This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft File: DmxKtne94a1EYD_XN9olwGAcRZw.mft (raw, json) Hash identifier: k9uIqOoe0wJMdnhzjVvrzdP5m27UJOmOPH94IQX3T0w= Subject key identifier: C2:B4:77:DE:ED:73:A2:D4:16:A3:28:4F:76:78:C9:15:44:C3:11:A4 Authority key identifier: 0E:6C:4A:B6:77:BD:E1:AD:44:60:3F:D7:37:DA:25:C0:60:1C:45:9C Certificate issuer: /CN=A91939CF/serialNumber=0E6C4AB677BDE1AD44603FD737DA25C0601C459C Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmxKtne94a1EYD_XN9olwGAcRZw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft Manifest number: 8B Signing time: Fri 05 Dec 2025 04:30:37 +0000 Manifest this update: Fri 05 Dec 2025 04:30:36 +0000 Manifest next update: Fri 12 Dec 2025 04:30:36 +0000 Files and hashes: 1: DmxKtne94a1EYD_XN9olwGAcRZw.crl (hash: yFvK43DCVOvwh8nzYT94GrZ966ziemQ4g+JZocc6Ha8=) 2: C488A080FB5911EFA827FD17C4F9AE02.roa (hash: JCV9BgemXhUBaAgBPhl6UiNH0ukdvH/wrcQapOQQK+U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.crl rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmxKtne94a1EYD_XN9olwGAcRZw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:30:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91939CF, serialNumber=0E6C4AB677BDE1AD44603FD737DA25C0601C459C Validity Not Before: Dec 5 04:30:36 2025 GMT Not After : Dec 12 04:30:36 2025 GMT Subject: CN=69325fec-6dc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:44:32:1d:3c:85:e1:c0:ab:0b:51:42:55:37: d3:41:13:c5:16:d9:61:2e:c0:fe:d5:5a:1b:73:ab: f4:a0:27:7e:6e:a0:d4:c8:17:c2:91:98:b5:1f:f2: ab:aa:47:f3:b6:0f:0a:71:a5:25:2c:0b:74:07:35: 25:82:c6:1d:c9:3e:4f:d0:10:ec:81:a0:f5:0a:bb: d8:09:72:98:21:d9:e1:e7:cf:2e:e2:81:a3:e7:b6: 75:16:1a:1e:29:79:b7:54:2c:7e:db:b8:ab:65:90: c3:52:7f:06:e4:c6:4d:0a:22:aa:7b:1e:16:4d:a7: 3e:f9:73:45:e9:c5:f0:29:e4:50:a7:10:65:03:4d: 70:7d:b6:b2:ca:08:4b:d2:3d:da:96:dd:d6:79:c2: 4f:70:50:d4:b8:02:18:65:f0:06:ce:fb:76:ba:20: a9:d4:e1:95:6c:cd:ad:07:22:94:80:6e:91:ea:e4: f6:c3:f6:ed:fd:60:4d:85:cf:21:5b:dd:61:46:9c: b7:0b:8f:12:d3:a0:f1:6c:11:d1:c5:ef:31:65:a2: 05:07:1a:48:af:98:54:e2:b6:70:ff:f5:ac:ad:20: 2e:e5:33:f9:53:21:64:1a:d1:c7:6a:f6:03:4a:3e: 76:f0:48:3f:81:54:2b:19:5e:69:9f:db:f4:ab:82: 57:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:B4:77:DE:ED:73:A2:D4:16:A3:28:4F:76:78:C9:15:44:C3:11:A4 X509v3 Authority Key Identifier: keyid:0E:6C:4A:B6:77:BD:E1:AD:44:60:3F:D7:37:DA:25:C0:60:1C:45:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmxKtne94a1EYD_XN9olwGAcRZw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:65:0e:a9:72:6b:d6:cc:af:da:26:8d:3a:0a:ae:fb:e7:69: bf:3a:67:ff:e7:a0:c3:12:85:eb:00:4c:7b:ad:31:4d:2e:57: 96:fa:ae:1b:f6:ae:eb:38:8a:af:6d:c3:1b:c1:7b:38:ae:93: 49:16:1d:11:32:58:a7:25:e1:06:17:f6:b7:9b:f9:8b:86:6f: 5c:3d:0b:24:c3:99:21:f4:65:f8:ac:cb:4c:29:aa:5d:bf:d0: 20:25:21:d9:74:04:0b:b6:aa:e0:40:5f:9a:29:10:f3:41:d6: 4c:23:63:f3:fd:37:6a:db:36:d4:2f:dd:94:cc:a7:a5:46:9d: 50:e4:78:9c:86:b4:3a:1c:a8:6c:3f:0d:f4:1e:ce:e9:e2:89: 71:fa:94:de:9a:af:9d:f3:66:b6:48:d0:79:cb:3d:a2:1e:74: 86:1a:d1:46:a9:7b:be:6f:fd:30:20:31:bf:1b:6c:60:83:92: a8:e9:ac:a3:07:35:5d:a6:63:bd:bd:28:62:4f:b6:48:35:54: cc:3a:29:96:bf:ca:fe:5b:99:38:0d:e9:64:87:0f:39:36:0d: 13:b1:25:b6:3c:44:60:86:fd:fa:60:b6:e6:d1:06:2e:54:54: 6f:01:e0:f3:b8:e4:c4:96:f1:4b:3b:0d:1a:9b:98:ed:bc:1e: 93:6d:83:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM5Q0YxMTAvBgNVBAUTKDBFNkM0QUI2NzdCREUxQUQ0NDYwM0ZENzM3REEyNUMw NjAxQzQ1OUMwHhcNMjUxMjA1MDQzMDM2WhcNMjUxMjEyMDQzMDM2WjAYMRYwFAYD VQQDEw02OTMyNWZlYy02ZGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz0QyHTyF4cCrC1FCVTfTQRPFFtlhLsD+1Vobc6v0oCd+bqDUyBfCkZi1H/Kr qkfztg8KcaUlLAt0BzUlgsYdyT5P0BDsgaD1CrvYCXKYIdnh588u4oGj57Z1Fhoe KXm3VCx+27irZZDDUn8G5MZNCiKqex4WTac++XNF6cXwKeRQpxBlA01wfbayyghL 0j3alt3WecJPcFDUuAIYZfAGzvt2uiCp1OGVbM2tByKUgG6R6uT2w/bt/WBNhc8h W91hRpy3C48S06DxbBHRxe8xZaIFBxpIr5hU4rZw//WsrSAu5TP5UyFkGtHHavYD Sj528Eg/gVQrGV5pn9v0q4JXNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMK0d97t c6LUFqMoT3Z4yRVEwxGkMB8GA1UdIwQYMBaAFA5sSrZ3veGtRGA/1zfaJcBgHEWc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzlDRi81NkYzMUZCNEZC NTkxMUVGODY1MDI3MTdDNEY5QUUwMi9EbXhLdG5lOTRhMUVZRF9YTjlvbHdHQWNS WncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RteEt0bmU5NGExRVlEX1hOOW9sd0dBY1Jady5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzlDRi81NkYzMUZCNEZCNTkxMUVGODY1MDI3MTdDNEY5QUUwMi9EbXhLdG5lOTRh MUVZRF9YTjlvbHdHQWNSWncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDOZQ6pcmvWzK/aJo06Cq7752m/Omf/56DDEoXrAEx7rTFNLleW+q4b 9q7rOIqvbcMbwXs4rpNJFh0RMlinJeEGF/a3m/mLhm9cPQskw5kh9GX4rMtMKapd v9AgJSHZdAQLtqrgQF+aKRDzQdZMI2Pz/Tdq2zbUL92UzKelRp1Q5HichrQ6HKhs Pw30Hs7p4olx+pTemq+d82a2SNB5yz2iHnSGGtFGqXu+b/0wIDG/G2xgg5Ko6ayj BzVdpmO9vShiT7ZINVTMOimWv8r+W5k4Delkhw85Ng0TsSW2PERghv36YLbm0QYu VFRvAeDzuOTElvFLOw0am5jtvB6TbYOa -----END CERTIFICATE-----Generated at Sat Dec 6 22:07:56 2025 by rpki-client