This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.mft File: 0DacIB93rzjycCn7IkbEOF0njKI.mft (raw, json) Hash identifier: 73lBLFvLwtnOsF7Iu4iVWcZY1zbBo3/Q1WX691tGNtk= Subject key identifier: BC:C8:40:7F:9D:AF:8D:84:E5:A9:2C:33:0F:0F:F6:C9:99:1D:F8:D8 Authority key identifier: D0:36:9C:20:1F:77:AF:38:F2:70:29:FB:22:46:C4:38:5D:27:8C:A2 Certificate issuer: /CN=A91EBF27/serialNumber=D0369C201F77AF38F27029FB2246C4385D278CA2 Certificate serial: 0652 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DacIB93rzjycCn7IkbEOF0njKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.mft Manifest number: 0652 Signing time: Sat 06 Dec 2025 21:29:32 +0000 Manifest this update: Sat 06 Dec 2025 21:29:31 +0000 Manifest next update: Sat 13 Dec 2025 21:29:31 +0000 Files and hashes: 1: 0DacIB93rzjycCn7IkbEOF0njKI.crl (hash: hasHeyylprv+Ym4EDlH4laSTBnz/KYkvEhJm3zrUtk0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.crl rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DacIB93rzjycCn7IkbEOF0njKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:29:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1618 (0x652) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBF27, serialNumber=D0369C201F77AF38F27029FB2246C4385D278CA2 Validity Not Before: Dec 6 21:29:31 2025 GMT Not After : Dec 13 21:29:31 2025 GMT Subject: CN=6934a03b-f543 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f1:c8:1d:c5:01:6c:6d:1a:bc:4a:f7:18:2a: 28:0e:3e:6e:d9:ea:a5:b7:a3:c4:73:49:59:b5:91: 2f:25:78:09:8d:27:e2:04:3e:0c:25:89:c1:9b:ee: 45:54:45:08:3b:74:ab:aa:d3:19:fe:22:a8:b3:7f: ea:db:86:30:f0:3e:34:f1:ee:ba:16:bf:33:bc:cf: a9:6c:91:c8:b1:a5:a9:50:c8:99:b4:7b:5f:9e:b2: 8e:fa:0c:8f:2d:45:1f:e0:b6:71:d9:ac:a0:55:98: ac:b5:2d:8a:89:47:b3:cf:9b:0d:d0:77:1e:3f:38: 05:4c:49:60:c1:d6:80:df:be:d5:32:6f:20:af:e1: bc:e3:08:16:ce:d4:ed:6e:f9:c0:3a:fd:76:ae:e7: 37:e6:28:ed:3c:df:ad:6f:61:9b:0b:98:3c:da:0b: 01:78:f2:75:bb:8c:19:3d:8c:73:4c:ab:bb:4a:ab: 9d:06:03:9b:ff:02:cb:be:03:3e:10:4d:a8:24:9c: 24:95:39:24:79:e3:0d:59:e2:0f:63:e8:b0:56:39: 0e:ed:1c:f3:09:a7:b0:ea:d0:f4:96:e4:01:a1:97: dd:c8:7e:ab:24:86:4b:58:85:e9:b0:db:d1:f7:c0: 84:0c:be:b7:b7:fa:9e:66:7c:b9:c8:93:bc:64:00: aa:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:C8:40:7F:9D:AF:8D:84:E5:A9:2C:33:0F:0F:F6:C9:99:1D:F8:D8 X509v3 Authority Key Identifier: keyid:D0:36:9C:20:1F:77:AF:38:F2:70:29:FB:22:46:C4:38:5D:27:8C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DacIB93rzjycCn7IkbEOF0njKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:8f:f6:29:02:11:94:a0:a1:33:73:55:27:a7:65:77:e7:ae: e1:76:71:0e:66:74:9d:66:8f:9b:30:75:7b:b9:36:9f:8b:fb: e6:3a:18:f6:5e:8c:33:c3:df:5f:b8:e4:78:b4:17:13:c0:60: b8:04:a7:f8:c1:87:a2:15:e6:04:91:24:09:bd:30:00:a0:00: 33:ad:65:d5:4f:ac:40:01:01:18:81:59:15:da:19:e4:ce:3b: 5f:8f:8d:99:c5:c4:18:0b:b6:ac:1e:48:63:59:18:24:73:3b: a3:7f:ed:18:b3:e9:1c:00:7d:05:35:6e:a2:27:03:72:c7:af: fe:1f:d2:76:f5:88:4f:64:31:ea:32:87:c6:cb:ed:53:ff:f6: 06:28:96:8b:39:1c:b1:07:2e:55:df:97:96:5b:a1:8a:25:93: 1c:02:d0:9d:1b:58:b6:73:a1:27:ea:91:a9:5e:1e:bc:b4:e3: b2:b8:2a:9f:ef:79:38:ff:f8:05:d2:7e:f1:8a:c4:9b:c9:b4: de:d3:7e:59:73:b9:8c:a9:e5:11:c5:43:4b:5b:ab:fb:5e:f3: 72:9d:53:23:db:b4:87:72:d3:1a:81:0c:ab:e0:af:75:29:28: 35:39:0a:65:63:af:9b:5a:1a:e4:f9:76:5c:b4:02:b7:52:da: a0:b4:ec:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGMjcxMTAvBgNVBAUTKEQwMzY5QzIwMUY3N0FGMzhGMjcwMjlGQjIyNDZDNDM4 NUQyNzhDQTIwHhcNMjUxMjA2MjEyOTMxWhcNMjUxMjEzMjEyOTMxWjAYMRYwFAYD VQQDEw02OTM0YTAzYi1mNTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtvHIHcUBbG0avEr3GCooDj5u2eqlt6PEc0lZtZEvJXgJjSfiBD4MJYnBm+5F VEUIO3SrqtMZ/iKos3/q24Yw8D408e66Fr8zvM+pbJHIsaWpUMiZtHtfnrKO+gyP LUUf4LZx2aygVZistS2KiUezz5sN0HcePzgFTElgwdaA377VMm8gr+G84wgWztTt bvnAOv12ruc35ijtPN+tb2GbC5g82gsBePJ1u4wZPYxzTKu7SqudBgOb/wLLvgM+ EE2oJJwklTkkeeMNWeIPY+iwVjkO7RzzCaew6tD0luQBoZfdyH6rJIZLWIXpsNvR 98CEDL63t/qeZny5yJO8ZACqFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLzIQH+d r42E5aksMw8P9smZHfjYMB8GA1UdIwQYMBaAFNA2nCAfd6848nAp+yJGxDhdJ4yi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkYyNy9GMUQzRTMyNkFC RTcxMUVCQjg1RDUxNDdDNEY5QUUwMi8wRGFjSUI5M3J6anljQ243SWtiRU9GMG5q S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBEYWNJQjkzcnpqeWNDbjdJa2JFT0YwbmpLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkYyNy9GMUQzRTMyNkFCRTcxMUVCQjg1RDUxNDdDNEY5QUUwMi8wRGFjSUI5M3J6 anljQ243SWtiRU9GMG5qS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrj/YpAhGUoKEzc1Unp2V3567hdnEOZnSdZo+bMHV7uTafi/vmOhj2 Xowzw99fuOR4tBcTwGC4BKf4wYeiFeYEkSQJvTAAoAAzrWXVT6xAAQEYgVkV2hnk zjtfj42ZxcQYC7asHkhjWRgkczujf+0Ys+kcAH0FNW6iJwNyx6/+H9J29YhPZDHq MofGy+1T//YGKJaLORyxBy5V35eWW6GKJZMcAtCdG1i2c6En6pGpXh68tOOyuCqf 73k4//gF0n7xisSbybTe035Zc7mMqeURxUNLW6v7XvNynVMj27SHctMagQyr4K91 KSg1OQplY6+bWhrk+XZctAK3UtqgtOyw -----END CERTIFICATE-----Generated at Sun Dec 7 02:59:29 2025 by rpki-client