This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft File: dpU2g0Agk0lSKX69t4GJNXsToUU.mft (raw, json) Hash identifier: 1gbsyHES4Nf08lrZBTvyryLuxz68a9Mgc8mLxZkg2KQ= Subject key identifier: FB:37:60:2F:24:53:9B:5C:B9:D1:B0:71:14:5A:7C:41:0F:A0:16:45 Authority key identifier: 76:95:36:83:40:20:93:49:52:29:7E:BD:B7:81:89:35:7B:13:A1:45 Certificate issuer: /CN=A9111623/serialNumber=769536834020934952297EBDB78189357B13A145 Certificate serial: 0140 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dpU2g0Agk0lSKX69t4GJNXsToUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft Manifest number: 013C Signing time: Sun 21 Dec 2025 03:39:21 +0000 Manifest this update: Sun 21 Dec 2025 03:39:21 +0000 Manifest next update: Sun 28 Dec 2025 03:39:21 +0000 Files and hashes: 1: dpU2g0Agk0lSKX69t4GJNXsToUU.crl (hash: LIRv/6LRyZOEoXZdE8UzpmyN62tpIBeb7z9mGhpXIDY=) 2: CAE74ADEFD4511EEA97C9D1CC4F9AE02.roa (hash: Fsngn3T1P2F9caL/353bXgiO502hh5tKTNXu5S+xNYY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.crl rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dpU2g0Agk0lSKX69t4GJNXsToUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 03:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 320 (0x140) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111623, serialNumber=769536834020934952297EBDB78189357B13A145 Validity Not Before: Dec 21 03:39:21 2025 GMT Not After : Dec 28 03:39:21 2025 GMT Subject: CN=69476be9-3af5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:fa:71:79:ab:68:04:81:63:df:19:fd:97:f2: 72:66:9d:d4:d4:7d:7d:9a:3f:57:bf:70:a9:34:d8: 58:ae:1a:0b:de:8c:34:2c:c7:17:34:69:44:b0:59: c7:d6:62:ce:a3:de:4b:b7:7b:7d:27:f8:bd:21:c2: d4:00:77:ae:8e:69:f9:6a:fd:8d:82:29:ca:00:65: b1:22:e5:a8:57:02:e0:ab:a6:3a:aa:5c:48:40:dd: 4a:81:9a:02:ed:ff:ef:31:25:0e:0e:3b:07:23:36: ab:26:f3:2c:60:49:b3:f3:81:a6:09:ed:a4:8d:d9: d8:66:5b:a9:57:72:95:14:33:fe:28:29:5d:f2:c4: 59:77:8a:4f:e2:29:cf:41:ce:2a:2d:93:d4:08:2e: e9:68:c7:69:2f:9f:fc:1b:3a:39:68:be:ae:0a:cb: e0:a0:66:b3:29:15:12:71:da:4c:d5:ef:e3:4a:dc: 06:96:ba:54:0d:15:b3:30:33:bc:00:9c:0f:ba:a7: e4:f6:6f:9a:e4:08:4d:d8:71:12:f9:b1:35:5c:36: 0f:0f:88:c6:49:7a:ed:93:d7:1d:ee:0d:a5:da:8f: cb:1e:50:38:21:a7:de:66:f9:ab:ff:1f:52:47:df: 8d:50:43:eb:df:d6:96:e5:32:a5:bc:7d:da:3f:14: 5c:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:37:60:2F:24:53:9B:5C:B9:D1:B0:71:14:5A:7C:41:0F:A0:16:45 X509v3 Authority Key Identifier: keyid:76:95:36:83:40:20:93:49:52:29:7E:BD:B7:81:89:35:7B:13:A1:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dpU2g0Agk0lSKX69t4GJNXsToUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:d9:dd:46:5c:5a:e9:5e:49:58:45:03:2f:db:7b:40:c6:a5: 90:ed:34:28:0a:e9:63:d5:d3:20:14:e6:24:2d:2c:88:81:0f: d9:55:b0:1b:93:e5:49:72:1d:33:ab:08:21:fa:b0:ed:c8:3a: 40:17:5e:96:87:2f:1b:de:b7:19:b4:de:a6:60:b0:35:ec:fc: 18:d3:96:97:b2:1e:51:01:72:87:bb:ad:cb:f2:7f:4c:95:eb: 7b:a5:3d:c4:11:4d:a5:ee:dd:ec:67:00:51:ff:b4:f3:c6:cb: 7e:4c:75:54:16:a4:3b:51:68:1c:63:fe:14:60:86:25:37:f1: 93:08:0b:3e:f5:3b:fa:ce:94:7b:6e:59:e9:76:97:48:d8:be: 46:27:d1:c7:e7:80:89:26:d7:a5:fa:06:fc:cf:a9:2c:d1:e3: bb:4f:13:11:99:90:b1:98:ee:f1:f6:df:cb:2c:32:64:f1:3a: 92:2c:5d:4a:96:ea:a0:a8:2d:5d:c3:29:83:85:19:b2:62:7a: 01:9e:b2:5d:48:f5:25:bb:ae:b2:2c:ca:d3:1b:f0:7f:de:c1: d7:56:ce:fd:67:f9:58:e7:d6:7c:04:14:e4:d1:61:08:82:b4: 42:4c:84:6e:ea:b3:86:3f:3a:14:55:07:4f:17:e7:40:72:09: 7c:2b:5e:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE2MjMxMTAvBgNVBAUTKDc2OTUzNjgzNDAyMDkzNDk1MjI5N0VCREI3ODE4OTM1 N0IxM0ExNDUwHhcNMjUxMjIxMDMzOTIxWhcNMjUxMjI4MDMzOTIxWjAYMRYwFAYD VQQDDA02OTQ3NmJlOS0zYWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvpxeatoBIFj3xn9l/JyZp3U1H19mj9Xv3CpNNhYrhoL3ow0LMcXNGlEsFnH 1mLOo95Lt3t9J/i9IcLUAHeujmn5av2NginKAGWxIuWoVwLgq6Y6qlxIQN1KgZoC 7f/vMSUODjsHIzarJvMsYEmz84GmCe2kjdnYZlupV3KVFDP+KCld8sRZd4pP4inP Qc4qLZPUCC7paMdpL5/8Gzo5aL6uCsvgoGazKRUScdpM1e/jStwGlrpUDRWzMDO8 AJwPuqfk9m+a5AhN2HES+bE1XDYPD4jGSXrtk9cd7g2l2o/LHlA4IafeZvmr/x9S R9+NUEPr39aW5TKlvH3aPxRc/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPs3YC8k U5tcudGwcRRafEEPoBZFMB8GA1UdIwQYMBaAFHaVNoNAIJNJUil+vbeBiTV7E6FF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTYyMy81MEFEMDcxOEZE NDUxMUVFQUIzQUQ3MUJDNEY5QUUwMi9kcFUyZzBBZ2swbFNLWDY5dDRHSk5Yc1Rv VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RwVTJnMEFnazBsU0tYNjl0NEdKTlhzVG9VVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTYyMy81MEFEMDcxOEZENDUxMUVFQUIzQUQ3MUJDNEY5QUUwMi9kcFUyZzBBZ2sw bFNLWDY5dDRHSk5Yc1RvVVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAy2d1GXFrpXklYRQMv23tAxqWQ7TQoCulj1dMgFOYkLSyIgQ/ZVbAb k+VJch0zqwgh+rDtyDpAF16Why8b3rcZtN6mYLA17PwY05aXsh5RAXKHu63L8n9M let7pT3EEU2l7t3sZwBR/7Tzxst+THVUFqQ7UWgcY/4UYIYlN/GTCAs+9Tv6zpR7 blnpdpdI2L5GJ9HH54CJJtel+gb8z6ks0eO7TxMRmZCxmO7x9t/LLDJk8TqSLF1K luqgqC1dwymDhRmyYnoBnrJdSPUlu66yLMrTG/B/3sHXVs79Z/lY59Z8BBTk0WEI grRCTIRu6rOGPzoUVQdPF+dAcgl8K14P -----END CERTIFICATE-----Generated at Mon Dec 22 00:47:46 2025 by rpki-client