This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft File: dCWq4W3bRko-K0ecekDJkCODa6A.mft (raw, json) Hash identifier: zncu/fyRCP06Jg2tHSE/qbQmT21gklbckO+CCaP2Mqk= Subject key identifier: 98:94:8B:A6:81:69:22:D1:38:5E:AD:80:A5:C6:14:ED:CA:BD:4A:40 Authority key identifier: 74:25:AA:E1:6D:DB:46:4A:3E:2B:47:9C:7A:40:C9:90:23:83:6B:A0 Certificate issuer: /CN=A9163998/serialNumber=7425AAE16DDB464A3E2B479C7A40C99023836BA0 Certificate serial: 0325 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft Manifest number: 030D Signing time: Sun 21 Dec 2025 00:29:16 +0000 Manifest this update: Sun 21 Dec 2025 00:29:16 +0000 Manifest next update: Sun 28 Dec 2025 00:29:16 +0000 Files and hashes: 1: dCWq4W3bRko-K0ecekDJkCODa6A.crl (hash: kyzsc3yj4/J/3V4H/+K3bYU1Njke1nY1WfhMeyJvHWo=) 2: 9BA94A4A0D8911ED999D4F3BC4F9AE02.roa (hash: oF4weljdyCKoRiSGG2z17wTaQsEcpMts8sv9D62jJPE=) 3: 1EA5984A0BE111ED9E3AA135C4F9AE02.roa (hash: TJ9ECbrNmrbj5mhfI5HTyIvIslW5iwcIqu2ptc1cXhA=) 4: A3C1A64E020811EF900CC60CC4F9AE02.roa (hash: D7GG+9V9VetFTo3WS2746v47jcVH9mGxmAznj65oILQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.crl rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:29:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 805 (0x325) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163998, serialNumber=7425AAE16DDB464A3E2B479C7A40C99023836BA0 Validity Not Before: Dec 21 00:29:16 2025 GMT Not After : Dec 28 00:29:16 2025 GMT Subject: CN=69473f5c-5fb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:68:c5:3e:09:ab:b2:9d:17:14:e5:b4:87:40: e4:b1:c3:a7:67:5d:a4:6b:40:78:9b:a9:67:e8:f4: 40:1e:f5:30:f4:69:f8:d8:01:5a:41:5c:6c:70:6d: 7f:f3:90:98:db:6a:96:d7:93:ee:dd:81:9d:5d:c0: 41:6e:4f:7f:51:1a:dd:d8:41:e6:45:fa:39:ae:6c: 49:93:8a:08:4f:78:7c:cb:a9:23:04:ef:23:0a:d3: 57:5a:23:53:29:2e:80:d1:ae:1b:24:a4:e2:62:44: 2f:e9:cc:3e:47:11:a2:17:c0:80:8c:7e:a2:40:36: b2:03:2b:e6:6f:4b:49:fa:9e:89:4b:58:7e:19:1b: 26:cc:ca:5d:67:91:47:74:93:c4:6b:8b:28:cc:5b: de:cd:dc:7f:02:ec:3f:cb:4c:14:62:dd:16:07:c2: 47:e8:88:e3:07:3f:19:34:86:71:2a:74:55:2a:d3: 5d:64:84:5c:07:64:d0:29:6e:7c:c8:a4:b7:f6:c2: e5:3f:81:f9:f3:33:75:20:20:7d:af:2f:5d:7d:a4: 71:16:23:5d:31:80:81:8a:cc:95:4c:45:91:54:e1: b5:62:67:c7:2f:5c:67:73:97:81:16:e5:b6:36:5d: cd:44:3e:d7:93:cb:92:c1:2c:1d:42:1b:fb:12:9a: c9:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:94:8B:A6:81:69:22:D1:38:5E:AD:80:A5:C6:14:ED:CA:BD:4A:40 X509v3 Authority Key Identifier: keyid:74:25:AA:E1:6D:DB:46:4A:3E:2B:47:9C:7A:40:C9:90:23:83:6B:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:c0:62:6f:e4:30:a4:c3:9d:f4:c2:6e:8b:0b:9e:e6:4b:30: fe:be:8f:dd:55:ca:10:bf:4f:99:a5:c5:15:1a:0f:26:97:c0: 81:75:be:a9:2b:6c:cb:c8:f2:c4:15:a2:89:9f:25:51:fa:c8: 1c:95:4e:79:d3:c3:e7:40:2c:26:45:7c:cd:51:8b:0b:d4:4f: b4:13:e9:64:ad:89:12:41:3c:d2:1e:e8:d9:ee:81:4a:83:8b: 29:48:20:e0:97:e1:90:bd:40:30:ed:f1:94:09:b1:f7:49:b4: b3:2d:12:9e:cf:86:db:8e:e2:af:e3:00:7c:56:ae:11:cd:68: 0a:3e:e3:52:21:1f:2f:dc:d2:89:ff:77:23:a4:95:6a:d4:02: cf:15:06:36:c2:19:fa:22:11:a6:94:13:ec:8e:8a:5b:d6:ea: a5:e1:f3:b2:d2:08:55:12:88:d7:7e:67:62:83:2f:5b:30:2b: f0:b8:4a:21:71:e5:ce:f8:dd:8c:46:e5:cb:e2:0c:ea:c3:7f: af:de:43:72:da:73:da:cb:5f:62:56:ba:f0:88:5e:f4:30:f7: dc:9f:6f:ce:5e:32:0e:5e:b0:11:d8:8c:3a:32:46:40:13:04: ab:14:00:ea:49:67:d0:a4:97:77:10:12:bb:93:b0:0b:a0:b8: 28:8b:45:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAyUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM5OTgxMTAvBgNVBAUTKDc0MjVBQUUxNkREQjQ2NEEzRTJCNDc5QzdBNDBDOTkw MjM4MzZCQTAwHhcNMjUxMjIxMDAyOTE2WhcNMjUxMjI4MDAyOTE2WjAYMRYwFAYD VQQDDA02OTQ3M2Y1Yy01ZmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0GjFPgmrsp0XFOW0h0DkscOnZ12ka0B4m6ln6PRAHvUw9Gn42AFaQVxscG1/ 85CY22qW15Pu3YGdXcBBbk9/URrd2EHmRfo5rmxJk4oIT3h8y6kjBO8jCtNXWiNT KS6A0a4bJKTiYkQv6cw+RxGiF8CAjH6iQDayAyvmb0tJ+p6JS1h+GRsmzMpdZ5FH dJPEa4sozFvezdx/Auw/y0wUYt0WB8JH6IjjBz8ZNIZxKnRVKtNdZIRcB2TQKW58 yKS39sLlP4H58zN1ICB9ry9dfaRxFiNdMYCBisyVTEWRVOG1YmfHL1xnc5eBFuW2 Nl3NRD7Xk8uSwSwdQhv7EprJWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJiUi6aB aSLROF6tgKXGFO3KvUpAMB8GA1UdIwQYMBaAFHQlquFt20ZKPitHnHpAyZAjg2ug MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Mzk5OC8zMENDMDg0QTA4 REMxMUVEQkVERTYxMkJDNEY5QUUwMi9kQ1dxNFczYlJrby1LMGVjZWtESmtDT0Rh NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RDV3E0VzNiUmtvLUswZWNla0RKa0NPRGE2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Mzk5OC8zMENDMDg0QTA4REMxMUVEQkVERTYxMkJDNEY5QUUwMi9kQ1dxNFczYlJr by1LMGVjZWtESmtDT0RhNkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxwGJv5DCkw530wm6LC57mSzD+vo/dVcoQv0+ZpcUVGg8ml8CBdb6p K2zLyPLEFaKJnyVR+sgclU5508PnQCwmRXzNUYsL1E+0E+lkrYkSQTzSHujZ7oFK g4spSCDgl+GQvUAw7fGUCbH3SbSzLRKez4bbjuKv4wB8Vq4RzWgKPuNSIR8v3NKJ /3cjpJVq1ALPFQY2whn6IhGmlBPsjopb1uql4fOy0ghVEojXfmdigy9bMCvwuEoh ceXO+N2MRuXL4gzqw3+v3kNy2nPay19iVrrwiF70MPfcn2/OXjIOXrAR2Iw6MkZA EwSrFADqSWfQpJd3EBK7k7ALoLgoi0WI -----END CERTIFICATE-----Generated at Sun Dec 21 06:57:06 2025 by rpki-client