This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft File: D96C0nlIVMmvzdhe-37-ScR9Lu4.mft (raw, json) Hash identifier: sYlXdhYueiHiyXg+82kRwu0TK8a2ZirGfLxey/RY/UA= Subject key identifier: 01:E2:F2:D3:C4:13:22:B8:6F:51:BB:6F:11:9E:65:5E:78:30:77:40 Authority key identifier: 0F:DE:82:D2:79:48:54:C9:AF:CD:D8:5E:FB:7E:FE:49:C4:7D:2E:EE Certificate issuer: /CN=A914C33A/serialNumber=0FDE82D2794854C9AFCDD85EFB7EFE49C47D2EEE Certificate serial: 0D56 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft Manifest number: 0D4A Signing time: Wed 31 Dec 2025 15:26:29 +0000 Manifest this update: Wed 31 Dec 2025 15:26:29 +0000 Manifest next update: Wed 07 Jan 2026 15:26:29 +0000 Files and hashes: 1: D96C0nlIVMmvzdhe-37-ScR9Lu4.crl (hash: A5+qyESlAVNeqsHcbqjDffth5aNi6+Utwca0qoCxMbg=) 2: 0DF331C28F9411EAA5E7B573C4F9AE02.roa (hash: 9uu0uxHIlYAtI54QHWC2LYrc4wDsOXjbCKyh/vuM2qk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.crl rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 15:26:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3414 (0xd56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C33A, serialNumber=0FDE82D2794854C9AFCDD85EFB7EFE49C47D2EEE Validity Not Before: Dec 31 15:26:29 2025 GMT Not After : Jan 7 15:26:29 2026 GMT Subject: CN=695540a5-b535 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8a:3a:15:eb:b5:44:e9:d2:2f:f2:14:54:dd: 2a:6c:0d:6d:76:89:b3:48:ae:cd:2b:6a:2b:7d:a6: d4:1a:ab:84:84:3d:40:9f:18:74:a2:4b:14:3f:ec: fe:de:08:16:92:6b:d4:c3:3c:35:0e:d8:7a:60:c6: 13:5b:83:51:b5:48:22:ad:56:aa:c1:1a:a6:bb:51: c4:ad:0b:05:70:5e:a8:67:93:72:48:57:8d:5e:29: 82:03:92:4b:14:ce:7c:69:83:92:ae:8d:c1:f5:dc: 9d:28:fc:40:0e:54:b3:69:86:62:7f:f8:67:66:9e: 5d:d6:48:06:ee:2a:9f:71:8d:ac:1c:77:50:e3:dc: 85:51:6b:6e:92:7d:b6:db:59:6b:c5:4e:ec:8d:d7: 0a:92:a1:6a:25:3d:c5:3f:46:05:58:67:ac:75:fa: 8b:03:ce:59:fb:d9:1c:c6:25:03:ab:eb:5c:d5:db: 0d:b2:13:62:66:ee:23:30:f0:c3:41:ee:9a:9a:48: 60:94:f6:fc:bb:05:ea:29:51:be:1f:49:75:6c:9c: 6d:08:dd:a3:88:53:23:9f:46:30:88:b4:d0:f3:84: fc:a9:3a:2e:30:88:f0:08:1f:00:dd:21:53:2f:c7: 59:04:e9:ca:c5:06:56:8c:94:af:d1:18:e4:9e:40: 02:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:E2:F2:D3:C4:13:22:B8:6F:51:BB:6F:11:9E:65:5E:78:30:77:40 X509v3 Authority Key Identifier: keyid:0F:DE:82:D2:79:48:54:C9:AF:CD:D8:5E:FB:7E:FE:49:C4:7D:2E:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:ce:82:e9:d5:60:da:9c:34:58:a4:07:06:9e:4c:7b:d0:ea: 66:46:dc:a7:7e:7f:db:aa:4c:26:0e:9d:31:00:d7:53:81:3c: e2:c7:33:3d:a2:01:1f:d5:c3:cd:0d:c0:8a:5b:12:81:91:fd: 90:50:f1:f4:46:8b:97:ee:6f:a6:75:2b:31:2a:c1:d6:b2:30: 7e:01:6d:b5:54:52:0f:a4:dd:2b:f7:49:e1:0e:e7:5b:46:fd: cb:63:80:b6:60:12:29:0f:dc:41:08:ef:db:0f:59:f0:ed:b3: bb:40:55:e2:e6:3c:d7:c3:25:3b:05:17:44:78:b2:6c:b3:84: f2:3f:ed:62:25:aa:10:16:75:75:8f:f0:fe:0e:77:6b:33:ef: bd:16:56:ca:91:7e:33:7d:a5:07:ed:41:15:17:1e:f4:85:82: 26:a7:5c:dc:8d:55:1c:1b:cf:d9:f9:ee:c3:be:a6:20:29:b6: 85:28:6f:00:4f:0f:cb:40:ab:c4:6e:30:e8:4f:b4:9d:f5:96: aa:e0:ad:95:c4:07:bc:8e:04:83:93:3a:30:91:ef:1d:3b:46: d7:99:5e:ba:70:93:b9:7d:54:f6:b4:b9:4c:52:87:80:8f:05: b4:7c:49:2c:a7:17:ef:30:07:fb:ba:1a:a0:7d:29:3b:a3:fd: d2:5a:57:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMzM0ExMTAvBgNVBAUTKDBGREU4MkQyNzk0ODU0QzlBRkNERDg1RUZCN0VGRTQ5 QzQ3RDJFRUUwHhcNMjUxMjMxMTUyNjI5WhcNMjYwMTA3MTUyNjI5WjAYMRYwFAYD VQQDDA02OTU1NDBhNS1iNTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAroo6Feu1ROnSL/IUVN0qbA1tdomzSK7NK2orfabUGquEhD1Anxh0oksUP+z+ 3ggWkmvUwzw1Dth6YMYTW4NRtUgirVaqwRqmu1HErQsFcF6oZ5NySFeNXimCA5JL FM58aYOSro3B9dydKPxADlSzaYZif/hnZp5d1kgG7iqfcY2sHHdQ49yFUWtukn22 21lrxU7sjdcKkqFqJT3FP0YFWGesdfqLA85Z+9kcxiUDq+tc1dsNshNiZu4jMPDD Qe6amkhglPb8uwXqKVG+H0l1bJxtCN2jiFMjn0YwiLTQ84T8qTouMIjwCB8A3SFT L8dZBOnKxQZWjJSv0RjknkACjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAHi8tPE EyK4b1G7bxGeZV54MHdAMB8GA1UdIwQYMBaAFA/egtJ5SFTJr83YXvt+/knEfS7u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzMzQS84RjQ3QTlGQUU5 N0QxMUU5QTlEQjVFNTJDNEY5QUUwMi9EOTZDMG5sSVZNbXZ6ZGhlLTM3LVNjUjlM dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0Q5NkMwbmxJVk1tdnpkaGUtMzctU2NSOUx1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzMzQS84RjQ3QTlGQUU5N0QxMUU5QTlEQjVFNTJDNEY5QUUwMi9EOTZDMG5sSVZN bXZ6ZGhlLTM3LVNjUjlMdTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmzoLp1WDanDRYpAcGnkx70OpmRtynfn/bqkwmDp0xANdTgTzixzM9 ogEf1cPNDcCKWxKBkf2QUPH0RouX7m+mdSsxKsHWsjB+AW21VFIPpN0r90nhDudb Rv3LY4C2YBIpD9xBCO/bD1nw7bO7QFXi5jzXwyU7BRdEeLJss4TyP+1iJaoQFnV1 j/D+DndrM++9FlbKkX4zfaUH7UEVFx70hYImp1zcjVUcG8/Z+e7DvqYgKbaFKG8A Tw/LQKvEbjDoT7Sd9Zaq4K2VxAe8jgSDkzowke8dO0bXmV66cJO5fVT2tLlMUoeA jwW0fEkspxfvMAf7uhqgfSk7o/3SWlfn -----END CERTIFICATE-----Generated at Fri Jan 2 09:52:31 2026 by rpki-client