This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft File: D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft (raw, json) Hash identifier: WFXyKgzbZO/XwbzgpyekCvOcac5Cq+uJU4hK89pmkzw= Subject key identifier: B8:AA:CB:77:6D:30:9C:88:88:B1:41:33:08:D3:6C:E9:5F:DA:0C:5C Authority key identifier: 0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 Certificate issuer: /CN=A91A7C68/serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Certificate serial: 0233 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft Manifest number: 0226 Signing time: Fri 05 Dec 2025 00:30:31 +0000 Manifest this update: Fri 05 Dec 2025 00:30:31 +0000 Manifest next update: Fri 12 Dec 2025 00:30:31 +0000 Files and hashes: 1: D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl (hash: sF2X/YP8xeMUyFDN7RqOI8qdKaZ98TqBOiH9A0wutw4=) 2: BC72661A972911ED8CBCA476C4F9AE02.roa (hash: 50hi2vNUebBRUz8ceA03XMTbcW3zeli1X+BmJSriA30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:30:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 563 (0x233) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C68, serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Validity Not Before: Dec 5 00:30:31 2025 GMT Not After : Dec 12 00:30:31 2025 GMT Subject: CN=693227a7-1acd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:6f:d5:27:38:ea:bc:67:84:e5:9f:b6:18:58: 80:fa:27:74:e7:32:21:58:be:75:17:56:b7:5e:1e: fb:4d:f9:01:2a:f7:88:67:d5:71:6e:b2:70:c3:81: 95:70:26:37:20:70:41:44:98:91:1b:7f:b5:b2:7d: 3d:a9:c7:a1:c3:a1:b4:aa:a7:c1:f2:bc:94:a9:a2: 99:f2:0c:47:fe:c2:31:e5:5c:57:ba:9f:61:fb:9d: 15:9c:72:34:c6:28:da:6c:35:5a:8c:e4:1b:a1:10: 88:3f:2c:f0:9b:2d:aa:11:2b:86:3d:b7:dc:a6:db: e5:6a:6d:f1:4b:74:29:db:ee:b0:0b:05:a2:ea:be: 39:bc:a5:d2:06:74:f3:c1:d1:d6:43:e5:f8:84:6d: a7:cb:bb:19:1f:28:1f:bd:85:7c:64:91:9e:2b:a0: 79:f1:e8:36:85:1a:8c:5e:9c:2c:9a:59:7f:da:ed: 8f:a1:dd:7c:5a:ff:cf:85:7a:75:69:1f:b6:63:2a: 1d:d3:36:73:e8:ab:08:9a:b6:d6:da:b8:c6:0a:e7: 9b:f9:4a:c7:29:ba:c4:76:52:42:2b:f4:29:13:f0: b1:3f:61:6b:6d:80:76:fc:ed:12:d5:6d:f1:b7:63: 9a:1c:a1:3c:c8:fd:e6:43:2f:2a:af:82:a5:ff:41: b2:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:AA:CB:77:6D:30:9C:88:88:B1:41:33:08:D3:6C:E9:5F:DA:0C:5C X509v3 Authority Key Identifier: keyid:0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:e2:9a:05:07:f7:0a:8c:b3:7c:d4:ba:fc:0f:dd:43:85:59: fb:70:fa:23:13:0e:c0:5b:8a:fc:5f:ba:3c:02:16:c2:05:57: db:35:e5:b1:78:32:42:84:0b:79:cc:65:26:47:2d:d8:0c:21: c6:0e:bc:81:eb:68:ae:a8:7c:ed:95:b3:1c:1f:de:b6:9b:da: 61:b2:7b:fd:7e:8a:0c:ff:33:76:6b:9e:63:81:4e:73:10:e2: 16:82:32:6e:91:c3:03:f9:81:17:3d:35:28:c3:91:bf:cd:3d: d8:61:65:fa:11:52:b0:18:ef:c6:d3:64:71:68:fa:e3:6a:4b: 37:22:db:c2:24:c1:a9:40:75:fb:02:4f:44:e5:b9:11:f6:ca: 1a:0b:da:72:3e:ec:f3:7c:54:03:76:b8:34:a1:d5:94:51:62: 6a:f6:51:d0:19:69:ee:0f:a2:b2:34:44:4b:15:aa:52:09:70: 51:42:41:bc:65:30:84:f6:69:8d:0e:11:dc:9a:8a:42:05:04: a5:bb:62:3b:1d:65:1a:d4:23:be:30:e1:d5:04:80:f2:aa:ac: 26:1b:a0:ae:94:7e:9a:f6:07:61:73:26:05:55:6c:c0:bb:bb: aa:d0:f2:7e:25:19:e9:63:e5:83:1a:75:dc:b7:97:7a:36:66: e3:89:14:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNjgxMTAvBgNVBAUTKDBGNjI2QTMyNjRENkZFQ0NDQkZFQjJEOTlCMURCRjhB RkZFQzNCMzQwHhcNMjUxMjA1MDAzMDMxWhcNMjUxMjEyMDAzMDMxWjAYMRYwFAYD VQQDEw02OTMyMjdhNy0xYWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzm/VJzjqvGeE5Z+2GFiA+id05zIhWL51F1a3Xh77TfkBKveIZ9VxbrJww4GV cCY3IHBBRJiRG3+1sn09qcehw6G0qqfB8ryUqaKZ8gxH/sIx5VxXup9h+50VnHI0 xijabDVajOQboRCIPyzwmy2qESuGPbfcptvlam3xS3Qp2+6wCwWi6r45vKXSBnTz wdHWQ+X4hG2ny7sZHygfvYV8ZJGeK6B58eg2hRqMXpwsmll/2u2Pod18Wv/PhXp1 aR+2Yyod0zZz6KsImrbW2rjGCueb+UrHKbrEdlJCK/QpE/CxP2FrbYB2/O0S1W3x t2OaHKE8yP3mQy8qr4Kl/0GyPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLiqy3dt MJyIiLFBMwjTbOlf2gxcMB8GA1UdIwQYMBaAFA9iajJk1v7My/6y2Zsdv4r/7Ds0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M2OC80MjM5ODZGNjk3 MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19zekxfckxabXgyX2l2X3NP elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QySnFNbVRXX3N6TF9yTFpteDJfaXZfc096US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M2OC80MjM5ODZGNjk3MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19z ekxfckxabXgyX2l2X3NPelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDN4poFB/cKjLN81Lr8D91DhVn7cPojEw7AW4r8X7o8AhbCBVfbNeWx eDJChAt5zGUmRy3YDCHGDryB62iuqHztlbMcH962m9phsnv9fooM/zN2a55jgU5z EOIWgjJukcMD+YEXPTUow5G/zT3YYWX6EVKwGO/G02RxaPrjaks3ItvCJMGpQHX7 Ak9E5bkR9soaC9pyPuzzfFQDdrg0odWUUWJq9lHQGWnuD6KyNERLFapSCXBRQkG8 ZTCE9mmNDhHcmopCBQSlu2I7HWUa1CO+MOHVBIDyqqwmG6CulH6a9gdhcyYFVWzA u7uq0PJ+JRnpY+WDGnXct5d6NmbjiRT/ -----END CERTIFICATE-----Generated at Sat Dec 6 22:05:15 2025 by rpki-client