This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft File: PG7AmwlfpfUTYVEIpUR8rLcasaE.mft (raw, json) Hash identifier: WKPoVsk6MSMieCxm9oLp8xtsgDQ1nuLlKWn1bZit0Pk= Subject key identifier: F0:C9:8A:4D:32:F3:70:4E:00:85:63:69:AA:F5:57:8B:71:1C:EC:C1 Authority key identifier: 3C:6E:C0:9B:09:5F:A5:F5:13:61:51:08:A5:44:7C:AC:B7:1A:B1:A1 Certificate issuer: /CN=A917E4BA/serialNumber=3C6EC09B095FA5F513615108A5447CACB71AB1A1 Certificate serial: 0B20 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft Manifest number: 0B19 Signing time: Sat 06 Dec 2025 19:00:47 +0000 Manifest this update: Sat 06 Dec 2025 19:00:47 +0000 Manifest next update: Sat 13 Dec 2025 19:00:47 +0000 Files and hashes: 1: PG7AmwlfpfUTYVEIpUR8rLcasaE.crl (hash: hxxH8ORRVZqVImLheeSBgXdBUxIan+vmuf3FyuQvMk0=) 2: 66F91334ED4911ED9A90391BC4F9AE02.roa (hash: 20mwh4S1N9cV75zDwMEBAcXWu2kbD0NO7KHg8fUiIBs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.crl rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2848 (0xb20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E4BA, serialNumber=3C6EC09B095FA5F513615108A5447CACB71AB1A1 Validity Not Before: Dec 6 19:00:47 2025 GMT Not After : Dec 13 19:00:47 2025 GMT Subject: CN=69347d5f-f33e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:71:ea:7b:69:fb:64:aa:cc:78:96:a9:f5:a2: c3:f3:ff:7e:4e:74:74:01:5a:15:e3:70:ef:94:ac: 11:09:d0:b4:40:ad:bb:db:13:ea:3c:a5:67:1f:53: 43:67:27:90:d7:b3:b2:e8:e7:e9:68:18:af:4a:36: fe:92:51:b0:4b:f8:d0:d2:fb:0d:b3:96:1d:b9:2c: 0c:6e:75:e8:7e:d7:4d:06:b5:39:de:79:51:3c:f9: 9f:fa:d3:40:31:35:86:88:02:9e:86:7c:99:be:a5: 84:2e:35:67:8a:fd:26:1a:61:08:8d:e8:24:bb:9c: 88:09:bb:13:f2:2f:19:ff:91:77:d9:f8:f0:59:54: 1b:da:9a:3b:e6:43:ca:cb:cc:6a:29:ff:e4:17:9f: e6:12:bd:26:ea:7b:f4:0d:c7:bc:ab:4a:ac:75:ec: 25:f1:34:25:c2:4e:45:2e:d9:ed:30:09:5f:ba:7a: cb:35:ee:80:49:c3:71:2c:73:f7:0d:94:0d:bd:2c: c9:33:0a:b4:96:07:da:58:c6:76:8f:b4:6f:ee:a9: 0d:36:94:a4:84:40:d7:8f:c9:fc:65:6f:f3:3e:e4: a7:c9:44:8f:41:ee:0b:ce:d8:8f:80:83:2f:99:e4: 05:c0:a5:77:4c:b5:2f:b5:33:8b:cc:0b:a8:ed:8f: 14:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:C9:8A:4D:32:F3:70:4E:00:85:63:69:AA:F5:57:8B:71:1C:EC:C1 X509v3 Authority Key Identifier: keyid:3C:6E:C0:9B:09:5F:A5:F5:13:61:51:08:A5:44:7C:AC:B7:1A:B1:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:75:52:64:29:ef:14:91:99:52:45:b3:a9:ed:ba:c9:43:92: 8d:c8:3c:4f:72:b8:18:d3:4d:dc:a2:e4:0c:e1:3c:da:d1:1e: 07:63:19:ce:37:d5:2a:00:a1:43:9f:28:62:10:2d:8b:59:cf: 26:25:a9:a3:21:57:7d:13:ad:bf:aa:56:a8:02:50:cc:51:e5: 41:4f:9c:63:1f:ad:9e:c6:ac:07:e4:96:0f:e6:3e:21:b4:a5: d1:99:a7:8f:d6:95:16:69:19:44:12:1d:b7:e0:c5:07:39:2e: 69:24:2d:b9:f6:07:ff:3b:64:cf:04:90:91:7b:e8:b3:da:09: a0:7f:f2:88:0d:80:f7:25:46:3c:8d:28:d6:e6:1e:6e:ed:61: 13:2b:13:60:7c:9e:5c:f3:e7:08:64:77:fd:1f:8d:a8:ae:2c: 1c:21:bc:7d:80:60:e0:5b:ae:44:ba:27:60:42:6d:4f:be:b9: 54:a5:64:58:56:0e:2c:b9:5e:b7:68:39:91:fb:21:b1:52:9e: c0:02:c6:53:fb:27:c0:c4:e6:71:b9:c1:3e:4f:d3:c7:1c:3b: 3f:a4:90:1f:d8:cf:c3:4f:41:e4:9c:65:a9:fd:5c:2e:ba:4e: f7:6d:01:41:1d:06:dc:e5:6a:e2:15:c5:e1:11:9a:ef:ce:9c: 30:5e:75:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0QkExMTAvBgNVBAUTKDNDNkVDMDlCMDk1RkE1RjUxMzYxNTEwOEE1NDQ3Q0FD QjcxQUIxQTEwHhcNMjUxMjA2MTkwMDQ3WhcNMjUxMjEzMTkwMDQ3WjAYMRYwFAYD VQQDEw02OTM0N2Q1Zi1mMzNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4XHqe2n7ZKrMeJap9aLD8/9+TnR0AVoV43DvlKwRCdC0QK272xPqPKVnH1ND ZyeQ17Oy6OfpaBivSjb+klGwS/jQ0vsNs5YduSwMbnXoftdNBrU53nlRPPmf+tNA MTWGiAKehnyZvqWELjVniv0mGmEIjegku5yICbsT8i8Z/5F32fjwWVQb2po75kPK y8xqKf/kF5/mEr0m6nv0Dce8q0qsdewl8TQlwk5FLtntMAlfunrLNe6AScNxLHP3 DZQNvSzJMwq0lgfaWMZ2j7Rv7qkNNpSkhEDXj8n8ZW/zPuSnyUSPQe4LztiPgIMv meQFwKV3TLUvtTOLzAuo7Y8UGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPDJik0y 83BOAIVjaar1V4txHOzBMB8GA1UdIwQYMBaAFDxuwJsJX6X1E2FRCKVEfKy3GrGh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTRCQS9DOTUyQUM5RTUy REMxMUVBODI2MDFCMEZDNEY5QUUwMi9QRzdBbXdsZnBmVVRZVkVJcFVSOHJMY2Fz YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BHN0Ftd2xmcGZVVFlWRUlwVVI4ckxjYXNhRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTRCQS9DOTUyQUM5RTUyREMxMUVBODI2MDFCMEZDNEY5QUUwMi9QRzdBbXdsZnBm VVRZVkVJcFVSOHJMY2FzYUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBedVJkKe8UkZlSRbOp7brJQ5KNyDxPcrgY003couQM4Tza0R4HYxnO N9UqAKFDnyhiEC2LWc8mJamjIVd9E62/qlaoAlDMUeVBT5xjH62exqwH5JYP5j4h tKXRmaeP1pUWaRlEEh234MUHOS5pJC259gf/O2TPBJCRe+iz2gmgf/KIDYD3JUY8 jSjW5h5u7WETKxNgfJ5c8+cIZHf9H42oriwcIbx9gGDgW65EuidgQm1PvrlUpWRY Vg4suV63aDmR+yGxUp7AAsZT+yfAxOZxucE+T9PHHDs/pJAf2M/DT0HknGWp/Vwu uk73bQFBHQbc5WriFcXhEZrvzpwwXnVc -----END CERTIFICATE-----Generated at Sun Dec 7 01:53:57 2025 by rpki-client