This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft File: PnOyvhMDe-dEOR06iZzdICuC920.mft (raw, json) Hash identifier: KL8zwMARPtFuyVT6lBSsT7ShozmyNuTJKr2JCf/eHPg= Subject key identifier: CB:F4:FF:21:F6:53:13:37:BA:EA:9E:11:ED:6C:2B:3C:55:0E:63:39 Authority key identifier: 3E:73:B2:BE:13:03:7B:E7:44:39:1D:3A:89:9C:DD:20:2B:82:F7:6D Certificate issuer: /CN=A91E5D0C/serialNumber=3E73B2BE13037BE744391D3A899CDD202B82F76D Certificate serial: 052F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PnOyvhMDe-dEOR06iZzdICuC920.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft Manifest number: 0517 Signing time: Thu 04 Dec 2025 22:14:18 +0000 Manifest this update: Thu 04 Dec 2025 22:14:17 +0000 Manifest next update: Thu 11 Dec 2025 22:14:17 +0000 Files and hashes: 1: PnOyvhMDe-dEOR06iZzdICuC920.crl (hash: Gv7MWEqUN8n4VWfmGX9ZICnqwhAMlxhikBeva7mhQUY=) 2: EFFA034837D111EC9337B812C4F9AE02.roa (hash: eOzDGtd2FPhdJliCdckHnz758nq276hv9KBB5yuJrEs=) 3: 9C581C28B07511EF9D153813C4F9AE02.roa (hash: USbezzx4u+HcyowHtZXvIGxC9833a2cIPADsDabhgHE=) 4: FE76F7D8EC4A11EFA7845862C4F9AE02.roa (hash: ffe9csoIa+aK1Zbhj8RuxgnC6GGLQDbgoCQkHm0MFNA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.crl rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PnOyvhMDe-dEOR06iZzdICuC920.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:14:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1327 (0x52f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D0C, serialNumber=3E73B2BE13037BE744391D3A899CDD202B82F76D Validity Not Before: Dec 4 22:14:17 2025 GMT Not After : Dec 11 22:14:17 2025 GMT Subject: CN=693207ba-e3f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:91:9b:44:bc:0b:e3:c0:0b:62:33:0a:8d:6b: b7:e3:59:48:7a:b9:31:7b:06:e6:1c:71:ed:62:8b: 60:09:e6:c0:49:08:5f:e5:aa:93:01:9e:81:9b:10: ce:04:11:ae:05:5c:af:74:54:af:b1:cb:a2:f6:2b: 68:51:9f:70:9d:01:39:79:30:4f:3b:44:6e:9a:c0: cd:2d:12:98:8f:59:1e:5f:c0:b1:e8:f0:fa:b9:67: b0:01:87:f4:98:bd:72:ed:b5:5c:00:e4:91:f4:4b: c7:79:cd:4d:9e:79:47:e2:59:20:46:9a:20:d3:57: 64:44:a6:ae:b1:8f:ea:52:ef:98:a6:a7:49:0c:4f: 1d:4a:de:03:6c:a9:8b:6b:a9:39:5b:8e:c7:ef:4a: 4f:51:25:b8:9f:66:80:88:5c:33:58:c7:e5:8f:1e: 1c:1f:8e:13:d6:14:87:99:41:92:e3:31:dd:f2:26: 6c:e3:e2:7f:30:e9:0b:59:11:23:dd:9c:50:52:af: b1:cc:10:e9:b5:2e:20:e5:b9:f4:65:d3:14:76:1c: d9:15:1a:48:e7:49:cb:66:cf:9e:f7:0c:a9:4a:ce: 57:e4:eb:ac:f5:76:b5:bd:6e:02:39:5e:3c:6e:96: 66:3f:b2:84:ce:90:0a:78:21:bb:f2:52:71:05:c2: 4b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:F4:FF:21:F6:53:13:37:BA:EA:9E:11:ED:6C:2B:3C:55:0E:63:39 X509v3 Authority Key Identifier: keyid:3E:73:B2:BE:13:03:7B:E7:44:39:1D:3A:89:9C:DD:20:2B:82:F7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PnOyvhMDe-dEOR06iZzdICuC920.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D0C/891B4ECA323611EC89838756C4F9AE02/PnOyvhMDe-dEOR06iZzdICuC920.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:da:e8:e5:3c:3a:c2:52:7c:3f:b6:c4:4f:b1:99:78:45:da: da:58:01:30:2e:89:95:24:b9:81:11:50:8e:86:13:86:ae:c9: ad:9f:c0:e9:8a:ea:c1:71:78:2a:2d:0b:4d:4b:ee:6c:7f:ba: dc:f7:f5:63:02:6a:35:db:ee:70:28:ab:a8:cb:b7:a7:73:91: 21:1a:1e:4e:3b:80:21:7b:a7:c2:e4:c4:e4:b0:98:c0:44:12: cd:24:4d:2a:bc:3a:5f:da:45:f9:a6:d8:52:00:32:40:cd:b5: f8:30:7c:bd:72:53:d0:da:47:da:23:a0:82:68:e2:78:c5:7e: c6:03:50:3a:5f:aa:50:2b:22:e2:f8:3a:f6:63:c1:e1:0b:7a: 6f:c0:72:d6:96:e2:51:70:e6:ac:32:a5:68:a0:0b:d2:dc:ed: 17:9e:17:01:d7:da:50:50:03:ca:2b:02:52:29:0c:b9:48:53: 57:cb:94:45:ae:ce:b6:4a:14:d4:7e:6b:62:23:be:8f:02:d2: 65:61:5b:73:3f:1f:42:0f:1b:89:5d:f4:5e:02:73:f2:74:f1: 0d:b5:e2:b0:3f:a1:23:c2:0e:01:b3:a6:bf:85:a4:1d:86:20: 5b:ac:8e:9c:46:3a:ef:1d:54:91:6d:7e:af:3e:48:8c:9f:c0: 07:de:c7:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVEMEMxMTAvBgNVBAUTKDNFNzNCMkJFMTMwMzdCRTc0NDM5MUQzQTg5OUNERDIw MkI4MkY3NkQwHhcNMjUxMjA0MjIxNDE3WhcNMjUxMjExMjIxNDE3WjAYMRYwFAYD VQQDEw02OTMyMDdiYS1lM2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypGbRLwL48ALYjMKjWu341lIerkxewbmHHHtYotgCebASQhf5aqTAZ6BmxDO BBGuBVyvdFSvscui9itoUZ9wnQE5eTBPO0RumsDNLRKYj1keX8Cx6PD6uWewAYf0 mL1y7bVcAOSR9EvHec1NnnlH4lkgRpog01dkRKausY/qUu+YpqdJDE8dSt4DbKmL a6k5W47H70pPUSW4n2aAiFwzWMfljx4cH44T1hSHmUGS4zHd8iZs4+J/MOkLWREj 3ZxQUq+xzBDptS4g5bn0ZdMUdhzZFRpI50nLZs+e9wypSs5X5Ous9Xa1vW4COV48 bpZmP7KEzpAKeCG78lJxBcJLYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMv0/yH2 UxM3uuqeEe1sKzxVDmM5MB8GA1UdIwQYMBaAFD5zsr4TA3vnRDkdOomc3SArgvdt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQwQy84OTFCNEVDQTMy MzYxMUVDODk4Mzg3NTZDNEY5QUUwMi9Qbk95dmhNRGUtZEVPUjA2aVp6ZElDdUM5 MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BuT3l2aE1EZS1kRU9SMDZpWnpkSUN1QzkyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQwQy84OTFCNEVDQTMyMzYxMUVDODk4Mzg3NTZDNEY5QUUwMi9Qbk95dmhNRGUt ZEVPUjA2aVp6ZElDdUM5MjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw2ujlPDrCUnw/tsRPsZl4RdraWAEwLomVJLmBEVCOhhOGrsmtn8Dp iurBcXgqLQtNS+5sf7rc9/VjAmo12+5wKKuoy7enc5EhGh5OO4Ahe6fC5MTksJjA RBLNJE0qvDpf2kX5pthSADJAzbX4MHy9clPQ2kfaI6CCaOJ4xX7GA1A6X6pQKyLi +Dr2Y8HhC3pvwHLWluJRcOasMqVooAvS3O0XnhcB19pQUAPKKwJSKQy5SFNXy5RF rs62ShTUfmtiI76PAtJlYVtzPx9CDxuJXfReAnPydPENteKwP6Ejwg4Bs6a/haQd hiBbrI6cRjrvHVSRbX6vPkiMn8AH3sd+ -----END CERTIFICATE-----Generated at Sat Dec 6 22:47:25 2025 by rpki-client