This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.mft File: 379fgwtQs7_B5TULnGBbt1YSLhE.mft (raw, json) Hash identifier: pUJQkHvEE7O6Qn1N6OWW9u9NEzTn7eeG63M5GbIblI8= Subject key identifier: BD:A7:0D:AB:0E:E4:FA:21:A7:60:1D:5F:6F:AD:E5:F4:82:5F:EF:1E Authority key identifier: DF:BF:5F:83:0B:50:B3:BF:C1:E5:35:0B:9C:60:5B:B7:56:12:2E:11 Certificate issuer: /CN=A91DBB7D/serialNumber=DFBF5F830B50B3BFC1E5350B9C605BB756122E11 Certificate serial: 0530 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/379fgwtQs7_B5TULnGBbt1YSLhE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.mft Manifest number: 0528 Signing time: Thu 18 Dec 2025 22:53:07 +0000 Manifest this update: Thu 18 Dec 2025 22:53:06 +0000 Manifest next update: Thu 25 Dec 2025 22:53:06 +0000 Files and hashes: 1: 379fgwtQs7_B5TULnGBbt1YSLhE.crl (hash: MDT3Plvcu4S9mTqcSc7BPXFYGUvOVr3gjj6iDiszI3o=) 2: D5C4A54A617B11EC82058668C4F9AE02.roa (hash: cTO7dHRgQ10X2+wIM0WDWEXY+Ht/milaq+pShcIOrgo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.crl rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/379fgwtQs7_B5TULnGBbt1YSLhE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:53:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1328 (0x530) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBB7D, serialNumber=DFBF5F830B50B3BFC1E5350B9C605BB756122E11 Validity Not Before: Dec 18 22:53:06 2025 GMT Not After : Dec 25 22:53:06 2025 GMT Subject: CN=694485d2-a52e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5f:0b:39:c3:74:eb:1f:aa:9a:bd:78:f5:a3: 13:3d:ca:b2:8f:c4:12:1a:74:e2:3c:ac:17:b8:f3: 4e:0a:a6:9c:13:ce:c0:2f:e0:6a:47:12:ea:91:be: 61:02:88:2e:a3:45:fc:73:b9:65:75:91:89:e9:30: 5d:a8:3e:bc:13:92:60:c3:65:d5:2a:5c:50:3d:04: 94:1c:0c:5b:45:3c:27:c4:3d:40:81:a4:66:18:db: 9f:7b:58:4c:ce:95:b1:ba:d2:eb:ff:e8:51:ce:e1: f9:a5:db:12:12:de:88:66:77:70:5e:c2:46:5e:c7: d4:2b:21:2d:9f:77:ed:61:74:31:9d:62:2b:86:47: 2c:91:cb:ec:c3:4b:c3:b7:fc:3a:63:cd:d6:86:f6: 6c:77:0e:fe:60:de:ac:21:37:f4:07:a5:8b:de:1c: e7:d1:bd:10:98:77:00:de:0a:a6:a2:53:3b:41:e0: 86:a2:21:46:39:c2:11:1b:13:fb:20:42:00:bd:85: 4f:e0:c0:9d:6d:67:1b:14:29:c8:3d:13:0a:95:65: 1e:89:26:9a:52:65:79:a4:22:c0:73:e0:25:67:0d: eb:7a:f4:2c:c9:8e:da:01:7d:61:64:a7:6c:68:f3: 7c:f4:3c:48:36:59:39:5a:e7:e3:c8:d8:f1:75:64: b9:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:A7:0D:AB:0E:E4:FA:21:A7:60:1D:5F:6F:AD:E5:F4:82:5F:EF:1E X509v3 Authority Key Identifier: keyid:DF:BF:5F:83:0B:50:B3:BF:C1:E5:35:0B:9C:60:5B:B7:56:12:2E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/379fgwtQs7_B5TULnGBbt1YSLhE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:25:18:84:c2:d5:83:c1:63:74:30:e8:de:06:3e:bb:ef:05: 47:96:50:3d:e4:74:d5:d3:93:6b:0e:e3:d1:3b:25:1d:6d:9b: 2b:d9:0b:95:e4:32:c3:41:39:d2:9f:3e:10:04:ef:ac:b3:4e: fa:f8:23:69:ac:14:59:54:02:77:04:87:aa:4c:70:d8:75:b6: 7e:9d:ed:c4:ac:1f:60:3c:75:47:fc:c6:c6:5a:1c:3c:96:7e: 82:31:64:54:ad:28:08:e0:17:be:6e:fa:ea:0f:92:fb:ef:ef: 6a:e1:ec:4e:5f:ce:35:02:31:30:6a:25:59:de:61:7a:e4:3b: bc:05:37:4c:8d:05:3c:4b:7f:b3:e0:ba:cf:b6:29:41:c5:8d: b1:23:e5:5f:54:f8:3a:70:f9:8c:f5:6c:64:3d:4a:6b:1b:6e: 91:e1:46:21:13:6e:3a:86:e3:20:d9:aa:b2:43:e2:1c:90:63: 96:0a:f6:a0:8b:f5:24:e8:95:f4:30:17:9a:5c:96:dc:32:ef: d8:1f:9e:c8:05:f1:be:a5:35:63:50:b7:7a:5e:7c:21:ea:5d: dc:00:ad:32:30:22:e2:d5:34:c9:29:3f:e6:e8:a8:4b:fd:b9: 79:df:b7:72:3e:36:05:34:74:5f:be:b5:ca:89:33:fc:89:c3: 89:c0:68:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJCN0QxMTAvBgNVBAUTKERGQkY1RjgzMEI1MEIzQkZDMUU1MzUwQjlDNjA1QkI3 NTYxMjJFMTEwHhcNMjUxMjE4MjI1MzA2WhcNMjUxMjI1MjI1MzA2WjAYMRYwFAYD VQQDDA02OTQ0ODVkMi1hNTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvV8LOcN06x+qmr149aMTPcqyj8QSGnTiPKwXuPNOCqacE87AL+BqRxLqkb5h Aoguo0X8c7lldZGJ6TBdqD68E5Jgw2XVKlxQPQSUHAxbRTwnxD1AgaRmGNufe1hM zpWxutLr/+hRzuH5pdsSEt6IZndwXsJGXsfUKyEtn3ftYXQxnWIrhkcskcvsw0vD t/w6Y83WhvZsdw7+YN6sITf0B6WL3hzn0b0QmHcA3gqmolM7QeCGoiFGOcIRGxP7 IEIAvYVP4MCdbWcbFCnIPRMKlWUeiSaaUmV5pCLAc+AlZw3revQsyY7aAX1hZKds aPN89DxINlk5WufjyNjxdWS5cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL2nDasO 5Pohp2AdX2+t5fSCX+8eMB8GA1UdIwQYMBaAFN+/X4MLULO/weU1C5xgW7dWEi4R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkI3RC8zMDE3MDk2RTJC QjkxMUVDQjJCMzY3NEZDNEY5QUUwMi8zNzlmZ3d0UXM3X0I1VFVMbkdCYnQxWVNM aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM3OWZnd3RRczdfQjVUVUxuR0JidDFZU0xoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkI3RC8zMDE3MDk2RTJCQjkxMUVDQjJCMzY3NEZDNEY5QUUwMi8zNzlmZ3d0UXM3 X0I1VFVMbkdCYnQxWVNMaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArJRiEwtWDwWN0MOjeBj677wVHllA95HTV05NrDuPROyUdbZsr2QuV 5DLDQTnSnz4QBO+ss076+CNprBRZVAJ3BIeqTHDYdbZ+ne3ErB9gPHVH/MbGWhw8 ln6CMWRUrSgI4Be+bvrqD5L77+9q4exOX841AjEwaiVZ3mF65Du8BTdMjQU8S3+z 4LrPtilBxY2xI+VfVPg6cPmM9WxkPUprG26R4UYhE246huMg2aqyQ+IckGOWCvag i/Uk6JX0MBeaXJbcMu/YH57IBfG+pTVjULd6Xnwh6l3cAK0yMCLi1TTJKT/m6KhL /bl537dyPjYFNHRfvrXKiTP8icOJwGhK -----END CERTIFICATE-----Generated at Fri Dec 19 17:44:01 2025 by rpki-client