This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft File: dd3NDNRiWKwZGsOQoskl2MA1qFc.mft (raw, json) Hash identifier: /+3YbzJ0aZTmos1dOs508duYT8l0FmCkOFhQ+dZONkE= Subject key identifier: B8:05:4B:49:B3:51:1F:E0:FD:48:FB:59:0E:6C:73:77:6D:CE:77:D8 Authority key identifier: 75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 Certificate issuer: /CN=A917E04F/serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Certificate serial: 0EDE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft Manifest number: 0ED6 Signing time: Sat 06 Dec 2025 17:05:39 +0000 Manifest this update: Sat 06 Dec 2025 17:05:38 +0000 Manifest next update: Sat 13 Dec 2025 17:05:38 +0000 Files and hashes: 1: dd3NDNRiWKwZGsOQoskl2MA1qFc.crl (hash: 4GXChmX4N81L+9fKQBnwQRJbOkv+r+unshAZhKOuMfU=) 2: 9C9389D4970311E9B7D3DE5AC4F9AE02.roa (hash: 0msFIFHq8Bi6Dy0orrBJDRYbRJioucs5FAZf2jEryJs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3806 (0xede) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E04F, serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Validity Not Before: Dec 6 17:05:38 2025 GMT Not After : Dec 13 17:05:38 2025 GMT Subject: CN=69346262-d593 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4d:83:4b:b2:f0:7d:14:74:e0:a6:32:1f:e1: 8a:d7:71:d7:98:25:8a:e5:16:2b:17:6b:1c:c5:fc: 0a:ed:7e:1f:3b:46:60:d6:35:20:73:1c:7c:1a:41: 19:dc:ef:d1:f2:28:7d:02:47:20:09:be:57:5b:9c: 50:29:4d:ab:5f:8c:75:bb:af:0b:f0:90:23:85:ba: bb:e5:1a:7f:31:9e:f5:af:51:ab:23:59:05:55:27: b4:b7:a8:cf:e7:ab:39:5c:8c:2f:21:ac:b5:39:8c: 98:c4:a9:ce:2c:25:b3:dd:58:2e:1a:9c:6d:2f:78: 33:f1:b5:cb:18:95:6b:b9:78:03:c9:8f:70:d8:21: ab:70:08:4a:af:17:43:23:38:bc:8e:78:a0:ef:7c: 25:9b:66:90:07:e6:93:c1:68:61:15:39:0e:40:9a: fb:fc:52:b3:6d:b0:c6:2a:6d:0e:6e:52:9b:d4:3c: bf:83:2b:aa:02:fa:83:4a:2f:f6:aa:19:32:68:b2: de:d6:c7:c4:b7:e1:f6:01:5e:d6:18:ce:03:06:34: a4:7d:56:2d:40:23:70:30:e7:84:1a:24:c9:9a:1f: 5e:d5:ba:aa:70:3b:58:37:2e:c8:ec:c9:37:0b:b8: cf:f2:f7:62:33:01:e9:15:32:34:77:73:bf:4c:fb: 13:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:05:4B:49:B3:51:1F:E0:FD:48:FB:59:0E:6C:73:77:6D:CE:77:D8 X509v3 Authority Key Identifier: keyid:75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:4b:0d:65:16:17:5e:10:a4:97:44:6f:3c:23:37:cd:e6:24: 49:06:5d:88:0d:61:33:6e:fa:9c:62:34:a4:e6:fc:e6:e0:dc: df:2f:f3:78:10:fd:7b:41:9e:70:92:1c:34:8e:cb:84:31:4a: 19:93:5a:0c:17:e9:ad:9a:65:d0:75:13:4d:87:0f:c7:e7:04: af:7b:7c:e2:aa:a0:f6:dd:8d:50:de:57:7d:01:31:1e:38:df: d7:16:3d:fb:60:f9:58:ab:00:62:f7:02:e1:fd:52:d8:bf:b4: cc:88:20:85:66:ef:57:4d:ca:f4:6d:ed:99:b9:55:3b:58:bb: 07:30:5c:dd:91:e8:4d:6e:25:db:6a:53:1c:78:25:b3:5d:0d: 40:99:c3:24:cf:bd:e5:d4:01:58:9b:ef:65:7c:6d:1f:73:29: 5e:52:47:21:6d:34:3d:c0:ca:d8:26:32:37:26:d8:e5:c1:29: 57:0a:ca:b6:36:8c:2c:75:ff:9e:57:87:ba:ad:11:25:bc:b1: 90:1a:06:56:85:a5:8f:2f:7f:ca:fd:ba:99:f0:e0:10:6f:a1: 89:f7:d6:81:65:2b:2c:43:b1:dc:68:fc:f1:cf:83:7e:f5:26: ac:8c:5e:42:b9:a0:5e:3b:73:92:9e:6a:d0:dc:cc:e8:ef:5b: 10:ba:44:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDt4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwNEYxMTAvBgNVBAUTKDc1RERDRDBDRDQ2MjU4QUMxOTFBQzM5MEEyQzkyNUQ4 QzAzNUE4NTcwHhcNMjUxMjA2MTcwNTM4WhcNMjUxMjEzMTcwNTM4WjAYMRYwFAYD VQQDEw02OTM0NjI2Mi1kNTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu02DS7LwfRR04KYyH+GK13HXmCWK5RYrF2scxfwK7X4fO0Zg1jUgcxx8GkEZ 3O/R8ih9AkcgCb5XW5xQKU2rX4x1u68L8JAjhbq75Rp/MZ71r1GrI1kFVSe0t6jP 56s5XIwvIay1OYyYxKnOLCWz3VguGpxtL3gz8bXLGJVruXgDyY9w2CGrcAhKrxdD Izi8jnig73wlm2aQB+aTwWhhFTkOQJr7/FKzbbDGKm0OblKb1Dy/gyuqAvqDSi/2 qhkyaLLe1sfEt+H2AV7WGM4DBjSkfVYtQCNwMOeEGiTJmh9e1bqqcDtYNy7I7Mk3 C7jP8vdiMwHpFTI0d3O/TPsTBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLgFS0mz UR/g/Uj7WQ5sc3dtznfYMB8GA1UdIwQYMBaAFHXdzQzUYlisGRrDkKLJJdjANahX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTA0Ri80MTg1MzdGNDk3 MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdLd1pHc09Rb3NrbDJNQTFx RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RkM05ETlJpV0t3WkdzT1Fvc2tsMk1BMXFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTA0Ri80MTg1MzdGNDk3MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdL d1pHc09Rb3NrbDJNQTFxRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVSw1lFhdeEKSXRG88IzfN5iRJBl2IDWEzbvqcYjSk5vzm4NzfL/N4 EP17QZ5wkhw0jsuEMUoZk1oMF+mtmmXQdRNNhw/H5wSve3ziqqD23Y1Q3ld9ATEe ON/XFj37YPlYqwBi9wLh/VLYv7TMiCCFZu9XTcr0be2ZuVU7WLsHMFzdkehNbiXb alMceCWzXQ1AmcMkz73l1AFYm+9lfG0fcyleUkchbTQ9wMrYJjI3JtjlwSlXCsq2 Nowsdf+eV4e6rRElvLGQGgZWhaWPL3/K/bqZ8OAQb6GJ99aBZSssQ7HcaPzxz4N+ 9SasjF5CuaBeO3OSnmrQ3Mzo71sQukRk -----END CERTIFICATE-----Generated at Sat Dec 6 21:28:51 2025 by rpki-client