This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.mft File: PkLTM0oc4Yid_GfkLfYoWCGFJRk.mft (raw, json) Hash identifier: MIIbkRg9F3slc1KD6Ks9vT2g31Pnor61LaAbI8jZl5g= Subject key identifier: 47:05:D6:96:F2:69:84:C8:D4:1F:BA:D4:A4:0E:0C:E1:8C:32:4B:D9 Authority key identifier: 3E:42:D3:33:4A:1C:E1:88:9D:FC:67:E4:2D:F6:28:58:21:85:25:19 Certificate issuer: /CN=A915A39E/serialNumber=3E42D3334A1CE1889DFC67E42DF6285821852519 Certificate serial: 04E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkLTM0oc4Yid_GfkLfYoWCGFJRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.mft Manifest number: 04DF Signing time: Thu 04 Dec 2025 22:20:12 +0000 Manifest this update: Thu 04 Dec 2025 22:20:11 +0000 Manifest next update: Thu 11 Dec 2025 22:20:11 +0000 Files and hashes: 1: PkLTM0oc4Yid_GfkLfYoWCGFJRk.crl (hash: i8sQwAueu1ZJvEzhCnU8gkPi74X4/vSCpJhcH4EUqZc=) 2: 47A72A7441ED11EC9B02377AC4F9AE02.roa (hash: QrLrf2+brQr8pET8HlSnm9rXz817aY8992jkS8DLh64=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.crl rsync://rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkLTM0oc4Yid_GfkLfYoWCGFJRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:20:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1252 (0x4e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A39E, serialNumber=3E42D3334A1CE1889DFC67E42DF6285821852519 Validity Not Before: Dec 4 22:20:11 2025 GMT Not After : Dec 11 22:20:11 2025 GMT Subject: CN=6932091c-8db6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c7:cd:52:4c:da:94:86:2a:88:84:a8:63:67: 9d:66:8a:c8:49:af:bb:2e:18:4f:9d:67:48:98:8e: b0:8d:e2:7b:59:a6:39:38:50:57:9c:1b:71:13:cf: fb:ec:94:15:43:d2:7a:15:11:b2:c1:94:de:55:0d: ea:78:56:bd:1e:8c:69:c3:b3:5e:2e:13:b4:48:2c: d4:88:ef:f1:e5:f9:f8:3f:86:f2:a7:4d:93:1a:6c: 08:ea:65:09:b8:76:7d:d3:7a:e6:3b:ed:b0:15:c8: 26:05:6b:a7:50:2d:f5:a1:ce:68:21:0a:bc:98:97: 04:04:db:d1:b6:64:a5:c8:4a:9e:9e:79:5e:19:04: ad:19:52:6e:60:2b:6c:bb:6d:c6:97:77:e4:56:43: bf:be:0d:af:9b:b0:69:3b:2e:ad:5c:9c:72:79:61: 21:a7:65:b1:c3:7a:c9:89:a3:ff:cd:47:7c:f1:fa: 33:e6:f4:9e:63:02:71:75:af:2b:cb:06:6c:79:43: 34:81:8c:61:0f:cd:cd:14:f2:4c:70:2c:bf:d9:31: 09:9c:bc:01:e6:01:4a:25:15:42:98:76:70:44:42: 85:a8:06:ff:26:69:cf:3d:9f:41:5f:56:7b:5c:07: 96:ed:d7:1b:17:00:c5:c6:83:2c:b6:6a:e4:c9:62: a0:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:05:D6:96:F2:69:84:C8:D4:1F:BA:D4:A4:0E:0C:E1:8C:32:4B:D9 X509v3 Authority Key Identifier: keyid:3E:42:D3:33:4A:1C:E1:88:9D:FC:67:E4:2D:F6:28:58:21:85:25:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkLTM0oc4Yid_GfkLfYoWCGFJRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:c0:5d:de:5a:27:b3:01:2e:72:a9:4e:ee:cd:76:ad:3e:16: 50:9f:07:67:c2:b0:f8:a7:81:cb:b1:ff:99:f0:6c:7b:3b:bc: c1:4b:33:1e:7f:df:d9:26:d3:ef:40:a3:d0:d9:52:8f:2d:7c: 8f:2c:ec:0a:5e:a8:08:56:dc:07:e7:e3:aa:a8:16:00:73:76: 1b:3f:6e:3b:04:50:3b:d6:31:8f:e5:a2:73:46:2d:e6:aa:35: b2:e6:67:ea:0b:7f:a0:9a:69:70:86:39:10:79:f9:83:a4:c5: e3:e8:2b:4a:04:fa:61:0b:4e:e5:d2:14:e3:a8:d5:83:a3:31: 0b:4d:62:9c:e0:e8:d2:f2:34:c3:ae:f8:d4:f1:f5:c8:c8:ab: 52:90:e6:0c:13:35:77:a4:19:01:00:9b:87:1b:ae:16:16:62: a6:23:0e:82:d4:3e:7a:29:7d:c3:98:06:ef:5b:76:8a:40:b7: 2e:9e:d6:02:49:6d:7e:f8:db:f3:a8:7d:66:c1:db:d2:72:90: 78:e4:5f:33:a9:d2:f8:c8:67:f8:1f:e2:f0:14:b2:75:06:4a: 73:b2:a9:85:19:17:32:d6:3c:19:12:20:29:e4:e0:89:30:6a: 1f:ec:4d:5d:29:2a:64:39:0c:b0:96:02:9c:3d:bb:7e:92:b9: 84:6f:a1:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEzOUUxMTAvBgNVBAUTKDNFNDJEMzMzNEExQ0UxODg5REZDNjdFNDJERjYyODU4 MjE4NTI1MTkwHhcNMjUxMjA0MjIyMDExWhcNMjUxMjExMjIyMDExWjAYMRYwFAYD VQQDEw02OTMyMDkxYy04ZGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwcfNUkzalIYqiISoY2edZorISa+7LhhPnWdImI6wjeJ7WaY5OFBXnBtxE8/7 7JQVQ9J6FRGywZTeVQ3qeFa9Hoxpw7NeLhO0SCzUiO/x5fn4P4byp02TGmwI6mUJ uHZ903rmO+2wFcgmBWunUC31oc5oIQq8mJcEBNvRtmSlyEqennleGQStGVJuYCts u23Gl3fkVkO/vg2vm7BpOy6tXJxyeWEhp2Wxw3rJiaP/zUd88foz5vSeYwJxda8r ywZseUM0gYxhD83NFPJMcCy/2TEJnLwB5gFKJRVCmHZwREKFqAb/JmnPPZ9BX1Z7 XAeW7dcbFwDFxoMstmrkyWKgcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEcF1pby aYTI1B+61KQODOGMMkvZMB8GA1UdIwQYMBaAFD5C0zNKHOGInfxn5C32KFghhSUZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTM5RS9DQTMxNjg5NjQx RTkxMUVDQjI1ODk2NzNDNEY5QUUwMi9Qa0xUTTBvYzRZaWRfR2ZrTGZZb1dDR0ZK UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BrTFRNMG9jNFlpZF9HZmtMZllvV0NHRkpSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTM5RS9DQTMxNjg5NjQxRTkxMUVDQjI1ODk2NzNDNEY5QUUwMi9Qa0xUTTBvYzRZ aWRfR2ZrTGZZb1dDR0ZKUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACwF3eWiezAS5yqU7uzXatPhZQnwdnwrD4p4HLsf+Z8Gx7O7zBSzMe f9/ZJtPvQKPQ2VKPLXyPLOwKXqgIVtwH5+OqqBYAc3YbP247BFA71jGP5aJzRi3m qjWy5mfqC3+gmmlwhjkQefmDpMXj6CtKBPphC07l0hTjqNWDozELTWKc4OjS8jTD rvjU8fXIyKtSkOYMEzV3pBkBAJuHG64WFmKmIw6C1D56KX3DmAbvW3aKQLcuntYC SW1++NvzqH1mwdvScpB45F8zqdL4yGf4H+LwFLJ1BkpzsqmFGRcy1jwZEiAp5OCJ MGof7E1dKSpkOQywlgKcPbt+krmEb6HD -----END CERTIFICATE-----Generated at Sat Dec 6 23:46:10 2025 by rpki-client