This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft File: D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft (raw, json) Hash identifier: olc+WuD34pMtGL0N0d+MatL+PjK1G4ckR/EqsMXZDuI= Subject key identifier: C9:78:FE:AC:1E:FF:E2:E5:26:54:3C:E5:DD:3D:85:EC:C0:52:1B:31 Authority key identifier: 0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 Certificate issuer: /CN=A91A7C68/serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Certificate serial: 0234 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft Manifest number: 0227 Signing time: Sun 07 Dec 2025 00:43:10 +0000 Manifest this update: Sun 07 Dec 2025 00:43:09 +0000 Manifest next update: Sun 14 Dec 2025 00:43:09 +0000 Files and hashes: 1: D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl (hash: SMSECqDn5ERTdi0mFG4A+bwvRyJbgEO2lrIXuGx4h8A=) 2: BC72661A972911ED8CBCA476C4F9AE02.roa (hash: 50hi2vNUebBRUz8ceA03XMTbcW3zeli1X+BmJSriA30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:24:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 564 (0x234) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C68, serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Validity Not Before: Dec 7 00:43:09 2025 GMT Not After : Dec 14 00:43:09 2025 GMT Subject: CN=6934cd9d-aa4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:69:d1:6f:ac:0e:5c:36:8a:8d:46:80:ff:2f: cf:b3:76:e9:a0:e2:aa:1c:17:a1:5c:0a:8b:62:1f: ff:c2:4e:1c:4e:52:5d:57:ec:b3:28:a1:f9:4f:e7: 67:5d:9e:b7:de:cb:82:c3:44:a5:5b:96:6f:4f:de: 75:9d:83:c4:77:38:0c:28:64:5e:0d:5c:30:f4:f2: 08:01:5a:23:90:7c:b8:30:37:71:90:58:35:c8:1b: a6:bd:a3:b2:a5:20:65:af:cd:16:75:a0:45:54:31: ad:24:31:b0:6d:07:0c:a3:4a:25:aa:ed:55:c4:57: 88:b7:a2:22:4e:9e:a9:fe:3d:19:3e:8b:f8:47:86: f2:71:b7:e0:f1:b6:4a:6d:e7:5c:ba:bf:fe:5e:2c: 38:b3:c4:c8:09:ae:00:ad:fc:93:5a:dd:97:39:36: c8:42:90:d1:9f:0f:f0:e6:a2:dd:3d:f2:1e:b2:ea: f1:76:c8:bb:c4:30:0d:31:1c:fd:b9:55:2c:a0:ad: f5:a8:3c:da:21:8c:81:4f:b8:f7:f4:17:12:f8:d4: 30:fe:b7:b1:0f:a0:0f:05:61:5b:37:3d:c2:e5:4e: 89:06:54:18:1c:d1:29:a2:a9:9a:26:12:f0:87:f8: 21:e4:6c:d5:54:17:65:24:93:23:38:ff:43:ad:60: 47:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:78:FE:AC:1E:FF:E2:E5:26:54:3C:E5:DD:3D:85:EC:C0:52:1B:31 X509v3 Authority Key Identifier: keyid:0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:e0:4d:22:db:3f:a8:71:42:54:ea:ed:db:6c:5d:d5:e3:07: 1e:07:67:ee:b1:ea:18:d5:3b:77:48:6c:b6:77:4c:1f:85:2d: 3e:8b:58:23:63:9b:12:10:7a:f2:dc:92:85:d3:87:51:cd:68: 14:99:fe:b8:09:70:a9:94:88:71:c7:79:63:10:9f:0a:69:c0: e2:3a:16:1b:28:f3:d5:ef:d2:b9:96:fa:67:c1:ae:1f:f0:33: e9:3c:3d:35:11:b4:61:a4:3f:8f:9a:32:bf:13:4d:af:b3:9d: 17:81:6f:58:b1:35:3a:cf:d9:9f:83:f2:ff:46:e4:a3:87:99: db:87:de:d0:00:3e:4e:13:cd:ca:f8:27:1c:e4:e6:69:22:ea: 3f:8a:24:86:cc:db:0d:ea:f2:40:6f:50:e9:c5:13:d1:1f:84: 2b:50:e9:c8:03:e1:c1:75:14:54:42:36:c4:bd:a7:5f:e6:e6: 62:b9:93:1d:59:1e:49:83:18:fd:a8:94:1b:c5:63:c4:7a:80: 2a:3a:e3:4b:92:bb:69:da:c4:26:6c:c1:fb:5e:99:3c:f4:cb: a2:fa:ef:fd:d9:b7:b1:54:28:57:62:b7:c7:15:0c:36:56:67: d7:61:7f:f5:03:25:12:9e:e4:12:bd:b4:7d:cd:d5:3c:0c:f8: 6b:64:5f:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNjgxMTAvBgNVBAUTKDBGNjI2QTMyNjRENkZFQ0NDQkZFQjJEOTlCMURCRjhB RkZFQzNCMzQwHhcNMjUxMjA3MDA0MzA5WhcNMjUxMjE0MDA0MzA5WjAYMRYwFAYD VQQDEw02OTM0Y2Q5ZC1hYTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz2nRb6wOXDaKjUaA/y/Ps3bpoOKqHBehXAqLYh//wk4cTlJdV+yzKKH5T+dn XZ633suCw0SlW5ZvT951nYPEdzgMKGReDVww9PIIAVojkHy4MDdxkFg1yBumvaOy pSBlr80WdaBFVDGtJDGwbQcMo0olqu1VxFeIt6IiTp6p/j0ZPov4R4bycbfg8bZK bedcur/+Xiw4s8TICa4ArfyTWt2XOTbIQpDRnw/w5qLdPfIesurxdsi7xDANMRz9 uVUsoK31qDzaIYyBT7j39BcS+NQw/rexD6APBWFbNz3C5U6JBlQYHNEpoqmaJhLw h/gh5GzVVBdlJJMjOP9DrWBHAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMl4/qwe /+LlJlQ85d09hezAUhsxMB8GA1UdIwQYMBaAFA9iajJk1v7My/6y2Zsdv4r/7Ds0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M2OC80MjM5ODZGNjk3 MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19zekxfckxabXgyX2l2X3NP elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QySnFNbVRXX3N6TF9yTFpteDJfaXZfc096US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M2OC80MjM5ODZGNjk3MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19z ekxfckxabXgyX2l2X3NPelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBE4E0i2z+ocUJU6u3bbF3V4wceB2fuseoY1Tt3SGy2d0wfhS0+i1gj Y5sSEHry3JKF04dRzWgUmf64CXCplIhxx3ljEJ8KacDiOhYbKPPV79K5lvpnwa4f 8DPpPD01EbRhpD+PmjK/E02vs50XgW9YsTU6z9mfg/L/RuSjh5nbh97QAD5OE83K +Ccc5OZpIuo/iiSGzNsN6vJAb1DpxRPRH4QrUOnIA+HBdRRUQjbEvadf5uZiuZMd WR5Jgxj9qJQbxWPEeoAqOuNLkrtp2sQmbMH7Xpk89Mui+u/92bexVChXYrfHFQw2 VmfXYX/1AyUSnuQSvbR9zdU8DPhrZF8f -----END CERTIFICATE-----Generated at Sun Dec 7 03:24:35 2025 by rpki-client