This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.mft File: PkLTM0oc4Yid_GfkLfYoWCGFJRk.mft (raw, json) Hash identifier: SSYSEPHQGsFH63fqYX4nCknEqAWwolxI3qEV1JkMbc0= Subject key identifier: 07:C3:27:A5:95:FA:1C:E7:E2:FC:85:BE:41:8C:96:7D:29:F2:40:40 Authority key identifier: 3E:42:D3:33:4A:1C:E1:88:9D:FC:67:E4:2D:F6:28:58:21:85:25:19 Certificate issuer: /CN=A915A39E/serialNumber=3E42D3334A1CE1889DFC67E42DF6285821852519 Certificate serial: 04E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkLTM0oc4Yid_GfkLfYoWCGFJRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.mft Manifest number: 04E0 Signing time: Sat 06 Dec 2025 22:30:36 +0000 Manifest this update: Sat 06 Dec 2025 22:30:35 +0000 Manifest next update: Sat 13 Dec 2025 22:30:35 +0000 Files and hashes: 1: PkLTM0oc4Yid_GfkLfYoWCGFJRk.crl (hash: xz4o4pBEDD4zEhKHP/TRNipIDsQj19ASaTLsKHFEuzQ=) 2: 47A72A7441ED11EC9B02377AC4F9AE02.roa (hash: QrLrf2+brQr8pET8HlSnm9rXz817aY8992jkS8DLh64=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.crl rsync://rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkLTM0oc4Yid_GfkLfYoWCGFJRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:31:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1253 (0x4e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A39E, serialNumber=3E42D3334A1CE1889DFC67E42DF6285821852519 Validity Not Before: Dec 6 22:30:35 2025 GMT Not After : Dec 13 22:30:35 2025 GMT Subject: CN=6934ae8c-2777 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:2b:6f:ad:c1:f3:9e:3e:f8:3d:23:58:62:77: 68:4d:3b:d1:0a:c3:b8:74:c3:c2:27:0d:46:9a:d9: 71:d4:f1:6e:04:39:e7:55:4d:37:99:0c:62:7f:7e: 75:0f:13:96:2a:34:44:c0:64:2d:d6:0f:3c:97:eb: c6:66:b3:c3:c6:d0:93:93:cb:75:da:0f:ec:b5:61: d8:13:e6:35:57:31:5d:db:fc:ac:d4:50:d6:38:5b: 17:cc:0b:66:34:09:b3:92:9f:43:ea:3f:6e:01:e5: 9b:1a:c9:d7:73:ae:f4:a5:e9:d4:9d:b5:1f:8d:cb: b1:bf:86:23:79:75:6c:52:d9:a6:fd:0e:63:b1:19: 93:bb:b4:f3:74:74:0a:0d:26:6f:d4:7c:30:6c:49: 24:40:b7:33:66:57:00:79:bd:11:b1:a7:5b:28:9d: bd:ec:6e:84:6f:ec:ff:9e:81:6e:62:ee:ae:bb:2b: eb:e8:dc:9e:8c:fe:8b:f2:04:63:c1:dd:1b:1b:5f: 32:f2:4d:c0:80:fa:16:47:fb:f6:29:62:2c:0e:ff: db:5d:80:1c:98:ed:5f:05:c3:4f:dd:69:56:f0:72: 6a:69:43:21:45:29:58:b7:19:10:1f:44:23:e8:88: d6:4a:3c:21:b0:7c:87:e7:9d:09:f6:3f:f5:81:cb: d5:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:C3:27:A5:95:FA:1C:E7:E2:FC:85:BE:41:8C:96:7D:29:F2:40:40 X509v3 Authority Key Identifier: keyid:3E:42:D3:33:4A:1C:E1:88:9D:FC:67:E4:2D:F6:28:58:21:85:25:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkLTM0oc4Yid_GfkLfYoWCGFJRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:95:ab:54:ca:60:ab:0c:2a:e4:e9:8d:65:46:a4:4f:62:6b: 06:9a:ea:83:78:9f:a6:a6:50:9e:e1:55:37:ba:13:82:58:d8: 52:44:d3:55:34:a8:42:74:06:77:04:e1:13:b0:d3:f2:43:59: 33:dd:88:74:4c:8a:75:de:df:b4:a0:f5:71:3d:f1:69:80:aa: cb:31:93:ad:3e:0a:68:a3:d2:6a:ff:ee:34:25:68:3b:3d:cf: ab:a3:b3:db:2c:83:c2:b9:b3:a8:22:fb:91:6a:b2:cb:a6:67: 00:71:c6:53:5c:12:b0:9c:0f:5d:7c:37:cf:9e:a6:39:e3:5d: 38:ac:d4:4b:c5:57:05:2e:0d:05:26:d7:f0:ba:b2:6b:f2:9b: 98:bf:be:9f:95:07:dd:44:7b:62:31:26:bb:e0:f2:cf:37:08: bd:b2:6d:38:07:35:77:d0:db:9d:9a:67:ab:f0:07:26:28:42: 72:77:f3:de:99:d1:ef:94:4f:ba:e3:fc:78:d9:fe:89:f9:1f: 11:9f:b5:a5:b5:1f:a4:83:04:13:b2:57:af:ae:47:45:4a:c4: 2e:b2:e1:d6:cf:a1:2b:66:d4:8d:0b:f2:e9:c1:86:ce:5c:ce: ab:0f:1d:f2:e8:f5:a9:26:30:de:b5:ce:71:6a:f6:47:48:39: 2a:42:69:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEzOUUxMTAvBgNVBAUTKDNFNDJEMzMzNEExQ0UxODg5REZDNjdFNDJERjYyODU4 MjE4NTI1MTkwHhcNMjUxMjA2MjIzMDM1WhcNMjUxMjEzMjIzMDM1WjAYMRYwFAYD VQQDEw02OTM0YWU4Yy0yNzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwStvrcHznj74PSNYYndoTTvRCsO4dMPCJw1Gmtlx1PFuBDnnVU03mQxif351 DxOWKjREwGQt1g88l+vGZrPDxtCTk8t12g/stWHYE+Y1VzFd2/ys1FDWOFsXzAtm NAmzkp9D6j9uAeWbGsnXc670penUnbUfjcuxv4YjeXVsUtmm/Q5jsRmTu7TzdHQK DSZv1HwwbEkkQLczZlcAeb0RsadbKJ297G6Eb+z/noFuYu6uuyvr6NyejP6L8gRj wd0bG18y8k3AgPoWR/v2KWIsDv/bXYAcmO1fBcNP3WlW8HJqaUMhRSlYtxkQH0Qj 6IjWSjwhsHyH550J9j/1gcvVAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAfDJ6WV +hzn4vyFvkGMln0p8kBAMB8GA1UdIwQYMBaAFD5C0zNKHOGInfxn5C32KFghhSUZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTM5RS9DQTMxNjg5NjQx RTkxMUVDQjI1ODk2NzNDNEY5QUUwMi9Qa0xUTTBvYzRZaWRfR2ZrTGZZb1dDR0ZK UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BrTFRNMG9jNFlpZF9HZmtMZllvV0NHRkpSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTM5RS9DQTMxNjg5NjQxRTkxMUVDQjI1ODk2NzNDNEY5QUUwMi9Qa0xUTTBvYzRZ aWRfR2ZrTGZZb1dDR0ZKUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXlatUymCrDCrk6Y1lRqRPYmsGmuqDeJ+mplCe4VU3uhOCWNhSRNNV NKhCdAZ3BOETsNPyQ1kz3Yh0TIp13t+0oPVxPfFpgKrLMZOtPgpoo9Jq/+40JWg7 Pc+ro7PbLIPCubOoIvuRarLLpmcAccZTXBKwnA9dfDfPnqY54104rNRLxVcFLg0F JtfwurJr8puYv76flQfdRHtiMSa74PLPNwi9sm04BzV30Nudmmer8AcmKEJyd/Pe mdHvlE+64/x42f6J+R8Rn7WltR+kgwQTslevrkdFSsQusuHWz6ErZtSNC/LpwYbO XM6rDx3y6PWpJjDetc5xavZHSDkqQmmr -----END CERTIFICATE-----Generated at Sun Dec 7 00:58:49 2025 by rpki-client