This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft File: DKQH8N1TBy-ooGCBaRkpbmV31oI.mft (raw, json) Hash identifier: vyHFomLklQPwl4UxJgxABTJyDzFp7xJSQNF+d7zuDc0= Subject key identifier: 74:A1:21:9D:AE:35:87:06:8C:F3:70:8B:65:43:FC:1F:B7:20:13:CC Authority key identifier: 0C:A4:07:F0:DD:53:07:2F:A8:A0:60:81:69:19:29:6E:65:77:D6:82 Certificate issuer: /CN=A91F3BDE/serialNumber=0CA407F0DD53072FA8A060816919296E6577D682 Certificate serial: 0CAC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKQH8N1TBy-ooGCBaRkpbmV31oI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft Manifest number: 0C9E Signing time: Sat 06 Dec 2025 17:45:56 +0000 Manifest this update: Sat 06 Dec 2025 17:45:56 +0000 Manifest next update: Sat 13 Dec 2025 17:45:56 +0000 Files and hashes: 1: DKQH8N1TBy-ooGCBaRkpbmV31oI.crl (hash: hrrPMmaeVSwBoDihhyeBusK+sK+73wBCmjS2iCtQE5U=) 2: 2A8DE0F42FA611EB980DEF79C4F9AE02.roa (hash: 6qF9h43DlEql9uVHDmWHQPm/sTRQL95grseNb5kyQF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.crl rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKQH8N1TBy-ooGCBaRkpbmV31oI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3244 (0xcac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3BDE, serialNumber=0CA407F0DD53072FA8A060816919296E6577D682 Validity Not Before: Dec 6 17:45:56 2025 GMT Not After : Dec 13 17:45:56 2025 GMT Subject: CN=69346bd4-b8c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:99:95:45:4d:b1:4b:03:e7:4c:a3:11:ac:1a: c6:e2:4d:fe:e3:76:34:cc:e2:de:dd:8a:52:ef:20: c1:c0:43:0d:43:b3:ed:ed:9f:7b:19:df:e1:ea:48: 64:fd:dc:63:d6:08:fc:3b:fe:05:0a:ca:e0:11:03: dd:ba:43:b3:95:a0:60:9e:5e:22:53:e9:a3:31:42: 95:51:bc:de:58:c5:12:ec:d4:71:16:30:d2:c9:e9: ca:f9:8e:46:4f:a2:3e:19:42:29:cb:25:e1:16:63: b6:20:ca:ef:4f:51:82:e5:21:4d:90:1e:28:39:b2: 33:d9:e6:ed:4c:34:e2:0c:b6:ec:fa:24:b4:23:bf: 19:08:72:2f:95:47:2c:82:c8:39:a5:0e:a0:18:83: e9:ef:ab:53:f8:32:6e:03:64:ba:9f:a6:9c:8f:e1: 15:39:5a:b9:00:f8:01:85:9b:b5:af:2e:bc:2e:86: bb:e2:df:cf:15:a7:26:58:08:79:36:60:95:f0:05: 42:94:ad:4b:0f:2a:2b:85:e2:ec:ff:37:d7:9c:b5: 64:06:9e:ca:e0:69:34:ca:ba:0b:0b:ac:cd:3d:0c: 4a:ef:82:25:53:af:8d:73:15:e2:95:ad:7e:03:3c: 7d:07:4d:55:e7:70:3d:48:10:9d:db:32:53:82:d6: d3:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:A1:21:9D:AE:35:87:06:8C:F3:70:8B:65:43:FC:1F:B7:20:13:CC X509v3 Authority Key Identifier: keyid:0C:A4:07:F0:DD:53:07:2F:A8:A0:60:81:69:19:29:6E:65:77:D6:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKQH8N1TBy-ooGCBaRkpbmV31oI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:ee:8c:7d:6a:b6:df:51:68:b9:03:98:2c:21:0c:13:8f:c5: 65:90:20:3b:5f:d1:23:87:d9:d6:0b:05:06:68:20:d2:b8:17: 68:a9:63:83:ce:df:a4:16:bf:17:5d:8c:61:1f:d3:6a:f1:98: 48:15:e3:18:3d:ae:ad:a1:0a:3c:d9:28:87:0f:f2:c2:38:21: e8:2b:d4:90:cf:8c:7d:57:8b:31:f7:4a:62:bc:8e:b1:2a:57: 9a:62:99:62:5c:9f:5c:0d:58:02:4b:38:7b:e1:a8:1e:9f:04: 87:62:da:38:b0:80:7e:a3:a1:3f:74:ab:c0:d7:50:c8:3d:79: c3:9c:c6:83:a7:72:10:85:b8:e4:9c:e3:a0:e7:32:07:45:ec: c8:6d:34:49:56:42:8b:9d:59:43:22:8a:b5:d2:d3:33:15:68: 50:4d:bc:88:63:87:3e:ce:bc:24:49:9a:4a:1f:d8:c1:16:99: 50:fa:d3:8c:5e:71:02:8f:1b:28:03:f1:5e:76:aa:af:18:f5: 29:1e:14:28:1a:e9:d5:fb:22:83:e9:41:93:43:13:a2:a4:82: 0e:12:f0:9c:63:0c:f5:2e:05:07:6b:12:7e:12:c2:1a:7d:35: 68:cb:ba:9b:50:f4:bc:2f:9b:cb:0c:ac:d9:62:93:47:c5:f7: cf:d3:f5:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNCREUxMTAvBgNVBAUTKDBDQTQwN0YwREQ1MzA3MkZBOEEwNjA4MTY5MTkyOTZF NjU3N0Q2ODIwHhcNMjUxMjA2MTc0NTU2WhcNMjUxMjEzMTc0NTU2WjAYMRYwFAYD VQQDEw02OTM0NmJkNC1iOGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApJmVRU2xSwPnTKMRrBrG4k3+43Y0zOLe3YpS7yDBwEMNQ7Pt7Z97Gd/h6khk /dxj1gj8O/4FCsrgEQPdukOzlaBgnl4iU+mjMUKVUbzeWMUS7NRxFjDSyenK+Y5G T6I+GUIpyyXhFmO2IMrvT1GC5SFNkB4oObIz2ebtTDTiDLbs+iS0I78ZCHIvlUcs gsg5pQ6gGIPp76tT+DJuA2S6n6acj+EVOVq5APgBhZu1ry68Loa74t/PFacmWAh5 NmCV8AVClK1LDyorheLs/zfXnLVkBp7K4Gk0yroLC6zNPQxK74IlU6+NcxXila1+ Azx9B01V53A9SBCd2zJTgtbTEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHShIZ2u NYcGjPNwi2VD/B+3IBPMMB8GA1UdIwQYMBaAFAykB/DdUwcvqKBggWkZKW5ld9aC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0JERS81MEE5MEUzNjA4 MTQxMUVBOEVCNUY4MTBDNEY5QUUwMi9ES1FIOE4xVEJ5LW9vR0NCYVJrcGJtVjMx b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RLUUg4TjFUQnktb29HQ0JhUmtwYm1WMzFvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0JERS81MEE5MEUzNjA4MTQxMUVBOEVCNUY4MTBDNEY5QUUwMi9ES1FIOE4xVEJ5 LW9vR0NCYVJrcGJtVjMxb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCU7ox9arbfUWi5A5gsIQwTj8VlkCA7X9Ejh9nWCwUGaCDSuBdoqWOD zt+kFr8XXYxhH9Nq8ZhIFeMYPa6toQo82SiHD/LCOCHoK9SQz4x9V4sx90pivI6x KleaYpliXJ9cDVgCSzh74agenwSHYto4sIB+o6E/dKvA11DIPXnDnMaDp3IQhbjk nOOg5zIHRezIbTRJVkKLnVlDIoq10tMzFWhQTbyIY4c+zrwkSZpKH9jBFplQ+tOM XnECjxsoA/FedqqvGPUpHhQoGunV+yKD6UGTQxOipIIOEvCcYwz1LgUHaxJ+EsIa fTVoy7qbUPS8L5vLDKzZYpNHxffP0/Vb -----END CERTIFICATE-----Generated at Sat Dec 6 20:06:15 2025 by rpki-client