This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft File: pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft (raw, json) Hash identifier: 4iLNhlL0cq6KTVGzavXgleF9ie/uvJ5vUg1M7fpqnHw= Subject key identifier: 4E:C6:DB:EB:5B:D2:97:C6:25:C3:8D:46:35:31:75:22:E5:04:26:02 Authority key identifier: A6:74:C6:70:1E:2B:0C:E3:D1:07:E9:F2:36:C5:5C:EF:E6:87:68:F1 Certificate issuer: /CN=A91DD902/serialNumber=A674C6701E2B0CE3D107E9F236C55CEFE68768F1 Certificate serial: 01FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft Manifest number: 01FB Signing time: Fri 05 Dec 2025 00:45:28 +0000 Manifest this update: Fri 05 Dec 2025 00:45:27 +0000 Manifest next update: Fri 12 Dec 2025 00:45:27 +0000 Files and hashes: 1: pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl (hash: VMRgys2kruatTEzjZU97qJcmsinJATScVGO7snC/KUg=) 2: 33A48584C92911EDAE3AB84EC4F9AE02.roa (hash: FLrBHslp5iyCkfQbrVJ9NSbQz6e94p5SbxYxtxyABAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 511 (0x1ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD902, serialNumber=A674C6701E2B0CE3D107E9F236C55CEFE68768F1 Validity Not Before: Dec 5 00:45:27 2025 GMT Not After : Dec 12 00:45:27 2025 GMT Subject: CN=69322b28-f37b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:cb:be:45:62:a0:38:59:e4:52:3b:96:75:51: 53:5a:b5:b2:db:d4:82:67:64:23:75:56:ee:4f:23: bc:52:47:63:63:b7:f9:9f:e1:6f:2f:13:2a:81:df: 22:6f:5c:10:15:9a:18:22:0e:be:bc:cf:7f:f7:27: 7f:bb:b0:ef:21:48:f3:0c:ef:87:41:66:4d:83:5a: b5:6c:92:b8:a3:d3:6a:60:a1:81:d7:7f:6e:4f:4c: e4:24:b6:e6:27:68:36:29:46:cc:80:59:32:9d:eb: 99:82:e1:44:fe:75:04:f1:a1:f4:d5:ac:33:e4:80: 74:e6:55:3d:1f:f0:0e:92:02:a3:42:46:d9:65:bb: 04:88:31:87:dd:9f:c0:20:79:44:13:ba:43:d4:12: f0:8d:88:18:f7:11:ed:29:04:37:49:45:6f:6a:73: 3c:d2:24:ef:6d:7c:b9:ad:54:2c:3c:9c:e3:12:43: 50:bd:59:60:00:ec:09:62:86:ae:68:fa:70:96:b3: 5a:f8:93:ec:17:b9:c6:e6:a1:8b:f9:fe:d8:05:42: 77:a3:99:72:a6:ae:24:f4:96:a0:3c:87:da:2c:aa: 27:47:af:d0:e5:9a:8b:9c:85:9c:65:40:61:88:ea: 18:b0:3c:08:0a:9a:fd:82:4e:f4:57:27:02:73:ec: 15:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:C6:DB:EB:5B:D2:97:C6:25:C3:8D:46:35:31:75:22:E5:04:26:02 X509v3 Authority Key Identifier: keyid:A6:74:C6:70:1E:2B:0C:E3:D1:07:E9:F2:36:C5:5C:EF:E6:87:68:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:03:54:30:75:6b:6a:a0:91:26:ff:83:97:56:7d:56:35:67: 18:b0:33:3b:dc:74:97:51:21:0c:09:d9:9d:a4:af:c1:4f:e7: 93:f9:74:73:a4:d7:8b:b3:0c:9a:56:0b:49:50:ab:59:b0:a5: 34:35:bc:79:d4:19:86:cd:14:a3:b1:fa:00:fb:c3:12:32:5e: b7:28:32:e0:96:a1:24:5f:68:38:cf:2b:f3:5d:77:80:92:df: f7:1f:3a:22:98:45:fd:60:4f:6e:e7:45:28:85:41:22:28:ac: 28:4b:16:8e:0b:30:aa:c5:64:01:a0:eb:a7:d9:0d:09:37:52: 22:e2:8d:c9:f6:52:d3:28:ef:29:96:07:e1:bd:ee:b9:3a:e7: a0:93:37:98:05:3e:c9:b8:22:5b:93:2f:71:c8:4b:af:09:e9: 5f:dd:26:70:a2:48:2c:07:d6:6d:70:39:ab:9e:ad:c4:7e:7b: e4:77:7c:55:c1:d0:ae:17:69:4b:05:ee:eb:d0:40:95:fc:c4: 4d:92:1f:29:4a:3f:98:10:e3:ac:eb:76:0d:a5:d7:0a:35:80: c6:57:be:32:f4:01:16:f8:3d:1b:c2:17:76:1b:7a:56:09:9e: 9e:3c:45:f0:ba:94:cc:23:4a:24:28:a3:60:cd:00:cc:ce:0c: 43:14:e6:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ5MDIxMTAvBgNVBAUTKEE2NzRDNjcwMUUyQjBDRTNEMTA3RTlGMjM2QzU1Q0VG RTY4NzY4RjEwHhcNMjUxMjA1MDA0NTI3WhcNMjUxMjEyMDA0NTI3WjAYMRYwFAYD VQQDEw02OTMyMmIyOC1mMzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMu+RWKgOFnkUjuWdVFTWrWy29SCZ2QjdVbuTyO8UkdjY7f5n+FvLxMqgd8i b1wQFZoYIg6+vM9/9yd/u7DvIUjzDO+HQWZNg1q1bJK4o9NqYKGB139uT0zkJLbm J2g2KUbMgFkyneuZguFE/nUE8aH01awz5IB05lU9H/AOkgKjQkbZZbsEiDGH3Z/A IHlEE7pD1BLwjYgY9xHtKQQ3SUVvanM80iTvbXy5rVQsPJzjEkNQvVlgAOwJYoau aPpwlrNa+JPsF7nG5qGL+f7YBUJ3o5lypq4k9JagPIfaLKonR6/Q5ZqLnIWcZUBh iOoYsDwICpr9gk70VycCc+wVRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE7G2+tb 0pfGJcONRjUxdSLlBCYCMB8GA1UdIwQYMBaAFKZ0xnAeKwzj0Qfp8jbFXO/mh2jx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDkwMi81NzBCM0Y4RUM5 MjYxMUVEQUYyQjlENERDNEY5QUUwMi9wblRHY0I0ckRPUFJCLW55TnNWYzctYUhh UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BuVEdjQjRyRE9QUkItbnlOc1ZjNy1hSGFQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDkwMi81NzBCM0Y4RUM5MjYxMUVEQUYyQjlENERDNEY5QUUwMi9wblRHY0I0ckRP UFJCLW55TnNWYzctYUhhUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOA1QwdWtqoJEm/4OXVn1WNWcYsDM73HSXUSEMCdmdpK/BT+eT+XRz pNeLswyaVgtJUKtZsKU0Nbx51BmGzRSjsfoA+8MSMl63KDLglqEkX2g4zyvzXXeA kt/3HzoimEX9YE9u50UohUEiKKwoSxaOCzCqxWQBoOun2Q0JN1Ii4o3J9lLTKO8p lgfhve65OuegkzeYBT7JuCJbky9xyEuvCelf3SZwokgsB9ZtcDmrnq3Efnvkd3xV wdCuF2lLBe7r0ECV/MRNkh8pSj+YEOOs63YNpdcKNYDGV74y9AEW+D0bwhd2G3pW CZ6ePEXwupTMI0okKKNgzQDMzgxDFObC -----END CERTIFICATE-----Generated at Sat Dec 6 14:48:12 2025 by rpki-client