This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft File: DfmeMksOOlPo5W1wIP9vvFvxywI.mft (raw, json) Hash identifier: fvIO2Ho+j3hoDIkQwXr90PnrlS2I8nmepYD1oR5je1g= Subject key identifier: E3:FF:65:F5:F0:F0:22:3F:9F:E7:05:0E:F5:E5:B0:96:E2:CA:3C:DF Authority key identifier: 0D:F9:9E:32:4B:0E:3A:53:E8:E5:6D:70:20:FF:6F:BC:5B:F1:CB:02 Certificate issuer: /CN=A91D72CC/serialNumber=0DF99E324B0E3A53E8E56D7020FF6FBC5BF1CB02 Certificate serial: 0E62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft Manifest number: 0F13 Signing time: Sun 28 Dec 2025 17:26:32 +0000 Manifest this update: Sun 28 Dec 2025 17:26:32 +0000 Manifest next update: Sun 04 Jan 2026 17:26:32 +0000 Files and hashes: 1: DfmeMksOOlPo5W1wIP9vvFvxywI.crl (hash: cHw1DK0JkAnBBbZkwv5EOlK6uFUHJ3ScHub3bq0s5EY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.crl rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 17:26:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3682 (0xe62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D72CC, serialNumber=0DF99E324B0E3A53E8E56D7020FF6FBC5BF1CB02 Validity Not Before: Dec 28 17:26:32 2025 GMT Not After : Jan 4 17:26:32 2026 GMT Subject: CN=69516848-c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:e7:87:32:48:2d:25:bf:12:1c:46:51:85:12: a9:59:48:34:02:b4:f2:1f:aa:4a:1f:e6:50:0c:a0: 2b:fe:cc:4f:24:76:09:8f:ac:06:c7:a3:32:67:2a: b0:3e:a7:58:f5:20:4f:89:84:71:d2:c4:14:8c:7b: 73:a1:4c:3b:39:43:56:36:d8:a1:79:da:79:54:0d: 4a:d9:7f:53:74:a2:df:70:22:a7:13:fb:36:f1:c6: 13:2b:51:fa:7a:ac:88:55:a5:0b:79:6a:fb:7c:db: 1a:45:4f:38:14:8c:fb:d9:a1:96:11:bf:3c:62:fd: 78:0f:c9:29:9d:1c:db:72:43:72:1c:18:9e:62:3e: 60:61:df:88:ca:c1:ff:30:1f:47:12:fa:19:33:07: 81:b9:88:a0:e9:c4:df:ac:26:cf:4a:57:d4:42:ea: 80:9a:cb:ec:06:ad:06:f7:40:a2:a1:e1:df:26:9c: b1:0e:28:f6:91:09:95:77:e5:b7:8f:5a:dc:20:76: 37:e2:96:e2:96:77:c8:4e:7a:31:22:42:78:e6:af: 3c:a0:c8:2a:93:71:a0:dc:9c:09:7d:f8:8a:a7:3b: 91:e1:49:c1:68:9b:21:81:39:c0:77:0a:b1:10:0b: be:60:58:82:82:9c:d1:c8:11:99:09:26:07:ef:3a: 4c:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:FF:65:F5:F0:F0:22:3F:9F:E7:05:0E:F5:E5:B0:96:E2:CA:3C:DF X509v3 Authority Key Identifier: keyid:0D:F9:9E:32:4B:0E:3A:53:E8:E5:6D:70:20:FF:6F:BC:5B:F1:CB:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfmeMksOOlPo5W1wIP9vvFvxywI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/DfmeMksOOlPo5W1wIP9vvFvxywI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:fe:1e:bd:a0:18:d2:ec:da:26:b2:b5:0c:a3:0c:0c:24:14: b1:6c:a6:28:3e:e9:16:29:21:f6:29:84:37:3a:1f:39:00:9f: d1:a4:9a:51:17:80:b6:10:78:61:09:00:6e:a0:f5:8a:0d:dc: 8b:41:5e:d6:77:96:25:49:4a:85:f6:29:d9:e4:51:5b:85:bf: d3:3b:dd:54:e9:85:df:c9:30:97:33:46:b8:07:a2:6a:a3:8b: 48:e4:e0:28:c9:1b:bc:13:81:75:5d:15:6b:4b:72:44:f1:ed: de:52:11:e9:77:be:fb:b9:ed:de:2d:17:87:52:fc:cd:0b:5d: 6c:dc:09:8d:ea:df:66:9e:46:38:ed:73:64:57:54:13:83:97: 01:73:b7:81:e1:71:0d:a8:84:e3:0e:4d:b5:92:5e:8a:bf:90: e1:52:9b:3f:80:fb:8f:90:aa:80:fc:70:19:5f:9a:58:7a:a1: 7c:c0:e9:de:91:7b:55:4f:24:51:6e:34:75:08:0a:d2:ef:30: 55:e2:4d:23:ae:2c:04:75:2d:3d:13:5b:c2:78:c1:07:1c:b8: ce:01:87:24:12:f2:0e:20:7d:46:95:3b:a7:83:f0:d7:99:94: 62:ab:96:48:4a:f6:55:8d:66:c2:6d:32:3d:29:ad:36:f1:e1: a6:1a:20:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDcyQ0MxMTAvBgNVBAUTKDBERjk5RTMyNEIwRTNBNTNFOEU1NkQ3MDIwRkY2RkJD NUJGMUNCMDIwHhcNMjUxMjI4MTcyNjMyWhcNMjYwMTA0MTcyNjMyWjAYMRYwFAYD VQQDDA02OTUxNjg0OC1jODdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoeeHMkgtJb8SHEZRhRKpWUg0ArTyH6pKH+ZQDKAr/sxPJHYJj6wGx6MyZyqw PqdY9SBPiYRx0sQUjHtzoUw7OUNWNtihedp5VA1K2X9TdKLfcCKnE/s28cYTK1H6 eqyIVaULeWr7fNsaRU84FIz72aGWEb88Yv14D8kpnRzbckNyHBieYj5gYd+IysH/ MB9HEvoZMweBuYig6cTfrCbPSlfUQuqAmsvsBq0G90CioeHfJpyxDij2kQmVd+W3 j1rcIHY34pbilnfITnoxIkJ45q88oMgqk3Gg3JwJffiKpzuR4UnBaJshgTnAdwqx EAu+YFiCgpzRyBGZCSYH7zpMwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOP/ZfXw 8CI/n+cFDvXlsJbiyjzfMB8GA1UdIwQYMBaAFA35njJLDjpT6OVtcCD/b7xb8csC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzJDQy80MzMwQUM5Q0Iz NkQxMUU5ODI0NkVEMEFDNEY5QUUwMi9EZm1lTWtzT09sUG81VzF3SVA5dnZGdnh5 d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RmbWVNa3NPT2xQbzVXMXdJUDl2dkZ2eHl3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzJDQy80MzMwQUM5Q0IzNkQxMUU5ODI0NkVEMEFDNEY5QUUwMi9EZm1lTWtzT09s UG81VzF3SVA5dnZGdnh5d0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBE/h69oBjS7NomsrUMowwMJBSxbKYoPukWKSH2KYQ3Oh85AJ/RpJpR F4C2EHhhCQBuoPWKDdyLQV7Wd5YlSUqF9inZ5FFbhb/TO91U6YXfyTCXM0a4B6Jq o4tI5OAoyRu8E4F1XRVrS3JE8e3eUhHpd777ue3eLReHUvzNC11s3AmN6t9mnkY4 7XNkV1QTg5cBc7eB4XENqITjDk21kl6Kv5DhUps/gPuPkKqA/HAZX5pYeqF8wOne kXtVTyRRbjR1CArS7zBV4k0jriwEdS09E1vCeMEHHLjOAYckEvIOIH1GlTung/DX mZRiq5ZISvZVjWbCbTI9Ka028eGmGiCw -----END CERTIFICATE-----Generated at Tue Dec 30 07:13:11 2025 by rpki-client