This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft File: PFRw6B-koZCHAh0K130zbOvipo0.mft (raw, json) Hash identifier: 11chHAFWszbyuUyhVW6wQTSpGXcH9tV/UyflTHdIL1Y= Subject key identifier: 3A:6D:C3:35:F2:6D:EA:36:E2:10:A5:58:C1:38:93:57:C3:DA:BF:42 Authority key identifier: 3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D Certificate issuer: /CN=A9143CB3/serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Certificate serial: 1B45 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft Manifest number: 1B42 Signing time: Sat 06 Dec 2025 15:56:36 +0000 Manifest this update: Sat 06 Dec 2025 15:56:36 +0000 Manifest next update: Sat 13 Dec 2025 15:56:36 +0000 Files and hashes: 1: PFRw6B-koZCHAh0K130zbOvipo0.crl (hash: N6cq6m15ihz4UeABsFpRFVcID+J2ATz4h1heDf8KepU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6981 (0x1b45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3, serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Validity Not Before: Dec 6 15:56:36 2025 GMT Not After : Dec 13 15:56:36 2025 GMT Subject: CN=69345234-f32e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:fa:ad:fa:68:fb:f1:0c:e9:9a:50:7c:d3:60: 39:65:f6:2d:b0:5b:2a:29:51:b9:cd:31:a4:56:15: d4:9e:5f:b7:f6:3d:50:5e:5c:c2:c6:37:a3:0a:29: 92:f7:d1:77:7e:3c:78:ba:9a:30:c1:a5:0c:5e:86: 48:7a:b2:36:f8:5d:f8:00:31:55:df:ef:92:25:e3: fd:d3:8c:74:42:a9:f0:2f:2a:72:5a:4b:c3:95:cf: e0:35:f8:22:f8:8c:0c:76:c2:32:0b:c0:0f:98:12: ea:e8:5b:10:26:b4:51:df:5f:8a:da:72:c2:e4:ce: dd:3d:34:66:f1:84:e7:20:39:08:79:89:42:78:64: 27:64:25:d0:78:7a:8a:f8:06:12:2b:1b:e5:27:7c: 78:e8:66:14:1c:27:5b:9b:20:26:bb:87:df:43:05: 16:c4:80:ad:71:c6:b2:80:ea:49:24:ec:f8:fb:3c: 08:1c:78:e5:23:e1:51:8e:f2:7a:a4:f7:b5:08:45: fc:81:60:f9:8a:4b:32:0e:1a:97:8e:75:84:fa:e7: 25:e8:c3:3c:04:81:5d:fb:4b:a6:89:e6:e8:d5:46: 6d:97:cb:4d:bb:23:ef:c4:1e:7e:68:3b:b1:ca:80: 10:2b:6d:36:2b:2d:6b:b2:8b:0e:6b:25:03:fb:0e: 8e:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:6D:C3:35:F2:6D:EA:36:E2:10:A5:58:C1:38:93:57:C3:DA:BF:42 X509v3 Authority Key Identifier: keyid:3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:32:af:3a:a0:53:f1:80:8e:17:84:bf:cb:45:30:28:52:0c: 14:18:dd:40:60:56:39:2c:63:23:a4:68:79:b0:5b:e5:fa:ac: 9f:cb:71:d2:de:0c:63:02:81:ff:0e:28:16:69:2b:09:f0:e4: 3c:61:ce:7c:07:88:df:d7:5b:12:19:81:87:47:ba:8c:fb:4b: cb:06:57:f9:30:94:3f:90:34:e9:34:3d:da:1f:0a:d1:d7:28: db:6f:9c:89:22:15:88:56:30:55:59:36:4b:f3:d6:49:6e:87: f1:cc:b3:69:0f:e1:e8:7c:b3:df:93:e6:ae:7c:f0:92:62:04: fc:c2:19:73:51:86:d9:33:74:52:b0:35:9a:d1:8e:8e:75:01: 14:1d:d7:e8:20:a4:15:ff:bd:53:0c:58:58:6c:7c:0d:d2:4e: f3:83:73:92:92:22:72:49:8f:c2:31:26:d1:f5:3a:ef:f5:d2: 4c:69:e9:17:ea:cb:2a:e6:30:00:65:08:78:cd:d9:ac:3d:8f: 2c:37:3f:12:d7:38:e2:34:a1:5f:fe:8d:5b:24:c4:64:1d:67: d2:e5:25:93:94:99:c1:24:6e:ca:41:8b:f0:3e:21:8f:da:0f: 8c:6f:46:5c:c9:ca:dc:2b:a2:73:02:80:be:58:83:bb:1d:7f: fc:b7:00:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG0UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKDNDNTQ3MEU4MUZBNEExOTA4NzAyMUQwQUQ3N0QzMzZD RUJFMkE2OEQwHhcNMjUxMjA2MTU1NjM2WhcNMjUxMjEzMTU1NjM2WjAYMRYwFAYD VQQDEw02OTM0NTIzNC1mMzJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4/qt+mj78QzpmlB802A5ZfYtsFsqKVG5zTGkVhXUnl+39j1QXlzCxjejCimS 99F3fjx4upowwaUMXoZIerI2+F34ADFV3++SJeP904x0QqnwLypyWkvDlc/gNfgi +IwMdsIyC8APmBLq6FsQJrRR31+K2nLC5M7dPTRm8YTnIDkIeYlCeGQnZCXQeHqK +AYSKxvlJ3x46GYUHCdbmyAmu4ffQwUWxICtccaygOpJJOz4+zwIHHjlI+FRjvJ6 pPe1CEX8gWD5iksyDhqXjnWE+ucl6MM8BIFd+0umiebo1UZtl8tNuyPvxB5+aDux yoAQK202Ky1rsosOayUD+w6OYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDptwzXy beo24hClWME4k1fD2r9CMB8GA1UdIwQYMBaAFDxUcOgfpKGQhwIdCtd9M2zr4qaN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xNTE2Njc5RTI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29aQ0hBaDBLMTMwemJPdmlw bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BGUnc2Qi1rb1pDSEFoMEsxMzB6Yk92aXBvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xNTE2Njc5RTI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29a Q0hBaDBLMTMwemJPdmlwbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8Mq86oFPxgI4XhL/LRTAoUgwUGN1AYFY5LGMjpGh5sFvl+qyfy3HS 3gxjAoH/DigWaSsJ8OQ8Yc58B4jf11sSGYGHR7qM+0vLBlf5MJQ/kDTpND3aHwrR 1yjbb5yJIhWIVjBVWTZL89ZJbofxzLNpD+HofLPfk+aufPCSYgT8whlzUYbZM3RS sDWa0Y6OdQEUHdfoIKQV/71TDFhYbHwN0k7zg3OSkiJySY/CMSbR9Trv9dJMaekX 6ssq5jAAZQh4zdmsPY8sNz8S1zjiNKFf/o1bJMRkHWfS5SWTlJnBJG7KQYvwPiGP 2g+Mb0ZcycrcK6JzAoC+WIO7HX/8twDS -----END CERTIFICATE-----Generated at Sun Dec 7 04:18:23 2025 by rpki-client