This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft File: 0PiwBllsfAN8tUkwWzlpAACq6KQ.mft (raw, json) Hash identifier: tiV96v0aJ44ae2C5/Yj50wnRAChMyHCQNg+dtPvMJd4= Subject key identifier: 01:9D:A7:B7:66:48:17:8B:2F:AC:21:87:01:A6:91:2F:B4:35:39:83 Authority key identifier: D0:F8:B0:06:59:6C:7C:03:7C:B5:49:30:5B:39:69:00:00:AA:E8:A4 Certificate issuer: /CN=A91754C0/serialNumber=D0F8B006596C7C037CB549305B39690000AAE8A4 Certificate serial: 015C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft Manifest number: 0158 Signing time: Sun 21 Dec 2025 03:19:42 +0000 Manifest this update: Sun 21 Dec 2025 03:19:41 +0000 Manifest next update: Sun 28 Dec 2025 03:19:41 +0000 Files and hashes: 1: 0PiwBllsfAN8tUkwWzlpAACq6KQ.crl (hash: ArUjMnTxZRjey4BvKD6iK1/UCMzI5b6Jwg0a/rjoMcw=) 2: 6BA3FEA4CCBD11EEBADDFC4AC4F9AE02.roa (hash: qBQp3vvSD9elb8dQbwCPuGirBXWWVwR3GT0tS3LqEZA=) 3: D0CB00D4CCBD11EEAC4BCD4BC4F9AE02.roa (hash: tE5MO0yGqfdQRPhR9mD7EUVj7T64niX8BINnA3y1Amk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.crl rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 03:19:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91754C0, serialNumber=D0F8B006596C7C037CB549305B39690000AAE8A4 Validity Not Before: Dec 21 03:19:41 2025 GMT Not After : Dec 28 03:19:41 2025 GMT Subject: CN=6947674e-b973 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c4:6e:5e:5f:5a:d0:25:41:29:b8:3d:81:17: c8:7f:39:af:fb:32:94:6a:9e:29:3b:64:9b:17:73: 9e:81:b9:9d:95:19:a9:5d:97:ef:f7:99:31:96:40: dd:17:e7:d9:e2:07:59:da:11:a8:2d:6b:4a:5c:e0: ea:23:85:19:5f:8e:44:29:e5:db:75:ae:55:db:2d: 64:dc:8c:35:f8:87:6a:aa:50:86:eb:59:12:50:b6: be:5c:22:9b:15:07:c4:24:ed:3a:42:ef:60:e9:fb: 7a:13:69:9a:3e:94:f6:4d:90:0b:17:2d:e9:06:8b: f1:1c:b2:27:d6:8d:2e:08:88:41:1d:23:6d:5f:0a: b1:94:4f:53:46:98:98:5c:f1:7d:ff:1c:e0:ef:63: 73:03:35:2c:66:53:6e:9d:0a:09:ed:24:c4:bd:25: 6b:3f:a3:0d:4f:b9:2c:09:30:88:f3:4c:5c:33:7c: 04:16:48:45:35:c1:5e:27:33:55:64:98:88:89:34: 36:df:66:ba:56:cc:cc:56:be:fc:0b:79:fe:21:e1: e9:41:1b:10:bd:94:01:1f:f5:42:98:90:c0:85:12: e0:32:0d:39:b1:8c:89:cb:60:40:bd:9a:b6:ed:00: b3:da:a5:d3:98:f0:c4:5e:2a:89:e3:14:34:3c:fc: 63:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:9D:A7:B7:66:48:17:8B:2F:AC:21:87:01:A6:91:2F:B4:35:39:83 X509v3 Authority Key Identifier: keyid:D0:F8:B0:06:59:6C:7C:03:7C:B5:49:30:5B:39:69:00:00:AA:E8:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:a6:66:0d:90:19:a1:37:eb:9e:20:72:75:2e:69:d9:6a:ca: 2d:b7:ff:75:45:4f:39:be:3c:a2:dc:d8:2d:6f:83:5c:d4:f4: d2:a5:20:aa:ee:a6:8a:51:68:c1:95:c0:88:74:07:39:d2:d4: cb:a1:67:15:4a:b0:1a:b2:2f:52:d5:e9:9f:41:7c:5c:54:b1: 32:59:d0:80:b1:06:d3:80:09:40:e7:7e:11:a8:c3:70:86:13: 50:1e:c5:7f:2a:c9:19:1c:cb:51:17:e9:1e:68:91:a6:15:3c: 16:6b:9a:65:f3:22:c1:35:76:03:51:42:b3:ad:e5:75:39:d9: bf:86:d9:ee:dd:38:2f:1a:11:79:62:cb:a4:d4:16:48:1c:55: dc:34:2b:9e:59:0d:a0:40:d2:f9:ec:14:b7:b8:d2:35:08:71: bc:f8:dd:a1:e7:83:df:1d:ba:21:f7:6d:5f:03:25:e1:6c:d4: ff:aa:31:28:35:24:d2:94:81:a0:da:92:00:d8:3c:72:3b:4b: 4e:1f:66:90:6f:81:a6:62:3f:ab:e8:05:42:96:89:ab:9e:d0: 78:91:64:16:61:62:34:d7:4f:e6:18:01:c5:f7:da:e2:6d:ca: fb:98:0b:a1:6c:7c:19:53:12:78:7b:80:86:8e:03:91:5e:58: e0:88:f8:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU0QzAxMTAvBgNVBAUTKEQwRjhCMDA2NTk2QzdDMDM3Q0I1NDkzMDVCMzk2OTAw MDBBQUU4QTQwHhcNMjUxMjIxMDMxOTQxWhcNMjUxMjI4MDMxOTQxWjAYMRYwFAYD VQQDDA02OTQ3Njc0ZS1iOTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtsRuXl9a0CVBKbg9gRfIfzmv+zKUap4pO2SbF3OegbmdlRmpXZfv95kxlkDd F+fZ4gdZ2hGoLWtKXODqI4UZX45EKeXbda5V2y1k3Iw1+IdqqlCG61kSULa+XCKb FQfEJO06Qu9g6ft6E2maPpT2TZALFy3pBovxHLIn1o0uCIhBHSNtXwqxlE9TRpiY XPF9/xzg72NzAzUsZlNunQoJ7STEvSVrP6MNT7ksCTCI80xcM3wEFkhFNcFeJzNV ZJiIiTQ232a6VszMVr78C3n+IeHpQRsQvZQBH/VCmJDAhRLgMg05sYyJy2BAvZq2 7QCz2qXTmPDEXiqJ4xQ0PPxjUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAGdp7dm SBeLL6whhwGmkS+0NTmDMB8GA1UdIwQYMBaAFND4sAZZbHwDfLVJMFs5aQAAquik MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTRDMC9GRURGNTcyRUND QkIxMUVFOEEwRjc3NDhDNEY5QUUwMi8wUGl3Qmxsc2ZBTjh0VWt3V3pscEFBQ3E2 S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBQaXdCbGxzZkFOOHRVa3dXemxwQUFDcTZLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTRDMC9GRURGNTcyRUNDQkIxMUVFOEEwRjc3NDhDNEY5QUUwMi8wUGl3Qmxsc2ZB Tjh0VWt3V3pscEFBQ3E2S1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfpmYNkBmhN+ueIHJ1LmnZasott/91RU85vjyi3Ngtb4Nc1PTSpSCq 7qaKUWjBlcCIdAc50tTLoWcVSrAasi9S1emfQXxcVLEyWdCAsQbTgAlA534RqMNw hhNQHsV/KskZHMtRF+keaJGmFTwWa5pl8yLBNXYDUUKzreV1Odm/htnu3TgvGhF5 Ysuk1BZIHFXcNCueWQ2gQNL57BS3uNI1CHG8+N2h54PfHboh921fAyXhbNT/qjEo NSTSlIGg2pIA2DxyO0tOH2aQb4GmYj+r6AVClomrntB4kWQWYWI010/mGAHF99ri bcr7mAuhbHwZUxJ4e4CGjgORXljgiPho -----END CERTIFICATE-----Generated at Tue Dec 23 00:32:14 2025 by rpki-client