This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft File: -D3DokbRIVGsh6dyzsoO3SFfhio.mft (raw, json) Hash identifier: n+qkaNbRvJ56Pg3M0H2u/OtbnhD28j9/xztwwNPkZ/Q= Subject key identifier: 74:02:9C:D2:8A:B6:8D:2F:AF:C4:83:EC:5E:AA:3C:92:87:25:08:BA Authority key identifier: F8:3D:C3:A2:46:D1:21:51:AC:87:A7:72:CE:CA:0E:DD:21:5F:86:2A Certificate issuer: /CN=A91DDFF2/serialNumber=F83DC3A246D12151AC87A772CECA0EDD215F862A Certificate serial: 0150 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft Manifest number: 014B Signing time: Wed 17 Dec 2025 03:49:28 +0000 Manifest this update: Wed 17 Dec 2025 03:49:28 +0000 Manifest next update: Wed 24 Dec 2025 03:49:28 +0000 Files and hashes: 1: -D3DokbRIVGsh6dyzsoO3SFfhio.crl (hash: jzOlWJ+CEGLEZrlwRniSRZCuFNODc3R0qhv5bgffNtA=) 2: EC7311FEE5C311EEBF217685C4F9AE02.roa (hash: WXs23PC9oNPUDjoMufc2iqduojTIGtlpeP1luMoHhDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.crl rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Dec 2025 03:49:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 336 (0x150) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDFF2, serialNumber=F83DC3A246D12151AC87A772CECA0EDD215F862A Validity Not Before: Dec 17 03:49:28 2025 GMT Not After : Dec 24 03:49:28 2025 GMT Subject: CN=69422848-320f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e8:69:79:64:7e:ed:c0:48:dd:8d:98:72:4b: a1:97:13:6a:c1:96:67:1a:d6:39:c6:82:dd:20:12: 22:09:55:eb:f7:0c:68:bc:de:a1:aa:f2:46:94:4f: 5c:02:55:4f:f7:95:fe:4d:24:2c:36:55:df:bf:cb: c0:b0:68:f0:2a:75:22:f3:7d:12:58:fd:c1:8b:72: 3d:c1:d0:78:1a:a5:86:2c:64:a9:59:0b:54:b7:ac: 2d:a1:9f:ac:8d:c8:16:9f:e4:51:0b:10:5b:39:7b: 96:86:ee:28:cc:08:15:1b:d9:4a:0e:18:03:71:35: 3c:81:58:34:27:fd:cb:e1:d1:cb:18:67:4e:22:7e: 5a:00:92:65:60:42:01:c3:1f:13:72:42:dd:ab:60: 5d:e9:30:19:2d:47:ee:67:2a:79:31:10:a6:f7:72: d5:08:ae:60:a7:70:9f:6a:d0:2b:27:92:c7:da:0d: e4:d3:19:64:3d:ca:92:21:2c:36:fe:67:33:65:f3: 2c:20:6b:79:4e:12:b4:0c:fc:a2:43:cf:b8:28:bb: 4e:ba:54:58:76:9b:5e:57:00:dc:9e:9b:dd:4f:87: 63:dc:bc:72:b5:d3:05:e0:cd:1c:b3:19:88:39:c3: 7f:fb:45:05:b7:23:ba:01:04:f6:0a:03:1f:ae:79: 93:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:02:9C:D2:8A:B6:8D:2F:AF:C4:83:EC:5E:AA:3C:92:87:25:08:BA X509v3 Authority Key Identifier: keyid:F8:3D:C3:A2:46:D1:21:51:AC:87:A7:72:CE:CA:0E:DD:21:5F:86:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:c5:5b:4b:a1:bb:30:7c:26:f9:e4:fd:43:93:a2:d5:fc:9a: df:07:6e:e7:d1:9c:47:1a:50:85:ea:3e:5c:91:d3:7e:4e:cf: 1c:1b:01:d6:98:5a:db:af:fd:c7:74:f3:66:cf:7f:40:07:8e: a2:1d:09:19:6d:58:90:3d:04:e6:0a:2f:01:5e:25:fa:0d:dd: 8b:97:a1:ac:86:15:af:17:53:21:cf:a0:a4:f9:37:4f:44:f8: 6c:66:ef:a8:af:c9:70:45:b5:3d:c7:f3:96:58:29:56:fe:ec: 3b:0e:aa:90:80:2c:c5:c5:d1:34:d8:4a:02:d5:2f:7b:df:51: 87:31:0d:c5:8f:ab:61:e6:57:f9:bb:ee:ee:32:8d:72:b2:b2: 89:ce:86:fc:77:7f:52:8c:44:e3:f1:3d:2f:ed:29:5d:d3:d4: 3e:3f:2a:4a:a7:cb:55:8c:93:db:a2:0c:d3:be:d2:3a:c6:86: a3:cb:de:87:af:5d:71:3d:a2:73:3f:ae:6b:48:76:3d:d8:3c: 15:9c:2a:df:d7:6d:5c:ac:97:88:ea:38:a8:9a:25:ae:0f:3b: 87:ca:97:8d:6b:84:32:be:31:27:c7:b1:52:55:2e:d6:a0:4f: 32:1c:57:ba:9d:97:f0:6e:7a:16:75:83:ad:11:7f:ae:3b:f0: 51:24:8c:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RERGRjIxMTAvBgNVBAUTKEY4M0RDM0EyNDZEMTIxNTFBQzg3QTc3MkNFQ0EwRURE MjE1Rjg2MkEwHhcNMjUxMjE3MDM0OTI4WhcNMjUxMjI0MDM0OTI4WjAYMRYwFAYD VQQDDA02OTQyMjg0OC0zMjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuehpeWR+7cBI3Y2YckuhlxNqwZZnGtY5xoLdIBIiCVXr9wxovN6hqvJGlE9c AlVP95X+TSQsNlXfv8vAsGjwKnUi830SWP3Bi3I9wdB4GqWGLGSpWQtUt6wtoZ+s jcgWn+RRCxBbOXuWhu4ozAgVG9lKDhgDcTU8gVg0J/3L4dHLGGdOIn5aAJJlYEIB wx8TckLdq2Bd6TAZLUfuZyp5MRCm93LVCK5gp3CfatArJ5LH2g3k0xlkPcqSISw2 /mczZfMsIGt5ThK0DPyiQ8+4KLtOulRYdpteVwDcnpvdT4dj3LxytdMF4M0csxmI OcN/+0UFtyO6AQT2CgMfrnmTlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHQCnNKK to0vr8SD7F6qPJKHJQi6MB8GA1UdIwQYMBaAFPg9w6JG0SFRrIencs7KDt0hX4Yq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEREZGMi9DOUFGMjkzNEU1 QzExMUVFOThEQkU5NjJDNEY5QUUwMi8tRDNEb2tiUklWR3NoNmR5enNvTzNTRmZo aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1EM0Rva2JSSVZHc2g2ZHl6c29PM1NGZmhpby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE REZGMi9DOUFGMjkzNEU1QzExMUVFOThEQkU5NjJDNEY5QUUwMi8tRDNEb2tiUklW R3NoNmR5enNvTzNTRmZoaW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCExVtLobswfCb55P1Dk6LV/JrfB27n0ZxHGlCF6j5ckdN+Ts8cGwHW mFrbr/3HdPNmz39AB46iHQkZbViQPQTmCi8BXiX6Dd2Ll6GshhWvF1Mhz6Ck+TdP RPhsZu+or8lwRbU9x/OWWClW/uw7DqqQgCzFxdE02EoC1S9731GHMQ3Fj6th5lf5 u+7uMo1ysrKJzob8d39SjETj8T0v7Sld09Q+PypKp8tVjJPbogzTvtI6xoajy96H r11xPaJzP65rSHY92DwVnCrf121crJeI6jiomiWuDzuHypeNa4QyvjEnx7FSVS7W oE8yHFe6nZfwbnoWdYOtEX+uO/BRJIw3 -----END CERTIFICATE-----Generated at Thu Dec 18 22:57:31 2025 by rpki-client