This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft File: PB_di6MB3OPbPwvMJchpTOG83H0.mft (raw, json) Hash identifier: 9Oam8bAY4Y+bEZdGbXnZaX3RYrt8ejPbLwHyO0L5BEs= Subject key identifier: E2:2D:34:08:6D:F7:AB:18:41:A9:75:BA:BD:C3:95:2E:E9:9A:6E:B3 Authority key identifier: 3C:1F:DD:8B:A3:01:DC:E3:DB:3F:0B:CC:25:C8:69:4C:E1:BC:DC:7D Certificate issuer: /CN=A91A08FD/serialNumber=3C1FDD8BA301DCE3DB3F0BCC25C8694CE1BCDC7D Certificate serial: 0DE2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft Manifest number: 0DD8 Signing time: Thu 04 Dec 2025 17:24:12 +0000 Manifest this update: Thu 04 Dec 2025 17:24:12 +0000 Manifest next update: Thu 11 Dec 2025 17:24:12 +0000 Files and hashes: 1: PB_di6MB3OPbPwvMJchpTOG83H0.crl (hash: 5FNJQk3U82J8zNDBYfxVZxrPEu2GNiwiRMyQBek8nug=) 2: 3802A98EC8AC11E9877DCE2FC4F9AE02.roa (hash: 5AhgINS9PwniKFtC6UdMhxxWx5F0pu9QmvKHh6K5mSA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.crl rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 17:24:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3554 (0xde2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A08FD, serialNumber=3C1FDD8BA301DCE3DB3F0BCC25C8694CE1BCDC7D Validity Not Before: Dec 4 17:24:12 2025 GMT Not After : Dec 11 17:24:12 2025 GMT Subject: CN=6931c3bc-1620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1b:a9:45:8a:90:77:9a:7d:c1:20:2a:b4:59: 3f:71:15:d9:7d:71:4c:70:c4:45:cf:96:c5:ab:a0: 8b:30:5c:c3:d8:1c:4c:d8:b9:ac:9c:4e:77:f9:a8: 53:eb:3d:51:42:78:79:2c:0a:ef:fb:96:54:12:02: b7:46:0c:d5:1b:b1:97:93:2d:3c:14:a9:ac:95:f6: 66:f0:e4:8a:49:c9:ca:ae:aa:09:82:7f:3a:45:e9: 61:a0:ee:2c:2b:e7:5a:62:0e:db:9f:d6:00:b9:97: 36:38:59:a1:72:30:ae:17:73:47:87:8d:58:8c:29: 45:03:d2:3d:43:91:7e:6f:cc:90:3f:69:f7:6f:5a: 4d:8c:47:d4:27:c4:8b:2d:93:3f:da:db:46:1e:94: 68:b8:5f:95:75:7a:3a:00:7d:4b:4b:f0:83:fa:bd: 1b:99:1a:67:76:b3:9a:69:f8:2a:1e:fb:1a:47:00: 69:32:e7:1c:fa:bc:c5:c1:93:3f:9e:56:bb:13:69: b7:e0:bb:0a:17:be:52:4b:a7:8e:61:8c:01:54:97: 87:36:61:1b:8a:e4:ed:40:a9:35:ec:61:e0:17:86: 87:09:50:ad:f0:f0:0d:27:35:75:a0:a3:36:79:50: 7a:0b:fd:40:d4:42:bd:4d:f0:cb:d8:8d:cc:92:37: 3f:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:2D:34:08:6D:F7:AB:18:41:A9:75:BA:BD:C3:95:2E:E9:9A:6E:B3 X509v3 Authority Key Identifier: keyid:3C:1F:DD:8B:A3:01:DC:E3:DB:3F:0B:CC:25:C8:69:4C:E1:BC:DC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:3e:c4:cf:dd:47:8f:41:bd:47:42:0d:c2:40:8a:c0:4b:08: dc:95:ae:61:05:cd:5d:bf:45:c0:ae:7e:e9:4b:b4:b2:f1:c9: 82:75:5e:5a:7c:03:94:af:2b:72:9f:2c:1c:c0:0a:26:58:7e: 4c:8d:02:d6:48:e9:38:6a:2d:0d:dd:2e:7b:17:a7:82:f3:ff: 4b:e7:d7:65:77:1b:e9:c5:a3:64:1a:e7:97:9d:b5:4d:d8:4d: b9:c2:e0:dc:9b:38:63:86:e3:fd:de:8c:14:21:4e:3c:97:90: 6c:40:98:93:5f:59:55:bf:36:c3:b0:25:35:cc:c4:cc:a3:a7: e9:a1:75:b7:d2:22:3f:43:dd:da:1f:20:5e:ec:84:2d:f0:7e: 35:77:bc:ea:2a:04:e5:64:5b:65:5a:c9:76:89:d8:7c:0d:de: e2:cd:c1:da:e0:7b:a7:e0:27:82:0f:cc:60:7a:c8:4a:04:36: b3:af:b1:12:61:9c:a9:e0:66:3a:43:a7:c5:cd:f7:6a:f0:3d: e4:6d:7c:02:0e:cf:77:d4:dc:6c:71:c3:82:0e:d3:91:22:85: 9d:2e:22:41:40:f6:22:dd:87:b4:a8:ba:94:d8:5f:b9:2b:f3: a4:3f:0d:53:a9:63:4c:01:e5:72:e1:95:0e:27:db:f0:25:47: 37:d2:4a:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4RkQxMTAvBgNVBAUTKDNDMUZERDhCQTMwMURDRTNEQjNGMEJDQzI1Qzg2OTRD RTFCQ0RDN0QwHhcNMjUxMjA0MTcyNDEyWhcNMjUxMjExMTcyNDEyWjAYMRYwFAYD VQQDEw02OTMxYzNiYy0xNjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzRupRYqQd5p9wSAqtFk/cRXZfXFMcMRFz5bFq6CLMFzD2BxM2LmsnE53+ahT 6z1RQnh5LArv+5ZUEgK3RgzVG7GXky08FKmslfZm8OSKScnKrqoJgn86RelhoO4s K+daYg7bn9YAuZc2OFmhcjCuF3NHh41YjClFA9I9Q5F+b8yQP2n3b1pNjEfUJ8SL LZM/2ttGHpRouF+VdXo6AH1LS/CD+r0bmRpndrOaafgqHvsaRwBpMucc+rzFwZM/ nla7E2m34LsKF75SS6eOYYwBVJeHNmEbiuTtQKk17GHgF4aHCVCt8PANJzV1oKM2 eVB6C/1A1EK9TfDL2I3Mkjc/cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOItNAht 96sYQal1ur3DlS7pmm6zMB8GA1UdIwQYMBaAFDwf3YujAdzj2z8LzCXIaUzhvNx9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDhGRC85RjQyRUFEOEM4 QUIxMUU5ODI5RDI4MkZDNEY5QUUwMi9QQl9kaTZNQjNPUGJQd3ZNSmNocFRPRzgz SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BCX2RpNk1CM09QYlB3dk1KY2hwVE9HODNIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDhGRC85RjQyRUFEOEM4QUIxMUU5ODI5RDI4MkZDNEY5QUUwMi9QQl9kaTZNQjNP UGJQd3ZNSmNocFRPRzgzSDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6PsTP3UePQb1HQg3CQIrASwjcla5hBc1dv0XArn7pS7Sy8cmCdV5a fAOUrytynywcwAomWH5MjQLWSOk4ai0N3S57F6eC8/9L59dldxvpxaNkGueXnbVN 2E25wuDcmzhjhuP93owUIU48l5BsQJiTX1lVvzbDsCU1zMTMo6fpoXW30iI/Q93a HyBe7IQt8H41d7zqKgTlZFtlWsl2idh8Dd7izcHa4Hun4CeCD8xgeshKBDazr7ES YZyp4GY6Q6fFzfdq8D3kbXwCDs931NxsccOCDtORIoWdLiJBQPYi3Ye0qLqU2F+5 K/OkPw1TqWNMAeVy4ZUOJ9vwJUc30kox -----END CERTIFICATE-----Generated at Sat Dec 6 12:09:36 2025 by rpki-client