This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft File: drnTOfrNYrR-k-iITehQOW2877Q.mft (raw, json) Hash identifier: T8D5MyKRVzS8SfmT74MEG6RwEvsBfELhUFSQsYFtt/8= Subject key identifier: 15:15:C8:19:FA:26:48:3B:4A:CD:4A:75:FA:A4:9D:F7:71:AB:85:B9 Authority key identifier: 76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 Certificate issuer: /CN=A911E6CA/serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Certificate serial: 0B51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft Manifest number: 0B39 Signing time: Thu 18 Dec 2025 18:55:09 +0000 Manifest this update: Thu 18 Dec 2025 18:55:09 +0000 Manifest next update: Thu 25 Dec 2025 18:55:09 +0000 Files and hashes: 1: drnTOfrNYrR-k-iITehQOW2877Q.crl (hash: wbxszNmk3EjJYbCnswtb4kOfS7c1nCcI+X8Iu4V+mbo=) 2: 4FFC83964CA311EE815AF017C4F9AE02.roa (hash: UA3Z3TNFXnNBwmElq5Ec0QuBLoZlUKqnBYT4/k/3BsY=) 3: 83882F7AF83B11ECB4154E31C4F9AE02.roa (hash: YH3lhLXoSVbhjIpXiN2vn5qlApvWo5uVmDvE4K7XYgk=) 4: AA1ABF0AB20011EA9C0DFB2FC4F9AE02.roa (hash: FcXy6QLc2Tvjs24Fp66P1cwtAXMmWgi5gNPzljev1BY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:55:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2897 (0xb51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E6CA, serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Validity Not Before: Dec 18 18:55:09 2025 GMT Not After : Dec 25 18:55:09 2025 GMT Subject: CN=69444e0d-a525 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:cf:0b:a8:3a:ce:4a:fc:12:74:39:14:e6:6d: 88:7f:e5:73:0c:4f:2d:fa:d6:c9:0d:0e:58:b4:97: ee:90:ec:a8:d0:53:2a:50:83:33:95:c3:cf:e9:ef: 19:4e:ab:c7:51:4a:fd:3d:7e:8a:9f:8a:55:55:73: ae:e4:57:26:a0:48:7d:15:9c:61:10:bd:e5:60:3b: c3:90:ee:9d:92:cb:e0:f0:10:96:f0:2b:43:c0:4b: 2e:1b:01:ca:a9:04:fd:f2:60:8a:fb:77:af:f9:1d: b6:0c:22:28:d7:b6:e7:12:20:1e:64:e3:bc:0b:e3: 83:a2:73:c8:fc:17:a9:60:97:c8:ee:96:58:72:91: a7:a2:44:b7:30:15:de:04:e9:b5:d2:fc:6d:21:e5: f7:f8:87:d0:7e:2f:3f:f6:18:91:a3:0a:0d:20:57: e3:37:79:ff:75:c2:4c:af:1c:16:2f:eb:c2:a8:86: 9a:12:b1:dd:31:92:fd:b4:49:b8:67:83:d8:1a:3a: cc:b0:61:f0:a2:10:7f:15:77:75:18:73:85:51:e1: 00:ab:6a:01:24:65:b2:be:e4:62:8a:44:45:81:e7: e8:be:0f:67:7e:a8:54:42:c6:3e:59:05:4c:51:ec: 4e:90:7d:b2:d4:c7:2c:a2:30:02:89:71:27:5b:97: a6:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:15:C8:19:FA:26:48:3B:4A:CD:4A:75:FA:A4:9D:F7:71:AB:85:B9 X509v3 Authority Key Identifier: keyid:76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:4f:2f:2f:36:b2:6c:bf:bd:9c:2e:08:3f:f5:ba:85:49:19: 6b:10:18:c1:da:f0:85:68:ba:c9:39:12:2f:56:6d:f3:0f:c9: cd:df:5d:35:9e:ce:de:4e:b3:4e:de:76:18:49:a5:57:b5:de: ba:02:fe:a8:4e:ca:e4:37:59:a7:08:71:a6:39:2d:5b:ad:5d: 95:41:50:ac:37:73:c9:f3:14:d6:b4:a4:4a:ce:63:70:2a:ba: 5b:01:df:39:56:37:cc:7c:0c:a9:e3:9b:94:7d:df:90:23:21: 01:ac:00:7c:ad:54:5c:c6:bc:c8:30:f6:5e:82:18:27:24:97: 88:4e:f3:28:21:49:65:0e:23:4f:78:db:26:75:2a:f0:c3:3f: a0:5e:2f:4c:e8:3d:2c:1e:8a:c8:76:9c:0b:3f:a2:37:f3:37: 8a:9e:83:be:01:d7:13:17:00:8d:25:d7:16:05:b2:a3:d6:78: 25:ab:a8:8b:ab:9e:88:df:5d:6a:8b:3b:74:b9:e8:cf:55:81: c3:b2:8b:dd:55:88:40:cc:6e:52:83:b8:51:d5:55:62:23:68: d6:3a:59:dc:0b:a7:96:17:2c:5c:91:4c:e9:db:31:6c:1e:3d: d0:86:20:79:8a:5f:ed:a1:b5:12:5d:b2:7e:52:52:f2:58:11: d6:71:e1:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU2Q0ExMTAvBgNVBAUTKDc2QjlEMzM5RkFDRDYyQjQ3RTkzRTg4ODRERTg1MDM5 NkRCQ0VGQjQwHhcNMjUxMjE4MTg1NTA5WhcNMjUxMjI1MTg1NTA5WjAYMRYwFAYD VQQDDA02OTQ0NGUwZC1hNTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3s8LqDrOSvwSdDkU5m2If+VzDE8t+tbJDQ5YtJfukOyo0FMqUIMzlcPP6e8Z TqvHUUr9PX6Kn4pVVXOu5FcmoEh9FZxhEL3lYDvDkO6dksvg8BCW8CtDwEsuGwHK qQT98mCK+3ev+R22DCIo17bnEiAeZOO8C+ODonPI/BepYJfI7pZYcpGnokS3MBXe BOm10vxtIeX3+IfQfi8/9hiRowoNIFfjN3n/dcJMrxwWL+vCqIaaErHdMZL9tEm4 Z4PYGjrMsGHwohB/FXd1GHOFUeEAq2oBJGWyvuRiikRFgefovg9nfqhUQsY+WQVM UexOkH2y1McsojACiXEnW5emTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBUVyBn6 Jkg7Ss1Kdfqknfdxq4W5MB8GA1UdIwQYMBaAFHa50zn6zWK0fpPoiE3oUDltvO+0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTZDQS83NDA5QjQ3QTRG QzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTllyUi1rLWlJVGVoUU9XMjg3 N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RyblRPZnJOWXJSLWstaUlUZWhRT1cyODc3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTZDQS83NDA5QjQ3QTRGQzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTlly Ui1rLWlJVGVoUU9XMjg3N1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaTy8vNrJsv72cLgg/9bqFSRlrEBjB2vCFaLrJORIvVm3zD8nN3101 ns7eTrNO3nYYSaVXtd66Av6oTsrkN1mnCHGmOS1brV2VQVCsN3PJ8xTWtKRKzmNw KrpbAd85VjfMfAyp45uUfd+QIyEBrAB8rVRcxrzIMPZeghgnJJeITvMoIUllDiNP eNsmdSrwwz+gXi9M6D0sHorIdpwLP6I38zeKnoO+AdcTFwCNJdcWBbKj1nglq6iL q56I311qizt0uejPVYHDsovdVYhAzG5Sg7hR1VViI2jWOlncC6eWFyxckUzp2zFs Hj3QhiB5il/tobUSXbJ+UlLyWBHWceEP -----END CERTIFICATE-----Generated at Fri Dec 19 19:05:32 2025 by rpki-client