This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft File: D429p9DJoeyhlFxhtykg9aoOlGc.mft (raw, json) Hash identifier: ab/oFcL4GpIcWP0Kia5OQvRHlXFgq7o89UfOWq2YbV0= Subject key identifier: BD:E4:7D:DB:76:D8:B7:1C:F0:E1:03:6A:2D:9D:0D:C5:44:81:72:63 Authority key identifier: 0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 Certificate issuer: /CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Certificate serial: 1C50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft Manifest number: 1C3E Signing time: Sat 06 Dec 2025 15:52:10 +0000 Manifest this update: Sat 06 Dec 2025 15:52:10 +0000 Manifest next update: Sat 13 Dec 2025 15:52:10 +0000 Files and hashes: 1: D429p9DJoeyhlFxhtykg9aoOlGc.crl (hash: bh8lmFUYGRjibz+Ke3MYuwyzMZWUNtBFE8N2653/9KI=) 2: D59EA6F4F5C611E6A4FFEF0AC4F9AE02.roa (hash: 3uXMO0UCJNabKr8uzhOcc7C4VV56oSmRiKoTg6QuV1A=) 3: C3ACDB568E9311E9AA8A2877C4F9AE02.roa (hash: u6rekZJ0jZc3ISHqsLCTcc0e5DQkPjPm3qL6iQKKzgs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:52:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7248 (0x1c50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAF20, serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Validity Not Before: Dec 6 15:52:10 2025 GMT Not After : Dec 13 15:52:10 2025 GMT Subject: CN=6934512a-5f81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a9:68:5d:3d:2c:44:66:89:dd:68:22:11:d3: ee:b7:89:0a:9a:22:63:0a:ca:31:fe:2b:48:1a:c2: 15:96:69:5c:59:04:ea:fb:ac:45:5c:de:46:0a:ff: 82:61:3b:46:2a:5a:03:0b:8d:3f:70:c2:87:f0:8f: a3:f2:6e:75:4e:f8:85:4e:1d:e5:f4:54:0d:ab:28: 8b:1e:19:a3:86:78:5d:96:37:e1:f6:2f:ad:d5:dd: ca:6f:e5:d3:1c:15:fd:90:98:47:a8:e9:61:ef:9f: 75:ea:45:9e:79:ee:72:c5:ba:ea:92:ba:3c:73:ca: 20:2a:e6:f4:09:33:00:c4:04:5d:62:16:5f:d6:94: 06:ec:7d:89:dc:53:bd:f8:25:70:45:8e:df:cd:70: cf:b9:1c:8e:35:90:db:62:38:16:fd:1c:f1:3c:64: b0:c2:15:9a:7e:b5:91:aa:5b:6d:bf:71:24:4f:5a: 20:bc:0e:af:b5:0a:44:20:a5:c4:15:8a:b9:34:4e: 57:dd:b5:91:bf:76:e5:d0:20:3a:7c:e2:74:b6:3e: 3b:13:ee:8c:4c:a5:1b:e9:d7:ad:71:ba:e7:f1:3d: 93:94:5a:0f:76:83:95:85:58:1d:1b:ce:5f:fd:a4: a9:50:52:0a:45:64:9e:e7:9f:8e:59:d2:73:06:f0: ef:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:E4:7D:DB:76:D8:B7:1C:F0:E1:03:6A:2D:9D:0D:C5:44:81:72:63 X509v3 Authority Key Identifier: keyid:0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:58:be:5b:f9:98:61:e0:3e:7c:45:4c:f8:af:0f:8c:c7:d6: a3:29:cb:c9:19:38:78:0c:c9:e2:f7:27:04:06:af:a1:89:92: 98:52:e6:20:1e:74:d4:8b:1d:4d:15:3e:e5:9c:76:50:98:83: a4:9a:9b:c9:76:db:54:56:cc:1b:aa:7e:d8:05:ad:45:89:ac: af:47:28:98:e0:d6:f0:52:30:85:03:2b:1b:1b:f7:08:8e:59: de:50:a8:a8:6a:56:7b:40:30:26:23:28:61:89:2b:eb:71:b5: af:3a:86:9d:e0:60:d0:df:e7:f9:26:b3:ff:64:34:b7:a4:c2: fb:ae:26:2b:ab:40:7f:b1:16:16:bb:24:bc:b6:23:65:47:4d: c8:10:9c:a5:4d:80:f2:35:7d:e9:f6:e8:ac:50:0e:d4:b5:c2: 84:a2:0f:b2:81:24:20:9b:e8:ee:84:c9:88:43:05:11:4e:b3: 5e:22:24:8a:8e:d3:e9:73:1c:65:45:2b:36:06:31:7a:3f:87: c8:93:0e:86:57:9b:68:a3:1f:c4:ae:f4:04:01:77:5c:ab:cc: ce:03:00:b3:9b:53:97:b0:4e:60:04:b8:71:87:ef:dc:1f:5e: c4:2f:5c:97:01:c6:97:20:59:42:81:34:42:c3:71:37:59:12: 4b:a8:8b:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHFAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGMjAxMTAvBgNVBAUTKDBGOERCREE3RDBDOUExRUNBMTk0NUM2MUI3MjkyMEY1 QUEwRTk0NjcwHhcNMjUxMjA2MTU1MjEwWhcNMjUxMjEzMTU1MjEwWjAYMRYwFAYD VQQDEw02OTM0NTEyYS01ZjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqloXT0sRGaJ3WgiEdPut4kKmiJjCsox/itIGsIVlmlcWQTq+6xFXN5GCv+C YTtGKloDC40/cMKH8I+j8m51TviFTh3l9FQNqyiLHhmjhnhdljfh9i+t1d3Kb+XT HBX9kJhHqOlh75916kWeee5yxbrqkro8c8ogKub0CTMAxARdYhZf1pQG7H2J3FO9 +CVwRY7fzXDPuRyONZDbYjgW/RzxPGSwwhWafrWRqlttv3EkT1ogvA6vtQpEIKXE FYq5NE5X3bWRv3bl0CA6fOJ0tj47E+6MTKUb6detcbrn8T2TlFoPdoOVhVgdG85f /aSpUFIKRWSe55+OWdJzBvDvCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL3kfdt2 2Lcc8OEDai2dDcVEgXJjMB8GA1UdIwQYMBaAFA+NvafQyaHsoZRcYbcpIPWqDpRn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUYyMC82NUE5QTI0MkY1 QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9leWhsRnhodHlrZzlhb09s R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q0MjlwOURKb2V5aGxGeGh0eWtnOWFvT2xHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUYyMC82NUE5QTI0MkY1QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9l eWhsRnhodHlrZzlhb09sR2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2WL5b+Zhh4D58RUz4rw+Mx9ajKcvJGTh4DMni9ycEBq+hiZKYUuYg HnTUix1NFT7lnHZQmIOkmpvJdttUVswbqn7YBa1FiayvRyiY4NbwUjCFAysbG/cI jlneUKioalZ7QDAmIyhhiSvrcbWvOoad4GDQ3+f5JrP/ZDS3pML7riYrq0B/sRYW uyS8tiNlR03IEJylTYDyNX3p9uisUA7UtcKEog+ygSQgm+juhMmIQwURTrNeIiSK jtPpcxxlRSs2BjF6P4fIkw6GV5toox/ErvQEAXdcq8zOAwCzm1OXsE5gBLhxh+/c H17EL1yXAcaXIFlCgTRCw3E3WRJLqIsF -----END CERTIFICATE-----Generated at Sun Dec 7 02:00:13 2025 by rpki-client