This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.mft File: DcXOSilPLJOAqRNe4fBTByikzaY.mft (raw, json) Hash identifier: VuknRE3cEQdSddoL+rEjAN2kyDytYPbTDUeCa8DS9KE= Subject key identifier: 69:CD:F0:0E:4A:64:0F:3C:DF:7B:27:5E:F0:53:79:D5:13:DF:3B:56 Authority key identifier: 0D:C5:CE:4A:29:4F:2C:93:80:A9:13:5E:E1:F0:53:07:28:A4:CD:A6 Certificate issuer: /CN=A912B4DB/serialNumber=0DC5CE4A294F2C9380A9135EE1F0530728A4CDA6 Certificate serial: 3506 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DcXOSilPLJOAqRNe4fBTByikzaY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.mft Manifest number: 34FC Signing time: Sun 28 Dec 2025 15:07:35 +0000 Manifest this update: Sun 28 Dec 2025 15:07:34 +0000 Manifest next update: Sun 04 Jan 2026 15:07:34 +0000 Files and hashes: 1: DcXOSilPLJOAqRNe4fBTByikzaY.crl (hash: YGKrt4UVr89SuCH5zK7tvohM63Bx8iuLoBMXFkTC3jA=) 2: 7FE5F2CEDB9411E9832A463AC4F9AE02.roa (hash: Sw4ihe/uH6fmIDPdKoxmP7xAVXuq4ul6aZ2AD9s5AWE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.crl rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DcXOSilPLJOAqRNe4fBTByikzaY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 15:07:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13574 (0x3506) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B4DB, serialNumber=0DC5CE4A294F2C9380A9135EE1F0530728A4CDA6 Validity Not Before: Dec 28 15:07:34 2025 GMT Not After : Jan 4 15:07:34 2026 GMT Subject: CN=695147b7-8a71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:82:68:f6:c0:e1:b7:71:d8:9b:14:c5:b0:9f: 80:08:2b:52:4b:91:d7:07:87:2d:ad:d9:39:e7:26: c8:3a:32:e0:5f:52:f7:00:56:2b:4d:5f:04:59:36: 17:8a:83:d5:b2:b4:e2:f1:f3:39:c1:7b:d8:6e:af: 9f:66:ed:80:a0:7b:0a:b5:3a:e2:ec:38:ad:0e:68: 97:af:87:c9:6c:cb:c3:cc:3b:9e:5d:76:13:b7:d0: bd:8d:2b:6e:75:05:35:be:ee:4a:1c:d1:e2:67:63: d8:68:1b:56:8f:f7:b4:bb:db:90:de:af:30:ee:fd: 84:7b:3d:9c:db:5d:57:17:88:89:76:e5:c1:9b:9c: e0:f0:a5:e5:4f:c7:89:83:0f:da:e8:d0:e5:b1:e1: 48:05:c5:8d:86:0d:30:f0:5b:a0:f0:56:ce:d6:c2: da:19:46:c6:06:8c:3f:2f:af:e4:64:8b:cd:45:95: 1c:9b:48:ee:d9:7f:7b:ec:2c:6c:e7:87:c5:f7:f3: 70:ba:4c:e4:5a:88:0a:0c:4e:6b:43:37:99:1c:e4: 98:82:d5:d9:76:21:c9:ae:e7:c2:ab:d7:64:c0:80: 6d:79:77:59:4a:c3:ad:88:de:4e:9f:fb:de:89:4a: 31:da:0e:e3:3e:37:50:52:2f:9a:61:72:da:92:62: 0e:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:CD:F0:0E:4A:64:0F:3C:DF:7B:27:5E:F0:53:79:D5:13:DF:3B:56 X509v3 Authority Key Identifier: keyid:0D:C5:CE:4A:29:4F:2C:93:80:A9:13:5E:E1:F0:53:07:28:A4:CD:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DcXOSilPLJOAqRNe4fBTByikzaY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B4DB/5C50296C1DA811E2AB6BA6A208B02CD2/DcXOSilPLJOAqRNe4fBTByikzaY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:05:d2:a9:c2:da:61:c2:ee:f2:20:ac:3b:e0:bf:c7:e1:a6: bd:26:1a:1a:27:68:41:2c:f1:b2:5d:fd:42:ac:f4:44:01:7c: 4c:76:3f:50:6d:6a:84:4c:25:0a:ec:e8:fe:58:d9:94:80:e2: 85:af:45:43:c0:0c:9b:76:31:b4:ac:55:e5:a5:3e:ae:66:2f: 51:8d:f1:9e:23:e3:43:e9:5b:38:34:38:cc:12:f9:44:0f:18: df:b4:4d:be:07:b5:ac:8f:77:61:4c:b2:12:93:7f:85:18:a1: 67:9d:51:2e:d5:9a:cd:a8:c5:85:e8:12:f9:91:97:89:1c:73: e8:91:bc:1c:0a:5d:07:c1:ac:3f:0f:54:da:07:08:56:d2:6d: e7:2a:3c:ad:8a:3d:fc:c7:08:3a:74:96:25:a0:6b:95:61:90: c3:c6:2f:42:6e:95:dc:a4:96:65:e6:99:7c:f6:62:9a:e7:31: 64:7d:2e:53:67:b7:73:f7:6c:d8:b0:d9:b1:6d:a6:73:75:34: 4e:26:07:39:cd:56:b0:34:d3:d1:ff:85:cc:ad:65:5e:cd:54: 04:4b:ad:37:d7:6d:72:c1:bf:0d:09:4a:94:25:d8:dc:a2:02: 3a:00:f4:b0:8d:d7:c8:79:ef:c8:4b:ee:58:5a:cc:83:f4:a4: 37:f1:9c:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI0REIxMTAvBgNVBAUTKDBEQzVDRTRBMjk0RjJDOTM4MEE5MTM1RUUxRjA1MzA3 MjhBNENEQTYwHhcNMjUxMjI4MTUwNzM0WhcNMjYwMTA0MTUwNzM0WjAYMRYwFAYD VQQDDA02OTUxNDdiNy04YTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYJo9sDht3HYmxTFsJ+ACCtSS5HXB4ctrdk55ybIOjLgX1L3AFYrTV8EWTYX ioPVsrTi8fM5wXvYbq+fZu2AoHsKtTri7DitDmiXr4fJbMvDzDueXXYTt9C9jStu dQU1vu5KHNHiZ2PYaBtWj/e0u9uQ3q8w7v2Eez2c211XF4iJduXBm5zg8KXlT8eJ gw/a6NDlseFIBcWNhg0w8Fug8FbO1sLaGUbGBow/L6/kZIvNRZUcm0ju2X977Cxs 54fF9/NwukzkWogKDE5rQzeZHOSYgtXZdiHJrufCq9dkwIBteXdZSsOtiN5On/ve iUox2g7jPjdQUi+aYXLakmIOIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGnN8A5K ZA8833snXvBTedUT3ztWMB8GA1UdIwQYMBaAFA3FzkopTyyTgKkTXuHwUwcopM2m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjREQi81QzUwMjk2QzFE QTgxMUUyQUI2QkE2QTIwOEIwMkNEMi9EY1hPU2lsUExKT0FxUk5lNGZCVEJ5aWt6 YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RjWE9TaWxQTEpPQXFSTmU0ZkJUQnlpa3phWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjREQi81QzUwMjk2QzFEQTgxMUUyQUI2QkE2QTIwOEIwMkNEMi9EY1hPU2lsUExK T0FxUk5lNGZCVEJ5aWt6YVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJBdKpwtphwu7yIKw74L/H4aa9JhoaJ2hBLPGyXf1CrPREAXxMdj9Q bWqETCUK7Oj+WNmUgOKFr0VDwAybdjG0rFXlpT6uZi9RjfGeI+ND6Vs4NDjMEvlE DxjftE2+B7Wsj3dhTLISk3+FGKFnnVEu1ZrNqMWF6BL5kZeJHHPokbwcCl0Hwaw/ D1TaBwhW0m3nKjytij38xwg6dJYloGuVYZDDxi9CbpXcpJZl5pl89mKa5zFkfS5T Z7dz92zYsNmxbaZzdTROJgc5zVawNNPR/4XMrWVezVQES603121ywb8NCUqUJdjc ogI6APSwjdfIee/IS+5YWsyD9KQ38ZxZ -----END CERTIFICATE-----Generated at Tue Dec 30 00:08:21 2025 by rpki-client