This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft File: PShwiOOGgqTkudgoRQszZr3q1d0.mft (raw, json) Hash identifier: 81fAQ4BbloTfu2yRbEfNeOdTPPSINV0W+1uETaEC2/g= Subject key identifier: 65:E3:C2:2C:6E:0F:D2:F8:F2:20:7A:F8:07:B7:0D:6E:16:6A:E0:6F Authority key identifier: 3D:28:70:88:E3:86:82:A4:E4:B9:D8:28:45:0B:33:66:BD:EA:D5:DD Certificate issuer: /CN=A91F02EA/serialNumber=3D287088E38682A4E4B9D828450B3366BDEAD5DD Certificate serial: 0C7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft Manifest number: 0C6B Signing time: Thu 04 Dec 2025 18:00:48 +0000 Manifest this update: Thu 04 Dec 2025 18:00:47 +0000 Manifest next update: Thu 11 Dec 2025 18:00:47 +0000 Files and hashes: 1: PShwiOOGgqTkudgoRQszZr3q1d0.crl (hash: yzgF+GKA8eEk7ZSH54o6OJcv+U8RisXnS155UgwLltU=) 2: 7716938A416211EB9B0F3C54C4F9AE02.roa (hash: SaoXuslBHecNHa04UZ0EBB+W8ns+FIPHvzYnnMHMCbU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.crl rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3195 (0xc7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F02EA, serialNumber=3D287088E38682A4E4B9D828450B3366BDEAD5DD Validity Not Before: Dec 4 18:00:47 2025 GMT Not After : Dec 11 18:00:47 2025 GMT Subject: CN=6931cc50-7454 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:14:0b:e9:15:6b:ed:45:b5:52:83:ae:4e:45: f2:dc:b5:c9:e7:94:af:53:f8:28:9d:3d:b2:e6:53: bb:45:6e:d3:96:8f:63:8b:56:6c:78:59:a4:6b:67: c8:61:e5:1e:94:84:e3:6b:56:48:24:fd:96:cb:d3: 58:e8:7a:e3:64:83:65:b8:22:45:f8:ae:39:ec:83: 00:d3:46:1c:47:93:3d:c6:f9:30:cc:e1:f7:64:7f: 19:86:4d:68:39:d6:41:ae:ed:1d:db:53:09:bb:04: d4:15:19:2c:e6:82:1c:74:83:80:e9:27:a8:81:d1: 8f:25:3a:81:25:97:f9:29:ea:b5:ee:ac:f6:d5:e8: 17:23:d9:9a:e0:06:49:84:ea:ff:ee:c4:fd:e7:60: 08:18:a3:79:cd:2b:38:95:1f:93:5d:dc:48:18:f2: f8:24:22:61:4b:88:5a:a6:3e:ee:4e:b9:11:7b:e9: 8c:46:ad:34:eb:65:d4:74:11:99:ad:6c:9b:45:4b: 2f:fb:0a:3a:e4:5f:4a:61:f7:2f:8a:37:99:fb:a8: ac:a1:b0:41:58:3e:60:a6:c7:39:c2:9a:38:fc:78: 24:75:9e:51:47:3c:fa:df:e3:e0:02:7f:69:20:52: 68:10:bc:64:d4:00:22:5c:ef:f7:91:16:ac:dd:12: e4:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:E3:C2:2C:6E:0F:D2:F8:F2:20:7A:F8:07:B7:0D:6E:16:6A:E0:6F X509v3 Authority Key Identifier: keyid:3D:28:70:88:E3:86:82:A4:E4:B9:D8:28:45:0B:33:66:BD:EA:D5:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:cb:5b:9f:8a:cc:4a:69:70:16:e0:17:69:64:57:36:2f:c6: 2a:6f:30:11:25:6b:b5:ab:9c:dc:cb:e2:10:54:78:bd:c0:4f: ba:9f:52:95:4d:85:3a:8c:f4:61:20:99:ab:22:89:1e:78:89: 9c:17:7c:7c:78:af:72:19:10:73:c5:7c:e2:c3:35:78:c2:e2: 68:e9:84:f7:2f:2e:d1:70:d5:4f:b8:d0:73:ea:c0:43:90:4c: 14:02:2a:91:4e:2a:4f:05:f6:bc:e8:a2:b6:93:78:b9:2a:90: 5b:8b:7f:f1:30:3f:c8:90:14:de:04:18:fb:b8:d1:94:3e:3e: db:96:fd:35:6b:e2:0c:af:37:87:40:ad:80:92:c9:8d:fe:73: bf:65:99:42:57:00:20:b6:5b:1e:2e:dc:70:f9:c4:30:ae:69: f8:33:3d:ea:37:04:92:3e:30:3e:c7:92:10:22:0b:15:3e:80: ec:d6:f2:f7:f7:f3:22:5e:43:fb:7f:f8:3b:9a:e8:9a:d9:5e: 19:0c:97:a8:ae:4f:68:41:f2:a1:bd:ce:e2:89:d4:5e:8f:c1: 4b:98:86:f9:ae:40:15:0d:52:6c:41:0e:ed:24:5d:e4:48:ed: 3c:a0:7b:7c:ed:3c:5b:db:a1:f5:49:4e:a9:60:b1:a1:3d:9c: bc:5d:df:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjAyRUExMTAvBgNVBAUTKDNEMjg3MDg4RTM4NjgyQTRFNEI5RDgyODQ1MEIzMzY2 QkRFQUQ1REQwHhcNMjUxMjA0MTgwMDQ3WhcNMjUxMjExMTgwMDQ3WjAYMRYwFAYD VQQDEw02OTMxY2M1MC03NDU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1BQL6RVr7UW1UoOuTkXy3LXJ55SvU/gonT2y5lO7RW7Tlo9ji1ZseFmka2fI YeUelITja1ZIJP2Wy9NY6HrjZINluCJF+K457IMA00YcR5M9xvkwzOH3ZH8Zhk1o OdZBru0d21MJuwTUFRks5oIcdIOA6SeogdGPJTqBJZf5Keq17qz21egXI9ma4AZJ hOr/7sT952AIGKN5zSs4lR+TXdxIGPL4JCJhS4hapj7uTrkRe+mMRq0062XUdBGZ rWybRUsv+wo65F9KYfcvijeZ+6isobBBWD5gpsc5wpo4/HgkdZ5RRzz63+PgAn9p IFJoELxk1AAiXO/3kRas3RLk8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGXjwixu D9L48iB6+Ae3DW4WauBvMB8GA1UdIwQYMBaAFD0ocIjjhoKk5LnYKEULM2a96tXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDJFQS9EQjE1Q0RFMDEx REIxMUVBOTVGMkIwNTlDNEY5QUUwMi9QU2h3aU9PR2dxVGt1ZGdvUlFzelpyM3Ex ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BTaHdpT09HZ3FUa3VkZ29SUXN6WnIzcTFkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDJFQS9EQjE1Q0RFMDExREIxMUVBOTVGMkIwNTlDNEY5QUUwMi9QU2h3aU9PR2dx VGt1ZGdvUlFzelpyM3ExZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCey1ufisxKaXAW4BdpZFc2L8YqbzARJWu1q5zcy+IQVHi9wE+6n1KV TYU6jPRhIJmrIokeeImcF3x8eK9yGRBzxXziwzV4wuJo6YT3Ly7RcNVPuNBz6sBD kEwUAiqRTipPBfa86KK2k3i5KpBbi3/xMD/IkBTeBBj7uNGUPj7blv01a+IMrzeH QK2AksmN/nO/ZZlCVwAgtlseLtxw+cQwrmn4Mz3qNwSSPjA+x5IQIgsVPoDs1vL3 9/MiXkP7f/g7muia2V4ZDJeork9oQfKhvc7iidRej8FLmIb5rkAVDVJsQQ7tJF3k SO08oHt87Txb26H1SU6pYLGhPZy8Xd+3 -----END CERTIFICATE-----Generated at Sat Dec 6 18:14:29 2025 by rpki-client