This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft File: dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft (raw, json) Hash identifier: 7i0Rtoj57rUgFEik3Wx2WtgHhmJRP0DIqDjdi6LUPsE= Subject key identifier: C9:5E:52:96:04:51:D3:F2:D6:15:53:AC:8C:06:2B:52:8A:0A:75:39 Authority key identifier: 75:F7:72:E4:06:C5:F4:6D:3E:8B:F2:7A:C1:F2:5F:CF:64:E9:79:97 Certificate issuer: /CN=A91FC705/serialNumber=75F772E406C5F46D3E8BF27AC1F25FCF64E97997 Certificate serial: 059B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dfdy5AbF9G0-i_J6wfJfz2TpeZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft Manifest number: 059B Signing time: Thu 18 Dec 2025 22:29:52 +0000 Manifest this update: Thu 18 Dec 2025 22:29:51 +0000 Manifest next update: Thu 25 Dec 2025 22:29:51 +0000 Files and hashes: 1: dfdy5AbF9G0-i_J6wfJfz2TpeZc.crl (hash: qI1sJCDxkT5Vo8YSR676B4SSBfCfY5O9DBy5QUxMsuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.crl rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dfdy5AbF9G0-i_J6wfJfz2TpeZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:29:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1435 (0x59b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC705, serialNumber=75F772E406C5F46D3E8BF27AC1F25FCF64E97997 Validity Not Before: Dec 18 22:29:51 2025 GMT Not After : Dec 25 22:29:51 2025 GMT Subject: CN=69448060-a572 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:2b:07:02:94:c4:ac:1a:e6:08:0f:c3:ff:6b: f3:94:ba:80:29:45:33:52:53:7c:fc:34:7a:db:f9: d5:86:68:af:32:f4:c8:a4:41:1e:55:b4:6c:69:76: de:18:75:69:1c:8b:d7:e4:c6:ee:b1:87:0f:1f:a0: 8c:4f:ed:b8:29:eb:96:bb:be:1d:8d:c0:52:ec:d5: 9c:f8:b9:aa:e9:a0:cc:1e:62:3f:69:80:f6:83:0d: 2e:12:9a:65:0b:12:ff:30:f8:8e:77:15:a7:d4:32: d1:2b:36:20:d0:f7:87:3e:41:b4:2d:42:6d:31:ce: 1d:38:2a:1d:2d:db:5b:1e:51:b2:ee:ee:09:be:1d: 38:b7:c5:1d:30:59:df:33:56:c6:c6:aa:93:0e:78: a3:d7:8c:74:9c:95:1b:e3:7b:85:a5:df:47:a3:28: ff:31:81:60:d2:a3:9f:ef:5f:f7:84:fd:eb:7d:e8: e6:a6:4a:5e:f1:e8:a1:63:c3:4f:98:2b:4a:6a:cb: aa:26:5e:58:55:bd:90:63:82:1d:3c:5f:fc:13:b9: ea:52:e9:09:cc:5a:7f:9a:72:f4:45:98:83:af:0f: 20:87:19:94:0f:aa:42:c4:b6:37:36:f7:72:62:29: ed:f1:10:05:2b:f6:32:9a:7e:9f:ad:09:37:89:d8: e7:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:5E:52:96:04:51:D3:F2:D6:15:53:AC:8C:06:2B:52:8A:0A:75:39 X509v3 Authority Key Identifier: keyid:75:F7:72:E4:06:C5:F4:6D:3E:8B:F2:7A:C1:F2:5F:CF:64:E9:79:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dfdy5AbF9G0-i_J6wfJfz2TpeZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:52:db:a3:a4:63:a1:d1:0c:2e:70:7b:9b:75:5d:b9:de:68: 30:92:b9:12:2b:79:07:28:5b:70:4b:d3:f2:47:60:2a:b4:fa: 02:ef:a0:21:5f:e7:51:53:0c:99:26:3a:af:f8:34:94:0c:72: 15:53:f5:66:9f:50:e7:2f:b2:4f:15:31:79:10:2e:b0:38:7c: 5b:f5:ff:af:e9:44:7c:40:ed:4d:01:4d:b9:58:27:69:f5:8c: 8f:fd:f4:22:c0:25:a1:ad:d9:be:c2:2b:f8:6c:88:57:c1:61: c9:bc:10:8f:6d:36:b8:ea:6a:25:fb:ba:36:84:32:e5:b1:d1: ac:64:0c:e3:d7:9f:5d:15:fe:d8:51:75:cd:80:97:19:24:57: 4c:e1:66:7c:fc:6a:54:b4:1f:c7:42:19:73:b7:03:51:ae:3a: 32:a6:99:f1:eb:a1:a0:d9:9c:47:6c:d9:18:2b:3b:ce:7f:ed: ce:ce:08:bd:3c:5b:32:f0:9b:97:1f:15:3d:eb:3b:3f:d6:6e: 66:a7:ae:04:c2:9e:05:5a:d4:7e:3a:24:71:b2:9b:5e:e8:5f: 9f:b6:c3:e3:77:f0:d4:63:1b:0c:4a:9b:b8:83:62:d6:58:85: 1f:58:13:15:07:4f:97:07:82:84:bd:d9:9d:19:4c:03:77:08: 69:5a:20:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM3MDUxMTAvBgNVBAUTKDc1Rjc3MkU0MDZDNUY0NkQzRThCRjI3QUMxRjI1RkNG NjRFOTc5OTcwHhcNMjUxMjE4MjIyOTUxWhcNMjUxMjI1MjIyOTUxWjAYMRYwFAYD VQQDDA02OTQ0ODA2MC1hNTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApSsHApTErBrmCA/D/2vzlLqAKUUzUlN8/DR62/nVhmivMvTIpEEeVbRsaXbe GHVpHIvX5MbusYcPH6CMT+24KeuWu74djcBS7NWc+Lmq6aDMHmI/aYD2gw0uEppl CxL/MPiOdxWn1DLRKzYg0PeHPkG0LUJtMc4dOCodLdtbHlGy7u4Jvh04t8UdMFnf M1bGxqqTDnij14x0nJUb43uFpd9Hoyj/MYFg0qOf71/3hP3rfejmpkpe8eihY8NP mCtKasuqJl5YVb2QY4IdPF/8E7nqUukJzFp/mnL0RZiDrw8ghxmUD6pCxLY3Nvdy Yint8RAFK/Yymn6frQk3idjn6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMleUpYE UdPy1hVTrIwGK1KKCnU5MB8GA1UdIwQYMBaAFHX3cuQGxfRtPovyesHyX89k6XmX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzcwNS82RTI3N0JCMkY1 QkQxMUVCQjlGOERCMTFDNEY5QUUwMi9kZmR5NUFiRjlHMC1pX0o2d2ZKZnoyVHBl WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RmZHk1QWJGOUcwLWlfSjZ3ZkpmejJUcGVaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzcwNS82RTI3N0JCMkY1QkQxMUVCQjlGOERCMTFDNEY5QUUwMi9kZmR5NUFiRjlH MC1pX0o2d2ZKZnoyVHBlWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdUtujpGOh0QwucHubdV253mgwkrkSK3kHKFtwS9PyR2AqtPoC76Ah X+dRUwyZJjqv+DSUDHIVU/Vmn1DnL7JPFTF5EC6wOHxb9f+v6UR8QO1NAU25WCdp 9YyP/fQiwCWhrdm+wiv4bIhXwWHJvBCPbTa46mol+7o2hDLlsdGsZAzj159dFf7Y UXXNgJcZJFdM4WZ8/GpUtB/HQhlztwNRrjoyppnx66Gg2ZxHbNkYKzvOf+3Ozgi9 PFsy8JuXHxU96zs/1m5mp64Ewp4FWtR+OiRxspte6F+ftsPjd/DUYxsMSpu4g2LW WIUfWBMVB0+XB4KEvdmdGUwDdwhpWiBP -----END CERTIFICATE-----Generated at Fri Dec 19 19:14:15 2025 by rpki-client