This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft File: PnIyBI3L0sabqyJbikIhYEbBiyU.mft (raw, json) Hash identifier: DZBkvlfnd3fM+G0TASjeJbyPY6+ecdxR0eO6RPxnvbA= Subject key identifier: 09:17:07:21:2E:20:CE:56:9C:F8:A2:0D:DE:56:35:5A:25:AF:DE:17 Authority key identifier: 3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 Certificate issuer: /CN=A911CA78/serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Certificate serial: 01E2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft Manifest number: 01DD Signing time: Sat 06 Dec 2025 18:15:44 +0000 Manifest this update: Sat 06 Dec 2025 18:15:43 +0000 Manifest next update: Sat 13 Dec 2025 18:15:43 +0000 Files and hashes: 1: PnIyBI3L0sabqyJbikIhYEbBiyU.crl (hash: Mm32TGi68MM0NltHVillkwzpRcGDW+usOi5CGEO0EEY=) 2: 1ABB6C4E17DB11EE92B1C26FC4F9AE02.roa (hash: 5FCghaTHfjGe3056E9DhPQUiNt12XMkuoaYKrbjkSQ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 18:15:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 482 (0x1e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Validity Not Before: Dec 6 18:15:43 2025 GMT Not After : Dec 13 18:15:43 2025 GMT Subject: CN=693472d0-19d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:43:82:41:08:4e:be:2a:8b:27:76:d0:50:f2: da:49:4e:61:bd:6a:9d:99:91:2a:d5:ce:c0:22:57: b3:64:6d:d9:39:e6:80:bd:4d:c2:12:48:aa:e3:9f: 03:9f:b4:20:05:73:bc:ff:83:fe:06:bb:b1:3c:7f: ec:9b:cb:ee:8a:f1:28:04:2f:a0:e9:6c:72:30:69: 45:4f:1b:09:ef:c8:a5:3d:a8:d3:b2:23:af:0f:d4: 5a:bf:aa:62:a6:01:46:22:6f:a9:dd:0f:af:ae:ec: b1:c5:c7:36:c2:8a:6d:07:86:69:a3:dc:80:5d:96: fa:8a:f3:87:7a:4a:0a:fd:a2:08:52:2b:2c:d6:58: 36:82:51:40:be:ac:8e:ff:52:63:d2:e7:1c:2b:2c: f2:26:71:eb:2c:06:f8:bf:c5:b7:7b:7e:25:99:07: b6:26:90:e4:2e:3f:f6:99:76:03:c0:15:b0:41:40: a7:2c:4a:38:a2:b1:cc:64:b4:1a:83:dd:7c:81:89: 6b:c4:3b:d7:94:d4:4e:51:1c:43:98:e0:13:07:60: d7:d6:f2:4c:d5:1b:f0:e6:a0:69:01:26:e7:09:60: d0:39:d9:f5:ec:7b:6a:4d:6d:6d:26:46:66:7d:c8: b8:e2:47:29:47:00:8b:55:cc:c1:a4:7f:1b:99:e5: fc:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:17:07:21:2E:20:CE:56:9C:F8:A2:0D:DE:56:35:5A:25:AF:DE:17 X509v3 Authority Key Identifier: keyid:3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:58:b2:ab:83:c5:cc:52:a2:0a:57:04:4b:e1:a4:44:2a:49: ff:5f:46:85:31:be:53:23:76:d6:60:ac:6b:67:ce:d6:29:66: 7b:37:e0:0c:98:da:aa:61:ca:30:54:9a:83:b5:ee:6d:28:c0: 4d:50:15:22:f0:1c:42:a8:06:c5:42:fb:51:b6:f2:59:cf:ee: 40:d0:85:fe:87:66:96:ca:1a:a1:e5:9a:19:b7:97:8d:05:bd: 77:de:bd:66:fc:e4:57:9e:1e:93:85:ef:ef:df:f1:1e:aa:06: 99:c4:a4:05:22:d4:e4:44:fe:18:0a:82:a5:0a:5b:f6:0a:90: 0c:2b:ed:b1:8a:32:cb:64:cf:b4:b0:50:35:8f:ab:5e:31:fc: ea:30:85:06:21:39:b0:09:7f:44:33:a7:7b:e4:dc:53:32:15: d5:bf:90:a8:8b:6f:62:6a:23:f6:a2:d0:ab:7e:03:ca:cc:cb: 46:46:7c:5f:3d:1e:28:1a:f7:fb:a2:ab:b7:50:1e:1f:b7:85: 01:d3:55:8b:67:7c:b8:2f:70:01:21:a6:6b:f2:16:0d:dd:05: 89:53:a7:f9:ab:c4:27:3f:84:43:09:a6:98:d0:9a:fa:ca:f6: 3f:2a:73:c7:ee:a3:d2:10:7f:4f:fc:81:a4:34:05:5d:9f:e5: a3:00:5d:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDNFNzIzMjA0OERDQkQyQzY5QkFCMjI1QjhBNDIyMTYw NDZDMThCMjUwHhcNMjUxMjA2MTgxNTQzWhcNMjUxMjEzMTgxNTQzWjAYMRYwFAYD VQQDEw02OTM0NzJkMC0xOWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyEOCQQhOviqLJ3bQUPLaSU5hvWqdmZEq1c7AIlezZG3ZOeaAvU3CEkiq458D n7QgBXO8/4P+BruxPH/sm8vuivEoBC+g6WxyMGlFTxsJ78ilPajTsiOvD9Rav6pi pgFGIm+p3Q+vruyxxcc2woptB4Zpo9yAXZb6ivOHekoK/aIIUiss1lg2glFAvqyO /1Jj0uccKyzyJnHrLAb4v8W3e34lmQe2JpDkLj/2mXYDwBWwQUCnLEo4orHMZLQa g918gYlrxDvXlNROURxDmOATB2DX1vJM1Rvw5qBpASbnCWDQOdn17HtqTW1tJkZm fci44kcpRwCLVczBpH8bmeX8aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAkXByEu IM5WnPiiDd5WNVolr94XMB8GA1UdIwQYMBaAFD5yMgSNy9LGm6siW4pCIWBGwYsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC8wMjhGNThGRTE2 RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBzYWJxeUpiaWtJaFlFYkJp eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BuSXlCSTNMMHNhYnF5SmJpa0loWUViQml5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E3OC8wMjhGNThGRTE2RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBz YWJxeUpiaWtJaFlFYkJpeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUWLKrg8XMUqIKVwRL4aREKkn/X0aFMb5TI3bWYKxrZ87WKWZ7N+AM mNqqYcowVJqDte5tKMBNUBUi8BxCqAbFQvtRtvJZz+5A0IX+h2aWyhqh5ZoZt5eN Bb133r1m/ORXnh6The/v3/EeqgaZxKQFItTkRP4YCoKlClv2CpAMK+2xijLLZM+0 sFA1j6teMfzqMIUGITmwCX9EM6d75NxTMhXVv5Coi29iaiP2otCrfgPKzMtGRnxf PR4oGvf7oqu3UB4ft4UB01WLZ3y4L3ABIaZr8hYN3QWJU6f5q8QnP4RDCaaY0Jr6 yvY/KnPH7qPSEH9P/IGkNAVdn+WjAF07 -----END CERTIFICATE-----Generated at Sun Dec 7 04:43:29 2025 by rpki-client