This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9121E13/183F99FA8D7B11EB8D8BD60BC4F9AE02/dOHLgzYmhzR4kyyiEYioj98uneA.mft File: dOHLgzYmhzR4kyyiEYioj98uneA.mft (raw, json) Hash identifier: adlCubv/4pc7MooMvqEYns1RQwCtdCW8twZ/AtfSR7w= Subject key identifier: 25:3A:CA:2B:86:2C:76:B8:5A:B1:23:C9:C8:1C:32:A3:85:B3:BB:0B Authority key identifier: 74:E1:CB:83:36:26:87:34:78:93:2C:A2:11:88:A8:8F:DF:2E:9D:E0 Certificate issuer: /CN=A9121E13/serialNumber=74E1CB833626873478932CA21188A88FDF2E9DE0 Certificate serial: 06B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dOHLgzYmhzR4kyyiEYioj98uneA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9121E13/183F99FA8D7B11EB8D8BD60BC4F9AE02/dOHLgzYmhzR4kyyiEYioj98uneA.mft Manifest number: 06B5 Signing time: Thu 18 Dec 2025 14:45:06 +0000 Manifest this update: Thu 18 Dec 2025 14:45:05 +0000 Manifest next update: Thu 25 Dec 2025 14:45:05 +0000 Files and hashes: 1: dOHLgzYmhzR4kyyiEYioj98uneA.crl (hash: 0GX7WyuJ2d7nT8QJGBqi1wwik/5oqqx0hnyUWTIFuNY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9121E13/183F99FA8D7B11EB8D8BD60BC4F9AE02/dOHLgzYmhzR4kyyiEYioj98uneA.crl rsync://rpki.apnic.net/member_repository/A9121E13/183F99FA8D7B11EB8D8BD60BC4F9AE02/dOHLgzYmhzR4kyyiEYioj98uneA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dOHLgzYmhzR4kyyiEYioj98uneA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 14:45:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1718 (0x6b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121E13, serialNumber=74E1CB833626873478932CA21188A88FDF2E9DE0 Validity Not Before: Dec 18 14:45:05 2025 GMT Not After : Dec 25 14:45:05 2025 GMT Subject: CN=69441371-988e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2f:74:8d:d7:13:f6:8c:27:27:3a:9c:c3:5a: 0d:9d:ab:91:4d:06:74:63:4a:9c:6d:e9:69:66:50: 59:3a:78:6d:7c:92:b0:03:05:75:fa:05:1a:1c:0a: f5:cf:9d:3c:17:ca:2f:b1:67:e1:5f:b5:ea:fb:2e: 63:82:72:f6:84:25:5b:33:17:48:d2:06:f3:3a:bf: 60:cf:7b:23:38:35:fa:b0:5a:6b:b8:6d:73:90:1e: 97:f1:07:62:1f:9a:7e:ef:ce:7e:9b:f1:9c:5c:6d: 93:44:1c:22:9e:54:32:40:f7:ae:a5:78:32:fc:16: 8d:ad:49:31:04:8c:a6:4a:a9:ed:34:b8:bf:6d:9b: 30:4d:1a:44:ad:e4:68:d7:32:e8:83:cd:f0:37:78: 9e:cc:63:25:4b:df:52:5b:0b:94:b1:43:04:8c:d7: 58:74:ee:36:f2:be:23:93:8c:a8:1c:15:45:ac:d4: ff:8e:f0:c9:5e:9f:4d:72:60:3b:05:77:9f:49:40: bc:5e:0e:7b:54:5c:20:52:91:97:40:01:61:79:c6: 56:13:c9:5d:9c:95:d9:eb:dc:ff:a1:2d:ef:93:20: eb:df:9d:45:07:16:66:fa:02:75:ad:2a:2b:9d:5f: 2b:1b:3f:ca:47:07:cc:a1:57:e2:1e:08:b4:98:b6: 4d:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:3A:CA:2B:86:2C:76:B8:5A:B1:23:C9:C8:1C:32:A3:85:B3:BB:0B X509v3 Authority Key Identifier: keyid:74:E1:CB:83:36:26:87:34:78:93:2C:A2:11:88:A8:8F:DF:2E:9D:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9121E13/183F99FA8D7B11EB8D8BD60BC4F9AE02/dOHLgzYmhzR4kyyiEYioj98uneA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dOHLgzYmhzR4kyyiEYioj98uneA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121E13/183F99FA8D7B11EB8D8BD60BC4F9AE02/dOHLgzYmhzR4kyyiEYioj98uneA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:e9:52:4f:b2:3c:bc:b2:8e:59:3b:70:c2:3d:29:a0:c6:4f: ff:1c:95:ec:20:61:b3:c6:a9:ae:5b:24:81:e8:49:24:5a:1f: 49:b2:5d:49:98:a7:e7:a7:94:93:2e:ed:1d:83:17:7f:ac:d4: 18:53:21:73:28:69:59:de:b0:ca:2c:9e:d3:3e:bf:75:ed:f5: 3d:95:79:37:82:56:66:56:b9:3e:de:e3:f2:ae:e1:5f:66:93: 2a:2c:6d:9a:0e:f2:80:c4:8e:6b:8e:53:a9:83:da:bb:f3:77: b3:68:5c:93:f2:78:03:d3:8e:1b:45:7e:20:e3:4b:6d:f3:ac: 4d:ef:2f:9b:c5:6f:ff:20:07:d9:54:c2:40:b3:71:ff:50:71: 4f:d0:15:07:11:4b:36:34:2c:63:3e:58:e1:12:09:e7:42:f4: d5:b1:1b:fb:25:f4:c9:a5:cf:d2:75:c1:f4:43:8d:af:a7:84: 4a:2d:de:cf:7c:08:d5:3c:3d:b9:67:b0:3c:c8:95:0b:f2:d7: 1b:22:f1:f2:be:72:8b:d8:53:0a:3f:39:d2:4f:33:36:c8:08: f5:d2:6b:33:9e:80:7f:e0:e8:99:58:3d:85:84:db:38:b2:d5: 6b:71:d5:f8:3b:d4:fb:4c:ee:6f:43:ff:1a:bf:f1:d4:d8:4d: b2:37:58:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjFFMTMxMTAvBgNVBAUTKDc0RTFDQjgzMzYyNjg3MzQ3ODkzMkNBMjExODhBODhG REYyRTlERTAwHhcNMjUxMjE4MTQ0NTA1WhcNMjUxMjI1MTQ0NTA1WjAYMRYwFAYD VQQDDA02OTQ0MTM3MS05ODhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyC90jdcT9ownJzqcw1oNnauRTQZ0Y0qcbelpZlBZOnhtfJKwAwV1+gUaHAr1 z508F8ovsWfhX7Xq+y5jgnL2hCVbMxdI0gbzOr9gz3sjODX6sFpruG1zkB6X8Qdi H5p+785+m/GcXG2TRBwinlQyQPeupXgy/BaNrUkxBIymSqntNLi/bZswTRpEreRo 1zLog83wN3iezGMlS99SWwuUsUMEjNdYdO428r4jk4yoHBVFrNT/jvDJXp9NcmA7 BXefSUC8Xg57VFwgUpGXQAFhecZWE8ldnJXZ69z/oS3vkyDr351FBxZm+gJ1rSor nV8rGz/KRwfMoVfiHgi0mLZN+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCU6yiuG LHa4WrEjycgcMqOFs7sLMB8GA1UdIwQYMBaAFHThy4M2Joc0eJMsohGIqI/fLp3g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMUUxMy8xODNGOTlGQThE N0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi9kT0hMZ3pZbWh6UjRreXlpRVlpb2o5OHVu ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RPSExnelltaHpSNGt5eWlFWWlvajk4dW5lQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MUUxMy8xODNGOTlGQThEN0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi9kT0hMZ3pZbWh6 UjRreXlpRVlpb2o5OHVuZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAK6VJPsjy8so5ZO3DCPSmgxk//HJXsIGGzxqmuWySB6EkkWh9Jsl1J mKfnp5STLu0dgxd/rNQYUyFzKGlZ3rDKLJ7TPr917fU9lXk3glZmVrk+3uPyruFf ZpMqLG2aDvKAxI5rjlOpg9q783ezaFyT8ngD044bRX4g40tt86xN7y+bxW//IAfZ VMJAs3H/UHFP0BUHEUs2NCxjPljhEgnnQvTVsRv7JfTJpc/SdcH0Q42vp4RKLd7P fAjVPD25Z7A8yJUL8tcbIvHyvnKL2FMKPznSTzM2yAj10msznoB/4OiZWD2FhNs4 stVrcdX4O9T7TO5vQ/8av/HU2E2yN1hB -----END CERTIFICATE-----Generated at Fri Dec 19 19:10:17 2025 by rpki-client