This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft File: PDml0ZGM9lqyVjMi8PXxQwmme48.mft (raw, json) Hash identifier: AyfRTp//UIT7NMj8YOP14VrAtE88MAKri54KmNNDYYw= Subject key identifier: F6:28:33:04:D6:6C:38:25:66:12:B7:AA:D3:86:07:5E:DD:E1:44:F4 Authority key identifier: 3C:39:A5:D1:91:8C:F6:5A:B2:56:33:22:F0:F5:F1:43:09:A6:7B:8F Certificate issuer: /CN=A91E2F2C/serialNumber=3C39A5D1918CF65AB2563322F0F5F14309A67B8F Certificate serial: 09E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft Manifest number: 09D6 Signing time: Sat 06 Dec 2025 19:11:34 +0000 Manifest this update: Sat 06 Dec 2025 19:11:34 +0000 Manifest next update: Sat 13 Dec 2025 19:11:34 +0000 Files and hashes: 1: PDml0ZGM9lqyVjMi8PXxQwmme48.crl (hash: FGRTYr4mgBYE0TE6fC/IzFhwbW1wNQMGy1vELXlcl2E=) 2: DE07328A778911ECBD9C7748C4F9AE02.roa (hash: V37MROUsA/Vlywtiw7YJvjwfZWxefXilScjM3KKgLC0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.crl rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2536 (0x9e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2F2C, serialNumber=3C39A5D1918CF65AB2563322F0F5F14309A67B8F Validity Not Before: Dec 6 19:11:34 2025 GMT Not After : Dec 13 19:11:34 2025 GMT Subject: CN=69347fe6-75c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a5:10:be:a9:c1:da:da:c3:05:ce:7e:71:f1: dd:d9:e8:1e:ca:fb:4b:80:c9:71:40:03:72:e4:36: e8:22:c9:ab:6c:09:ed:d5:0e:3d:d6:ea:c3:17:07: 44:b3:7a:e4:4d:78:90:5a:42:1a:da:0f:ae:c7:a7: 3a:ae:aa:dd:ec:9a:b4:26:1f:e7:04:91:15:49:06: 3d:19:90:ad:fe:d3:93:93:80:ad:c0:15:d5:c2:ea: 22:6e:b8:e1:9f:1b:88:03:80:f5:f8:6c:a1:94:74: b0:70:8b:37:e0:f3:d7:63:e4:68:c0:94:57:42:e3: d2:44:e7:21:ca:23:a2:08:42:db:46:33:15:70:19: e2:68:70:57:0b:43:2a:72:ca:00:d6:72:a1:da:b6: 27:33:70:46:45:0f:4a:62:12:aa:17:90:52:ca:91: b6:a4:36:c4:d3:6d:cf:f4:ed:2e:9e:5b:a5:fd:58: 6c:ce:dc:91:16:37:d8:80:f7:a7:d4:03:83:dc:3b: 87:43:66:5a:35:2a:23:64:98:79:9b:72:d1:56:90: 25:de:84:f6:94:86:67:40:50:17:db:4f:3d:ea:99: bd:3d:31:01:8a:c0:be:8e:dc:7a:cf:37:6e:91:db: fc:26:9d:dd:dd:77:f0:ca:81:76:63:47:01:24:8c: 2e:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:28:33:04:D6:6C:38:25:66:12:B7:AA:D3:86:07:5E:DD:E1:44:F4 X509v3 Authority Key Identifier: keyid:3C:39:A5:D1:91:8C:F6:5A:B2:56:33:22:F0:F5:F1:43:09:A6:7B:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:f8:c5:53:7d:74:50:62:9e:7a:dd:cc:a9:5c:d7:0d:ca:02: a4:34:41:db:8a:6d:95:ab:65:9d:36:aa:00:f7:96:e6:02:78: 26:19:ce:33:e6:f9:76:cd:10:81:76:fa:58:70:39:87:b7:b3: 54:1c:e5:11:96:6a:63:fe:02:c5:41:71:8e:a1:ae:9d:0a:13: b7:8f:9a:37:f8:4f:31:ed:6e:15:f3:b9:fc:04:0a:d0:15:79: 2b:f8:81:41:7a:a8:6b:ad:22:47:40:fb:15:0b:b3:02:a8:5d: e9:a8:bd:a2:d0:ce:ef:cb:fa:0f:da:e4:cf:e1:74:54:aa:61: aa:8a:e0:84:72:ca:c1:b3:ae:80:fd:c5:7f:d3:8f:a1:62:4b: a3:d3:7f:72:b8:fa:f6:62:14:12:94:b1:a8:01:4e:56:98:31: eb:31:34:14:03:58:8d:74:d3:ef:c1:bc:60:b2:f5:a0:a5:c0: 48:74:ae:d1:2d:98:29:85:2f:a4:89:c4:01:22:3e:8b:d1:2c: b4:8e:ca:2d:1e:98:2d:9e:37:99:6d:9e:42:ed:1f:64:83:cb: 45:5c:df:bf:1d:54:db:c3:02:ef:f8:2f:ca:e1:42:15:58:1b: d4:dd:1e:05:42:45:4a:0c:b1:01:2b:95:e8:89:b5:f7:c0:b2: 18:c2:b5:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJGMkMxMTAvBgNVBAUTKDNDMzlBNUQxOTE4Q0Y2NUFCMjU2MzMyMkYwRjVGMTQz MDlBNjdCOEYwHhcNMjUxMjA2MTkxMTM0WhcNMjUxMjEzMTkxMTM0WjAYMRYwFAYD VQQDEw02OTM0N2ZlNi03NWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwaUQvqnB2trDBc5+cfHd2egeyvtLgMlxQANy5DboIsmrbAnt1Q491urDFwdE s3rkTXiQWkIa2g+ux6c6rqrd7Jq0Jh/nBJEVSQY9GZCt/tOTk4CtwBXVwuoibrjh nxuIA4D1+GyhlHSwcIs34PPXY+RowJRXQuPSROchyiOiCELbRjMVcBniaHBXC0Mq csoA1nKh2rYnM3BGRQ9KYhKqF5BSypG2pDbE023P9O0unlul/VhsztyRFjfYgPen 1AOD3DuHQ2ZaNSojZJh5m3LRVpAl3oT2lIZnQFAX20896pm9PTEBisC+jtx6zzdu kdv8Jp3d3XfwyoF2Y0cBJIwujQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPYoMwTW bDglZhK3qtOGB17d4UT0MB8GA1UdIwQYMBaAFDw5pdGRjPZaslYzIvD18UMJpnuP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkYyQy9GRkI3NjFGQTk2 NzgxMUVBODQwRjAwMjlDNEY5QUUwMi9QRG1sMFpHTTlscXlWak1pOFBYeFF3bW1l NDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BEbWwwWkdNOWxxeVZqTWk4UFh4UXdtbWU0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkYyQy9GRkI3NjFGQTk2NzgxMUVBODQwRjAwMjlDNEY5QUUwMi9QRG1sMFpHTTls cXlWak1pOFBYeFF3bW1lNDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBu+MVTfXRQYp563cypXNcNygKkNEHbim2Vq2WdNqoA95bmAngmGc4z 5vl2zRCBdvpYcDmHt7NUHOURlmpj/gLFQXGOoa6dChO3j5o3+E8x7W4V87n8BArQ FXkr+IFBeqhrrSJHQPsVC7MCqF3pqL2i0M7vy/oP2uTP4XRUqmGqiuCEcsrBs66A /cV/04+hYkuj039yuPr2YhQSlLGoAU5WmDHrMTQUA1iNdNPvwbxgsvWgpcBIdK7R LZgphS+kicQBIj6L0Sy0jsotHpgtnjeZbZ5C7R9kg8tFXN+/HVTbwwLv+C/K4UIV WBvU3R4FQkVKDLEBK5XoibX3wLIYwrWi -----END CERTIFICATE-----Generated at Sat Dec 6 22:11:55 2025 by rpki-client