This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft File: PnOyvhMDe-dEOR06iZzdICuC920.mft (raw, json) Hash identifier: wH2A2cEuleNSgIRqCezn0asMxyLAY6SNPqtbbOWgihs= Subject key identifier: 9B:2A:16:1B:97:0E:DE:D7:FC:B0:D7:89:9C:7D:53:8E:0A:A3:FE:10 Authority key identifier: 3E:73:B2:BE:13:03:7B:E7:44:39:1D:3A:89:9C:DD:20:2B:82:F7:6D Certificate issuer: /CN=A91E5D0C/serialNumber=3E73B2BE13037BE744391D3A899CDD202B82F76D Certificate serial: 0530 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PnOyvhMDe-dEOR06iZzdICuC920.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft Manifest number: 0518 Signing time: Sat 06 Dec 2025 22:24:37 +0000 Manifest this update: Sat 06 Dec 2025 22:24:36 +0000 Manifest next update: Sat 13 Dec 2025 22:24:36 +0000 Files and hashes: 1: PnOyvhMDe-dEOR06iZzdICuC920.crl (hash: a2pfR13R7tLm6jtGohzI12MInxUaCCAr5zZISrQ2q4U=) 2: EFFA034837D111EC9337B812C4F9AE02.roa (hash: eOzDGtd2FPhdJliCdckHnz758nq276hv9KBB5yuJrEs=) 3: 9C581C28B07511EF9D153813C4F9AE02.roa (hash: USbezzx4u+HcyowHtZXvIGxC9833a2cIPADsDabhgHE=) 4: FE76F7D8EC4A11EFA7845862C4F9AE02.roa (hash: ffe9csoIa+aK1Zbhj8RuxgnC6GGLQDbgoCQkHm0MFNA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.crl rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PnOyvhMDe-dEOR06iZzdICuC920.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 22:24:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1328 (0x530) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D0C, serialNumber=3E73B2BE13037BE744391D3A899CDD202B82F76D Validity Not Before: Dec 6 22:24:36 2025 GMT Not After : Dec 13 22:24:36 2025 GMT Subject: CN=6934ad24-385e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a7:0e:73:30:65:61:2e:dd:74:ad:fc:91:f8: 05:c4:6b:b0:6c:78:da:bd:b7:70:62:e0:08:15:3e: 56:8b:b8:24:40:17:d1:f7:17:e7:91:0a:e7:16:d0: eb:2a:0b:8a:a0:ac:48:ed:9c:d8:24:11:d2:45:dd: 18:df:5b:9e:70:fe:ab:e5:1a:88:70:73:d8:ac:c2: a5:a3:b3:ad:f3:2b:c0:e2:59:6b:26:c2:5f:50:9f: ac:94:c6:e7:a2:9d:56:3f:d4:f1:c5:0a:91:ef:88: d3:18:00:a7:2c:72:71:94:32:bd:73:33:52:a0:5e: 20:e7:da:1f:83:10:99:29:7f:14:16:6b:17:c6:0c: 29:50:15:1c:c6:ab:06:80:48:28:39:87:d8:01:28: 6a:a0:ce:f5:55:1e:8d:a0:15:03:95:b7:06:b2:1c: ac:4b:da:2e:58:2d:06:36:c1:70:d4:ad:ec:6e:43: 3f:c1:c2:61:5f:37:d0:5e:91:dc:f0:cf:96:b6:3f: 2c:d8:76:67:cf:da:d3:a1:0b:ab:b2:3b:e7:fe:a9: ef:56:e1:2b:23:6b:c9:c2:e9:36:d2:5d:ed:58:2b: 9a:ca:1b:b9:f0:c1:33:45:60:12:ae:0f:20:d9:e5: fe:b7:70:48:29:da:9e:32:dc:12:b5:0b:af:ce:aa: 35:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:2A:16:1B:97:0E:DE:D7:FC:B0:D7:89:9C:7D:53:8E:0A:A3:FE:10 X509v3 Authority Key Identifier: keyid:3E:73:B2:BE:13:03:7B:E7:44:39:1D:3A:89:9C:DD:20:2B:82:F7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PnOyvhMDe-dEOR06iZzdICuC920.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:d9:d5:24:aa:ed:d8:38:49:23:26:a6:9c:32:80:85:60:22: 8a:3e:02:85:0b:e0:68:33:42:57:b8:9f:88:db:b5:ed:67:2b: 10:6d:df:e6:04:f4:f4:3f:a7:d8:1e:a2:a6:64:fa:82:c0:f5: 1b:0a:db:19:6d:0b:4a:b7:35:1c:60:64:a8:b5:61:8a:fe:ce: 02:cd:4f:85:ad:ac:a9:ef:91:de:c1:83:a0:c6:95:a2:08:60: 24:be:49:89:ff:f5:39:a4:4f:b4:8f:56:c9:dd:11:b9:48:96: c2:c4:8e:97:a5:61:d6:67:3f:b9:23:64:9a:40:e1:17:1a:2e: 42:77:e3:ee:e7:0b:16:2d:44:3d:69:35:72:0b:19:61:35:23: 33:67:92:e2:4a:fd:98:57:44:2d:49:1c:90:97:b7:be:56:05: 02:f8:93:34:c1:db:eb:79:e6:90:0d:37:44:42:96:b3:64:60: 71:92:60:e6:fe:8e:82:73:fd:2f:e1:db:86:b8:33:da:57:ad: 59:d7:3a:74:60:1f:ec:22:10:8d:a7:76:04:96:7d:de:ab:52: cd:c0:82:87:7d:d9:f3:80:40:1e:e0:95:fe:46:e6:be:5d:b6: 02:7c:32:6d:64:1f:11:f2:be:e6:c4:6b:b2:0e:48:52:ec:58: 14:8b:93:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVEMEMxMTAvBgNVBAUTKDNFNzNCMkJFMTMwMzdCRTc0NDM5MUQzQTg5OUNERDIw MkI4MkY3NkQwHhcNMjUxMjA2MjIyNDM2WhcNMjUxMjEzMjIyNDM2WjAYMRYwFAYD VQQDEw02OTM0YWQyNC0zODVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyacOczBlYS7ddK38kfgFxGuwbHjavbdwYuAIFT5Wi7gkQBfR9xfnkQrnFtDr KguKoKxI7ZzYJBHSRd0Y31uecP6r5RqIcHPYrMKlo7Ot8yvA4llrJsJfUJ+slMbn op1WP9TxxQqR74jTGACnLHJxlDK9czNSoF4g59ofgxCZKX8UFmsXxgwpUBUcxqsG gEgoOYfYAShqoM71VR6NoBUDlbcGshysS9ouWC0GNsFw1K3sbkM/wcJhXzfQXpHc 8M+Wtj8s2HZnz9rToQursjvn/qnvVuErI2vJwuk20l3tWCuayhu58MEzRWASrg8g 2eX+t3BIKdqeMtwStQuvzqo1HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJsqFhuX Dt7X/LDXiZx9U44Ko/4QMB8GA1UdIwQYMBaAFD5zsr4TA3vnRDkdOomc3SArgvdt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQwQy84OTFCNEVDQTMy MzYxMUVDODk4Mzg3NTZDNEY5QUUwMi9Qbk95dmhNRGUtZEVPUjA2aVp6ZElDdUM5 MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BuT3l2aE1EZS1kRU9SMDZpWnpkSUN1QzkyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQwQy84OTFCNEVDQTMyMzYxMUVDODk4Mzg3NTZDNEY5QUUwMi9Qbk95dmhNRGUt ZEVPUjA2aVp6ZElDdUM5MjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAf2dUkqu3YOEkjJqacMoCFYCKKPgKFC+BoM0JXuJ+I27XtZysQbd/m BPT0P6fYHqKmZPqCwPUbCtsZbQtKtzUcYGSotWGK/s4CzU+Frayp75HewYOgxpWi CGAkvkmJ//U5pE+0j1bJ3RG5SJbCxI6XpWHWZz+5I2SaQOEXGi5Cd+Pu5wsWLUQ9 aTVyCxlhNSMzZ5LiSv2YV0QtSRyQl7e+VgUC+JM0wdvreeaQDTdEQpazZGBxkmDm /o6Cc/0v4duGuDPaV61Z1zp0YB/sIhCNp3YEln3eq1LNwIKHfdnzgEAe4JX+Rua+ XbYCfDJtZB8R8r7mxGuyDkhS7FgUi5PI -----END CERTIFICATE-----Generated at Sun Dec 7 02:48:07 2025 by rpki-client