This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft File: PgzfiCrujHIh1YijxSYBjh1kyWg.mft (raw, json) Hash identifier: z2YsRor5NjAU8FCPYRdjq8zLku+A1HTCKu/ck6XIVHY= Subject key identifier: 3A:C3:BF:8D:15:9F:E0:53:14:27:9D:E1:B7:D1:6E:2A:1A:B6:D0:F8 Authority key identifier: 3E:0C:DF:88:2A:EE:8C:72:21:D5:88:A3:C5:26:01:8E:1D:64:C9:68 Certificate issuer: /CN=A91CED30/serialNumber=3E0CDF882AEE8C7221D588A3C526018E1D64C968 Certificate serial: 0169 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft Manifest number: 0166 Signing time: Fri 05 Dec 2025 02:07:12 +0000 Manifest this update: Fri 05 Dec 2025 02:07:12 +0000 Manifest next update: Fri 12 Dec 2025 02:07:12 +0000 Files and hashes: 1: PgzfiCrujHIh1YijxSYBjh1kyWg.crl (hash: +AvDbWKlr0evohR7fV6aUJIY8wJ6pHTsyiSOQ4gAw+Q=) 2: 41E0B402AE1F11EE96A5C977C4F9AE02.roa (hash: 92n4boJHjJIj9KtZ2gabfQc0rIkNAgV+GGdiupr7NM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.crl rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:07:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 361 (0x169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CED30, serialNumber=3E0CDF882AEE8C7221D588A3C526018E1D64C968 Validity Not Before: Dec 5 02:07:12 2025 GMT Not After : Dec 12 02:07:12 2025 GMT Subject: CN=69323e50-d3ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:85:d9:19:e0:ea:85:da:96:bc:6a:77:61:b2: bf:71:b0:78:57:30:48:f1:ee:51:94:c9:22:09:28: 1f:16:b7:5c:12:66:bf:2a:74:51:af:da:5d:26:09: 66:31:c6:63:0c:64:35:ba:41:0f:c0:ae:a9:77:f3: af:7f:dc:80:4c:59:ef:86:b3:d0:37:86:9c:b5:61: 18:e4:be:af:a9:25:9a:2b:16:ea:99:75:90:f3:d5: 19:f5:9e:c5:e1:b6:73:a1:86:40:cc:29:36:2b:44: 09:4c:fd:21:06:38:a0:0c:9a:d5:b2:2c:6d:ca:81: e9:33:62:e1:54:7a:b3:97:39:81:b3:b5:a2:46:20: f5:d7:a3:62:ee:a9:5a:11:75:16:d0:53:e3:3d:8f: e6:03:9a:70:b4:f9:22:e7:18:43:31:fe:3b:9e:db: c4:8b:fd:c8:27:d9:92:1c:bc:35:7f:6a:34:98:fe: 71:6b:69:56:df:89:e5:e0:b0:56:95:c0:40:1b:9b: 7e:6b:ec:7a:57:b2:7c:bf:53:a6:06:a5:a7:f3:44: b0:cc:46:f2:1f:59:4a:45:1e:6a:c2:5c:8f:66:a9: 26:85:71:d5:50:0c:a4:00:94:79:a9:89:01:8f:87: 6a:4c:65:ae:c5:2a:44:f8:d5:3e:98:6c:9b:88:5a: 01:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:C3:BF:8D:15:9F:E0:53:14:27:9D:E1:B7:D1:6E:2A:1A:B6:D0:F8 X509v3 Authority Key Identifier: keyid:3E:0C:DF:88:2A:EE:8C:72:21:D5:88:A3:C5:26:01:8E:1D:64:C9:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:9f:63:67:37:fa:cc:16:12:cb:f9:93:d3:26:41:d1:b8:96: 40:ff:a4:a0:15:85:65:6b:bc:6f:54:2d:ed:53:9e:2e:fe:08: 58:72:a9:13:e4:86:3e:f8:e9:f5:e0:93:7d:fe:ce:6d:66:0e: 49:f0:d9:dc:20:25:69:7f:9e:99:21:71:3f:ac:b4:04:31:aa: c3:1e:54:83:26:83:3c:19:a6:aa:46:60:c6:37:45:d3:05:00: ec:e6:59:44:70:16:05:d4:ee:ea:11:ff:80:8e:2a:90:99:3e: 0b:d6:da:77:c7:08:fb:8b:3d:64:d0:00:4a:da:1d:00:2e:5e: de:db:69:18:ce:43:89:a5:1f:1c:4e:05:d8:32:0d:66:0b:58: 7d:9e:21:0c:4b:ef:4a:ea:a5:25:73:89:8a:38:aa:c8:33:80: 45:09:cb:28:c2:3e:77:e1:46:5c:ef:9b:61:ae:36:e0:2d:55: e7:d5:8f:ce:b0:75:b2:1f:d4:ed:0c:32:5a:b7:fc:b1:1e:95: 89:e5:36:09:07:89:da:d2:4e:90:e5:a9:f7:7c:7c:59:c2:3a: 1b:66:25:c8:58:d2:42:bb:af:ba:f9:17:19:2f:94:58:92:f6: 4a:23:bb:27:84:7d:26:57:a2:63:42:a5:5a:da:2c:a2:d9:a2: 4d:af:da:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VEMzAxMTAvBgNVBAUTKDNFMENERjg4MkFFRThDNzIyMUQ1ODhBM0M1MjYwMThF MUQ2NEM5NjgwHhcNMjUxMjA1MDIwNzEyWhcNMjUxMjEyMDIwNzEyWjAYMRYwFAYD VQQDEw02OTMyM2U1MC1kM2FiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3IXZGeDqhdqWvGp3YbK/cbB4VzBI8e5RlMkiCSgfFrdcEma/KnRRr9pdJglm McZjDGQ1ukEPwK6pd/Ovf9yATFnvhrPQN4actWEY5L6vqSWaKxbqmXWQ89UZ9Z7F 4bZzoYZAzCk2K0QJTP0hBjigDJrVsixtyoHpM2LhVHqzlzmBs7WiRiD116Ni7qla EXUW0FPjPY/mA5pwtPki5xhDMf47ntvEi/3IJ9mSHLw1f2o0mP5xa2lW34nl4LBW lcBAG5t+a+x6V7J8v1OmBqWn80SwzEbyH1lKRR5qwlyPZqkmhXHVUAykAJR5qYkB j4dqTGWuxSpE+NU+mGybiFoBdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDrDv40V n+BTFCed4bfRbioattD4MB8GA1UdIwQYMBaAFD4M34gq7oxyIdWIo8UmAY4dZMlo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUQzMC9CRTgwQzZBNkFF MUUxMUVFQTdFQTBBNzdDNEY5QUUwMi9QZ3pmaUNydWpISWgxWWlqeFNZQmpoMWt5 V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BnemZpQ3J1akhJaDFZaWp4U1lCamgxa3lXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUQzMC9CRTgwQzZBNkFFMUUxMUVFQTdFQTBBNzdDNEY5QUUwMi9QZ3pmaUNydWpI SWgxWWlqeFNZQmpoMWt5V2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZn2NnN/rMFhLL+ZPTJkHRuJZA/6SgFYVla7xvVC3tU54u/ghYcqkT 5IY++On14JN9/s5tZg5J8NncICVpf56ZIXE/rLQEMarDHlSDJoM8GaaqRmDGN0XT BQDs5llEcBYF1O7qEf+AjiqQmT4L1tp3xwj7iz1k0ABK2h0ALl7e22kYzkOJpR8c TgXYMg1mC1h9niEMS+9K6qUlc4mKOKrIM4BFCcsowj534UZc75thrjbgLVXn1Y/O sHWyH9TtDDJat/yxHpWJ5TYJB4na0k6Q5an3fHxZwjobZiXIWNJCu6+6+RcZL5RY kvZKI7snhH0mV6JjQqVa2iyi2aJNr9oY -----END CERTIFICATE-----Generated at Sat Dec 6 22:46:20 2025 by rpki-client