This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft File: DfmeMksOOlPo5W1wIP9vvFvxywI.mft (raw, json) Hash identifier: W83njisyVKa2wrUn+KIIVP7+5cTAq59DthLLSRu0IF0= Subject key identifier: AC:67:78:B4:C3:23:67:6F:E3:01:4C:95:6E:9F:BB:D3:51:01:6F:FB Authority key identifier: 0D:F9:9E:32:4B:0E:3A:53:E8:E5:6D:70:20:FF:6F:BC:5B:F1:CB:02 Certificate issuer: /CN=A91D72CC/serialNumber=0DF99E324B0E3A53E8E56D7020FF6FBC5BF1CB02 Certificate serial: 0E57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft Manifest number: 0EFD Signing time: Sat 06 Dec 2025 17:13:50 +0000 Manifest this update: Sat 06 Dec 2025 17:13:50 +0000 Manifest next update: Sat 13 Dec 2025 17:13:50 +0000 Files and hashes: 1: DfmeMksOOlPo5W1wIP9vvFvxywI.crl (hash: C5SinncZQXJvJXg4WiqkNbGppFZ+zO7m5HT3bFYn2IM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.crl rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3671 (0xe57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D72CC, serialNumber=0DF99E324B0E3A53E8E56D7020FF6FBC5BF1CB02 Validity Not Before: Dec 6 17:13:50 2025 GMT Not After : Dec 13 17:13:50 2025 GMT Subject: CN=6934644e-b30a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ca:29:7f:62:a1:9c:28:8c:09:f0:32:24:77: 1d:b6:20:cd:19:a8:74:7f:03:51:14:6d:8f:2a:99: 40:42:3f:90:ec:b0:1d:bf:0b:17:18:23:87:42:d7: a7:37:08:14:6c:9e:c7:38:53:db:cd:a1:6a:d4:35: 2e:a4:a1:24:7f:15:e0:f7:c0:1f:c2:97:30:0c:ef: d5:1d:a7:74:a2:5a:20:b9:b3:60:c6:b5:73:23:ea: 97:13:0a:0a:7a:a4:ed:31:08:87:97:04:74:00:aa: b5:1d:72:8c:1e:11:2c:64:d2:45:d0:29:bb:30:9c: d3:99:97:c2:44:1e:1c:8e:8c:c7:82:87:ac:7b:28: 33:58:7f:ef:34:da:7c:f6:db:97:0b:0d:7f:03:63: a4:69:c1:2f:40:cd:2d:d3:e7:68:26:43:98:97:7c: a3:be:e8:da:51:92:92:46:1d:12:f5:56:7f:71:d1: 26:a7:06:26:a3:a3:19:dc:81:a3:5c:d5:c9:b8:90: d7:94:4d:41:20:2c:d5:a3:07:75:0b:a8:d5:96:7d: d5:ea:56:98:6a:e3:95:c4:0d:03:4c:78:e5:59:69: 27:ae:aa:9d:d4:8e:51:9a:04:0b:e5:b7:78:62:e5: ba:19:53:e6:a0:2e:a5:df:8b:2b:2c:aa:0b:32:32: fd:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:67:78:B4:C3:23:67:6F:E3:01:4C:95:6E:9F:BB:D3:51:01:6F:FB X509v3 Authority Key Identifier: keyid:0D:F9:9E:32:4B:0E:3A:53:E8:E5:6D:70:20:FF:6F:BC:5B:F1:CB:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:c7:c9:db:97:5f:4f:7a:bf:aa:cd:ff:5b:2a:7d:0b:84:ff: e7:fe:73:50:ba:26:8b:88:ed:44:6a:35:2a:19:8b:c0:22:19: db:aa:4a:69:ae:cf:4c:eb:1e:2d:66:47:a2:97:1f:25:1a:5e: bb:4e:b5:08:ac:4c:26:11:76:fa:9f:a8:08:38:c9:d0:ff:b1: 8c:c8:ae:59:b6:ee:5b:d4:f8:0f:72:84:e1:9f:6e:f5:20:b0: e8:a1:a7:06:7a:ab:b8:27:b8:7a:27:a0:aa:f1:e2:3c:c0:89: 63:2b:53:6a:73:12:14:6b:3e:40:0e:ed:5c:d2:6a:5d:fd:8c: cd:2e:e3:90:be:fd:75:02:bf:87:a2:aa:43:bc:37:d9:89:07: df:a7:a6:9f:ff:59:50:f6:6c:01:7b:70:63:f2:fc:01:aa:26: 6d:7d:2f:85:f4:3f:f7:2c:93:b6:d2:fe:80:af:a5:80:4b:72: 74:0a:91:d4:69:ba:a7:df:73:3e:42:fa:18:d4:00:33:9c:cc: f2:ea:d5:aa:f6:4f:52:c8:dd:db:5d:7d:af:32:35:c7:71:50: 73:ca:14:d9:f0:fc:bd:45:77:ff:ed:5c:9f:2e:c5:63:5a:60: 75:6e:4a:0d:b2:6e:2b:bd:bb:18:e8:2f:b4:ac:80:da:16:31: e5:3d:e3:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDcyQ0MxMTAvBgNVBAUTKDBERjk5RTMyNEIwRTNBNTNFOEU1NkQ3MDIwRkY2RkJD NUJGMUNCMDIwHhcNMjUxMjA2MTcxMzUwWhcNMjUxMjEzMTcxMzUwWjAYMRYwFAYD VQQDEw02OTM0NjQ0ZS1iMzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMopf2KhnCiMCfAyJHcdtiDNGah0fwNRFG2PKplAQj+Q7LAdvwsXGCOHQten NwgUbJ7HOFPbzaFq1DUupKEkfxXg98AfwpcwDO/VHad0ologubNgxrVzI+qXEwoK eqTtMQiHlwR0AKq1HXKMHhEsZNJF0Cm7MJzTmZfCRB4cjozHgoeseygzWH/vNNp8 9tuXCw1/A2OkacEvQM0t0+doJkOYl3yjvujaUZKSRh0S9VZ/cdEmpwYmo6MZ3IGj XNXJuJDXlE1BICzVowd1C6jVln3V6laYauOVxA0DTHjlWWknrqqd1I5RmgQL5bd4 YuW6GVPmoC6l34srLKoLMjL9/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKxneLTD I2dv4wFMlW6fu9NRAW/7MB8GA1UdIwQYMBaAFA35njJLDjpT6OVtcCD/b7xb8csC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzJDQy80MzMwQUM5Q0Iz NkQxMUU5ODI0NkVEMEFDNEY5QUUwMi9EZm1lTWtzT09sUG81VzF3SVA5dnZGdnh5 d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RmbWVNa3NPT2xQbzVXMXdJUDl2dkZ2eHl3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzJDQy80MzMwQUM5Q0IzNkQxMUU5ODI0NkVEMEFDNEY5QUUwMi9EZm1lTWtzT09s UG81VzF3SVA5dnZGdnh5d0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3x8nbl19Per+qzf9bKn0LhP/n/nNQuiaLiO1EajUqGYvAIhnbqkpp rs9M6x4tZkeilx8lGl67TrUIrEwmEXb6n6gIOMnQ/7GMyK5Ztu5b1PgPcoThn271 ILDooacGequ4J7h6J6Cq8eI8wIljK1NqcxIUaz5ADu1c0mpd/YzNLuOQvv11Ar+H oqpDvDfZiQffp6af/1lQ9mwBe3Bj8vwBqiZtfS+F9D/3LJO20v6Ar6WAS3J0CpHU abqn33M+QvoY1AAznMzy6tWq9k9SyN3bXX2vMjXHcVBzyhTZ8Py9RXf/7VyfLsVj WmB1bkoNsm4rvbsY6C+0rIDaFjHlPeNl -----END CERTIFICATE-----Generated at Sat Dec 6 22:26:50 2025 by rpki-client