This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft File: DfmeMksOOlPo5W1wIP9vvFvxywI.mft (raw, json) Hash identifier: +bG1Rdw1YMIUKVqeO1+cQoPn2kJmeBvX/mEfVG24IE4= Subject key identifier: C7:57:3F:0C:AC:DE:CB:A3:18:06:BE:19:B3:1B:5A:11:6A:10:DC:95 Authority key identifier: 0D:F9:9E:32:4B:0E:3A:53:E8:E5:6D:70:20:FF:6F:BC:5B:F1:CB:02 Certificate issuer: /CN=A91D72CC/serialNumber=0DF99E324B0E3A53E8E56D7020FF6FBC5BF1CB02 Certificate serial: 0E5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft Manifest number: 0F09 Signing time: Thu 18 Dec 2025 17:35:12 +0000 Manifest this update: Thu 18 Dec 2025 17:35:12 +0000 Manifest next update: Thu 25 Dec 2025 17:35:12 +0000 Files and hashes: 1: DfmeMksOOlPo5W1wIP9vvFvxywI.crl (hash: YepAb5kSxtHUdbuW9lGwIhbKLivavvERvuFpGzlF6RM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.crl rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:35:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3677 (0xe5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D72CC, serialNumber=0DF99E324B0E3A53E8E56D7020FF6FBC5BF1CB02 Validity Not Before: Dec 18 17:35:12 2025 GMT Not After : Dec 25 17:35:12 2025 GMT Subject: CN=69443b50-9589 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4b:f2:2a:6b:71:cd:f8:20:70:79:f3:87:12: d7:dd:80:be:97:a9:a3:3b:cb:c5:5c:a2:c3:19:47: 82:d3:12:91:5d:ba:1e:4f:b1:e8:fe:65:1a:90:1a: 0d:8b:91:bb:68:d1:ae:63:6e:5d:9b:39:63:31:0b: 03:61:7b:b0:e2:5b:cd:9b:6a:3e:62:e8:a0:23:fc: 82:bf:17:08:35:cb:59:3e:15:cb:d5:e0:aa:49:25: c7:31:c5:a6:86:38:28:bf:2b:4b:da:1a:3e:bd:69: 15:a2:10:e5:4b:4f:d0:82:b9:f3:d1:01:3c:12:81: 96:4a:26:6a:e8:b5:a2:b0:d5:b2:47:24:d4:32:ee: b3:ed:61:51:9a:26:20:7d:5f:4c:fb:89:8a:84:40: e1:c6:5d:68:80:11:38:91:03:b5:cd:ea:09:94:f0: 9c:0d:17:15:c5:4b:45:87:2c:e9:9b:32:60:3b:97: 41:f5:03:4c:d4:2a:3f:2e:81:b1:8e:3d:b7:29:1f: 60:d4:fc:5f:cf:be:45:eb:66:8e:60:f5:63:cd:ac: c6:e7:ab:33:fe:91:0e:45:40:e9:5f:c5:b7:61:ed: 11:0d:d1:5e:18:88:d0:34:06:8e:33:34:81:35:30: 7c:2d:f0:07:3d:bb:2f:09:eb:b8:44:d2:77:64:cd: 51:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:57:3F:0C:AC:DE:CB:A3:18:06:BE:19:B3:1B:5A:11:6A:10:DC:95 X509v3 Authority Key Identifier: keyid:0D:F9:9E:32:4B:0E:3A:53:E8:E5:6D:70:20:FF:6F:BC:5B:F1:CB:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:b9:05:ff:2d:d2:98:f9:90:3e:32:53:ae:b4:6b:ac:fe:bf: 69:1d:7a:7e:3f:96:a9:3f:6d:c5:53:c6:e8:b4:d4:be:9c:21: 3d:35:7f:01:c2:20:fc:e4:55:85:ce:2a:33:fa:b3:68:db:92: 85:18:3b:d8:a8:ee:d1:5d:10:5e:13:6f:2a:d4:a4:4b:f3:f3: f3:bc:a3:be:28:38:c3:73:86:ad:e0:6d:75:ef:25:20:a5:09: 14:73:66:bc:fe:f9:44:d2:7c:b6:5a:3b:5b:8d:ad:32:07:01: 28:3e:87:93:cc:53:5d:f6:92:96:60:bc:d2:3e:b9:27:70:3b: 86:16:a9:d1:e2:3d:32:ed:db:e8:98:d0:ec:fb:e9:94:00:f5: 05:19:cd:30:15:b0:0d:3f:e7:69:85:56:14:eb:29:8f:d3:e1: 37:53:6d:8d:9c:80:84:f9:97:02:5d:1a:87:d8:fb:9c:49:3b: 65:82:44:f0:29:c6:59:72:6f:95:07:05:ff:e1:64:50:2b:01: e1:06:48:1d:61:53:7e:e2:0c:38:cf:e5:61:48:5a:5d:20:d2: 9b:19:70:c0:d0:6e:0a:57:e5:b1:6e:16:76:04:79:a8:f5:d7: c9:d8:a1:ba:cf:b6:1a:24:7f:73:f3:9e:11:7a:87:90:b9:79: 5d:76:cf:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDcyQ0MxMTAvBgNVBAUTKDBERjk5RTMyNEIwRTNBNTNFOEU1NkQ3MDIwRkY2RkJD NUJGMUNCMDIwHhcNMjUxMjE4MTczNTEyWhcNMjUxMjI1MTczNTEyWjAYMRYwFAYD VQQDDA02OTQ0M2I1MC05NTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0vyKmtxzfggcHnzhxLX3YC+l6mjO8vFXKLDGUeC0xKRXboeT7Ho/mUakBoN i5G7aNGuY25dmzljMQsDYXuw4lvNm2o+YuigI/yCvxcINctZPhXL1eCqSSXHMcWm hjgovytL2ho+vWkVohDlS0/Qgrnz0QE8EoGWSiZq6LWisNWyRyTUMu6z7WFRmiYg fV9M+4mKhEDhxl1ogBE4kQO1zeoJlPCcDRcVxUtFhyzpmzJgO5dB9QNM1Co/LoGx jj23KR9g1Pxfz75F62aOYPVjzazG56sz/pEORUDpX8W3Ye0RDdFeGIjQNAaOMzSB NTB8LfAHPbsvCeu4RNJ3ZM1R2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMdXPwys 3sujGAa+GbMbWhFqENyVMB8GA1UdIwQYMBaAFA35njJLDjpT6OVtcCD/b7xb8csC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzJDQy80MzMwQUM5Q0Iz NkQxMUU5ODI0NkVEMEFDNEY5QUUwMi9EZm1lTWtzT09sUG81VzF3SVA5dnZGdnh5 d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RmbWVNa3NPT2xQbzVXMXdJUDl2dkZ2eHl3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzJDQy80MzMwQUM5Q0IzNkQxMUU5ODI0NkVEMEFDNEY5QUUwMi9EZm1lTWtzT09s UG81VzF3SVA5dnZGdnh5d0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBuQX/LdKY+ZA+MlOutGus/r9pHXp+P5apP23FU8botNS+nCE9NX8B wiD85FWFzioz+rNo25KFGDvYqO7RXRBeE28q1KRL8/PzvKO+KDjDc4at4G117yUg pQkUc2a8/vlE0ny2Wjtbja0yBwEoPoeTzFNd9pKWYLzSPrkncDuGFqnR4j0y7dvo mNDs++mUAPUFGc0wFbANP+dphVYU6ymP0+E3U22NnICE+ZcCXRqH2PucSTtlgkTw KcZZcm+VBwX/4WRQKwHhBkgdYVN+4gw4z+VhSFpdINKbGXDA0G4KV+WxbhZ2BHmo 9dfJ2KG6z7YaJH9z854ReoeQuXldds+E -----END CERTIFICATE-----Generated at Fri Dec 19 22:00:24 2025 by rpki-client