This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft File: PdCVvno70d2CniomSfx-gafv40w.mft (raw, json) Hash identifier: Pd7hFb8bEk1UfRot1uTipqdpymqwQQ0gvX+EExhePt8= Subject key identifier: 7E:87:94:AE:CC:AC:DE:B8:E5:3C:42:8C:69:14:6D:51:30:29:0C:B1 Authority key identifier: 3D:D0:95:BE:7A:3B:D1:DD:82:9E:2A:26:49:FC:7E:81:A7:EF:E3:4C Certificate issuer: /CN=A91C8307/serialNumber=3DD095BE7A3BD1DD829E2A2649FC7E81A7EFE34C Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft Manifest number: B3 Signing time: Fri 05 Dec 2025 04:04:28 +0000 Manifest this update: Fri 05 Dec 2025 04:04:27 +0000 Manifest next update: Fri 12 Dec 2025 04:04:27 +0000 Files and hashes: 1: PdCVvno70d2CniomSfx-gafv40w.crl (hash: k7VGQOs/UN6Z5pW+nbDi/JVBFzAs0bbU1XK391hHFAE=) 2: DEDB3932BED411EF835BB47AC4F9AE02.roa (hash: O2sa7pTiQKdOhkw1Yh9cM+13JLJmRbo0IeSALJBybOk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.crl rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:04:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8307, serialNumber=3DD095BE7A3BD1DD829E2A2649FC7E81A7EFE34C Validity Not Before: Dec 5 04:04:27 2025 GMT Not After : Dec 12 04:04:27 2025 GMT Subject: CN=693259cb-80b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:77:2e:4f:b6:ff:2e:cf:98:0c:94:a6:79:35: 9c:05:12:4e:90:d2:c6:c3:ec:f6:d9:78:57:a9:ca: 30:ca:23:a5:12:29:84:00:34:c2:4b:ce:93:c2:fd: 0d:43:72:9d:ce:91:f2:c3:1d:57:10:ad:61:5c:e5: 11:08:3c:bc:d7:d0:a9:c8:ba:ed:9a:15:87:c6:d9: 22:48:16:ed:7f:05:c6:96:36:59:7b:b7:b2:f4:3a: f3:6a:cf:eb:25:7a:69:0c:3c:7a:6b:a0:1e:b2:36: c4:fe:c4:9e:d8:8f:23:30:7a:d2:da:35:f7:8b:8f: 85:ef:7f:96:8c:bc:0b:67:8a:a8:1b:fc:19:2a:35: e8:f5:7e:68:09:c9:1c:a2:33:74:d5:87:44:c9:3c: 7a:89:a6:27:ea:f6:b0:25:6b:ec:92:c4:69:6a:31: da:c2:1a:c4:e7:22:a1:8a:87:54:38:82:63:5f:08: 0b:c6:f3:c0:85:5b:34:0d:c9:3e:6f:40:58:dc:0a: 53:1c:ce:ab:00:eb:1f:5c:90:82:d5:fd:cf:14:59: 3c:f2:c9:24:86:f8:da:08:3e:b3:af:49:47:b5:27: dc:1f:98:91:fc:29:59:5f:6e:c5:64:10:df:26:45: 20:69:8e:70:9f:29:7b:44:95:3d:cc:2f:8e:2f:34: 9b:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:87:94:AE:CC:AC:DE:B8:E5:3C:42:8C:69:14:6D:51:30:29:0C:B1 X509v3 Authority Key Identifier: keyid:3D:D0:95:BE:7A:3B:D1:DD:82:9E:2A:26:49:FC:7E:81:A7:EF:E3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:84:43:3c:51:3f:1d:3c:ef:09:45:af:90:31:ec:75:93:0a: ec:9b:b6:44:fb:07:c0:e3:f8:8e:27:cc:fd:68:5f:6a:b7:f7: 1a:63:74:70:da:95:3d:41:c9:30:a7:bb:9c:25:2b:8f:17:f9: 69:19:60:d0:b1:05:1b:43:0f:82:eb:96:68:33:8b:26:f7:dd: e8:2a:5e:df:82:5c:87:5b:4c:c0:4e:b5:1d:cc:60:1b:88:8a: 33:49:23:d4:cb:32:e6:18:45:43:8e:d0:ac:f4:bf:77:40:03: 2a:85:49:64:d5:3e:ac:83:05:aa:48:1f:fa:4b:73:32:0e:47: 07:01:08:6c:e8:1d:d7:d8:68:e3:0b:03:8c:b6:52:d1:d8:6b: ef:ec:4b:38:53:91:71:9f:7b:03:77:c1:dd:57:27:5a:c4:ca: 87:36:9f:ec:7a:a9:84:0c:e9:e0:18:dc:5f:de:9d:e7:ca:56: a8:73:3f:93:72:74:6b:93:cd:65:80:97:7e:38:cd:40:4f:d8: 32:90:bc:a5:33:2c:fe:2e:76:85:f4:12:d3:33:57:de:7e:c1: d5:ca:05:f5:bf:9a:da:cd:bc:10:d0:c9:0e:89:b4:aa:d4:3d: 70:6a:6d:5b:0c:47:25:f8:97:40:a5:dd:42:ee:4e:4a:66:24: e9:8b:25:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgzMDcxMTAvBgNVBAUTKDNERDA5NUJFN0EzQkQxREQ4MjlFMkEyNjQ5RkM3RTgx QTdFRkUzNEMwHhcNMjUxMjA1MDQwNDI3WhcNMjUxMjEyMDQwNDI3WjAYMRYwFAYD VQQDEw02OTMyNTljYi04MGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXcuT7b/Ls+YDJSmeTWcBRJOkNLGw+z22XhXqcowyiOlEimEADTCS86Twv0N Q3KdzpHywx1XEK1hXOURCDy819CpyLrtmhWHxtkiSBbtfwXGljZZe7ey9Drzas/r JXppDDx6a6AesjbE/sSe2I8jMHrS2jX3i4+F73+WjLwLZ4qoG/wZKjXo9X5oCckc ojN01YdEyTx6iaYn6vawJWvsksRpajHawhrE5yKhiodUOIJjXwgLxvPAhVs0Dck+ b0BY3ApTHM6rAOsfXJCC1f3PFFk88skkhvjaCD6zr0lHtSfcH5iR/ClZX27FZBDf JkUgaY5wnyl7RJU9zC+OLzSbgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH6HlK7M rN645TxCjGkUbVEwKQyxMB8GA1UdIwQYMBaAFD3Qlb56O9Hdgp4qJkn8foGn7+NM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODMwNy8zNDMyRjYwQ0JF Q0QxMUVGOThDNzQxMzJDNEY5QUUwMi9QZENWdm5vNzBkMkNuaW9tU2Z4LWdhZnY0 MHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BkQ1Z2bm83MGQyQ25pb21TZngtZ2FmdjQwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODMwNy8zNDMyRjYwQ0JFQ0QxMUVGOThDNzQxMzJDNEY5QUUwMi9QZENWdm5vNzBk MkNuaW9tU2Z4LWdhZnY0MHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjhEM8UT8dPO8JRa+QMex1kwrsm7ZE+wfA4/iOJ8z9aF9qt/caY3Rw 2pU9Qckwp7ucJSuPF/lpGWDQsQUbQw+C65ZoM4sm993oKl7fglyHW0zATrUdzGAb iIozSSPUyzLmGEVDjtCs9L93QAMqhUlk1T6sgwWqSB/6S3MyDkcHAQhs6B3X2Gjj CwOMtlLR2Gvv7Es4U5Fxn3sDd8HdVydaxMqHNp/seqmEDOngGNxf3p3nylaocz+T cnRrk81lgJd+OM1AT9gykLylMyz+LnaF9BLTM1fefsHVygX1v5razbwQ0MkOibSq 1D1wam1bDEcl+JdApd1C7k5KZiTpiyVe -----END CERTIFICATE-----Generated at Sat Dec 6 13:56:13 2025 by rpki-client