This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft File: dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft (raw, json) Hash identifier: OSrCtvK7egBo19Sj2GM/zXSbiVdUJ9iBCUowJNMQZ+U= Subject key identifier: 84:DB:4E:B5:95:37:05:F6:50:56:10:3C:A5:DF:7E:C7:FD:3A:D6:43 Authority key identifier: 76:52:A2:2F:C2:50:FA:AA:E3:AB:2C:0C:2A:FD:D0:4E:30:47:E5:07 Certificate issuer: /CN=A917ADD1/serialNumber=7652A22FC250FAAAE3AB2C0C2AFDD04E3047E507 Certificate serial: 01B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft Manifest number: 01B2 Signing time: Fri 05 Dec 2025 01:23:29 +0000 Manifest this update: Fri 05 Dec 2025 01:23:28 +0000 Manifest next update: Fri 12 Dec 2025 01:23:28 +0000 Files and hashes: 1: dlKiL8JQ-qrjqywMKv3QTjBH5Qc.crl (hash: Jtu1/+yB+qZBeT2LykEZ/ZWS3jfO+1JWlOlgCHOJl+g=) 2: 8D0C1E0E37EF11EE82AF270BC4F9AE02.roa (hash: GFGPvdmy2vrmiAyM3NUeTKYyq91wUi+ACbGsbCoh47g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.crl rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:23:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 437 (0x1b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ADD1, serialNumber=7652A22FC250FAAAE3AB2C0C2AFDD04E3047E507 Validity Not Before: Dec 5 01:23:28 2025 GMT Not After : Dec 12 01:23:28 2025 GMT Subject: CN=69323411-75b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ad:2f:e4:cf:2a:2d:48:48:2e:69:7a:68:4e: 92:84:c8:aa:cc:fa:91:f7:b0:1f:90:d2:cb:53:b1: fd:95:39:42:c5:e6:22:bd:90:12:29:9e:2d:3a:d9: f1:bb:20:33:2b:fa:18:56:ff:a7:0b:34:35:70:b7: 8f:a6:6f:b3:93:a5:13:a5:c2:c3:4c:72:aa:28:4b: 88:c1:a0:95:17:c7:47:a1:4b:d2:87:a2:6f:4a:c6: 5b:56:79:78:a1:5f:da:64:b7:f5:36:2a:d8:65:28: d1:84:81:42:ad:e4:71:cd:5c:1e:c8:7d:f2:61:ba: ef:d7:59:ec:5a:a3:d6:17:de:34:e9:4d:1e:09:3c: 51:0a:09:6b:c7:bb:c0:fe:b7:6b:bc:bc:c4:0f:ca: 9e:43:61:ea:5c:9a:8a:54:cf:40:2e:85:c6:34:82: b5:35:80:c1:79:84:b0:cb:ae:62:05:81:15:a1:02: 32:30:c0:25:d0:e2:38:4a:01:77:4d:77:0b:7d:73: ef:bc:6e:e9:31:f7:3f:05:4f:da:c8:11:81:83:e5: 63:31:b6:16:da:ec:fd:a3:e4:fe:16:e0:15:cb:41: 08:67:e3:10:13:0e:d8:04:99:25:b5:52:21:11:84: 14:ef:34:6e:0a:be:a6:09:17:a6:f2:3b:21:70:a9: af:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:DB:4E:B5:95:37:05:F6:50:56:10:3C:A5:DF:7E:C7:FD:3A:D6:43 X509v3 Authority Key Identifier: keyid:76:52:A2:2F:C2:50:FA:AA:E3:AB:2C:0C:2A:FD:D0:4E:30:47:E5:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:fc:18:b7:c6:5c:37:dd:2b:a7:53:8e:94:af:33:7e:05:93: cc:d9:2d:f7:d1:8f:8d:7a:aa:52:b1:3b:c7:59:7a:91:42:3a: 7b:cd:21:37:c8:f6:5b:1f:42:ba:a0:d0:51:28:b0:9a:67:46: 10:ef:fd:31:31:4b:9a:06:c4:3e:e9:dd:ee:89:41:98:ab:3f: f2:9b:f6:5c:48:94:66:71:e0:52:10:07:09:fd:5a:fa:2a:fc: 1b:08:df:cb:f4:16:51:8a:97:72:9d:15:52:ed:d4:e9:64:dd: f3:6e:c7:05:53:02:0f:01:ee:3e:77:ed:9c:02:07:14:55:7d: 38:73:99:38:af:63:db:60:99:c2:ac:f8:f2:4f:7e:c2:d8:8a: 6c:1f:5e:95:06:0f:29:62:31:69:98:c0:8c:8c:4c:0f:0e:e0: 29:6a:87:31:2a:9b:77:0d:1f:53:cd:98:c4:5c:c9:86:4e:51: ce:66:d5:1d:9f:84:ab:56:b4:c8:47:cb:8f:cd:7f:31:e2:40: 91:04:ab:df:8a:45:73:a3:8b:74:3c:87:d9:e9:0c:98:3c:01: fc:84:aa:c1:e5:13:ba:bf:63:f2:4c:b9:d2:17:90:7e:b6:8d: f8:39:94:18:86:b8:1f:99:dc:4d:a7:b2:bb:be:b4:95:bd:b9: 2e:86:ab:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FERDExMTAvBgNVBAUTKDc2NTJBMjJGQzI1MEZBQUFFM0FCMkMwQzJBRkREMDRF MzA0N0U1MDcwHhcNMjUxMjA1MDEyMzI4WhcNMjUxMjEyMDEyMzI4WjAYMRYwFAYD VQQDEw02OTMyMzQxMS03NWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvK0v5M8qLUhILml6aE6ShMiqzPqR97AfkNLLU7H9lTlCxeYivZASKZ4tOtnx uyAzK/oYVv+nCzQ1cLePpm+zk6UTpcLDTHKqKEuIwaCVF8dHoUvSh6JvSsZbVnl4 oV/aZLf1NirYZSjRhIFCreRxzVweyH3yYbrv11nsWqPWF9406U0eCTxRCglrx7vA /rdrvLzED8qeQ2HqXJqKVM9ALoXGNIK1NYDBeYSwy65iBYEVoQIyMMAl0OI4SgF3 TXcLfXPvvG7pMfc/BU/ayBGBg+VjMbYW2uz9o+T+FuAVy0EIZ+MQEw7YBJkltVIh EYQU7zRuCr6mCRem8jshcKmvWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFITbTrWV NwX2UFYQPKXffsf9OtZDMB8GA1UdIwQYMBaAFHZSoi/CUPqq46ssDCr90E4wR+UH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUREMS9EMDA2QzBERTM3 RUUxMUVFOThERjM2NjZDNEY5QUUwMi9kbEtpTDhKUS1xcmpxeXdNS3YzUVRqQkg1 UWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RsS2lMOEpRLXFyanF5d01LdjNRVGpCSDVRYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUREMS9EMDA2QzBERTM3RUUxMUVFOThERjM2NjZDNEY5QUUwMi9kbEtpTDhKUS1x cmpxeXdNS3YzUVRqQkg1UWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBA/Bi3xlw33SunU46UrzN+BZPM2S330Y+NeqpSsTvHWXqRQjp7zSE3 yPZbH0K6oNBRKLCaZ0YQ7/0xMUuaBsQ+6d3uiUGYqz/ym/ZcSJRmceBSEAcJ/Vr6 KvwbCN/L9BZRipdynRVS7dTpZN3zbscFUwIPAe4+d+2cAgcUVX04c5k4r2PbYJnC rPjyT37C2IpsH16VBg8pYjFpmMCMjEwPDuApaocxKpt3DR9TzZjEXMmGTlHOZtUd n4SrVrTIR8uPzX8x4kCRBKvfikVzo4t0PIfZ6QyYPAH8hKrB5RO6v2PyTLnSF5B+ to34OZQYhrgfmdxNp7K7vrSVvbkuhqsA -----END CERTIFICATE-----Generated at Sat Dec 6 18:49:41 2025 by rpki-client