This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9196D24/550E27F21DA411E28C533B9A08B02CD2/Psg0IE1rqvmRQMA712IRRcB7umI.mft File: Psg0IE1rqvmRQMA712IRRcB7umI.mft (raw, json) Hash identifier: LTjHArR0MYH9wEhU+eFi//vBhL4wTCw4fJdkwI6ygTI= Subject key identifier: 05:7E:8C:03:9D:37:28:5F:51:B4:20:B8:9B:21:97:44:CB:C8:70:0C Authority key identifier: 3E:C8:34:20:4D:6B:AA:F9:91:40:C0:3B:D7:62:11:45:C0:7B:BA:62 Certificate issuer: /CN=A9196D24/serialNumber=3EC834204D6BAAF99140C03BD7621145C07BBA62 Certificate serial: 34FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psg0IE1rqvmRQMA712IRRcB7umI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196D24/550E27F21DA411E28C533B9A08B02CD2/Psg0IE1rqvmRQMA712IRRcB7umI.mft Manifest number: 34EE Signing time: Thu 04 Dec 2025 14:58:45 +0000 Manifest this update: Thu 04 Dec 2025 14:58:44 +0000 Manifest next update: Thu 11 Dec 2025 14:58:44 +0000 Files and hashes: 1: Psg0IE1rqvmRQMA712IRRcB7umI.crl (hash: OxdqSu4XO6OyRyu9I3ZptHZMcTCLGWwkNt+t9DW9VgI=) 2: E7DDE5B8682811EB8D635520C4F9AE02.roa (hash: JPpUiaz8as6ncagKgyuUXaP5ZRdmrTGzakjmAvPZHY0=) 3: E73006AA682811EB8D635520C4F9AE02.roa (hash: 3dh9yLLZm2+U6xobWuHKGIC0VGl5iGyZmQBPzOFbKDA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196D24/550E27F21DA411E28C533B9A08B02CD2/Psg0IE1rqvmRQMA712IRRcB7umI.crl rsync://rpki.apnic.net/member_repository/A9196D24/550E27F21DA411E28C533B9A08B02CD2/Psg0IE1rqvmRQMA712IRRcB7umI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psg0IE1rqvmRQMA712IRRcB7umI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 14:58:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13565 (0x34fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196D24, serialNumber=3EC834204D6BAAF99140C03BD7621145C07BBA62 Validity Not Before: Dec 4 14:58:44 2025 GMT Not After : Dec 11 14:58:44 2025 GMT Subject: CN=6931a1a4-decb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:cb:e2:3b:60:22:87:6f:36:18:76:3f:d2:35: f8:91:5f:fc:e2:d0:c3:f7:80:cd:f6:13:12:70:ae: a3:79:c6:d7:0f:0b:47:59:f3:8d:8d:99:1f:37:cf: 7f:86:08:d3:3c:29:cc:8b:17:07:52:b1:34:8b:8e: 42:f5:14:fe:bd:42:92:a9:a8:70:a9:af:18:fb:bc: 53:18:cd:84:de:6e:aa:58:c1:14:8e:56:9b:5e:c1: 81:9e:87:a9:7b:84:4b:45:41:8b:7c:0b:88:7a:44: f4:e1:55:a4:a2:38:ea:b1:e0:c0:8e:2c:a4:26:91: b1:d7:08:04:28:92:11:cf:08:57:20:0d:69:59:42: 45:61:cc:ef:aa:ba:18:dd:1f:18:cc:ba:dc:a5:f6: 20:40:f1:1a:68:6f:cc:eb:5b:fe:fc:b4:51:6e:24: b5:81:0d:5d:c5:63:84:4d:7d:ec:d3:d9:2d:e3:0c: 47:cb:1d:3f:f5:46:d5:30:90:89:bf:89:34:7e:df: 8d:0a:70:69:15:fd:aa:af:bc:41:1e:ee:54:e6:a2: a9:45:14:73:df:1b:a7:db:9c:6c:0e:48:b8:b1:06: bb:13:f2:8b:6d:00:c4:90:ae:e5:38:c3:ef:11:20: 1f:c4:88:c8:ce:bd:07:a5:cb:87:43:16:4f:7c:a5: 23:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:7E:8C:03:9D:37:28:5F:51:B4:20:B8:9B:21:97:44:CB:C8:70:0C X509v3 Authority Key Identifier: keyid:3E:C8:34:20:4D:6B:AA:F9:91:40:C0:3B:D7:62:11:45:C0:7B:BA:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196D24/550E27F21DA411E28C533B9A08B02CD2/Psg0IE1rqvmRQMA712IRRcB7umI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psg0IE1rqvmRQMA712IRRcB7umI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196D24/550E27F21DA411E28C533B9A08B02CD2/Psg0IE1rqvmRQMA712IRRcB7umI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:1f:ce:76:c1:b9:c4:d2:6a:ad:11:7d:e1:59:0f:32:0d:75: 65:22:2b:7e:8b:8c:e1:45:80:2f:f2:cc:90:b0:56:b5:80:18: 0b:e2:f9:46:99:76:4c:9e:ce:d9:fa:d6:c2:28:13:15:b4:41: 99:98:ab:00:a8:b6:f2:aa:04:b1:c2:cc:2c:06:f2:d8:18:5c: c4:78:25:c2:39:8e:1c:ee:b8:ca:cc:fc:99:5a:98:1a:4a:e9: 35:14:bb:d5:84:d1:30:0b:98:22:37:9f:83:88:07:d6:0c:c4: f0:bf:f1:77:70:3d:b8:c3:e9:ab:ad:f9:e1:f0:7f:f4:53:ba: 08:10:88:bf:02:c9:9f:b9:44:88:5e:a4:2e:82:0c:da:95:f6: b5:4c:7d:a2:e4:07:4d:65:55:b0:7f:c2:9e:f6:10:bb:66:ad: 59:82:f9:c9:e0:cd:30:78:d5:d1:f0:c6:ef:e1:bc:53:f4:c7: 1d:a6:8c:49:52:62:80:07:12:4e:d9:1c:b2:a0:57:36:dd:5d: a9:61:a4:02:54:4c:9c:8c:eb:e2:e5:65:85:ec:57:86:23:52: 9f:96:c1:12:25:a6:0d:0d:05:9f:dd:52:b1:7b:d8:4c:3f:e2: 96:d5:e5:c6:3b:a6:8f:95:42:6e:8d:d8:81:91:86:32:ee:12: c3:6f:31:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZEMjQxMTAvBgNVBAUTKDNFQzgzNDIwNEQ2QkFBRjk5MTQwQzAzQkQ3NjIxMTQ1 QzA3QkJBNjIwHhcNMjUxMjA0MTQ1ODQ0WhcNMjUxMjExMTQ1ODQ0WjAYMRYwFAYD VQQDEw02OTMxYTFhNC1kZWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8viO2Aih282GHY/0jX4kV/84tDD94DN9hMScK6jecbXDwtHWfONjZkfN89/ hgjTPCnMixcHUrE0i45C9RT+vUKSqahwqa8Y+7xTGM2E3m6qWMEUjlabXsGBnoep e4RLRUGLfAuIekT04VWkojjqseDAjiykJpGx1wgEKJIRzwhXIA1pWUJFYczvqroY 3R8YzLrcpfYgQPEaaG/M61v+/LRRbiS1gQ1dxWOETX3s09kt4wxHyx0/9UbVMJCJ v4k0ft+NCnBpFf2qr7xBHu5U5qKpRRRz3xun25xsDki4sQa7E/KLbQDEkK7lOMPv ESAfxIjIzr0HpcuHQxZPfKUjOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAV+jAOd NyhfUbQguJshl0TLyHAMMB8GA1UdIwQYMBaAFD7INCBNa6r5kUDAO9diEUXAe7pi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkQyNC81NTBFMjdGMjFE QTQxMUUyOEM1MzNCOUEwOEIwMkNEMi9Qc2cwSUUxcnF2bVJRTUE3MTJJUlJjQjd1 bUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BzZzBJRTFycXZtUlFNQTcxMklSUmNCN3VtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkQyNC81NTBFMjdGMjFEQTQxMUUyOEM1MzNCOUEwOEIwMkNEMi9Qc2cwSUUxcnF2 bVJRTUE3MTJJUlJjQjd1bUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKH852wbnE0mqtEX3hWQ8yDXVlIit+i4zhRYAv8syQsFa1gBgL4vlG mXZMns7Z+tbCKBMVtEGZmKsAqLbyqgSxwswsBvLYGFzEeCXCOY4c7rjKzPyZWpga Suk1FLvVhNEwC5giN5+DiAfWDMTwv/F3cD24w+mrrfnh8H/0U7oIEIi/AsmfuUSI XqQuggzalfa1TH2i5AdNZVWwf8Ke9hC7Zq1ZgvnJ4M0weNXR8Mbv4bxT9McdpoxJ UmKABxJO2RyyoFc23V2pYaQCVEycjOvi5WWF7FeGI1KflsESJaYNDQWf3VKxe9hM P+KW1eXGO6aPlUJujdiBkYYy7hLDbzEa -----END CERTIFICATE-----Generated at Sat Dec 6 12:15:02 2025 by rpki-client