14:83:a4:25: a2:48:4a:0b:ba:e5:e0:c5:c8:42:2f:3f:13:31:fe: 2f:68:3a:61:6c:c9:a5:9d:e6:c9:93:da:f6:5a:f3: fe:de:d2:ce:eb:fa:04:64:13:52:79:e8:3b:73:4d: b1:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:76:37:11:07:2E:6B:EA:DC:DE:44:8B:BD:E5:21:BE:F0:52:33:7D X509v3 Authority Key Identifier: keyid:74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:9d:aa:7e:f1:58:f8:20:1d:61:28:5d:d4:40:1a:98:95:1e: bc:cf:16:6c:2f:b8:5a:be:b1:68:e0:a1:c9:52:82:12:9a:e5: 44:b5:e9:53:24:f7:e9:50:77:9e:49:8c:9a:41:83:69:67:d3: fd:39:75:fd:2e:bb:22:cd:3a:5c:9e:21:e1:a5:20:1f:f7:03: f7:79:e9:93:35:28:96:59:5a:51:8d:34:97:97:17:01:ca:6f: 6c:c2:35:23:20:11:16:dd:0a:c4:89:ff:2a:56:a1:dc:71:c1: be:39:f0:70:3e:91:9f:86:75:38:5a:95:af:57:eb:c1:c4:0f: 10:ac:b2:c9:71:a0:be:ea:39:4e:9d:c2:bb:d4:a2:16:bd:60: 9e:f5:8c:72:42:96:42:70:7a:3e:25:a6:d9:97:ef:ed:2f:b0: 5b:b8:e9:05:40:c0:ae:5c:07:9c:61:b6:6b:80:91:bd:7b:3f: de:ae:95:d9:ff:af:32:3e:ec:88:d3:eb:6c:8a:f9:0c:72:ab: 1f:8b:01:dd:c8:52:db:92:e2:98:49:bd:1a:d8:2b:91:24:aa: 8e:d3:e7:9a:ba:c8:8e:bb:e1:c1:7e:5b:ff:f4:97:de:2b:82: f0:68:d9:41:74:0e:c1:19:d2:7b:2d:e3:4a:75:d4:27:33:0d: dd:d9:11:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD0cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjIwRTAxMTAvBgNVBAUTKDc0RTVCQjlCNkQzQ0M3RjhDMjlBODNCREM4NDkyQjk2 NTlGMEVFMTcwHhcNMjUxMjA0MTgxODI4WhcNMjUxMjExMTgxODI4WjAYMRYwFAYD VQQDEw02OTMxZDA3NC02YTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ivnnhqH9XOe5e/H0ewb0JNv0hlGilqs8uGUQCsw3Yxfi4XVaznyswszs0/5 JYJY8Wrqh02caXfOyP+oVqIgy+DZcmT6lif+eIx4EoHcQXBWwo8R4/8xa84fr+dq yewMduVV5AFv3Njn8HQJYyBa9EPQgHecp8moVemjbxfYGVgyb8lo27DG8QYa6Bsi rMzvH4WUmP7ujL3+Rr9IzNQhJLQErk3TEPiAXPdo8kC6VW+qWEU1trzGUqUX2jTN tWIzCe78svTiPuh6iNBQkRSDpCWiSEoLuuXgxchCLz8TMf4vaDphbMmlnebJk9r2 WvP+3tLO6/oEZBNSeeg7c02xBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH12NxEH Lmvq3N5Ei73lIb7wUjN9MB8GA1UdIwQYMBaAFHTlu5ttPMf4wpqDvchJK5ZZ8O4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjBFMC9EOTY0QjQ4MjMx MEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9kT1c3bTIwOHhfakNtb085eUVrcmxsbnc3 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RPVzdtMjA4eF9qQ21vTzl5RWtybGxudzdoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjBFMC9EOTY0QjQ4MjMxMEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9kT1c3bTIwOHhf akNtb085eUVrcmxsbnc3aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZnap+8Vj4IB1hKF3UQBqYlR68zxZsL7havrFo4KHJUoISmuVEtelT JPfpUHeeSYyaQYNpZ9P9OXX9LrsizTpcniHhpSAf9wP3eemTNSiWWVpRjTSXlxcB ym9swjUjIBEW3QrEif8qVqHcccG+OfBwPpGfhnU4WpWvV+vBxA8QrLLJcaC+6jlO ncK71KIWvWCe9YxyQpZCcHo+JabZl+/tL7BbuOkFQMCuXAecYbZrgJG9ez/erpXZ /68yPuyI0+tsivkMcqsfiwHdyFLbkuKYSb0a2CuRJKqO0+eausiOu+HBflv/9Jfe K4LwaNlBdA7BGdJ7LeNKddQnMw3d2RG/ -----END CERTIFICATE-----Generated at Sat Dec 6 19:38:19 2025 by rpki-client