This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft File: D1kUy7lqcNoGsR7z3StjyeQHsxw.mft (raw, json) Hash identifier: J42Qpj7sbCfCqiAxIIuu2MsKfvBxG50O4RBeXLRp5qk= Subject key identifier: FD:CD:C0:BB:82:F8:9F:E3:79:4D:EA:DD:5A:B2:48:90:DA:6F:7A:FA Authority key identifier: 0F:59:14:CB:B9:6A:70:DA:06:B1:1E:F3:DD:2B:63:C9:E4:07:B3:1C Certificate issuer: /CN=A91D03FC/serialNumber=0F5914CBB96A70DA06B11EF3DD2B63C9E407B31C Certificate serial: 0131 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1kUy7lqcNoGsR7z3StjyeQHsxw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft Manifest number: 012A Signing time: Tue 23 Dec 2025 03:39:29 +0000 Manifest this update: Tue 23 Dec 2025 03:39:29 +0000 Manifest next update: Tue 30 Dec 2025 03:39:29 +0000 Files and hashes: 1: D1kUy7lqcNoGsR7z3StjyeQHsxw.crl (hash: WDgIYF5txjZy2c5sXWizo6h8i8O1qNIPF6bLBatZqw4=) 2: 507C31C21D7211EFA095B25AC4F9AE02.roa (hash: c1LdcyfxBkh65MfHEWuLe4Y+neliIailfDFE8qX4bKs=) 3: 4FFFD8D41D7211EFA095B25AC4F9AE02.roa (hash: 7t/pdYKTKmwUGR/lE+qnEM4TrcYeXROZCsv49aYTSqk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.crl rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1kUy7lqcNoGsR7z3StjyeQHsxw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:39:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D03FC, serialNumber=0F5914CBB96A70DA06B11EF3DD2B63C9E407B31C Validity Not Before: Dec 23 03:39:29 2025 GMT Not After : Dec 30 03:39:29 2025 GMT Subject: CN=694a0ef1-a43c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:2f:0f:02:ff:c5:c3:de:36:9a:3c:ed:59:ec: 5b:a0:fc:f7:19:71:c8:9a:11:2b:b1:4d:8b:08:70: 1d:72:f2:2c:30:7c:98:df:b2:c0:2d:8c:10:34:de: 4e:2d:09:d8:f0:7b:72:b4:20:35:e6:93:f4:04:75: 97:56:73:54:21:43:92:3e:0b:92:d8:76:3d:b7:64: 33:c6:ec:c8:be:a1:4c:4d:a1:99:7a:9c:36:f8:d5: 3f:a7:5c:d2:fe:4a:7c:79:4b:4c:d3:10:31:c7:14: bf:32:07:0c:39:f0:c2:77:8b:57:7a:d2:49:26:b1: 45:c7:18:2e:e6:2e:12:ad:8d:3e:83:4c:ec:60:57: b5:86:f4:c0:39:59:1e:3f:db:32:ba:98:ee:df:37: f0:3c:0d:ed:21:b4:bc:80:dd:77:18:18:bd:37:a8: 02:1c:3f:2f:b2:87:34:56:66:94:83:d4:00:e9:27: 10:5e:8d:41:ce:66:be:7a:54:2c:aa:a2:d4:36:b6: bc:6c:b5:02:a4:aa:78:32:c4:55:3a:b9:c5:86:aa: b7:0d:29:0e:a7:91:3d:8b:9f:8b:84:70:9f:fa:f7: fe:a3:b9:73:f2:98:cd:32:63:6e:f8:41:4c:5b:ba: 4c:e9:72:96:97:0c:49:ec:11:32:f1:47:56:56:33: 59:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:CD:C0:BB:82:F8:9F:E3:79:4D:EA:DD:5A:B2:48:90:DA:6F:7A:FA X509v3 Authority Key Identifier: keyid:0F:59:14:CB:B9:6A:70:DA:06:B1:1E:F3:DD:2B:63:C9:E4:07:B3:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1kUy7lqcNoGsR7z3StjyeQHsxw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:1c:36:f7:34:6f:9f:ce:0d:49:75:a5:23:a3:1a:4e:18:9b: 64:ec:dd:5e:0d:93:19:6e:82:1c:6b:2b:72:41:f2:0e:d3:31: ab:6d:8d:60:b5:9e:f8:e6:b3:4d:ee:47:31:73:90:94:05:66: 31:50:67:8c:75:b6:d9:74:00:38:7f:3a:ef:8c:c1:9f:a4:6f: 27:29:9d:03:aa:69:64:7d:36:eb:67:d8:b9:64:b1:d3:cf:0e: 70:dc:42:30:1d:52:1d:b5:ec:7e:0c:85:8e:40:19:3c:c7:16: 9a:ed:d5:ac:c2:d8:a8:06:09:aa:dd:14:81:f1:b7:8f:4d:65: f8:e8:1b:66:8d:6f:e6:b7:3d:6f:4b:7a:36:43:1b:49:b8:d5: a6:95:e9:94:c5:87:53:dc:5e:34:fd:82:60:f3:cb:7a:94:59: f6:0b:3c:59:a2:21:2d:f3:14:a7:6a:1b:78:6e:82:ab:e7:96: 0a:e6:f0:c0:ad:25:c4:25:24:97:95:91:d1:b4:cb:c9:36:1f: d2:30:b4:05:60:14:72:e6:b8:c6:cc:51:c5:68:d7:12:68:5c: 50:44:c0:a9:ec:8c:8f:94:9e:cc:48:4e:d8:65:1b:36:7a:07: 42:10:d7:c2:14:2f:0f:74:8a:95:04:be:7f:89:b1:1d:bb:c5: 9b:eb:0b:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAzRkMxMTAvBgNVBAUTKDBGNTkxNENCQjk2QTcwREEwNkIxMUVGM0REMkI2M0M5 RTQwN0IzMUMwHhcNMjUxMjIzMDMzOTI5WhcNMjUxMjMwMDMzOTI5WjAYMRYwFAYD VQQDDA02OTRhMGVmMS1hNDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2y8PAv/Fw942mjztWexboPz3GXHImhErsU2LCHAdcvIsMHyY37LALYwQNN5O LQnY8HtytCA15pP0BHWXVnNUIUOSPguS2HY9t2QzxuzIvqFMTaGZepw2+NU/p1zS /kp8eUtM0xAxxxS/MgcMOfDCd4tXetJJJrFFxxgu5i4SrY0+g0zsYFe1hvTAOVke P9syupju3zfwPA3tIbS8gN13GBi9N6gCHD8vsoc0VmaUg9QA6ScQXo1Bzma+elQs qqLUNra8bLUCpKp4MsRVOrnFhqq3DSkOp5E9i5+LhHCf+vf+o7lz8pjNMmNu+EFM W7pM6XKWlwxJ7BEy8UdWVjNZewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP3NwLuC +J/jeU3q3VqySJDab3r6MB8GA1UdIwQYMBaAFA9ZFMu5anDaBrEe890rY8nkB7Mc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDNGQy9DN0IwOTM1NjFE NzExMUVGOTVFMjY4NDBDNEY5QUUwMi9EMWtVeTdscWNOb0dzUjd6M1N0anllUUhz eHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Qxa1V5N2xxY05vR3NSN3ozU3RqeWVRSHN4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDNGQy9DN0IwOTM1NjFENzExMUVGOTVFMjY4NDBDNEY5QUUwMi9EMWtVeTdscWNO b0dzUjd6M1N0anllUUhzeHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiHDb3NG+fzg1JdaUjoxpOGJtk7N1eDZMZboIcaytyQfIO0zGrbY1g tZ745rNN7kcxc5CUBWYxUGeMdbbZdAA4fzrvjMGfpG8nKZ0DqmlkfTbrZ9i5ZLHT zw5w3EIwHVIdtex+DIWOQBk8xxaa7dWswtioBgmq3RSB8bePTWX46BtmjW/mtz1v S3o2QxtJuNWmlemUxYdT3F40/YJg88t6lFn2CzxZoiEt8xSnaht4boKr55YK5vDA rSXEJSSXlZHRtMvJNh/SMLQFYBRy5rjGzFHFaNcSaFxQRMCp7IyPlJ7MSE7YZRs2 egdCENfCFC8PdIqVBL5/ibEdu8Wb6wtY -----END CERTIFICATE-----Generated at Thu Dec 25 03:54:22 2025 by rpki-client