This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/DWTFbg5hGlzB01iGdsV03iLVdQE.mft File: DWTFbg5hGlzB01iGdsV03iLVdQE.mft (raw, json) Hash identifier: o6WSReGO7xtItlAY2ZR7c3VRPVIBhoU0d964kuVuFHg= Subject key identifier: 46:B6:CD:7F:BD:A0:AE:15:CA:45:5A:82:2C:C6:2D:73:B9:73:1C:8F Authority key identifier: 0D:64:C5:6E:0E:61:1A:5C:C1:D3:58:86:76:C5:74:DE:22:D5:75:01 Certificate issuer: /CN=A9128D30/serialNumber=0D64C56E0E611A5CC1D3588676C574DE22D57501 Certificate serial: 017B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWTFbg5hGlzB01iGdsV03iLVdQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/DWTFbg5hGlzB01iGdsV03iLVdQE.mft Manifest number: 0177 Signing time: Fri 19 Dec 2025 02:59:41 +0000 Manifest this update: Fri 19 Dec 2025 02:59:41 +0000 Manifest next update: Fri 26 Dec 2025 02:59:41 +0000 Files and hashes: 1: DWTFbg5hGlzB01iGdsV03iLVdQE.crl (hash: qxexpL60MbGArpoG2rU0fdCJYUn1Az+xiVU6PldA8QY=) 2: 7D28601A9FD211EEAC56900AC4F9AE02.roa (hash: rHpWptnNSPwPKucfIIMI/V8JiXjxCpt50nkyeQwzhKs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/DWTFbg5hGlzB01iGdsV03iLVdQE.crl rsync://rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/DWTFbg5hGlzB01iGdsV03iLVdQE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWTFbg5hGlzB01iGdsV03iLVdQE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:59:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 379 (0x17b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128D30, serialNumber=0D64C56E0E611A5CC1D3588676C574DE22D57501 Validity Not Before: Dec 19 02:59:41 2025 GMT Not After : Dec 26 02:59:41 2025 GMT Subject: CN=6944bf9d-2f62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e5:91:c0:72:da:68:8c:9e:48:ae:43:ce:4e: 71:12:03:d7:39:06:76:59:5c:28:2d:08:ca:ee:b1: bc:fd:74:bc:21:3a:f5:04:a3:66:34:e6:84:1f:b8: 93:be:6b:d9:43:c7:0e:a2:9d:58:50:4f:29:4a:59: 41:91:00:49:16:09:ec:53:25:31:87:40:2e:29:75: 00:82:f4:eb:45:46:10:8e:4d:8e:ca:94:c2:2c:43: c5:6c:1d:fe:91:57:42:91:9d:ad:47:26:ff:83:31: a9:c2:6e:b6:68:00:b3:9d:15:f9:9a:e5:87:34:e9: 28:d2:be:c7:63:dc:6a:be:5f:ce:2c:5d:63:6b:9b: b2:bc:2e:a9:a8:84:76:c5:bf:70:11:19:90:68:02: 75:bd:b8:6c:71:71:36:dc:66:bc:0e:9e:e5:d8:e3: f6:ba:2b:e8:50:6a:48:c2:d4:fa:26:71:8d:03:9e: 56:7b:c7:e6:07:15:5f:8f:10:7a:83:e1:f7:86:81: a9:25:67:bf:29:a0:51:bf:c2:c0:e6:cd:00:ab:28: 7b:a4:63:d8:68:b8:a4:fa:26:6c:3f:a2:ce:86:a3: 98:c4:50:ef:fc:5b:3c:19:82:75:fb:fb:a1:5e:49: 01:c2:0d:b9:85:73:17:65:00:6d:d0:ca:77:42:4b: 74:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:B6:CD:7F:BD:A0:AE:15:CA:45:5A:82:2C:C6:2D:73:B9:73:1C:8F X509v3 Authority Key Identifier: keyid:0D:64:C5:6E:0E:61:1A:5C:C1:D3:58:86:76:C5:74:DE:22:D5:75:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/DWTFbg5hGlzB01iGdsV03iLVdQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWTFbg5hGlzB01iGdsV03iLVdQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/DWTFbg5hGlzB01iGdsV03iLVdQE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:b9:d1:7d:55:2e:8e:cc:89:65:35:51:9c:d9:c3:a5:dc:86: 29:1d:9b:62:eb:c9:f5:f5:7d:e6:00:31:3f:91:27:1a:49:7c: ec:92:00:b3:88:3b:8c:ac:0e:6d:3e:11:bb:52:20:a2:fd:ca: 17:a5:66:41:e4:cb:c4:c7:a3:33:9a:9f:b8:df:bc:20:b4:49: f4:cc:e5:76:fb:b2:c1:93:c2:a5:95:59:d3:07:9c:c3:c3:4c: aa:f2:6a:1f:df:fe:81:c6:14:04:17:7d:6e:6f:6b:bb:96:c0: 02:a9:8a:5f:fd:d0:02:60:e5:c2:09:ed:3e:7e:43:15:30:7a: be:cf:ce:ce:75:d7:39:9a:63:43:34:d3:b2:39:81:ff:0f:d2: 6b:4c:cc:b0:3e:6c:8d:64:9c:66:32:18:bb:84:07:31:1d:9b: ca:31:62:7c:8c:7f:a0:6f:9f:27:20:22:03:4e:ab:28:5f:23: ae:e1:cb:22:74:bf:8c:7e:06:83:ed:35:49:f3:0b:f5:5c:7f: e9:23:2d:07:23:f8:67:c9:da:58:3e:0f:b6:82:18:89:eb:d5: e4:f6:96:f4:52:ce:3a:c1:a4:d8:52:80:49:a1:38:d5:b8:2c: ac:a0:ee:13:ea:85:2a:5c:7e:c5:fd:f9:27:14:df:46:ea:a2: b7:a5:ef:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhEMzAxMTAvBgNVBAUTKDBENjRDNTZFMEU2MTFBNUNDMUQzNTg4Njc2QzU3NERF MjJENTc1MDEwHhcNMjUxMjE5MDI1OTQxWhcNMjUxMjI2MDI1OTQxWjAYMRYwFAYD VQQDDA02OTQ0YmY5ZC0yZjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsuWRwHLaaIyeSK5Dzk5xEgPXOQZ2WVwoLQjK7rG8/XS8ITr1BKNmNOaEH7iT vmvZQ8cOop1YUE8pSllBkQBJFgnsUyUxh0AuKXUAgvTrRUYQjk2OypTCLEPFbB3+ kVdCkZ2tRyb/gzGpwm62aACznRX5muWHNOko0r7HY9xqvl/OLF1ja5uyvC6pqIR2 xb9wERmQaAJ1vbhscXE23Ga8Dp7l2OP2uivoUGpIwtT6JnGNA55We8fmBxVfjxB6 g+H3hoGpJWe/KaBRv8LA5s0Aqyh7pGPYaLik+iZsP6LOhqOYxFDv/Fs8GYJ1+/uh XkkBwg25hXMXZQBt0Mp3Qkt0iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEa2zX+9 oK4VykVagizGLXO5cxyPMB8GA1UdIwQYMBaAFA1kxW4OYRpcwdNYhnbFdN4i1XUB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEQzMC9DRDgwQUFFNjlG RDExMUVFQUQ3MDQ0MDlDNEY5QUUwMi9EV1RGYmc1aEdsekIwMWlHZHNWMDNpTFZk UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RXVEZiZzVoR2x6QjAxaUdkc1YwM2lMVmRRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEQzMC9DRDgwQUFFNjlGRDExMUVFQUQ3MDQ0MDlDNEY5QUUwMi9EV1RGYmc1aEds ekIwMWlHZHNWMDNpTFZkUUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAudF9VS6OzIllNVGc2cOl3IYpHZti68n19X3mADE/kScaSXzskgCz iDuMrA5tPhG7UiCi/coXpWZB5MvEx6Mzmp+437wgtEn0zOV2+7LBk8KllVnTB5zD w0yq8mof3/6BxhQEF31ub2u7lsACqYpf/dACYOXCCe0+fkMVMHq+z87Oddc5mmND NNOyOYH/D9JrTMywPmyNZJxmMhi7hAcxHZvKMWJ8jH+gb58nICIDTqsoXyOu4csi dL+MfgaD7TVJ8wv1XH/pIy0HI/hnydpYPg+2ghiJ69Xk9pb0Us46waTYUoBJoTjV uCysoO4T6oUqXH7F/fknFN9G6qK3pe8T -----END CERTIFICATE-----Generated at Fri Dec 19 17:44:49 2025 by rpki-client