This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft File: PzsvWzuuUqa1aSyvkqJVSwbahj0.mft (raw, json) Hash identifier: SA4t3kqPW08qp+weyZZ/8S2n0JTQNMUIruCCDnQMj38= Subject key identifier: E5:59:60:FD:4B:27:16:2F:2B:F7:85:16:33:D4:90:D1:37:97:03:A9 Authority key identifier: 3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D Certificate issuer: /CN=A917C81C/serialNumber=3F3B2F5B3BAE52A6B5692CAF92A2554B06DA863D Certificate serial: 0591 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft Manifest number: 058C Signing time: Sat 20 Dec 2025 22:31:19 +0000 Manifest this update: Sat 20 Dec 2025 22:31:19 +0000 Manifest next update: Sat 27 Dec 2025 22:31:19 +0000 Files and hashes: 1: PzsvWzuuUqa1aSyvkqJVSwbahj0.crl (hash: Ulxzr6y2x9T9xNqNbu/keu0ERLHdclX2liF+zwrjGWQ=) 2: 1953EB90FF1B11EBA5CEF970C4F9AE02.roa (hash: GyNWMA5uS2CM++CZD9BiRxHkePo3mscOl1IpeulPgT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 22:14:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1425 (0x591) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C81C, serialNumber=3F3B2F5B3BAE52A6B5692CAF92A2554B06DA863D Validity Not Before: Dec 20 22:31:19 2025 GMT Not After : Dec 27 22:31:19 2025 GMT Subject: CN=694723b7-cc70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d4:db:f1:0d:3c:fa:b1:dc:f5:ad:db:68:63: a0:36:a3:24:8c:61:4d:63:1b:25:4e:62:d3:14:46: fa:dc:1c:75:cc:58:6d:6c:43:66:46:00:f9:82:53: 22:3f:9b:55:db:22:ab:a8:34:df:1c:40:42:ec:20: 08:31:87:6a:86:77:ae:00:37:0d:e2:52:43:fd:28: 88:ac:94:2d:dd:a1:6c:2f:80:d5:6e:75:4f:ce:b6: 35:06:4f:6f:74:f7:0d:c2:20:4a:8f:00:05:2a:41: fc:9a:20:d8:98:1f:d5:3c:95:42:6f:66:37:b8:79: 04:54:ad:bd:ff:77:cd:fa:84:07:9f:17:e0:a1:29: ee:ba:d2:86:5a:18:37:f4:9d:38:57:81:3d:9c:2d: c6:6b:c8:21:fb:ee:da:a5:1f:e6:22:cf:52:34:67: b1:e7:27:67:f3:9d:54:ed:c3:22:bb:e5:57:7c:b1: a6:a4:0f:7c:15:7d:61:af:13:69:4e:d5:d2:dc:6e: 67:b9:11:0d:93:bc:07:d3:7c:e8:31:93:5b:33:81: e6:cb:58:f9:8e:fa:09:02:ca:86:0c:2c:e0:e3:14: 4b:af:a1:36:53:1d:0b:99:11:20:fe:05:84:14:3f: a6:52:72:05:b5:c6:c6:7a:69:a7:ed:76:0d:19:7f: 58:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:59:60:FD:4B:27:16:2F:2B:F7:85:16:33:D4:90:D1:37:97:03:A9 X509v3 Authority Key Identifier: keyid:3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:0d:67:72:75:c4:b6:ad:8f:44:9b:39:fe:09:82:74:e4:57: 57:d9:67:a4:a5:23:11:0b:b9:02:f0:68:2d:ff:dc:04:b1:2c: 55:67:9f:90:96:9f:c7:7a:58:7d:ce:a4:b0:04:fc:e9:52:53: b2:65:43:22:95:93:a0:1a:11:a7:e9:97:ea:88:54:bf:9a:0a: d6:b6:42:c4:bb:26:ba:73:87:3c:ae:77:98:c8:fe:8f:c0:05: 4d:93:fa:72:2f:7a:2f:03:61:6c:58:f1:4c:24:28:5a:45:cf: fb:ef:7b:c6:9c:12:a3:d9:93:b5:f6:95:00:fd:ca:8f:a8:24: 19:af:92:18:df:98:cd:8c:9a:f7:74:72:2a:96:82:f7:2e:2c: d4:8b:70:0d:17:75:af:69:d1:36:70:38:d9:75:0d:7f:a1:ee: 2b:5d:58:fe:91:af:c1:0f:ab:ee:f6:31:8c:07:24:3b:6e:b9: c1:06:33:d2:e2:fb:bc:83:f3:24:06:50:76:d2:1d:8c:0c:7a: b8:82:67:09:c7:48:97:10:c0:cd:28:6b:0d:bd:8a:21:c2:0c: 6e:ff:56:23:e8:0d:b1:cd:50:29:c4:97:88:71:37:62:44:fd: 65:9c:fe:fd:f0:19:78:5b:65:35:39:c5:b1:41:a7:7b:aa:f5: 0b:0c:8a:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M4MUMxMTAvBgNVBAUTKDNGM0IyRjVCM0JBRTUyQTZCNTY5MkNBRjkyQTI1NTRC MDZEQTg2M0QwHhcNMjUxMjIwMjIzMTE5WhcNMjUxMjI3MjIzMTE5WjAYMRYwFAYD VQQDDA02OTQ3MjNiNy1jYzcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAptTb8Q08+rHc9a3baGOgNqMkjGFNYxslTmLTFEb63Bx1zFhtbENmRgD5glMi P5tV2yKrqDTfHEBC7CAIMYdqhneuADcN4lJD/SiIrJQt3aFsL4DVbnVPzrY1Bk9v dPcNwiBKjwAFKkH8miDYmB/VPJVCb2Y3uHkEVK29/3fN+oQHnxfgoSnuutKGWhg3 9J04V4E9nC3Ga8gh++7apR/mIs9SNGex5ydn851U7cMiu+VXfLGmpA98FX1hrxNp TtXS3G5nuRENk7wH03zoMZNbM4Hmy1j5jvoJAsqGDCzg4xRLr6E2Ux0LmREg/gWE FD+mUnIFtcbGemmn7XYNGX9YjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOVZYP1L JxYvK/eFFjPUkNE3lwOpMB8GA1UdIwQYMBaAFD87L1s7rlKmtWksr5KiVUsG2oY9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzgxQy9EMTlBRUUzRUZG MTAxMUVCOUJEMTNENkNDNEY5QUUwMi9QenN2V3p1dVVxYTFhU3l2a3FKVlN3YmFo ajAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B6c3ZXenV1VXFhMWFTeXZrcUpWU3diYWhqMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzgxQy9EMTlBRUUzRUZGMTAxMUVCOUJEMTNENkNDNEY5QUUwMi9QenN2V3p1dVVx YTFhU3l2a3FKVlN3YmFoajAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/DWdydcS2rY9Emzn+CYJ05FdX2WekpSMRC7kC8Ggt/9wEsSxVZ5+Q lp/Helh9zqSwBPzpUlOyZUMilZOgGhGn6ZfqiFS/mgrWtkLEuya6c4c8rneYyP6P wAVNk/pyL3ovA2FsWPFMJChaRc/773vGnBKj2ZO19pUA/cqPqCQZr5IY35jNjJr3 dHIqloL3LizUi3ANF3WvadE2cDjZdQ1/oe4rXVj+ka/BD6vu9jGMByQ7brnBBjPS 4vu8g/MkBlB20h2MDHq4gmcJx0iXEMDNKGsNvYohwgxu/1Yj6A2xzVApxJeIcTdi RP1lnP798Bl4W2U1OcWxQad7qvULDIpE -----END CERTIFICATE-----Generated at Sun Dec 21 02:07:50 2025 by rpki-client