This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft File: -D3DokbRIVGsh6dyzsoO3SFfhio.mft (raw, json) Hash identifier: nzKCE3pPoD+ZYkIt8peV6YaaKEcVsv8wbx4gSBLQ+m0= Subject key identifier: BC:1F:5D:A4:12:75:E4:17:E5:B9:71:11:45:0B:D8:1F:5C:07:FD:0C Authority key identifier: F8:3D:C3:A2:46:D1:21:51:AC:87:A7:72:CE:CA:0E:DD:21:5F:86:2A Certificate issuer: /CN=A91DDFF2/serialNumber=F83DC3A246D12151AC87A772CECA0EDD215F862A Certificate serial: 014A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft Manifest number: 0145 Signing time: Fri 05 Dec 2025 02:30:16 +0000 Manifest this update: Fri 05 Dec 2025 02:30:15 +0000 Manifest next update: Fri 12 Dec 2025 02:30:15 +0000 Files and hashes: 1: -D3DokbRIVGsh6dyzsoO3SFfhio.crl (hash: vwjiasra+I0o5ZRA2zxd5VQC9FmYN1u+wnpmQU2rxSA=) 2: EC7311FEE5C311EEBF217685C4F9AE02.roa (hash: WXs23PC9oNPUDjoMufc2iqduojTIGtlpeP1luMoHhDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.crl rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:30:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDFF2, serialNumber=F83DC3A246D12151AC87A772CECA0EDD215F862A Validity Not Before: Dec 5 02:30:15 2025 GMT Not After : Dec 12 02:30:15 2025 GMT Subject: CN=693243b8-7696 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c6:f0:76:95:1d:47:66:ef:23:83:b2:67:c8: 21:88:19:11:91:04:2c:e6:87:15:8a:88:85:8f:da: 2a:d8:4c:a5:2b:0e:2e:81:7d:9d:e6:cf:9d:fd:ea: 3a:20:6d:f7:a0:eb:c0:eb:16:82:6d:c7:ea:0c:16: 7d:ea:05:db:c8:d7:68:cd:61:fc:c6:82:63:c5:41: c2:e0:9f:68:bb:bb:da:bb:82:58:e8:ed:bf:b5:59: 00:43:a0:c1:23:01:b3:b9:74:29:7f:87:7a:cd:af: b6:65:a2:7a:50:2f:75:fd:fc:39:90:f3:76:73:63: a4:e9:ae:11:37:e1:c4:14:51:12:c4:e3:ea:c0:a8: 19:41:b4:8f:e0:35:67:15:34:17:bf:78:36:f6:63: 09:c2:ca:27:46:04:9a:a1:f6:54:d0:aa:a6:99:7c: 4e:c6:ec:a9:be:7f:07:3c:46:15:b9:bf:4d:ae:8f: f7:20:28:ac:80:8e:3b:0c:c5:9b:6e:3b:b4:e7:6b: 8f:91:9b:c7:ae:bf:cf:b3:6f:8b:4a:2b:91:c8:84: dc:9d:a4:e3:56:6d:d7:c2:54:63:26:34:1e:4a:e5: 17:02:20:79:33:17:8c:bb:4a:31:52:a4:8d:2b:8a: f0:87:a1:09:de:ac:35:b8:29:89:9e:f6:03:0f:b4: e0:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:1F:5D:A4:12:75:E4:17:E5:B9:71:11:45:0B:D8:1F:5C:07:FD:0C X509v3 Authority Key Identifier: keyid:F8:3D:C3:A2:46:D1:21:51:AC:87:A7:72:CE:CA:0E:DD:21:5F:86:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:ba:2f:7e:f4:10:2d:14:ec:a9:6e:ef:de:21:33:72:01:e9: d3:98:d4:c3:50:02:17:74:c8:f8:df:8c:9a:00:e7:3d:22:1d: 25:7f:46:e3:ba:97:53:47:a5:98:e6:05:51:70:ac:46:cb:4f: ad:1e:2e:35:e7:ae:2c:1a:a8:bd:e3:62:ad:3d:66:56:c8:fe: 8f:d4:2b:24:c1:e1:9a:12:8d:3b:a0:ef:77:25:17:19:fe:7e: c1:dc:67:41:de:1d:8e:f4:aa:52:d0:46:e0:c8:84:12:a1:f7: 9e:35:9d:6e:26:20:dd:1c:08:05:ce:16:b5:e1:74:ed:f2:52: 83:a6:a2:10:bc:99:5a:2b:88:d6:67:69:04:61:eb:f3:65:e6: 50:6b:cf:62:04:e9:0b:e8:03:c1:9f:9d:8f:ba:1f:b3:67:8c: 1a:c0:c4:28:b5:fb:e7:70:6e:5a:36:0c:9f:4e:2e:27:e0:7b: 62:66:97:bd:b8:eb:cc:d5:f7:fd:4c:c4:57:23:42:d9:03:0d: fa:6a:84:0f:7b:98:71:23:17:00:16:0c:a9:5c:4d:94:3f:ba: 71:1f:43:85:e5:4d:44:e2:a1:94:af:1b:9e:99:55:b9:64:52: fc:d4:4d:e3:97:db:4b:98:df:d1:86:15:b8:91:41:45:9f:70: e6:d4:95:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RERGRjIxMTAvBgNVBAUTKEY4M0RDM0EyNDZEMTIxNTFBQzg3QTc3MkNFQ0EwRURE MjE1Rjg2MkEwHhcNMjUxMjA1MDIzMDE1WhcNMjUxMjEyMDIzMDE1WjAYMRYwFAYD VQQDEw02OTMyNDNiOC03Njk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAusbwdpUdR2bvI4OyZ8ghiBkRkQQs5ocVioiFj9oq2EylKw4ugX2d5s+d/eo6 IG33oOvA6xaCbcfqDBZ96gXbyNdozWH8xoJjxUHC4J9ou7vau4JY6O2/tVkAQ6DB IwGzuXQpf4d6za+2ZaJ6UC91/fw5kPN2c2Ok6a4RN+HEFFESxOPqwKgZQbSP4DVn FTQXv3g29mMJwsonRgSaofZU0KqmmXxOxuypvn8HPEYVub9Nro/3ICisgI47DMWb bju052uPkZvHrr/Ps2+LSiuRyITcnaTjVm3XwlRjJjQeSuUXAiB5MxeMu0oxUqSN K4rwh6EJ3qw1uCmJnvYDD7TgCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLwfXaQS deQX5blxEUUL2B9cB/0MMB8GA1UdIwQYMBaAFPg9w6JG0SFRrIencs7KDt0hX4Yq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEREZGMi9DOUFGMjkzNEU1 QzExMUVFOThEQkU5NjJDNEY5QUUwMi8tRDNEb2tiUklWR3NoNmR5enNvTzNTRmZo aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1EM0Rva2JSSVZHc2g2ZHl6c29PM1NGZmhpby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE REZGMi9DOUFGMjkzNEU1QzExMUVFOThEQkU5NjJDNEY5QUUwMi8tRDNEb2tiUklW R3NoNmR5enNvTzNTRmZoaW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxui9+9BAtFOypbu/eITNyAenTmNTDUAIXdMj434yaAOc9Ih0lf0bj updTR6WY5gVRcKxGy0+tHi41564sGqi942KtPWZWyP6P1CskweGaEo07oO93JRcZ /n7B3GdB3h2O9KpS0EbgyIQSofeeNZ1uJiDdHAgFzha14XTt8lKDpqIQvJlaK4jW Z2kEYevzZeZQa89iBOkL6APBn52Puh+zZ4wawMQotfvncG5aNgyfTi4n4HtiZpe9 uOvM1ff9TMRXI0LZAw36aoQPe5hxIxcAFgypXE2UP7pxH0OF5U1E4qGUrxuemVW5 ZFL81E3jl9tLmN/RhhW4kUFFn3Dm1JUh -----END CERTIFICATE-----Generated at Sat Dec 6 22:24:57 2025 by rpki-client