This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft File: DGhYIowwF0gr3H85geiYuVbaoCk.mft (raw, json) Hash identifier: e7k7fZLTxwEMqLhQ7q9rjRkBzALxhLd0fO1/IgsQtRc= Subject key identifier: 18:D6:BF:E9:E5:E0:79:2E:50:6A:C1:39:CF:E5:A3:44:96:CD:57:9C Authority key identifier: 0C:68:58:22:8C:30:17:48:2B:DC:7F:39:81:E8:98:B9:56:DA:A0:29 Certificate issuer: /CN=A9170975/serialNumber=0C6858228C3017482BDC7F3981E898B956DAA029 Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft Manifest number: 63 Signing time: Fri 05 Dec 2025 04:55:35 +0000 Manifest this update: Fri 05 Dec 2025 04:55:34 +0000 Manifest next update: Fri 12 Dec 2025 04:55:34 +0000 Files and hashes: 1: DGhYIowwF0gr3H85geiYuVbaoCk.crl (hash: /siurKnaffNBbQjVhnbXPDkASry9yzfRhiOWfoZMhvk=) 2: B12A39803A2A11F09E37DB48C4F9AE02.roa (hash: k8LJciNO3nbjiZjsCJ8G57U38keqVi40DfjRW/V+QTI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.crl rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:55:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170975, serialNumber=0C6858228C3017482BDC7F3981E898B956DAA029 Validity Not Before: Dec 5 04:55:34 2025 GMT Not After : Dec 12 04:55:34 2025 GMT Subject: CN=693265c7-fdb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:09:3b:45:58:5a:fe:10:f5:30:d5:d1:fe:7a: 3c:9b:de:bb:ab:88:a5:9f:c0:d4:8b:81:78:34:6b: 88:fd:e0:14:fb:8b:1c:d3:51:84:d6:5a:de:bf:45: 89:82:90:10:93:5e:e5:c6:9e:69:cb:72:ec:4f:2f: 15:14:02:5b:4a:fc:d9:e5:ae:1a:cf:a2:7e:87:33: ea:29:e4:cf:3e:a4:31:71:3f:2a:4c:0e:c3:8c:86: 23:d2:02:0d:04:39:d8:87:65:e4:22:d4:c2:f5:ca: 7a:89:3c:65:60:2a:03:09:9e:cf:12:61:3b:7d:6b: e6:1b:65:e4:ad:5c:c1:e3:0a:72:ea:c4:e0:96:41: f6:dd:f1:79:a9:0b:e9:64:9a:9f:86:2e:7e:78:53: 98:84:d5:58:8f:0b:03:d5:b7:42:9c:92:f4:de:00: cd:38:09:69:d5:0c:dc:3b:ae:f0:65:34:a9:c7:08: 17:54:f4:e7:62:78:78:58:05:41:88:29:14:87:74: f3:16:a1:2c:c5:86:fe:84:64:88:6c:25:19:b3:46: ed:b4:3b:01:c3:b0:28:b8:b2:6d:39:ff:59:f4:7a: 62:fc:4f:74:fb:3c:f0:74:92:2d:0d:bc:9b:7d:55: 46:50:aa:91:a9:da:f5:1f:15:cd:13:83:56:45:a6: 2e:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:D6:BF:E9:E5:E0:79:2E:50:6A:C1:39:CF:E5:A3:44:96:CD:57:9C X509v3 Authority Key Identifier: keyid:0C:68:58:22:8C:30:17:48:2B:DC:7F:39:81:E8:98:B9:56:DA:A0:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:4f:fb:76:5f:16:ad:3a:ac:f8:98:a5:c0:8d:d8:33:92:15: 04:54:84:59:ec:58:54:ee:07:c5:c7:4c:ac:5c:87:e3:f9:6d: 65:cd:a4:f1:48:a4:22:46:e7:ba:03:fe:22:b5:e4:39:c1:b2: 00:76:9d:3f:35:31:79:85:0b:10:17:af:db:1d:7b:9c:5f:38: 6a:ce:85:3f:57:54:2d:e6:fe:55:53:9f:65:6e:24:9f:15:81: 14:5c:ce:f7:8e:7c:8e:73:3d:b1:71:2b:c2:33:dd:66:8c:9b: 75:92:9a:4e:d5:f1:ef:a4:d7:66:a7:96:55:b0:a6:0a:9f:b8: 88:ef:1e:a9:06:cc:c7:69:c7:ef:2f:d2:ea:b3:8a:62:ab:af: 95:7c:fd:25:00:a2:c5:0c:21:04:f0:9c:58:b2:ec:3e:4e:ba: 59:c7:87:b2:d1:1a:77:34:f7:41:ec:15:fe:f6:24:64:11:65: a8:f0:ef:47:b3:63:9d:c3:77:92:50:9b:41:ea:15:63:33:03: 23:c3:a6:f2:d7:ce:63:6d:c6:8a:c5:da:13:be:9f:0a:a6:0f: d4:6a:ab:e1:a4:73:ed:5e:61:0f:3c:ad:b2:d1:1c:ef:50:51: 98:41:d8:d0:f1:df:91:48:c0:08:02:f5:d5:57:f6:23:c5:50: 3f:12:92:12 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MDk3NTExMC8GA1UEBRMoMEM2ODU4MjI4QzMwMTc0ODJCREM3RjM5ODFFODk4Qjk1 NkRBQTAyOTAeFw0yNTEyMDUwNDU1MzRaFw0yNTEyMTIwNDU1MzRaMBgxFjAUBgNV BAMTDTY5MzI2NWM3LWZkYjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChCTtFWFr+EPUw1dH+ejyb3ruriKWfwNSLgXg0a4j94BT7ixzTUYTWWt6/RYmC kBCTXuXGnmnLcuxPLxUUAltK/NnlrhrPon6HM+op5M8+pDFxPypMDsOMhiPSAg0E OdiHZeQi1ML1ynqJPGVgKgMJns8SYTt9a+YbZeStXMHjCnLqxOCWQfbd8XmpC+lk mp+GLn54U5iE1ViPCwPVt0KckvTeAM04CWnVDNw7rvBlNKnHCBdU9OdieHhYBUGI KRSHdPMWoSzFhv6EZIhsJRmzRu20OwHDsCi4sm05/1n0emL8T3T7PPB0ki0NvJt9 VUZQqpGp2vUfFc0Tg1ZFpi5NAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGNa/6eXg eS5QasE5z+WjRJbNV5wwHwYDVR0jBBgwFoAUDGhYIowwF0gr3H85geiYuVbaoCkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwOTc1LzY3QzdBNDJBM0Ey NjExRjBCQ0NGNUUxRkM0RjlBRTAyL0RHaFlJb3d3RjBncjNIODVnZWlZdVZiYW9D ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvREdoWUlvd3dGMGdyM0g4NWdlaVl1VmJhb0NrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw OTc1LzY3QzdBNDJBM0EyNjExRjBCQ0NGNUUxRkM0RjlBRTAyL0RHaFlJb3d3RjBn cjNIODVnZWlZdVZiYW9Day5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC9P+3ZfFq06rPiYpcCN2DOSFQRUhFnsWFTuB8XHTKxch+P5bWXNpPFI pCJG57oD/iK15DnBsgB2nT81MXmFCxAXr9sde5xfOGrOhT9XVC3m/lVTn2VuJJ8V gRRczveOfI5zPbFxK8Iz3WaMm3WSmk7V8e+k12anllWwpgqfuIjvHqkGzMdpx+8v 0uqzimKrr5V8/SUAosUMIQTwnFiy7D5OulnHh7LRGnc090HsFf72JGQRZajw70ez Y53Dd5JQm0HqFWMzAyPDpvLXzmNtxorF2hO+nwqmD9Rqq+Gkc+1eYQ88rbLRHO9Q UZhB2NDx35FIwAgC9dVX9iPFUD8SkhI= -----END CERTIFICATE-----Generated at Sat Dec 6 21:00:39 2025 by rpki-client