This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft File: DfoUcOPJ6yHxewN7BM9O1UJO88k.mft (raw, json) Hash identifier: qJzQMdMU8OAiiYlc/iTMA2dUeeTP35QGOrI2vXeWTFU= Subject key identifier: 56:B3:83:8D:DD:A1:58:FA:85:C8:75:E5:7A:6A:C9:FD:C8:2A:B6:3D Authority key identifier: 0D:FA:14:70:E3:C9:EB:21:F1:7B:03:7B:04:CF:4E:D5:42:4E:F3:C9 Certificate issuer: /CN=A91B588F/serialNumber=0DFA1470E3C9EB21F17B037B04CF4ED5424EF3C9 Certificate serial: 1D8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft Manifest number: 1D7E Signing time: Thu 04 Dec 2025 15:52:54 +0000 Manifest this update: Thu 04 Dec 2025 15:52:53 +0000 Manifest next update: Thu 11 Dec 2025 15:52:53 +0000 Files and hashes: 1: DfoUcOPJ6yHxewN7BM9O1UJO88k.crl (hash: kPmmFUpnEaNnE5ZSmoYPku/6OikO9h10wNQAVZcRVyA=) 2: 234A77E28D2111ECB33BB01AC4F9AE02.roa (hash: k8TIUAQe/uhiGTZr6cgQAthXD90vdh6WA7DCNugyFL0=) 3: 09DBF798B76311E6AF11523EC4F9AE02.roa (hash: KJtFM/La7mL3fu5dlcMqDcraRcAtERap2FuVwdqAgkc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.crl rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 15:52:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7565 (0x1d8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B588F, serialNumber=0DFA1470E3C9EB21F17B037B04CF4ED5424EF3C9 Validity Not Before: Dec 4 15:52:53 2025 GMT Not After : Dec 11 15:52:53 2025 GMT Subject: CN=6931ae56-3a40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:66:8c:68:a0:43:b5:80:bf:7a:b7:4f:b5:f4: ab:f0:d8:68:16:fa:9c:5a:8c:1b:ad:3e:ec:a8:3b: eb:3c:23:20:ca:65:a3:8f:31:d4:c6:75:b4:a2:1d: ed:7b:43:79:b0:fd:29:3c:10:63:8e:c9:6e:0f:e1: 7f:40:8d:d3:ca:fc:dd:86:83:d4:cf:65:3a:e4:d9: 19:b2:5f:b3:1d:fe:a1:4c:f6:51:40:73:37:6a:8d: b7:bd:2c:21:0d:f4:06:d1:12:34:4a:4f:04:bb:24: b3:0f:bd:d3:bb:cb:d2:95:18:19:b1:b1:9a:de:33: 64:a7:64:a9:8a:22:b5:97:ad:6e:06:65:c9:3e:05: 4b:0d:32:7a:f3:96:4a:4f:da:4b:b2:79:df:7b:d4: bd:17:0e:1e:f2:55:5b:a3:10:22:3a:9e:58:d1:16: 8a:6c:b3:af:0a:55:cb:d2:54:1b:5a:42:52:3c:99: ef:0f:00:cf:55:bc:fb:cd:60:c4:98:fb:38:1c:b0: c9:66:96:ec:e0:91:15:48:df:d4:1a:49:a2:e7:3c: 1a:6a:6f:ef:b6:e0:86:57:b3:3d:b8:24:41:53:61: 93:79:bb:ff:fe:f4:ab:ff:eb:7d:ba:ed:19:3e:ff: e6:47:4c:e8:aa:4f:c9:3c:9a:28:4a:43:a1:7b:ca: 2b:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:B3:83:8D:DD:A1:58:FA:85:C8:75:E5:7A:6A:C9:FD:C8:2A:B6:3D X509v3 Authority Key Identifier: keyid:0D:FA:14:70:E3:C9:EB:21:F1:7B:03:7B:04:CF:4E:D5:42:4E:F3:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:c4:f7:c7:47:f2:1d:8b:5f:39:8b:59:24:fa:b7:f6:06:a5: 70:a6:b7:b9:d2:9c:6b:67:12:57:6e:78:3e:be:27:7f:55:28: d6:fd:82:f0:4b:bc:2b:e9:a0:34:f7:94:63:1e:7b:18:ef:6e: fd:5e:86:db:bc:a1:b9:d9:60:5a:fa:13:06:db:a0:21:8e:15: e0:b6:13:e3:d7:19:c4:e1:3a:a4:44:9b:26:9d:49:0f:4c:8a: c6:fe:b1:1d:0e:05:f7:09:83:ec:5a:3b:f5:16:8e:60:f8:1f: e0:f3:d0:24:04:bf:d8:77:ac:1c:ba:b7:35:c2:86:ad:3a:6b: a5:55:42:d9:93:0a:6f:13:66:ac:5b:92:ad:59:e8:c8:66:a9: d9:dd:18:b3:61:c3:d3:03:2a:fe:d2:05:38:33:a4:53:67:32: 91:80:77:7c:b2:62:fb:0f:3f:5a:cb:70:90:f0:19:9b:28:2a: bc:c2:15:f7:31:11:4d:70:a1:73:90:16:22:bb:6f:e2:36:23: b9:85:1d:10:bf:31:46:3d:24:d6:09:73:d0:ab:08:fc:41:43: 8a:00:3e:f7:0d:0c:ff:80:e4:8a:8f:c7:a1:21:6c:1e:cf:e4: 5e:40:7d:7e:e8:3d:98:82:39:fc:ba:d9:fd:06:a8:4f:90:1c: 07:f3:16:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU4OEYxMTAvBgNVBAUTKDBERkExNDcwRTNDOUVCMjFGMTdCMDM3QjA0Q0Y0RUQ1 NDI0RUYzQzkwHhcNMjUxMjA0MTU1MjUzWhcNMjUxMjExMTU1MjUzWjAYMRYwFAYD VQQDEw02OTMxYWU1Ni0zYTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmaMaKBDtYC/erdPtfSr8NhoFvqcWowbrT7sqDvrPCMgymWjjzHUxnW0oh3t e0N5sP0pPBBjjsluD+F/QI3TyvzdhoPUz2U65NkZsl+zHf6hTPZRQHM3ao23vSwh DfQG0RI0Sk8EuySzD73Tu8vSlRgZsbGa3jNkp2SpiiK1l61uBmXJPgVLDTJ685ZK T9pLsnnfe9S9Fw4e8lVboxAiOp5Y0RaKbLOvClXL0lQbWkJSPJnvDwDPVbz7zWDE mPs4HLDJZpbs4JEVSN/UGkmi5zwaam/vtuCGV7M9uCRBU2GTebv//vSr/+t9uu0Z Pv/mR0zoqk/JPJooSkOhe8orrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFazg43d oVj6hch15Xpqyf3IKrY9MB8GA1UdIwQYMBaAFA36FHDjyesh8XsDewTPTtVCTvPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTg4Ri83ODREOTRCOEI3 NjExMUU2QjExNzVBM0NDNEY5QUUwMi9EZm9VY09QSjZ5SHhld043Qk05TzFVSk84 OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Rmb1VjT1BKNnlIeGV3TjdCTTlPMVVKTzg4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTg4Ri83ODREOTRCOEI3NjExMUU2QjExNzVBM0NDNEY5QUUwMi9EZm9VY09QSjZ5 SHhld043Qk05TzFVSk84OGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtxPfHR/Idi185i1kk+rf2BqVwpre50pxrZxJXbng+vid/VSjW/YLw S7wr6aA095RjHnsY7279XobbvKG52WBa+hMG26AhjhXgthPj1xnE4TqkRJsmnUkP TIrG/rEdDgX3CYPsWjv1Fo5g+B/g89AkBL/Yd6wcurc1woatOmulVULZkwpvE2as W5KtWejIZqnZ3RizYcPTAyr+0gU4M6RTZzKRgHd8smL7Dz9ay3CQ8BmbKCq8whX3 MRFNcKFzkBYiu2/iNiO5hR0QvzFGPSTWCXPQqwj8QUOKAD73DQz/gOSKj8ehIWwe z+ReQH1+6D2Ygjn8utn9BqhPkBwH8xYH -----END CERTIFICATE-----Generated at Sat Dec 6 15:09:08 2025 by rpki-client