This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft File: 38I-PZBdDoNoEhlZbQgimmlPrxM.mft (raw, json) Hash identifier: GmyxjAukXZVNm+rByYpuiA2TldyGMGfsLINPrtuWQfs= Subject key identifier: 4B:D5:0C:C3:99:95:FF:75:12:F4:C9:2E:B1:B4:E8:55:9D:D3:A0:66 Authority key identifier: DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 Certificate issuer: /CN=A91E3D04/serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Certificate serial: 0E87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft Manifest number: 0E6C Signing time: Sat 06 Dec 2025 17:12:09 +0000 Manifest this update: Sat 06 Dec 2025 17:12:09 +0000 Manifest next update: Sat 13 Dec 2025 17:12:09 +0000 Files and hashes: 1: 38I-PZBdDoNoEhlZbQgimmlPrxM.crl (hash: c2eqAkiypsPrwZbNtrmhTbr3EIy4tqQTB6K8PatGPF4=) 2: 10E6D9CAB55C11ECA9565039C4F9AE02.roa (hash: RzHUUv/miUNX3icVSP0eFdue2uGb59/3arKmFqnz2Fc=) 3: AB52C51AB96B11ECB44AC533C4F9AE02.roa (hash: fXxSo682fkgrV8puX+aCaQZxmTNLL+rJcYQD485NwzM=) 4: AC641C88B96B11ECB44AC533C4F9AE02.roa (hash: s3xebHa/jipF1DOC4szye5Ddv89P0OTkiIBe/5lBHnw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3719 (0xe87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3D04, serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Validity Not Before: Dec 6 17:12:09 2025 GMT Not After : Dec 13 17:12:09 2025 GMT Subject: CN=693463e9-7a4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:10:c1:e7:34:58:88:5b:dc:f5:e6:a1:c1:cf: b4:86:6b:75:3d:c1:44:db:6f:68:4d:c7:ed:2c:97: ae:4e:b5:a8:f6:50:54:29:d7:7b:a4:76:c0:7b:05: dc:f6:a1:96:df:02:95:3b:43:9d:c3:ba:6c:40:eb: 98:e2:1c:c8:b6:f5:eb:f2:cf:48:69:2d:e1:51:59: 68:5e:4c:8a:a5:3e:d1:4e:ed:59:da:49:f5:08:11: e8:b5:34:87:52:d2:9f:6c:4a:da:51:45:76:10:bf: 50:99:dd:bc:50:88:10:90:13:e9:bd:d3:74:da:9c: 9e:57:1b:f5:5d:1d:6b:5c:2e:1b:c7:68:ad:40:30: 60:f9:3d:11:b9:53:c8:0e:8e:f9:9c:80:b4:29:2c: 2a:27:19:80:93:a4:59:08:33:6b:31:7f:35:ef:1d: 3e:cf:35:bf:58:e7:f8:ab:3e:05:7c:e3:6d:0c:7a: d4:6a:ee:15:e5:02:01:a4:a3:64:65:a6:c2:c3:f2: c2:4c:04:71:55:8c:59:7f:c1:5c:c6:e6:1c:b7:74: e2:da:7a:fc:56:7a:ec:8a:ce:9c:ae:b6:fe:1c:21: be:aa:9d:e1:db:57:d7:51:58:ff:9b:f3:12:c8:28: f6:c1:46:36:55:a5:65:02:11:77:81:7e:13:87:78: 5d:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:D5:0C:C3:99:95:FF:75:12:F4:C9:2E:B1:B4:E8:55:9D:D3:A0:66 X509v3 Authority Key Identifier: keyid:DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:bc:05:55:a0:5a:6b:37:f6:8c:be:54:b7:90:ca:78:dd:cf: 54:6d:65:f9:9a:f4:65:b0:87:b1:f5:8b:0d:a8:d8:8d:db:6f: e6:6e:29:df:16:c4:68:d9:8d:a9:2a:fd:fb:38:c4:64:dd:a8: 31:7f:b9:24:4f:46:e0:e7:d5:22:8e:12:0e:5f:96:75:6a:b8: fd:94:2b:ba:59:ec:0d:8f:12:0b:a0:fb:c3:12:83:ac:c7:27: 2f:aa:55:60:eb:11:ed:ae:1c:9f:43:b7:9c:fe:50:52:2a:9b: 05:ca:e0:79:07:20:43:b9:3a:ed:53:a8:7e:12:2c:21:e7:dc: 6f:b1:46:b6:86:48:08:7c:69:48:dc:83:8e:c4:03:99:0c:01: 19:7e:1a:0a:e0:07:98:39:41:46:51:cc:cc:01:e4:fe:cf:68: e7:d9:68:e0:c6:fd:f9:ba:ed:71:0d:df:84:4e:8d:3a:03:c0: 0f:19:ce:d1:ab:2c:88:c1:1a:0a:41:0d:d6:d2:ac:e1:4c:07: ca:70:3b:02:93:7f:a9:b3:2d:d0:ea:09:69:cb:34:31:a4:92: 89:39:f4:63:8b:e3:17:03:fd:47:a7:50:26:50:0a:c8:18:fe: 78:6d:64:14:9a:1e:8a:0b:c0:a1:a3:6d:e7:a8:06:81:07:43: f7:51:00:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNEMDQxMTAvBgNVBAUTKERGQzIzRTNEOTA1RDBFODM2ODEyMTk1OTZEMDgyMjlB Njk0RkFGMTMwHhcNMjUxMjA2MTcxMjA5WhcNMjUxMjEzMTcxMjA5WjAYMRYwFAYD VQQDEw02OTM0NjNlOS03YTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBDB5zRYiFvc9eahwc+0hmt1PcFE229oTcftLJeuTrWo9lBUKdd7pHbAewXc 9qGW3wKVO0Odw7psQOuY4hzItvXr8s9IaS3hUVloXkyKpT7RTu1Z2kn1CBHotTSH UtKfbEraUUV2EL9Qmd28UIgQkBPpvdN02pyeVxv1XR1rXC4bx2itQDBg+T0RuVPI Do75nIC0KSwqJxmAk6RZCDNrMX817x0+zzW/WOf4qz4FfONtDHrUau4V5QIBpKNk ZabCw/LCTARxVYxZf8FcxuYct3Ti2nr8Vnrsis6crrb+HCG+qp3h21fXUVj/m/MS yCj2wUY2VaVlAhF3gX4Th3hdgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEvVDMOZ lf91EvTJLrG06FWd06BmMB8GA1UdIwQYMBaAFN/CPj2QXQ6DaBIZWW0IIpppT68T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0QwNC83QTE3RkU4RUFE RDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERvTm9FaGxaYlFnaW1tbFBy eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4SS1QWkJkRG9Ob0VobFpiUWdpbW1sUHJ4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0QwNC83QTE3RkU4RUFERDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERv Tm9FaGxaYlFnaW1tbFByeE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOvAVVoFprN/aMvlS3kMp43c9UbWX5mvRlsIex9YsNqNiN22/mbinf FsRo2Y2pKv37OMRk3agxf7kkT0bg59UijhIOX5Z1arj9lCu6WewNjxILoPvDEoOs xycvqlVg6xHtrhyfQ7ec/lBSKpsFyuB5ByBDuTrtU6h+Eiwh59xvsUa2hkgIfGlI 3IOOxAOZDAEZfhoK4AeYOUFGUczMAeT+z2jn2Wjgxv35uu1xDd+ETo06A8APGc7R qyyIwRoKQQ3W0qzhTAfKcDsCk3+psy3Q6glpyzQxpJKJOfRji+MXA/1Hp1AmUArI GP54bWQUmh6KC8Cho23nqAaBB0P3UQBJ -----END CERTIFICATE-----Generated at Sat Dec 6 20:06:53 2025 by rpki-client