This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.mft File: DxfzfbyUhNluGgq8eKT5ys1e2oo.mft (raw, json) Hash identifier: xZnnC64ZslkO/Nng08Xn1AB64GKTsGvRJnFD3Bz1I+w= Subject key identifier: DC:86:03:47:97:9F:A0:0A:77:67:18:D5:02:9D:86:86:71:3D:9D:1E Authority key identifier: 0F:17:F3:7D:BC:94:84:D9:6E:1A:0A:BC:78:A4:F9:CA:CD:5E:DA:8A Certificate issuer: /CN=A91B036A/serialNumber=0F17F37DBC9484D96E1A0ABC78A4F9CACD5EDA8A Certificate serial: 01A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DxfzfbyUhNluGgq8eKT5ys1e2oo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.mft Manifest number: 017F Signing time: Fri 19 Dec 2025 03:21:08 +0000 Manifest this update: Fri 19 Dec 2025 03:21:08 +0000 Manifest next update: Fri 26 Dec 2025 03:21:08 +0000 Files and hashes: 1: DxfzfbyUhNluGgq8eKT5ys1e2oo.crl (hash: yNqZmsOdyW96EppWRIjxELP1W9QVXN3EhcveIi+fWnk=) 2: 2FEF460CD41D11F09C0AFC45C4F9AE02.roa (hash: pfaFNjdDoYDKJn2gtwF5CVq3TneelyE5IvrNs164kK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.crl rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DxfzfbyUhNluGgq8eKT5ys1e2oo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 417 (0x1a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B036A, serialNumber=0F17F37DBC9484D96E1A0ABC78A4F9CACD5EDA8A Validity Not Before: Dec 19 03:21:08 2025 GMT Not After : Dec 26 03:21:08 2025 GMT Subject: CN=6944c4a4-7e81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:fe:40:83:60:24:65:a4:c2:4f:e9:f8:0a:41: e8:c6:3e:7b:58:6b:61:bc:7d:c5:5d:45:c4:13:48: ba:cf:4c:98:d3:73:87:2a:c3:88:6a:59:f1:32:08: 7b:30:86:34:82:90:30:bb:06:b2:bd:64:44:f6:57: 82:75:d5:94:2d:b5:07:29:b9:31:dc:3e:96:4b:2a: f2:ab:51:14:ac:2c:96:15:06:7c:fb:c1:9c:77:c8: 95:b6:6c:19:6f:ce:88:03:08:42:10:c0:b6:9a:1d: ea:53:2f:81:07:3d:91:40:cc:d5:c9:1e:47:35:e1: b9:ce:6a:40:73:5a:88:e0:a0:1a:84:f5:72:0d:7f: f6:0e:a2:bb:85:27:db:aa:d5:93:30:8b:a6:02:e4: 0d:8d:47:83:2e:3f:3a:4f:b7:41:89:26:78:ac:df: 53:04:e3:e5:a9:f4:99:22:ef:c7:fd:6f:f1:48:51: d4:e0:8f:aa:4c:07:9a:58:ca:79:03:45:07:20:31: f1:dc:b2:af:00:04:3f:6d:e0:7f:e1:15:79:3b:d0: 7a:31:bc:d8:5f:c0:c4:eb:a0:26:0c:58:2b:1c:b1: 46:d7:c6:33:b3:9b:f2:fb:b9:b2:14:8d:fe:de:a2: e9:88:b0:44:af:c2:5d:2e:48:7e:3f:ae:f0:46:76: 3a:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:86:03:47:97:9F:A0:0A:77:67:18:D5:02:9D:86:86:71:3D:9D:1E X509v3 Authority Key Identifier: keyid:0F:17:F3:7D:BC:94:84:D9:6E:1A:0A:BC:78:A4:F9:CA:CD:5E:DA:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DxfzfbyUhNluGgq8eKT5ys1e2oo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:62:d5:9f:b6:24:69:ab:a8:48:8b:eb:55:9c:47:8f:8f:9a: 48:e0:18:ba:57:20:db:5b:48:f2:5f:36:e4:64:d7:2c:eb:c3: e4:a4:e5:9f:5d:0f:6c:71:3c:20:27:77:a8:e4:c4:ea:5e:4c: fd:95:4b:33:a9:da:82:54:8a:04:70:34:f7:1b:1c:eb:20:b8: 06:4d:cf:52:03:68:6f:a4:3d:60:ac:ff:39:52:5f:b1:31:44: ae:30:5c:a5:5e:ed:18:1b:fb:cf:8b:3f:e3:7f:ab:0d:90:e7: f2:84:3f:3a:26:84:a3:2c:53:af:28:80:b2:ef:8a:bb:91:2e: 7e:24:c8:c5:8c:a9:62:01:47:72:76:da:f6:93:2a:eb:a7:64: 0f:d5:7d:1d:30:4f:12:90:7f:8f:a2:2e:c8:14:4b:ea:94:84: 2f:5b:c2:a5:bd:e4:a4:5a:ab:da:d7:df:16:22:5d:f1:72:29: 4a:d5:71:24:2a:a8:56:1d:1e:0c:54:d7:f0:9c:93:16:fb:17: 33:6c:fa:59:ac:13:63:22:6b:f2:b6:9b:b9:69:c0:42:39:25: f0:9e:50:e2:70:ee:d9:9e:76:18:7c:a3:c7:7b:75:e5:aa:95: da:d3:be:80:5f:5e:ae:96:d1:37:8b:21:95:58:7a:0d:80:09: 85:e3:6c:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAzNkExMTAvBgNVBAUTKDBGMTdGMzdEQkM5NDg0RDk2RTFBMEFCQzc4QTRGOUNB Q0Q1RURBOEEwHhcNMjUxMjE5MDMyMTA4WhcNMjUxMjI2MDMyMTA4WjAYMRYwFAYD VQQDDA02OTQ0YzRhNC03ZTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqP5Ag2AkZaTCT+n4CkHoxj57WGthvH3FXUXEE0i6z0yY03OHKsOIalnxMgh7 MIY0gpAwuwayvWRE9leCddWULbUHKbkx3D6WSyryq1EUrCyWFQZ8+8Gcd8iVtmwZ b86IAwhCEMC2mh3qUy+BBz2RQMzVyR5HNeG5zmpAc1qI4KAahPVyDX/2DqK7hSfb qtWTMIumAuQNjUeDLj86T7dBiSZ4rN9TBOPlqfSZIu/H/W/xSFHU4I+qTAeaWMp5 A0UHIDHx3LKvAAQ/beB/4RV5O9B6MbzYX8DE66AmDFgrHLFG18Yzs5vy+7myFI3+ 3qLpiLBEr8JdLkh+P67wRnY6PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNyGA0eX n6AKd2cY1QKdhoZxPZ0eMB8GA1UdIwQYMBaAFA8X8328lITZbhoKvHik+crNXtqK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDM2QS9CQkMyRjc3NkQx RjExMUVFODYwNTFBNjFDNEY5QUUwMi9EeGZ6ZmJ5VWhObHVHZ3E4ZUtUNXlzMWUy b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0R4ZnpmYnlVaE5sdUdncThlS1Q1eXMxZTJvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDM2QS9CQkMyRjc3NkQxRjExMUVFODYwNTFBNjFDNEY5QUUwMi9EeGZ6ZmJ5VWhO bHVHZ3E4ZUtUNXlzMWUyb28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRYtWftiRpq6hIi+tVnEePj5pI4Bi6VyDbW0jyXzbkZNcs68PkpOWf XQ9scTwgJ3eo5MTqXkz9lUszqdqCVIoEcDT3GxzrILgGTc9SA2hvpD1grP85Ul+x MUSuMFylXu0YG/vPiz/jf6sNkOfyhD86JoSjLFOvKICy74q7kS5+JMjFjKliAUdy dtr2kyrrp2QP1X0dME8SkH+Poi7IFEvqlIQvW8KlveSkWqva198WIl3xcilK1XEk KqhWHR4MVNfwnJMW+xczbPpZrBNjImvytpu5acBCOSXwnlDicO7ZnnYYfKPHe3Xl qpXa076AX16ultE3iyGVWHoNgAmF42xI -----END CERTIFICATE-----Generated at Fri Dec 19 17:44:01 2025 by rpki-client