This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/DWjbrWAPi9kLNVuY9LI4-56aV_o.mft File: DWjbrWAPi9kLNVuY9LI4-56aV_o.mft (raw, json) Hash identifier: tL7Waro8p1pMZ8ep5YDPq0zhVihkiQM7vOR0FxS0x0A= Subject key identifier: A5:47:E8:C8:98:C5:59:AB:DE:03:2F:EB:21:9A:9D:95:03:E7:CE:52 Authority key identifier: 0D:68:DB:AD:60:0F:8B:D9:0B:35:5B:98:F4:B2:38:FB:9E:9A:57:FA Certificate issuer: /CN=A91DBF0D/serialNumber=0D68DBAD600F8BD90B355B98F4B238FB9E9A57FA Certificate serial: 08BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWjbrWAPi9kLNVuY9LI4-56aV_o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/DWjbrWAPi9kLNVuY9LI4-56aV_o.mft Manifest number: 08B5 Signing time: Thu 18 Dec 2025 20:00:19 +0000 Manifest this update: Thu 18 Dec 2025 20:00:18 +0000 Manifest next update: Thu 25 Dec 2025 20:00:18 +0000 Files and hashes: 1: DWjbrWAPi9kLNVuY9LI4-56aV_o.crl (hash: FwBUOsHWZctsbaLqIlWBWiBn/68aBomZH+MQOHsb5ls=) 2: 9D664600CB1211EAACC0E528C4F9AE02.roa (hash: UBw2PoTevAndZcrQq8icn0bOX1+H9RUk7B/v/OivD1E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/DWjbrWAPi9kLNVuY9LI4-56aV_o.crl rsync://rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/DWjbrWAPi9kLNVuY9LI4-56aV_o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWjbrWAPi9kLNVuY9LI4-56aV_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 20:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2238 (0x8be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBF0D, serialNumber=0D68DBAD600F8BD90B355B98F4B238FB9E9A57FA Validity Not Before: Dec 18 20:00:18 2025 GMT Not After : Dec 25 20:00:18 2025 GMT Subject: CN=69445d53-2c73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e3:5d:66:8d:26:58:92:62:b5:95:d5:8d:63: 87:fc:bf:b9:37:65:1e:ab:d3:6e:d6:9a:a8:d3:88: 8d:71:e7:5a:99:30:1b:27:54:ce:8c:94:87:83:87: 04:23:05:e9:35:e0:b0:34:51:fa:ec:53:d4:3d:62: cc:ff:16:df:3d:d8:af:6a:0c:d9:29:9c:9e:a9:53: 6d:da:e3:db:8c:cb:fe:12:cd:23:a8:d4:10:90:25: 4a:cb:42:bf:5f:3f:f4:de:65:77:e9:b2:d0:00:da: 47:20:04:c0:98:e7:6a:25:dc:5e:0f:62:1a:ab:20: 45:d5:41:80:38:de:e1:87:e5:ba:a0:15:0e:67:ec: 36:c1:fa:89:c1:f9:88:07:15:c3:9b:9c:5d:99:48: 8c:c4:96:46:e8:8e:73:0e:0d:94:0f:e2:f4:db:1b: 1c:8a:7f:f2:9f:1f:c8:d4:ba:cb:0f:58:d6:02:19: 0d:5b:b8:ab:ad:19:5b:f7:6c:79:d0:0d:0c:d7:ee: 63:65:0b:03:b6:75:22:dd:76:ae:4c:ec:d6:cc:2f: c0:31:78:99:7d:36:17:3c:d3:1f:c2:0f:fe:01:d1: e9:13:7d:b1:ff:36:22:5f:17:b7:d1:9e:d7:61:3f: 4d:c0:19:d1:70:f6:fc:3d:d9:78:5c:cb:fc:07:81: 17:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:47:E8:C8:98:C5:59:AB:DE:03:2F:EB:21:9A:9D:95:03:E7:CE:52 X509v3 Authority Key Identifier: keyid:0D:68:DB:AD:60:0F:8B:D9:0B:35:5B:98:F4:B2:38:FB:9E:9A:57:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/DWjbrWAPi9kLNVuY9LI4-56aV_o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWjbrWAPi9kLNVuY9LI4-56aV_o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/DWjbrWAPi9kLNVuY9LI4-56aV_o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:b0:c7:b1:1d:e1:be:23:52:4d:70:69:68:55:a8:5a:b3:b3: 0b:21:25:42:0b:d9:a5:2b:56:57:eb:5e:e6:e4:a0:dc:95:0a: cb:d8:cf:97:07:a6:90:46:23:ea:0f:a6:d5:b6:a9:c1:7b:95: b7:18:1c:d0:17:75:80:a1:26:91:91:84:b2:66:3a:71:10:72: d6:0c:c1:06:ac:a0:c2:09:fc:49:ca:e4:ff:93:93:35:bc:33: ff:5a:d1:10:16:82:ed:2c:ff:77:a2:2a:ed:93:0e:3c:b9:98: 30:71:95:5d:e2:29:7c:39:98:0e:85:13:f1:37:ec:01:b2:f7: d4:3a:de:7c:a3:ce:05:d8:7f:bf:5d:56:10:8d:f5:03:ec:b2: 46:4f:30:64:d6:1e:d9:c9:dc:74:2d:8d:99:0b:a9:9f:b4:b4: 9b:ac:54:63:da:6f:0e:e4:d6:05:3d:43:01:64:37:ee:d0:07: ca:8b:59:62:f3:45:f0:a8:8b:9d:3a:42:4e:88:49:b8:a5:04: df:5d:04:8d:f5:19:57:ba:a4:d6:18:00:6b:28:f8:69:ed:fc: 8d:2c:47:6a:73:73:38:39:53:bc:29:3a:13:e7:2a:dd:0d:da: ac:dc:95:27:72:4e:a2:a7:38:38:e7:4c:2c:4d:2d:d0:07:ff: 87:4e:e0:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJGMEQxMTAvBgNVBAUTKDBENjhEQkFENjAwRjhCRDkwQjM1NUI5OEY0QjIzOEZC OUU5QTU3RkEwHhcNMjUxMjE4MjAwMDE4WhcNMjUxMjI1MjAwMDE4WjAYMRYwFAYD VQQDDA02OTQ0NWQ1My0yYzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqONdZo0mWJJitZXVjWOH/L+5N2Ueq9Nu1pqo04iNcedamTAbJ1TOjJSHg4cE IwXpNeCwNFH67FPUPWLM/xbfPdivagzZKZyeqVNt2uPbjMv+Es0jqNQQkCVKy0K/ Xz/03mV36bLQANpHIATAmOdqJdxeD2IaqyBF1UGAON7hh+W6oBUOZ+w2wfqJwfmI BxXDm5xdmUiMxJZG6I5zDg2UD+L02xscin/ynx/I1LrLD1jWAhkNW7irrRlb92x5 0A0M1+5jZQsDtnUi3XauTOzWzC/AMXiZfTYXPNMfwg/+AdHpE32x/zYiXxe30Z7X YT9NwBnRcPb8Pdl4XMv8B4EXMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKVH6MiY xVmr3gMv6yGanZUD585SMB8GA1UdIwQYMBaAFA1o261gD4vZCzVbmPSyOPuemlf6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkYwRC81Nzk2NEQ0QUNC MEUxMUVBQTEwRjMzMURDNEY5QUUwMi9EV2picldBUGk5a0xOVnVZOUxJNC01NmFW X28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RXamJyV0FQaTlrTE5WdVk5TEk0LTU2YVZfby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkYwRC81Nzk2NEQ0QUNCMEUxMUVBQTEwRjMzMURDNEY5QUUwMi9EV2picldBUGk5 a0xOVnVZOUxJNC01NmFWX28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFsMexHeG+I1JNcGloVahas7MLISVCC9mlK1ZX617m5KDclQrL2M+X B6aQRiPqD6bVtqnBe5W3GBzQF3WAoSaRkYSyZjpxEHLWDMEGrKDCCfxJyuT/k5M1 vDP/WtEQFoLtLP93oirtkw48uZgwcZVd4il8OZgOhRPxN+wBsvfUOt58o84F2H+/ XVYQjfUD7LJGTzBk1h7Zydx0LY2ZC6mftLSbrFRj2m8O5NYFPUMBZDfu0AfKi1li 80XwqIudOkJOiEm4pQTfXQSN9RlXuqTWGABrKPhp7fyNLEdqc3M4OVO8KToT5yrd Ddqs3JUnck6ipzg450wsTS3QB/+HTuAw -----END CERTIFICATE-----Generated at Fri Dec 19 20:14:05 2025 by rpki-client