This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft File: pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft (raw, json) Hash identifier: YLZZ/ldufoL/KPFvBiTbkBjOhGHi3ps1PNpW2Ga2fEg= Subject key identifier: A4:B8:72:12:B6:5E:88:3D:C1:7F:36:56:4C:B3:4D:19:E7:A7:21:09 Authority key identifier: A5:D9:C6:A6:F9:67:5B:91:CE:54:D1:15:F8:8C:94:10:F1:8F:90:FE Certificate issuer: /CN=A91FC9FE/serialNumber=A5D9C6A6F9675B91CE54D115F88C9410F18F90FE Certificate serial: 01DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft Manifest number: 01D7 Signing time: Fri 05 Dec 2025 01:02:45 +0000 Manifest this update: Fri 05 Dec 2025 01:02:45 +0000 Manifest next update: Fri 12 Dec 2025 01:02:45 +0000 Files and hashes: 1: pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl (hash: /qcEJ2Fb+xs4kdu0hQMktNuGHR2fvo0TjwV7IvmVqzk=) 2: C5CD32AAE5DC11EE867C6F21C4F9AE02.roa (hash: a4fQ9/brXb5z2Mtyms5QfXYQ2TroFUoiyPnPZ317i3A=) 3: C6AA9D48E5DC11EE867C6F21C4F9AE02.roa (hash: AbLxDDz7EyW1J/bgbPyfasPFpKdJaru9haT9jeZMl/Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:02:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 478 (0x1de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC9FE, serialNumber=A5D9C6A6F9675B91CE54D115F88C9410F18F90FE Validity Not Before: Dec 5 01:02:45 2025 GMT Not After : Dec 12 01:02:45 2025 GMT Subject: CN=69322f35-1102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:23:f0:b1:f8:17:44:b9:74:16:a3:6a:6e:2e: 8b:96:6d:b3:18:d9:1d:16:9f:b9:b8:99:4a:11:ad: 64:ea:7c:ea:f4:e5:d9:1d:38:d5:ce:79:01:f7:6c: 15:f1:c9:31:c7:c8:4a:a0:ae:3f:4f:83:71:0f:98: 36:02:9a:47:4e:bf:73:33:69:d2:c2:b5:18:35:6a: a8:5d:67:ce:b6:34:c0:a8:57:f1:2e:07:f7:03:37: b7:ed:25:6b:10:fc:60:54:1e:01:31:7e:86:a4:a6: 9c:b9:9b:44:99:3e:9b:0f:45:fd:30:8a:09:5d:1d: 60:77:41:b5:2a:73:39:fb:e0:ab:4e:c9:d9:35:62: 24:6a:48:4a:7b:d1:33:a7:2f:20:e2:d7:09:4c:57: 54:ef:fd:1c:31:26:98:4f:80:51:de:ff:e6:21:33: 9e:1c:d1:f7:09:50:47:c3:3d:7e:39:fe:df:8c:49: c6:ac:dc:bb:33:ab:bc:c0:95:01:88:6b:97:68:6a: 42:82:e3:7e:ad:34:22:75:f3:dd:fb:70:61:92:f9: 1f:8b:ac:22:c4:b9:39:3c:03:f3:18:c7:ae:47:dd: c6:07:01:13:22:ab:c1:6b:ad:d3:9e:a8:92:8e:aa: 9b:b8:c0:b8:09:5f:46:df:05:34:d0:5a:f1:17:99: 3a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:B8:72:12:B6:5E:88:3D:C1:7F:36:56:4C:B3:4D:19:E7:A7:21:09 X509v3 Authority Key Identifier: keyid:A5:D9:C6:A6:F9:67:5B:91:CE:54:D1:15:F8:8C:94:10:F1:8F:90:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:bd:a0:1b:71:1c:43:c0:54:de:55:cb:70:30:02:82:b1:61: d5:79:d9:86:f4:f2:a9:2b:f2:53:01:2e:16:da:75:1c:de:41: c2:33:bb:9b:2d:2d:1c:29:33:63:6a:26:29:fa:9c:39:8c:2f: dc:55:c3:73:68:27:52:ca:0c:8d:55:0e:bc:b3:36:0d:2a:40: 8a:51:4a:ef:a1:57:85:b9:3f:ef:fc:16:14:cc:c2:78:e6:00: 24:39:5a:ca:98:c9:2d:67:86:5d:a7:e5:78:45:ed:c3:2d:e4: ef:9b:7c:17:a7:8f:07:44:99:51:e6:97:f0:7f:66:09:7e:88: b6:a8:96:df:60:1e:ee:64:f3:b0:c9:b9:fa:85:00:bf:d5:8b: 3e:bd:e9:73:1c:08:e3:48:2d:91:de:48:c6:42:4e:d8:c9:7e: 98:7e:2d:86:9e:bf:0c:2e:20:5f:ef:dc:58:4c:e7:f2:4b:63: 38:02:79:38:fb:68:55:57:19:a9:73:e5:5a:c7:ed:45:97:d1: 7e:8c:13:ce:a3:2a:5a:77:39:c3:5a:97:6b:87:40:87:c8:c5: 59:ce:40:05:ac:1e:cf:fa:eb:33:33:93:cd:b5:68:18:75:62: d9:70:74:6f:48:b7:cf:af:db:ca:1a:e1:3e:df:1b:79:f9:df: 15:14:06:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM5RkUxMTAvBgNVBAUTKEE1RDlDNkE2Rjk2NzVCOTFDRTU0RDExNUY4OEM5NDEw RjE4RjkwRkUwHhcNMjUxMjA1MDEwMjQ1WhcNMjUxMjEyMDEwMjQ1WjAYMRYwFAYD VQQDEw02OTMyMmYzNS0xMTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsSPwsfgXRLl0FqNqbi6Llm2zGNkdFp+5uJlKEa1k6nzq9OXZHTjVznkB92wV 8ckxx8hKoK4/T4NxD5g2AppHTr9zM2nSwrUYNWqoXWfOtjTAqFfxLgf3Aze37SVr EPxgVB4BMX6GpKacuZtEmT6bD0X9MIoJXR1gd0G1KnM5++CrTsnZNWIkakhKe9Ez py8g4tcJTFdU7/0cMSaYT4BR3v/mITOeHNH3CVBHwz1+Of7fjEnGrNy7M6u8wJUB iGuXaGpCguN+rTQidfPd+3Bhkvkfi6wixLk5PAPzGMeuR93GBwETIqvBa63TnqiS jqqbuMC4CV9G3wU00FrxF5k6HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKS4chK2 Xog9wX82VkyzTRnnpyEJMB8GA1UdIwQYMBaAFKXZxqb5Z1uRzlTRFfiMlBDxj5D+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzlGRS81M0NCNjkwQ0ZE RTIxMUVEOUQyRDFGNjhDNEY5QUUwMi9wZG5HcHZsblc1SE9WTkVWLUl5VUVQR1Br UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BkbkdwdmxuVzVIT1ZORVYtSXlVRVBHUGtQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzlGRS81M0NCNjkwQ0ZERTIxMUVEOUQyRDFGNjhDNEY5QUUwMi9wZG5HcHZsblc1 SE9WTkVWLUl5VUVQR1BrUDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcvaAbcRxDwFTeVctwMAKCsWHVedmG9PKpK/JTAS4W2nUc3kHCM7ub LS0cKTNjaiYp+pw5jC/cVcNzaCdSygyNVQ68szYNKkCKUUrvoVeFuT/v/BYUzMJ4 5gAkOVrKmMktZ4Zdp+V4Re3DLeTvm3wXp48HRJlR5pfwf2YJfoi2qJbfYB7uZPOw ybn6hQC/1Ys+velzHAjjSC2R3kjGQk7YyX6Yfi2Gnr8MLiBf79xYTOfyS2M4Ank4 +2hVVxmpc+Vax+1Fl9F+jBPOoypadznDWpdrh0CHyMVZzkAFrB7P+uszM5PNtWgY dWLZcHRvSLfPr9vKGuE+3xt5+d8VFAbY -----END CERTIFICATE-----Generated at Sat Dec 6 17:45:37 2025 by rpki-client