This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft File: dD54xFmO_HLaCEZGUOuPnNoW-YA.mft (raw, json) Hash identifier: GjK9tp1voBnhrxHOBb4NrZOac1oV+m5Mf/KzT7k9NbY= Subject key identifier: 1C:5F:0E:49:8C:5C:44:D3:3C:C7:C3:89:0E:1D:F3:12:67:1C:BB:12 Authority key identifier: 74:3E:78:C4:59:8E:FC:72:DA:08:46:46:50:EB:8F:9C:DA:16:F9:80 Certificate issuer: /CN=A91DE500/serialNumber=743E78C4598EFC72DA08464650EB8F9CDA16F980 Certificate serial: 015A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft Manifest number: 02AB Signing time: Sun 07 Dec 2025 02:32:19 +0000 Manifest this update: Sun 07 Dec 2025 02:32:18 +0000 Manifest next update: Sun 14 Dec 2025 02:32:18 +0000 Files and hashes: 1: dD54xFmO_HLaCEZGUOuPnNoW-YA.crl (hash: uwdAKhL7PCf7VZHUm7ImPiZ8JpiP7GUFgJFIHBC0Bzo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.crl rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 02:32:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 346 (0x15a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE500, serialNumber=743E78C4598EFC72DA08464650EB8F9CDA16F980 Validity Not Before: Dec 7 02:32:18 2025 GMT Not After : Dec 14 02:32:18 2025 GMT Subject: CN=6934e733-0585 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:a6:2b:76:70:77:ed:a5:8d:93:0b:88:86:75: 34:96:2e:4d:9d:f2:2e:ed:b7:69:b6:49:3b:4e:61: 00:c7:a1:05:b2:97:af:50:89:c9:79:af:98:97:14: 9e:e5:82:1d:f9:a1:b4:58:d0:31:89:80:bf:d4:44: 67:54:b8:25:6a:cc:76:5f:e1:83:dd:8a:e0:1a:65: 8f:2b:8b:84:63:45:f6:d8:c3:c0:59:37:ff:2f:3a: cc:52:11:2e:b1:75:fd:ea:e3:7a:13:3e:88:50:51: 9a:42:db:39:e0:bc:c7:a3:38:9e:3a:f7:eb:4b:ae: dd:47:ed:94:31:29:5a:d9:27:fe:b6:99:76:d7:9e: dd:35:24:37:b7:46:07:3b:20:9e:f9:99:1a:6a:41: c8:c8:fb:cd:42:1c:35:fb:d0:d0:98:bc:65:39:ba: fb:6c:b2:20:5c:c9:c0:36:9e:84:25:ad:ba:8d:dd: 41:45:ac:97:0d:34:ef:ea:9e:c4:0b:11:b4:dc:87: 28:67:ab:2d:62:a8:f0:87:c5:ff:45:c9:35:6d:4d: e9:93:9d:86:01:d2:c6:74:a3:a8:85:66:b9:b5:95: de:78:3f:67:a2:f1:51:a1:36:33:3d:f9:40:df:bd: c7:26:e8:0f:05:91:a7:65:21:56:7d:7d:a5:10:1f: 23:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:5F:0E:49:8C:5C:44:D3:3C:C7:C3:89:0E:1D:F3:12:67:1C:BB:12 X509v3 Authority Key Identifier: keyid:74:3E:78:C4:59:8E:FC:72:DA:08:46:46:50:EB:8F:9C:DA:16:F9:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:0a:7c:f9:a5:7f:fb:4a:99:eb:ac:8f:a0:b3:9c:db:61:b4: 27:41:21:d1:ee:68:6e:4d:b2:6f:72:7b:bd:a0:7d:94:8f:39: df:e2:99:bd:27:63:29:dd:42:86:86:40:75:46:08:1a:dd:06: 70:0c:1e:be:2f:dc:a7:fd:7a:ae:77:6b:16:4c:5a:ff:59:8e: 71:8a:ed:9e:e9:22:d7:d9:ca:fb:d0:df:76:a4:a8:99:f2:97: a7:bf:2a:d1:63:41:f3:c1:40:a7:fc:56:84:8f:3e:f7:9a:f5: 06:47:43:21:f1:2c:90:c5:fd:cc:0d:34:9a:4f:72:f1:be:45: 1a:bd:e5:d3:d5:f3:63:e6:b8:31:fe:f5:62:1b:c3:97:67:61: fb:fc:54:ff:b1:07:6f:56:07:83:2f:7b:a1:14:b0:0b:4d:25: b3:32:1d:8e:4b:f2:65:b5:f8:41:24:4d:5d:b7:c3:9c:74:b0: b4:1e:d1:ec:b9:cc:91:af:67:e7:57:b0:7d:58:96:3d:b8:29: 8d:d7:37:46:69:8c:b2:95:89:0c:02:e1:98:49:09:56:8e:5a: fd:9c:b5:99:ea:88:c4:ff:06:89:57:36:a8:b9:93:8e:8a:11: cb:72:2d:2b:bc:41:3b:b8:db:94:82:2a:ac:29:2a:53:55:ad: 99:54:05:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1MDAxMTAvBgNVBAUTKDc0M0U3OEM0NTk4RUZDNzJEQTA4NDY0NjUwRUI4RjlD REExNkY5ODAwHhcNMjUxMjA3MDIzMjE4WhcNMjUxMjE0MDIzMjE4WjAYMRYwFAYD VQQDEw02OTM0ZTczMy0wNTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6qYrdnB37aWNkwuIhnU0li5NnfIu7bdptkk7TmEAx6EFspevUInJea+YlxSe 5YId+aG0WNAxiYC/1ERnVLglasx2X+GD3YrgGmWPK4uEY0X22MPAWTf/LzrMUhEu sXX96uN6Ez6IUFGaQts54LzHozieOvfrS67dR+2UMSla2Sf+tpl2157dNSQ3t0YH OyCe+ZkaakHIyPvNQhw1+9DQmLxlObr7bLIgXMnANp6EJa26jd1BRayXDTTv6p7E CxG03IcoZ6stYqjwh8X/Rck1bU3pk52GAdLGdKOohWa5tZXeeD9novFRoTYzPflA 373HJugPBZGnZSFWfX2lEB8jPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBxfDkmM XETTPMfDiQ4d8xJnHLsSMB8GA1UdIwQYMBaAFHQ+eMRZjvxy2ghGRlDrj5zaFvmA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTUwMC8zRkZGNUMzRUM3 MkQxMUVFOUM3QzM1MURDNEY5QUUwMi9kRDU0eEZtT19ITGFDRVpHVU91UG5Ob1ct WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RENTR4Rm1PX0hMYUNFWkdVT3VQbk5vVy1ZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTUwMC8zRkZGNUMzRUM3MkQxMUVFOUM3QzM1MURDNEY5QUUwMi9kRDU0eEZtT19I TGFDRVpHVU91UG5Ob1ctWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCICnz5pX/7SpnrrI+gs5zbYbQnQSHR7mhuTbJvcnu9oH2Ujznf4pm9 J2Mp3UKGhkB1Rgga3QZwDB6+L9yn/Xqud2sWTFr/WY5xiu2e6SLX2cr70N92pKiZ 8penvyrRY0HzwUCn/FaEjz73mvUGR0Mh8SyQxf3MDTSaT3LxvkUaveXT1fNj5rgx /vViG8OXZ2H7/FT/sQdvVgeDL3uhFLALTSWzMh2OS/JltfhBJE1dt8OcdLC0HtHs ucyRr2fnV7B9WJY9uCmN1zdGaYyylYkMAuGYSQlWjlr9nLWZ6ojE/waJVzaouZOO ihHLci0rvEE7uNuUgiqsKSpTVa2ZVAV1 -----END CERTIFICATE-----Generated at Mon Dec 8 09:13:08 2025 by rpki-client