This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.mft File: PQaSnY1eH2juI-yj-UjP96LklbM.mft (raw, json) Hash identifier: MR8SifPAvOG/55hjMO9oNiVqDMmLyjBvCCWtcwCBVIg= Subject key identifier: 0B:B6:56:EB:4C:6D:6E:44:F7:80:E2:A7:1F:CF:67:9D:CB:60:2E:84 Authority key identifier: 3D:06:92:9D:8D:5E:1F:68:EE:23:EC:A3:F9:48:CF:F7:A2:E4:95:B3 Certificate issuer: /CN=A91DDCD9/serialNumber=3D06929D8D5E1F68EE23ECA3F948CFF7A2E495B3 Certificate serial: 1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQaSnY1eH2juI-yj-UjP96LklbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.mft Manifest number: 0B57 Signing time: Sat 06 Dec 2025 18:32:32 +0000 Manifest this update: Sat 06 Dec 2025 18:32:32 +0000 Manifest next update: Sat 13 Dec 2025 18:32:32 +0000 Files and hashes: 1: PQaSnY1eH2juI-yj-UjP96LklbM.crl (hash: KSbMiLF8ANzzDEw76gT6gWgMSiayl8jatvOMfyctUw4=) 2: 4140D222AB0511F0AD64C814C4F9AE02.roa (hash: OQA1xcKI/hiAbUi76rdd20yEjY2R6araSSWLUXcKQG8=) 3: 41D7A1D4AB0511F0AD64C814C4F9AE02.roa (hash: rmQtPBzLnmMnKWqEbpn/ZFyPKybx/x0dYiK1HD1kfdo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.crl rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQaSnY1eH2juI-yj-UjP96LklbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 18:32:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDCD9, serialNumber=3D06929D8D5E1F68EE23ECA3F948CFF7A2E495B3 Validity Not Before: Dec 6 18:32:32 2025 GMT Not After : Dec 13 18:32:32 2025 GMT Subject: CN=693476c0-1021 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:43:fc:8e:e1:0b:a1:ee:0b:86:8c:e9:57:36: 09:7d:25:b5:33:78:1f:9e:cc:ab:20:c5:8f:c8:60: ff:09:62:4e:21:8d:ec:2c:12:47:e5:4f:ec:de:d4: 21:37:de:a5:a0:f7:fb:78:b3:57:44:c3:4b:13:e5: 66:9a:ca:67:32:c1:06:56:5b:94:db:57:55:84:7c: 5a:7f:da:4f:a3:00:e7:6b:cf:19:66:02:31:80:a3: f3:b2:d8:f4:ac:0e:63:d2:32:d9:a6:d2:d2:23:89: 66:c0:7b:77:14:be:aa:a7:ab:5b:58:94:92:d5:ef: 0d:21:bd:f0:03:6a:3d:48:27:b5:7f:8b:59:0a:44: f1:3d:88:17:f0:5e:57:0f:e0:65:2e:da:f5:b5:9c: bb:c8:6a:bc:94:17:62:6e:e3:89:e5:ca:6a:bf:fc: f3:d1:59:32:b0:f2:9f:da:69:5f:a2:9a:43:b3:61: a8:5e:39:ee:86:7d:73:27:52:ad:28:78:2a:35:4f: fd:ba:ae:85:41:c3:a1:b9:c7:09:94:ff:5a:fc:46: 35:a8:69:12:54:7f:97:3b:41:69:6f:ca:f3:fd:9b: 5c:f7:cc:31:d9:80:56:b8:f3:be:78:2f:74:a7:b1: 37:83:8a:68:85:27:b1:af:26:8f:2c:99:3a:ca:10: 96:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:B6:56:EB:4C:6D:6E:44:F7:80:E2:A7:1F:CF:67:9D:CB:60:2E:84 X509v3 Authority Key Identifier: keyid:3D:06:92:9D:8D:5E:1F:68:EE:23:EC:A3:F9:48:CF:F7:A2:E4:95:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQaSnY1eH2juI-yj-UjP96LklbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:27:0d:d2:c6:7d:1b:a1:f1:d9:70:65:51:c5:87:2c:ef:0f: 12:49:16:39:27:95:1b:40:91:e8:a4:f3:68:44:19:a6:41:38: 81:72:ac:be:18:81:81:da:1e:c6:67:e3:70:3c:c0:80:6d:97: 0c:49:e4:b3:7a:09:b6:34:b7:68:95:a8:08:6c:3b:68:83:84: 19:6c:83:33:44:8e:4b:6c:08:dc:a8:51:10:b7:cc:bd:76:dd: 7b:e0:cd:91:e3:e8:ff:ff:eb:ae:4d:e5:5d:cd:ff:dc:ed:1d: 31:97:97:91:ea:40:4a:56:63:90:4e:18:c4:05:f0:73:92:bf: 41:a5:a4:30:b9:75:da:9a:57:ec:35:88:51:0f:b7:d1:cd:e3: 8e:12:b9:ea:f8:29:86:d0:27:79:2b:93:06:32:cf:6c:e4:02: 81:36:62:f1:24:84:d1:ed:40:46:2c:63:62:32:40:4d:df:ba: 33:61:5b:e7:93:fa:0f:59:12:5a:c8:9e:69:b5:84:d1:f3:37: de:6d:d3:2f:2a:7b:32:a0:4c:13:49:ab:28:b1:94:e8:38:38: 66:d9:8a:71:03:0f:14:85:58:c6:65:39:f1:a4:17:d1:8e:4c: f1:d5:72:90:70:5a:6d:cd:aa:76:49:69:ed:e2:6c:bb:cd:a6: da:31:47:69 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RENEOTExMC8GA1UEBRMoM0QwNjkyOUQ4RDVFMUY2OEVFMjNFQ0EzRjk0OENGRjdB MkU0OTVCMzAeFw0yNTEyMDYxODMyMzJaFw0yNTEyMTMxODMyMzJaMBgxFjAUBgNV BAMTDTY5MzQ3NmMwLTEwMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCeQ/yO4Quh7guGjOlXNgl9JbUzeB+ezKsgxY/IYP8JYk4hjewsEkflT+ze1CE3 3qWg9/t4s1dEw0sT5WaaymcywQZWW5TbV1WEfFp/2k+jAOdrzxlmAjGAo/Oy2PSs DmPSMtmm0tIjiWbAe3cUvqqnq1tYlJLV7w0hvfADaj1IJ7V/i1kKRPE9iBfwXlcP 4GUu2vW1nLvIaryUF2Ju44nlymq//PPRWTKw8p/aaV+imkOzYaheOe6GfXMnUq0o eCo1T/26roVBw6G5xwmU/1r8RjWoaRJUf5c7QWlvyvP9m1z3zDHZgFa48754L3Sn sTeDimiFJ7GvJo8smTrKEJZvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUC7ZW60xt bkT3gOKnH89nnctgLoQwHwYDVR0jBBgwFoAUPQaSnY1eH2juI+yj+UjP96LklbMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUREQ0Q5LzQxMEJCQzE0NEU2 QzExRUE4OTA0OTc0N0M0RjlBRTAyL1BRYVNuWTFlSDJqdUkteWotVWpQOTZMa2xi TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUFFhU25ZMWVIMmp1SS15ai1ValA5NkxrbGJNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURE Q0Q5LzQxMEJCQzE0NEU2QzExRUE4OTA0OTc0N0M0RjlBRTAyL1BRYVNuWTFlSDJq dUkteWotVWpQOTZMa2xiTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACcnDdLGfRuh8dlwZVHFhyzvDxJJFjknlRtAkeik82hEGaZBOIFyrL4Y gYHaHsZn43A8wIBtlwxJ5LN6CbY0t2iVqAhsO2iDhBlsgzNEjktsCNyoURC3zL12 3XvgzZHj6P//665N5V3N/9ztHTGXl5HqQEpWY5BOGMQF8HOSv0GlpDC5ddqaV+w1 iFEPt9HN444Suer4KYbQJ3krkwYyz2zkAoE2YvEkhNHtQEYsY2IyQE3fujNhW+eT +g9ZElrInmm1hNHzN95t0y8qezKgTBNJqyixlOg4OGbZinEDDxSFWMZlOfGkF9GO TPHVcpBwWm3NqnZJae3ibLvNptoxR2k= -----END CERTIFICATE-----Generated at Sun Dec 7 06:35:33 2025 by rpki-client