This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft File: Df2AHulmIu0X31XXqqZMce_5t70.mft (raw, json) Hash identifier: D/SEDN2Dfd8PbYCe5gNnm9R2cM9nCrIL9vvmMDWUBz0= Subject key identifier: 2D:6B:6A:97:01:18:BE:73:B2:F6:89:05:42:EE:25:46:B2:0F:39:68 Authority key identifier: 0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD Certificate issuer: /CN=A91F4E89/serialNumber=0DFD801EE96622ED17DF55D7AAA64C71EFF9B7BD Certificate serial: 0BE4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft Manifest number: 0BDE Signing time: Sat 06 Dec 2025 18:11:18 +0000 Manifest this update: Sat 06 Dec 2025 18:11:18 +0000 Manifest next update: Sat 13 Dec 2025 18:11:18 +0000 Files and hashes: 1: Df2AHulmIu0X31XXqqZMce_5t70.crl (hash: I5QhkSm8tfVc2HYi5a/5j9AsKK7TcOlc9jL+tvHHHzE=) 2: 72F52C962AF511EA8C989441C4F9AE02.roa (hash: VUxxRKza4YtkY3CW36/yWhqdjkRvkusFphcVpxC9+Yc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.crl rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 18:11:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3044 (0xbe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4E89, serialNumber=0DFD801EE96622ED17DF55D7AAA64C71EFF9B7BD Validity Not Before: Dec 6 18:11:18 2025 GMT Not After : Dec 13 18:11:18 2025 GMT Subject: CN=693471c6-ce97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7c:d0:04:21:df:b6:a0:82:69:54:70:b8:d1: 1d:e7:54:5b:04:30:14:53:16:f7:10:6e:ed:89:27: 96:65:6b:42:94:c4:f3:e5:ab:7b:20:23:9f:55:b0: 06:57:5c:c6:43:68:07:b9:18:63:ef:65:0e:6c:cc: e1:59:ed:4f:c8:a2:8a:df:4b:3f:cd:71:f1:cf:b4: 52:1e:bb:31:c0:a5:ae:ba:42:d2:e1:d3:f1:71:35: 8d:16:ca:6b:10:67:d0:d7:2c:c0:6b:e4:7c:77:8c: 76:01:00:1f:1e:a7:23:d9:77:66:88:6a:0f:50:b1: f8:76:8e:bd:b6:d4:5a:8b:fb:22:ca:64:b6:8f:64: 6a:47:fc:df:1d:d8:5d:19:db:72:12:24:52:88:ce: 17:bd:92:26:88:4e:42:3c:cc:32:3f:2f:aa:47:41: 64:c1:17:83:fe:31:ca:29:8c:e4:7a:11:b3:e1:04: 13:e6:24:91:5a:34:fb:97:50:40:93:62:c5:0b:ee: 1d:87:0b:8f:ec:e0:ae:7b:ca:1f:0a:79:31:ca:84: 1f:af:3e:76:c1:34:d3:82:86:e0:b8:3f:2f:3b:a4: 52:a9:ef:b6:6c:12:5c:55:99:85:29:63:a4:f2:ce: 58:91:34:ca:21:d9:72:6b:3f:97:f9:d8:a1:54:d7: f2:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:6B:6A:97:01:18:BE:73:B2:F6:89:05:42:EE:25:46:B2:0F:39:68 X509v3 Authority Key Identifier: keyid:0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:c2:97:99:28:e6:44:c2:cd:c6:ea:6e:a5:be:bc:50:8a:a4: b5:a9:dd:e6:ee:55:21:85:72:89:d7:a7:47:89:b2:57:fa:5f: fa:09:75:2b:2f:aa:c9:fd:4d:e1:b1:85:83:8e:56:38:65:2a: 81:2d:c9:b7:3e:93:b9:f1:97:5d:ee:62:d1:82:0d:bd:4a:bf: 9b:f0:e1:a9:a0:fc:22:4b:d5:b6:66:a1:ca:0f:6a:17:11:e3: 72:b6:2a:f6:c1:16:8a:86:84:9d:13:8f:36:20:23:7f:03:1f: 06:7d:4e:e1:0f:cf:91:ad:e1:24:3c:08:54:90:13:fa:67:3d: 9a:ac:0c:81:8d:1c:31:33:89:10:6a:5e:27:d8:33:ea:0d:50: d6:ca:26:d2:47:e7:88:5b:3a:09:eb:84:51:70:43:29:a7:5b: 12:c9:0a:b1:b4:dc:a2:aa:0d:00:74:26:41:5e:a6:dc:83:07: 60:e3:eb:9c:26:dd:53:d8:0b:3a:4b:3f:a0:9f:29:9c:d3:ac: 06:3c:38:dd:85:7a:66:22:60:89:25:47:5e:a7:58:37:7d:61: c7:8e:1c:7d:99:34:c1:73:d6:9b:67:22:a5:0b:e3:3f:62:3d: 5a:71:51:5d:d5:65:d5:ab:ae:ff:e9:35:b5:e5:3f:10:62:90: d1:8c:11:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRFODkxMTAvBgNVBAUTKDBERkQ4MDFFRTk2NjIyRUQxN0RGNTVEN0FBQTY0Qzcx RUZGOUI3QkQwHhcNMjUxMjA2MTgxMTE4WhcNMjUxMjEzMTgxMTE4WjAYMRYwFAYD VQQDEw02OTM0NzFjNi1jZTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXzQBCHftqCCaVRwuNEd51RbBDAUUxb3EG7tiSeWZWtClMTz5at7ICOfVbAG V1zGQ2gHuRhj72UObMzhWe1PyKKK30s/zXHxz7RSHrsxwKWuukLS4dPxcTWNFspr EGfQ1yzAa+R8d4x2AQAfHqcj2XdmiGoPULH4do69ttRai/siymS2j2RqR/zfHdhd GdtyEiRSiM4XvZImiE5CPMwyPy+qR0FkwReD/jHKKYzkehGz4QQT5iSRWjT7l1BA k2LFC+4dhwuP7OCue8ofCnkxyoQfrz52wTTTgobguD8vO6RSqe+2bBJcVZmFKWOk 8s5YkTTKIdlyaz+X+dihVNfyBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC1rapcB GL5zsvaJBULuJUayDzloMB8GA1UdIwQYMBaAFA39gB7pZiLtF99V16qmTHHv+be9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEU4OS9DNTMzRDcyNDJB RjQxMUVBQTQ4RjE1NDFDNEY5QUUwMi9EZjJBSHVsbUl1MFgzMVhYcXFaTWNlXzV0 NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RmMkFIdWxtSXUwWDMxWFhxcVpNY2VfNXQ3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEU4OS9DNTMzRDcyNDJBRjQxMUVBQTQ4RjE1NDFDNEY5QUUwMi9EZjJBSHVsbUl1 MFgzMVhYcXFaTWNlXzV0NzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4wpeZKOZEws3G6m6lvrxQiqS1qd3m7lUhhXKJ16dHibJX+l/6CXUr L6rJ/U3hsYWDjlY4ZSqBLcm3PpO58Zdd7mLRgg29Sr+b8OGpoPwiS9W2ZqHKD2oX EeNytir2wRaKhoSdE482ICN/Ax8GfU7hD8+RreEkPAhUkBP6Zz2arAyBjRwxM4kQ al4n2DPqDVDWyibSR+eIWzoJ64RRcEMpp1sSyQqxtNyiqg0AdCZBXqbcgwdg4+uc Jt1T2As6Sz+gnymc06wGPDjdhXpmImCJJUdep1g3fWHHjhx9mTTBc9abZyKlC+M/ Yj1acVFd1WXVq67/6TW15T8QYpDRjBEj -----END CERTIFICATE-----Generated at Sun Dec 7 00:58:58 2025 by rpki-client