This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft File: 0PiwBllsfAN8tUkwWzlpAACq6KQ.mft (raw, json) Hash identifier: y4JXiBg0Zt//AbA264KhGVoltnq+DrBMHuuBt613Ui0= Subject key identifier: BB:2E:C7:21:49:32:7C:40:29:D1:F8:CC:F3:3A:EE:4B:4A:87:16:1E Authority key identifier: D0:F8:B0:06:59:6C:7C:03:7C:B5:49:30:5B:39:69:00:00:AA:E8:A4 Certificate issuer: /CN=A91754C0/serialNumber=D0F8B006596C7C037CB549305B39690000AAE8A4 Certificate serial: 0155 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft Manifest number: 0151 Signing time: Sun 07 Dec 2025 02:34:17 +0000 Manifest this update: Sun 07 Dec 2025 02:34:16 +0000 Manifest next update: Sun 14 Dec 2025 02:34:16 +0000 Files and hashes: 1: 0PiwBllsfAN8tUkwWzlpAACq6KQ.crl (hash: IgmdxmVQ4rKnUhAeOEce3C83/x8bytOdOzSusfcWt90=) 2: D0CB00D4CCBD11EEAC4BCD4BC4F9AE02.roa (hash: tE5MO0yGqfdQRPhR9mD7EUVj7T64niX8BINnA3y1Amk=) 3: 6BA3FEA4CCBD11EEBADDFC4AC4F9AE02.roa (hash: qBQp3vvSD9elb8dQbwCPuGirBXWWVwR3GT0tS3LqEZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.crl rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 02:34:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 341 (0x155) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91754C0, serialNumber=D0F8B006596C7C037CB549305B39690000AAE8A4 Validity Not Before: Dec 7 02:34:16 2025 GMT Not After : Dec 14 02:34:16 2025 GMT Subject: CN=6934e7a8-77c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:04:54:9b:67:d0:16:29:6f:1b:75:6d:b4:60: 69:39:93:3b:78:02:62:74:17:0f:a2:e7:92:66:26: a1:41:72:0f:5a:f7:bd:3e:97:54:ad:d2:73:e7:29: ef:96:38:04:33:a1:bc:d9:3d:ff:89:2c:9a:3b:c2: b3:ee:50:b5:64:89:58:61:a8:51:38:15:4b:2a:74: 82:e4:27:25:7a:8f:bd:70:ed:9b:50:80:22:2d:6b: e1:e2:52:42:35:59:90:9e:a0:ae:16:ed:86:eb:76: 23:49:aa:c2:10:8e:f3:bd:a7:05:84:a4:bd:9e:08: 7e:78:8e:9b:7b:2a:3a:bd:dc:1a:fa:d3:e1:59:35: 57:30:99:96:01:7c:b2:03:44:d0:45:84:4e:0f:83: 45:d6:54:9d:84:62:b4:2d:47:b6:a2:6f:16:63:69: 4d:57:55:02:fe:1a:2a:75:21:da:63:a1:98:c6:fa: 86:f7:b9:58:57:48:8a:9c:02:27:af:07:6a:eb:f4: a7:12:bc:6b:aa:19:5c:51:98:34:10:fc:0e:fe:b3: b8:f7:fc:08:ea:4f:fb:01:e3:c4:21:af:26:52:80: 29:45:fc:a7:63:d2:5d:c4:f9:9b:3c:c1:a4:ef:9f: b1:eb:d0:0f:a1:c0:50:b2:a0:f1:17:43:0e:96:27: 82:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:2E:C7:21:49:32:7C:40:29:D1:F8:CC:F3:3A:EE:4B:4A:87:16:1E X509v3 Authority Key Identifier: keyid:D0:F8:B0:06:59:6C:7C:03:7C:B5:49:30:5B:39:69:00:00:AA:E8:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:79:04:f2:b7:74:a8:29:48:19:0e:58:ea:17:ca:2a:fd:9f: 7b:77:e1:2d:0a:ed:99:c6:37:99:d3:d4:6b:01:36:3e:d6:26: 80:9a:9e:f3:f0:77:87:bb:73:c1:9f:3e:51:a6:80:bd:0d:4b: 57:57:dd:a3:b2:e0:87:6f:25:2f:42:b2:d1:f9:b6:2f:70:21: b7:90:20:e8:ec:78:21:bf:bc:1f:8a:96:e9:21:cf:c6:9e:89: 60:68:47:f4:06:38:95:a4:8e:25:f4:65:d1:20:03:c1:e9:85: fc:dc:0a:5d:43:95:b3:2f:0f:28:13:b2:1f:a8:88:47:36:60: 4d:e8:5e:8b:b8:f7:b5:4a:37:42:28:ce:af:9e:2c:76:fc:de: 48:9b:30:dd:1b:56:94:d2:14:42:5a:f4:63:29:1f:40:a0:9d: db:66:2d:8a:3c:72:90:08:0f:a6:8d:9d:d9:aa:33:f9:5a:70: dc:73:1e:78:c9:ea:73:1d:85:6e:c8:6e:31:d3:8d:d5:2c:ef: 36:b2:1c:b4:38:b4:c8:12:ce:fc:f8:68:4d:aa:f2:70:a8:2d: be:94:ba:60:d1:96:65:e8:f6:d5:bc:3f:ce:8c:97:7f:38:e0: 71:b7:61:7e:fa:37:1d:53:36:1c:f3:61:fa:13:c3:f4:9a:23: f1:13:fe:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU0QzAxMTAvBgNVBAUTKEQwRjhCMDA2NTk2QzdDMDM3Q0I1NDkzMDVCMzk2OTAw MDBBQUU4QTQwHhcNMjUxMjA3MDIzNDE2WhcNMjUxMjE0MDIzNDE2WjAYMRYwFAYD VQQDEw02OTM0ZTdhOC03N2M3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvARUm2fQFilvG3VttGBpOZM7eAJidBcPoueSZiahQXIPWve9PpdUrdJz5ynv ljgEM6G82T3/iSyaO8Kz7lC1ZIlYYahROBVLKnSC5Ccleo+9cO2bUIAiLWvh4lJC NVmQnqCuFu2G63YjSarCEI7zvacFhKS9ngh+eI6beyo6vdwa+tPhWTVXMJmWAXyy A0TQRYROD4NF1lSdhGK0LUe2om8WY2lNV1UC/hoqdSHaY6GYxvqG97lYV0iKnAIn rwdq6/SnErxrqhlcUZg0EPwO/rO49/wI6k/7AePEIa8mUoApRfynY9JdxPmbPMGk 75+x69APocBQsqDxF0MOlieCJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLsuxyFJ MnxAKdH4zPM67ktKhxYeMB8GA1UdIwQYMBaAFND4sAZZbHwDfLVJMFs5aQAAquik MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTRDMC9GRURGNTcyRUND QkIxMUVFOEEwRjc3NDhDNEY5QUUwMi8wUGl3Qmxsc2ZBTjh0VWt3V3pscEFBQ3E2 S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBQaXdCbGxzZkFOOHRVa3dXemxwQUFDcTZLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTRDMC9GRURGNTcyRUNDQkIxMUVFOEEwRjc3NDhDNEY5QUUwMi8wUGl3Qmxsc2ZB Tjh0VWt3V3pscEFBQ3E2S1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHeQTyt3SoKUgZDljqF8oq/Z97d+EtCu2ZxjeZ09RrATY+1iaAmp7z 8HeHu3PBnz5RpoC9DUtXV92jsuCHbyUvQrLR+bYvcCG3kCDo7Hghv7wfipbpIc/G nolgaEf0BjiVpI4l9GXRIAPB6YX83ApdQ5WzLw8oE7IfqIhHNmBN6F6LuPe1SjdC KM6vnix2/N5ImzDdG1aU0hRCWvRjKR9AoJ3bZi2KPHKQCA+mjZ3ZqjP5WnDccx54 yepzHYVuyG4x043VLO82shy0OLTIEs78+GhNqvJwqC2+lLpg0ZZl6PbVvD/OjJd/ OOBxt2F++jcdUzYc82H6E8P0miPxE/5Z -----END CERTIFICATE-----Generated at Sun Dec 7 06:18:43 2025 by rpki-client