This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916EDC2/36EB2328C25F11EC8C3B001DC4F9AE02/dK-15U8HPzwgdjJdKsf3AA4uaoY.mft File: dK-15U8HPzwgdjJdKsf3AA4uaoY.mft (raw, json) Hash identifier: sXosZkDwVyIAY/hVab3VlWDbgF2KmBlp9YdPAM0xW8E= Subject key identifier: E4:2F:CC:60:DB:03:6B:A3:B2:C9:9D:9D:13:AA:B4:66:50:C8:3F:C2 Authority key identifier: 74:AF:B5:E5:4F:07:3F:3C:20:76:32:5D:2A:C7:F7:00:0E:2E:6A:86 Certificate issuer: /CN=A916EDC2/serialNumber=74AFB5E54F073F3C2076325D2AC7F7000E2E6A86 Certificate serial: 03A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dK-15U8HPzwgdjJdKsf3AA4uaoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EDC2/36EB2328C25F11EC8C3B001DC4F9AE02/dK-15U8HPzwgdjJdKsf3AA4uaoY.mft Manifest number: 039C Signing time: Thu 18 Dec 2025 23:59:39 +0000 Manifest this update: Thu 18 Dec 2025 23:59:39 +0000 Manifest next update: Thu 25 Dec 2025 23:59:39 +0000 Files and hashes: 1: dK-15U8HPzwgdjJdKsf3AA4uaoY.crl (hash: r2OEq/eB6m3jCrv6SMjPJwf64YdubCVPbnadZzadp9o=) 2: 5E8E08E8C26211ECBFC22B20C4F9AE02.roa (hash: w37S3Bt2sSTPCiMAqtrHuEG6jTfY7XCc/TsnG1ZQfsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EDC2/36EB2328C25F11EC8C3B001DC4F9AE02/dK-15U8HPzwgdjJdKsf3AA4uaoY.crl rsync://rpki.apnic.net/member_repository/A916EDC2/36EB2328C25F11EC8C3B001DC4F9AE02/dK-15U8HPzwgdjJdKsf3AA4uaoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dK-15U8HPzwgdjJdKsf3AA4uaoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:59:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 928 (0x3a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EDC2, serialNumber=74AFB5E54F073F3C2076325D2AC7F7000E2E6A86 Validity Not Before: Dec 18 23:59:39 2025 GMT Not After : Dec 25 23:59:39 2025 GMT Subject: CN=6944956b-48fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:47:76:6f:f1:56:cb:56:d8:d1:09:37:b7:1e: e1:83:d8:dc:98:53:0b:28:98:0d:b8:52:86:a3:6b: bb:8e:3f:1d:8d:1a:3c:33:19:36:4d:ca:22:bf:2b: 56:d0:6c:91:19:40:a3:57:eb:6e:21:c8:1d:aa:c0: 2c:05:9e:0b:1a:97:34:cc:e3:e3:f3:fb:e1:07:47: 0b:1f:a4:5d:9b:4d:ec:fd:c9:b2:a8:8f:81:8a:c2: 60:90:9a:47:65:77:d5:14:77:96:98:c7:36:8a:da: 6c:72:7f:5b:a3:2f:b3:01:bb:cf:2a:33:ab:b7:f1: ce:50:fb:09:86:a0:13:57:b3:91:01:44:74:8c:b6: 3a:93:5a:38:82:b3:7e:9e:aa:2f:77:a0:02:95:86: c4:fe:c9:df:aa:bf:66:c9:0a:55:c7:4e:9f:4a:b2: a2:78:1d:06:96:df:4e:51:89:57:2a:ea:01:08:87: aa:d0:72:b1:cc:91:18:84:ee:65:47:5a:fe:54:09: 7e:50:e5:b7:6d:3c:29:2c:3a:e1:27:9e:5f:c9:cd: f5:43:a4:f4:31:74:0f:69:bf:9d:1e:4a:2f:77:88: 60:56:9b:7c:03:53:ab:b1:c6:ac:4b:ae:42:7b:4f: c9:60:8e:eb:43:a4:9e:51:53:4d:27:a3:9a:00:ed: a7:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:2F:CC:60:DB:03:6B:A3:B2:C9:9D:9D:13:AA:B4:66:50:C8:3F:C2 X509v3 Authority Key Identifier: keyid:74:AF:B5:E5:4F:07:3F:3C:20:76:32:5D:2A:C7:F7:00:0E:2E:6A:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EDC2/36EB2328C25F11EC8C3B001DC4F9AE02/dK-15U8HPzwgdjJdKsf3AA4uaoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dK-15U8HPzwgdjJdKsf3AA4uaoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EDC2/36EB2328C25F11EC8C3B001DC4F9AE02/dK-15U8HPzwgdjJdKsf3AA4uaoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:8d:57:e6:99:6a:b2:f2:d5:cc:31:27:30:1b:23:d1:e0:e9: 8f:9a:33:52:f2:b3:26:ae:b9:b0:d6:43:2d:10:36:a8:0e:74: a6:a6:62:0a:93:b4:64:43:1a:dc:77:20:5b:a1:67:6d:56:03: 7a:8f:7a:3b:51:ca:f6:8f:11:49:55:a6:d9:64:41:ed:10:30: af:9b:8b:a5:2e:44:1e:ef:12:66:e1:d7:23:08:09:ba:9d:cc: cb:93:ef:1c:2b:16:b3:56:93:ce:88:0e:15:64:3d:dd:36:01: 46:06:7b:cf:72:27:50:d7:6b:28:13:0d:48:02:b2:1d:5f:29: 33:ee:ac:9c:a4:a7:a3:c0:05:43:ef:cd:be:52:cb:eb:22:30: a7:c4:d2:76:a6:40:c7:de:ea:b5:e2:55:ef:3c:74:5c:73:fd: 33:bb:39:4c:4a:e0:b5:06:10:84:18:39:7c:b7:dc:4e:ed:30: a5:06:6c:d5:31:2e:aa:e1:81:7a:f9:e1:0d:81:aa:28:f0:ff: e2:46:dd:c0:2f:0b:06:f9:58:52:1d:e0:06:08:cd:af:11:aa: b9:06:31:2b:db:aa:6b:54:11:de:32:59:72:d6:52:76:b2:96: fd:b4:b1:66:00:0f:7e:62:0e:9a:21:58:1e:28:22:db:d1:4c: 15:1a:5e:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVEQzIxMTAvBgNVBAUTKDc0QUZCNUU1NEYwNzNGM0MyMDc2MzI1RDJBQzdGNzAw MEUyRTZBODYwHhcNMjUxMjE4MjM1OTM5WhcNMjUxMjI1MjM1OTM5WjAYMRYwFAYD VQQDDA02OTQ0OTU2Yi00OGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA10d2b/FWy1bY0Qk3tx7hg9jcmFMLKJgNuFKGo2u7jj8djRo8Mxk2TcoivytW 0GyRGUCjV+tuIcgdqsAsBZ4LGpc0zOPj8/vhB0cLH6Rdm03s/cmyqI+BisJgkJpH ZXfVFHeWmMc2itpscn9boy+zAbvPKjOrt/HOUPsJhqATV7ORAUR0jLY6k1o4grN+ nqovd6AClYbE/snfqr9myQpVx06fSrKieB0Glt9OUYlXKuoBCIeq0HKxzJEYhO5l R1r+VAl+UOW3bTwpLDrhJ55fyc31Q6T0MXQPab+dHkovd4hgVpt8A1OrscasS65C e0/JYI7rQ6SeUVNNJ6OaAO2npQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOQvzGDb A2ujssmdnROqtGZQyD/CMB8GA1UdIwQYMBaAFHSvteVPBz88IHYyXSrH9wAOLmqG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RURDMi8zNkVCMjMyOEMy NUYxMUVDOEMzQjAwMURDNEY5QUUwMi9kSy0xNVU4SFB6d2dkakpkS3NmM0FBNHVh b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RLLTE1VThIUHp3Z2RqSmRLc2YzQUE0dWFvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RURDMi8zNkVCMjMyOEMyNUYxMUVDOEMzQjAwMURDNEY5QUUwMi9kSy0xNVU4SFB6 d2dkakpkS3NmM0FBNHVhb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhjVfmmWqy8tXMMScwGyPR4OmPmjNS8rMmrrmw1kMtEDaoDnSmpmIK k7RkQxrcdyBboWdtVgN6j3o7Ucr2jxFJVabZZEHtEDCvm4ulLkQe7xJm4dcjCAm6 nczLk+8cKxazVpPOiA4VZD3dNgFGBnvPcidQ12soEw1IArIdXykz7qycpKejwAVD 782+UsvrIjCnxNJ2pkDH3uq14lXvPHRcc/0zuzlMSuC1BhCEGDl8t9xO7TClBmzV MS6q4YF6+eENgaoo8P/iRt3ALwsG+VhSHeAGCM2vEaq5BjEr26prVBHeMlly1lJ2 spb9tLFmAA9+Yg6aIVgeKCLb0UwVGl4L -----END CERTIFICATE-----Generated at Fri Dec 19 19:23:20 2025 by rpki-client