This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91828F3/C27958B8A5CD11EDAECE1278C4F9AE02/dmYQCNrIkoTFN_Lc4KkgupTgeM8.mft File: dmYQCNrIkoTFN_Lc4KkgupTgeM8.mft (raw, json) Hash identifier: 3jTQkEYjgbiMLr74CEBRKE9yx04q+1yrN+fO7OoUOtM= Subject key identifier: A9:0A:16:BC:18:9F:69:86:A1:55:E3:82:C5:21:0F:33:0B:16:31:96 Authority key identifier: 76:66:10:08:DA:C8:92:84:C5:37:F2:DC:E0:A9:20:BA:94:E0:78:CF Certificate issuer: /CN=A91828F3/serialNumber=76661008DAC89284C537F2DCE0A920BA94E078CF Certificate serial: 021C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmYQCNrIkoTFN_Lc4KkgupTgeM8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91828F3/C27958B8A5CD11EDAECE1278C4F9AE02/dmYQCNrIkoTFN_Lc4KkgupTgeM8.mft Manifest number: 0218 Signing time: Fri 19 Dec 2025 01:24:46 +0000 Manifest this update: Fri 19 Dec 2025 01:24:45 +0000 Manifest next update: Fri 26 Dec 2025 01:24:45 +0000 Files and hashes: 1: dmYQCNrIkoTFN_Lc4KkgupTgeM8.crl (hash: khSrWjUjoKlHL99MzDK5ZriMH4pMlOCWTXF0Wlhh98I=) 2: 05E078B2A5D211EDBC42DA12C4F9AE02.roa (hash: DPyqPkT0neP2hvNy+hn6VREMN9M60vGzkrQgZGHU27c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91828F3/C27958B8A5CD11EDAECE1278C4F9AE02/dmYQCNrIkoTFN_Lc4KkgupTgeM8.crl rsync://rpki.apnic.net/member_repository/A91828F3/C27958B8A5CD11EDAECE1278C4F9AE02/dmYQCNrIkoTFN_Lc4KkgupTgeM8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmYQCNrIkoTFN_Lc4KkgupTgeM8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:24:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 540 (0x21c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91828F3, serialNumber=76661008DAC89284C537F2DCE0A920BA94E078CF Validity Not Before: Dec 19 01:24:45 2025 GMT Not After : Dec 26 01:24:45 2025 GMT Subject: CN=6944a95d-7e8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:f0:d3:f8:bb:27:17:25:f8:42:8b:71:98:77: be:d6:45:d1:a3:9b:f8:80:ce:39:fb:ef:39:e9:d5: 6a:35:ce:23:e8:70:6f:d6:d1:a9:bc:f5:9b:87:8f: cd:7d:55:09:e5:50:6d:e6:16:53:89:08:5f:6f:a5: 63:42:e4:9a:36:7c:8b:6a:58:82:86:45:b7:50:76: c7:05:b3:b7:50:18:69:45:08:5f:33:51:49:e2:15: b9:64:a7:cf:30:e3:95:df:e6:89:36:89:06:b9:39: 91:7f:a7:48:11:bd:39:a9:91:5e:9c:49:ba:1b:60: 4f:f8:78:37:4a:e8:3e:06:ff:0f:ed:cd:32:4f:24: d3:ec:17:b9:5a:19:9e:51:1b:a7:bf:50:c8:ba:2a: c5:55:08:6f:b7:f1:89:c8:6e:8f:0c:4a:6a:74:5f: 28:58:16:6c:e7:18:98:11:ff:75:a6:79:62:4d:69: ee:76:ea:a7:0f:54:c0:da:84:17:46:ba:c5:4e:d1: 25:3b:b8:1c:5d:36:63:84:e0:8c:7c:de:b6:97:17: fb:37:83:47:1f:4f:fa:82:71:a4:90:fe:a1:4d:c4: 77:8d:97:b9:a6:b4:6a:fb:80:ab:8c:62:2e:74:a5: 77:12:5a:dc:8d:27:98:8a:37:e9:23:d8:2d:0e:d3: 52:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:0A:16:BC:18:9F:69:86:A1:55:E3:82:C5:21:0F:33:0B:16:31:96 X509v3 Authority Key Identifier: keyid:76:66:10:08:DA:C8:92:84:C5:37:F2:DC:E0:A9:20:BA:94:E0:78:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91828F3/C27958B8A5CD11EDAECE1278C4F9AE02/dmYQCNrIkoTFN_Lc4KkgupTgeM8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmYQCNrIkoTFN_Lc4KkgupTgeM8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91828F3/C27958B8A5CD11EDAECE1278C4F9AE02/dmYQCNrIkoTFN_Lc4KkgupTgeM8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:48:77:66:e0:3b:08:8a:17:de:e0:d8:c6:10:8a:c4:0b:0c: 0f:4b:9c:6a:c8:eb:1c:47:9e:b9:2f:b7:43:f2:b0:e4:dc:14: b8:41:46:61:07:da:6c:6e:bf:d8:bf:c6:e6:b6:41:4d:96:61: 6c:aa:98:8f:65:71:e4:0a:ce:cb:90:d9:b1:04:f8:74:8f:61: 8e:5e:ac:61:bf:92:5a:0a:45:d8:d0:96:ff:3a:fc:bc:d6:56: ba:85:08:38:82:a5:94:a9:d7:23:e5:2a:c8:1d:42:82:38:22: 65:9b:7e:f7:0e:ef:aa:21:90:78:4a:0c:ba:a8:3b:f0:b9:10: ac:2c:f5:73:8e:5c:f6:7a:88:30:0a:84:12:34:2c:67:c1:02: 0c:49:d8:58:cf:bf:a8:47:97:32:cb:b4:4c:f6:36:7f:bb:d4: 73:48:86:32:57:e2:84:ec:67:c7:74:2c:dc:99:b4:47:fa:0f: a3:50:94:1c:3b:c7:2d:ad:9e:3e:82:70:b0:77:06:50:e8:de: f0:2b:5e:18:e6:0b:af:0c:d9:18:0a:9f:a4:9a:40:e8:34:85: c8:28:bd:84:f0:ab:b3:d3:e1:7a:0a:cb:1f:d6:77:5e:98:04: 4f:1c:20:f9:f0:ce:e5:43:ca:c0:99:4e:bc:ff:9d:44:18:8b: d5:48:22:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI4RjMxMTAvBgNVBAUTKDc2NjYxMDA4REFDODkyODRDNTM3RjJEQ0UwQTkyMEJB OTRFMDc4Q0YwHhcNMjUxMjE5MDEyNDQ1WhcNMjUxMjI2MDEyNDQ1WjAYMRYwFAYD VQQDDA02OTQ0YTk1ZC03ZThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo/DT+LsnFyX4QotxmHe+1kXRo5v4gM45++856dVqNc4j6HBv1tGpvPWbh4/N fVUJ5VBt5hZTiQhfb6VjQuSaNnyLaliChkW3UHbHBbO3UBhpRQhfM1FJ4hW5ZKfP MOOV3+aJNokGuTmRf6dIEb05qZFenEm6G2BP+Hg3Sug+Bv8P7c0yTyTT7Be5Whme URunv1DIuirFVQhvt/GJyG6PDEpqdF8oWBZs5xiYEf91pnliTWnuduqnD1TA2oQX RrrFTtElO7gcXTZjhOCMfN62lxf7N4NHH0/6gnGkkP6hTcR3jZe5prRq+4CrjGIu dKV3ElrcjSeYijfpI9gtDtNS7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKkKFrwY n2mGoVXjgsUhDzMLFjGWMB8GA1UdIwQYMBaAFHZmEAjayJKExTfy3OCpILqU4HjP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjhGMy9DMjc5NThCOEE1 Q0QxMUVEQUVDRTEyNzhDNEY5QUUwMi9kbVlRQ05ySWtvVEZOX0xjNEtrZ3VwVGdl TTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RtWVFDTnJJa29URk5fTGM0S2tndXBUZ2VNOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjhGMy9DMjc5NThCOEE1Q0QxMUVEQUVDRTEyNzhDNEY5QUUwMi9kbVlRQ05ySWtv VEZOX0xjNEtrZ3VwVGdlTTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1SHdm4DsIihfe4NjGEIrECwwPS5xqyOscR565L7dD8rDk3BS4QUZh B9psbr/Yv8bmtkFNlmFsqpiPZXHkCs7LkNmxBPh0j2GOXqxhv5JaCkXY0Jb/Ovy8 1la6hQg4gqWUqdcj5SrIHUKCOCJlm373Du+qIZB4Sgy6qDvwuRCsLPVzjlz2eogw CoQSNCxnwQIMSdhYz7+oR5cyy7RM9jZ/u9RzSIYyV+KE7GfHdCzcmbRH+g+jUJQc O8ctrZ4+gnCwdwZQ6N7wK14Y5guvDNkYCp+kmkDoNIXIKL2E8Kuz0+F6Cssf1nde mARPHCD58M7lQ8rAmU68/51EGIvVSCJt -----END CERTIFICATE-----Generated at Fri Dec 19 19:24:36 2025 by rpki-client