This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft File: DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft (raw, json) Hash identifier: P9nGDx9vh+3aW4GG+7TMyEf82UAuPFb1wkWfeyLkD6U= Subject key identifier: A3:05:76:8F:99:36:F3:CC:AA:7D:CB:83:AF:8F:75:DA:9F:2C:6A:B8 Authority key identifier: 0C:DD:50:58:32:EA:8C:9A:4D:23:B1:06:37:20:1D:79:42:95:64:C0 Certificate issuer: /CN=A91AA96A/serialNumber=0CDD505832EA8C9A4D23B10637201D79429564C0 Certificate serial: FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DN1QWDLqjJpNI7EGNyAdeUKVZMA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft Manifest number: F4 Signing time: Sun 07 Dec 2025 03:37:39 +0000 Manifest this update: Sun 07 Dec 2025 03:37:38 +0000 Manifest next update: Sun 14 Dec 2025 03:37:38 +0000 Files and hashes: 1: DN1QWDLqjJpNI7EGNyAdeUKVZMA.crl (hash: /exnD9ixy08wDBM7ROgQSBj0oNq6kcD+qbbRPR79Muc=) 2: 6E7D3C16816811EF99DD7787C4F9AE02.roa (hash: GJjFHlhUrw3PK9n6h+pqP/cBSWFV8op0nahH1r+sT6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.crl rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DN1QWDLqjJpNI7EGNyAdeUKVZMA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 03:37:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 252 (0xfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA96A, serialNumber=0CDD505832EA8C9A4D23B10637201D79429564C0 Validity Not Before: Dec 7 03:37:38 2025 GMT Not After : Dec 14 03:37:38 2025 GMT Subject: CN=6934f683-3f10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f6:64:86:cd:db:79:af:12:0d:70:63:dd:f3: 3b:11:85:d1:94:44:86:e4:50:4f:0a:f4:e7:74:28: 62:2b:7d:fa:e5:d9:5f:cb:9d:cc:a5:27:5a:5f:8a: 21:d4:e9:f8:ff:d6:57:a5:04:ed:ba:c0:fc:3b:3b: 03:8e:ab:04:d9:23:1f:d9:5c:a8:fb:8f:7a:59:a9: ce:b3:40:bb:7c:18:ca:0e:13:8d:a9:bd:cf:d0:34: 8b:72:f6:81:77:18:69:1b:e0:2d:a8:f6:96:39:79: 73:5a:88:e9:93:66:5e:c6:c9:db:0f:31:62:64:2d: 6d:88:1e:7c:7d:be:45:55:f1:7a:af:7f:e6:3c:5d: b7:ab:43:66:08:19:c3:60:c9:ee:7e:e7:bd:e9:a9: 55:a2:c1:7b:cb:a6:e0:84:eb:e6:f3:14:03:ea:5d: b2:ea:6a:e9:5d:c9:b7:42:d4:33:74:65:a3:38:89: 00:c0:71:77:38:a6:88:46:26:c2:ea:2e:04:df:8f: 6f:d3:03:38:67:71:cb:1e:2a:2c:ae:e0:44:aa:04: fb:c7:da:1f:4b:d1:3c:e4:34:df:79:56:68:29:85: e9:dc:27:76:78:bd:67:ec:ce:59:6a:4b:8e:ee:e2: e9:fb:6f:61:2c:8a:aa:67:64:2f:64:c3:d2:c3:ba: 2a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:05:76:8F:99:36:F3:CC:AA:7D:CB:83:AF:8F:75:DA:9F:2C:6A:B8 X509v3 Authority Key Identifier: keyid:0C:DD:50:58:32:EA:8C:9A:4D:23:B1:06:37:20:1D:79:42:95:64:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DN1QWDLqjJpNI7EGNyAdeUKVZMA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:51:69:d9:85:29:7a:0c:ba:ed:80:a6:8c:8f:ad:f1:f2:d0: fd:54:80:9a:8c:9e:d8:38:04:31:1d:50:a1:93:e6:b8:a0:ba: 98:21:ff:d2:68:f5:08:01:df:c1:4b:44:a8:21:a5:9a:71:61: 50:1a:1a:09:5a:36:8e:12:6b:f8:4d:6f:d7:3c:b3:03:ad:1c: f6:ab:a8:6a:86:e7:7d:20:ba:d1:0f:83:42:d0:75:d4:21:f8: be:b5:c6:34:69:48:45:a4:1a:37:ed:5e:31:18:fa:3f:f9:17: fa:1e:0e:3b:56:c9:9a:37:d9:bb:53:4f:bc:a5:9a:26:8a:63: 21:6a:b7:d2:69:38:90:6a:ed:4d:b1:b1:d6:d8:18:8c:54:88: ef:ae:48:7e:54:c9:42:69:17:f3:74:60:c6:1c:db:fc:84:4c: c7:c2:c7:87:e7:e1:10:c2:4b:59:fe:7b:72:55:c1:39:e6:27: 43:74:6a:3a:2e:b4:68:ca:4e:6e:23:8b:8c:9e:04:02:5f:7a: 05:74:03:ad:bb:73:5e:4e:e6:d7:38:59:6e:11:2e:50:56:ff: fc:94:c6:b9:3e:71:a6:0c:60:80:4b:40:90:ab:be:96:57:4c: f5:e7:ce:1d:5b:f4:b1:1c:aa:7f:08:ed:64:9f:dc:d9:1c:b2: 6e:57:58:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE5NkExMTAvBgNVBAUTKDBDREQ1MDU4MzJFQThDOUE0RDIzQjEwNjM3MjAxRDc5 NDI5NTY0QzAwHhcNMjUxMjA3MDMzNzM4WhcNMjUxMjE0MDMzNzM4WjAYMRYwFAYD VQQDEw02OTM0ZjY4My0zZjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1vZkhs3bea8SDXBj3fM7EYXRlESG5FBPCvTndChiK3365dlfy53MpSdaX4oh 1On4/9ZXpQTtusD8OzsDjqsE2SMf2Vyo+496WanOs0C7fBjKDhONqb3P0DSLcvaB dxhpG+AtqPaWOXlzWojpk2ZexsnbDzFiZC1tiB58fb5FVfF6r3/mPF23q0NmCBnD YMnufue96alVosF7y6bghOvm8xQD6l2y6mrpXcm3QtQzdGWjOIkAwHF3OKaIRibC 6i4E349v0wM4Z3HLHiosruBEqgT7x9ofS9E85DTfeVZoKYXp3Cd2eL1n7M5ZakuO 7uLp+29hLIqqZ2QvZMPSw7oqcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKMFdo+Z NvPMqn3Lg6+PddqfLGq4MB8GA1UdIwQYMBaAFAzdUFgy6oyaTSOxBjcgHXlClWTA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTk2QS9ENEMxNjg4MjZB NkUxMUVGODRGOThFMzVDNEY5QUUwMi9ETjFRV0RMcWpKcE5JN0VHTnlBZGVVS1Za TUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ROMVFXRExxakpwTkk3RUdOeUFkZVVLVlpNQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTk2QS9ENEMxNjg4MjZBNkUxMUVGODRGOThFMzVDNEY5QUUwMi9ETjFRV0RMcWpK cE5JN0VHTnlBZGVVS1ZaTUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMUWnZhSl6DLrtgKaMj63x8tD9VICajJ7YOAQxHVChk+a4oLqYIf/S aPUIAd/BS0SoIaWacWFQGhoJWjaOEmv4TW/XPLMDrRz2q6hqhud9ILrRD4NC0HXU Ifi+tcY0aUhFpBo37V4xGPo/+Rf6Hg47VsmaN9m7U0+8pZomimMharfSaTiQau1N sbHW2BiMVIjvrkh+VMlCaRfzdGDGHNv8hEzHwseH5+EQwktZ/ntyVcE55idDdGo6 LrRoyk5uI4uMngQCX3oFdAOtu3NeTubXOFluES5QVv/8lMa5PnGmDGCAS0CQq76W V0z1584dW/SxHKp/CO1kn9zZHLJuV1jF -----END CERTIFICATE-----Generated at Sun Dec 7 23:30:33 2025 by rpki-client