This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft File: dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft (raw, json) Hash identifier: /w+tPoH3g/v4fa/bsQ1/4zskJUUEbzBEV3BaQd8610A= Subject key identifier: 2B:CF:3E:C5:B7:4B:39:3C:21:70:1F:ED:A4:B2:9A:B7:95:38:74:6C Authority key identifier: 77:06:D0:88:E9:21:DE:8B:01:EB:BA:06:20:1D:04:15:0E:86:4D:04 Certificate issuer: /CN=A91557BA/serialNumber=7706D088E921DE8B01EBBA06201D04150E864D04 Certificate serial: 0CBE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dwbQiOkh3osB67oGIB0EFQ6GTQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft Manifest number: 0CB3 Signing time: Thu 18 Dec 2025 18:02:02 +0000 Manifest this update: Thu 18 Dec 2025 18:02:02 +0000 Manifest next update: Thu 25 Dec 2025 18:02:02 +0000 Files and hashes: 1: dwbQiOkh3osB67oGIB0EFQ6GTQQ.crl (hash: q5CMs/y0r5XHUgT8vCU5G6RT645DE5xwxCH4NNrLq5k=) 2: D68289BE984B11ECB04DAB38C4F9AE02.roa (hash: TFFXR7HvdoBBfkYQcKZFG8C4IZWcW3CzAFgZ6vyFYeQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.crl rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dwbQiOkh3osB67oGIB0EFQ6GTQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:02:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3262 (0xcbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91557BA, serialNumber=7706D088E921DE8B01EBBA06201D04150E864D04 Validity Not Before: Dec 18 18:02:02 2025 GMT Not After : Dec 25 18:02:02 2025 GMT Subject: CN=6944419a-a85c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:6c:7d:21:43:d1:ab:ee:1c:42:9a:58:8e:a6: fd:c8:69:e4:9b:33:24:0f:dc:12:3d:78:0f:19:b9: a0:a4:44:3b:5d:53:5c:cb:29:e6:e5:d9:e9:5c:65: f2:1c:60:f7:7e:db:50:71:09:63:d8:63:02:a8:2f: ab:17:a4:42:3e:cc:a3:1e:7f:11:88:75:f2:e7:85: 32:19:24:d5:57:fe:62:8f:38:b9:4d:2d:67:cf:c1: d0:85:ac:3d:13:7a:c7:f6:d4:68:16:80:3e:78:c4: 2c:c8:5b:05:02:e1:5b:b5:31:aa:fd:76:9f:9c:b6: 82:b1:6a:9b:b9:d7:dd:00:41:a2:f6:06:c9:17:78: e7:87:6d:06:0e:23:c1:61:fc:c3:ae:0f:e5:ff:1e: 0b:de:bd:91:e4:21:72:e4:c1:82:28:00:5b:d9:a7: 25:d5:97:ed:eb:f8:3b:72:a5:a6:b3:33:69:d5:94: b2:36:c3:ec:16:c8:cc:8a:bb:10:89:c4:e9:65:d7: 1b:33:7b:f9:84:ab:47:8a:c4:52:c5:44:ad:8f:5a: 6d:ce:01:f9:86:43:99:0e:df:e7:03:02:9d:3f:d2: 94:8d:a6:ee:c6:7e:16:2a:bd:82:1d:2b:69:4b:00: 5b:17:16:30:65:16:8f:f7:47:1f:39:25:be:b8:0b: 46:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:CF:3E:C5:B7:4B:39:3C:21:70:1F:ED:A4:B2:9A:B7:95:38:74:6C X509v3 Authority Key Identifier: keyid:77:06:D0:88:E9:21:DE:8B:01:EB:BA:06:20:1D:04:15:0E:86:4D:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dwbQiOkh3osB67oGIB0EFQ6GTQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:2b:4a:d2:0b:8b:17:6d:ad:34:b2:fd:1f:92:fd:40:fd:53: 25:70:b0:d3:9d:34:ce:e0:fb:87:8a:01:ec:aa:3e:0c:13:f0: c1:07:53:82:65:62:36:f7:82:da:b5:bc:76:20:79:7a:c3:e9: cd:7b:75:ac:03:a6:dc:82:23:1e:24:af:73:25:5d:e3:96:5a: 5c:8a:9b:6c:9f:08:2c:c6:33:45:a3:9f:93:86:0e:29:75:0e: 36:46:3c:5a:66:2e:40:41:fa:68:82:22:fc:82:91:0e:ea:00: 5d:38:8a:f1:12:b1:c3:55:5d:fd:01:78:0a:09:98:a6:56:63: 65:2e:f2:4b:94:30:d4:91:19:b3:ae:39:dd:41:4a:1e:a2:d5: 6e:6b:3f:4e:64:0e:53:8e:15:c7:a0:15:b3:cf:66:8c:75:86: 4e:00:70:72:8b:3a:6c:f9:05:23:69:eb:af:4d:16:f9:d2:41: 3a:4f:6e:e3:33:55:0c:ca:54:c2:ed:77:83:55:e9:36:39:de: 58:6c:99:78:0c:52:45:28:39:cf:92:7e:ce:a8:69:69:a1:0e: c2:61:2d:26:2d:99:f8:da:d2:88:a2:14:1c:5e:52:ef:16:63: f1:ae:ee:9b:a8:53:cf:1b:af:76:e1:d6:bd:e1:ef:95:bf:6c: 32:d7:03:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3QkExMTAvBgNVBAUTKDc3MDZEMDg4RTkyMURFOEIwMUVCQkEwNjIwMUQwNDE1 MEU4NjREMDQwHhcNMjUxMjE4MTgwMjAyWhcNMjUxMjI1MTgwMjAyWjAYMRYwFAYD VQQDDA02OTQ0NDE5YS1hODVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA02x9IUPRq+4cQppYjqb9yGnkmzMkD9wSPXgPGbmgpEQ7XVNcyynm5dnpXGXy HGD3fttQcQlj2GMCqC+rF6RCPsyjHn8RiHXy54UyGSTVV/5ijzi5TS1nz8HQhaw9 E3rH9tRoFoA+eMQsyFsFAuFbtTGq/XafnLaCsWqbudfdAEGi9gbJF3jnh20GDiPB YfzDrg/l/x4L3r2R5CFy5MGCKABb2acl1Zft6/g7cqWmszNp1ZSyNsPsFsjMirsQ icTpZdcbM3v5hKtHisRSxUStj1ptzgH5hkOZDt/nAwKdP9KUjabuxn4WKr2CHStp SwBbFxYwZRaP90cfOSW+uAtGqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCvPPsW3 Szk8IXAf7aSymreVOHRsMB8GA1UdIwQYMBaAFHcG0IjpId6LAeu6BiAdBBUOhk0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTdCQS82RTc0OTUxMDA0 RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9kd2JRaU9raDNvc0I2N29HSUIwRUZRNkdU UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R3YlFpT2toM29zQjY3b0dJQjBFRlE2R1RRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTdCQS82RTc0OTUxMDA0RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9kd2JRaU9raDNv c0I2N29HSUIwRUZRNkdUUVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6K0rSC4sXba00sv0fkv1A/VMlcLDTnTTO4PuHigHsqj4ME/DBB1OC ZWI294Latbx2IHl6w+nNe3WsA6bcgiMeJK9zJV3jllpciptsnwgsxjNFo5+Thg4p dQ42RjxaZi5AQfpogiL8gpEO6gBdOIrxErHDVV39AXgKCZimVmNlLvJLlDDUkRmz rjndQUoeotVuaz9OZA5TjhXHoBWzz2aMdYZOAHByizps+QUjaeuvTRb50kE6T27j M1UMylTC7XeDVek2Od5YbJl4DFJFKDnPkn7OqGlpoQ7CYS0mLZn42tKIohQcXlLv FmPxru6bqFPPG6924da94e+Vv2wy1wP9 -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:32 2025 by rpki-client