This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft File: pi3nVqmxabvP97VW1DMAlV1A4yA.mft (raw, json) Hash identifier: M7aRFHIt4UzTQgyufwUfbiJW2qP8vGwPQ6q59glhDl0= Subject key identifier: 7B:2C:BE:D6:B2:E5:DC:FB:D3:F4:BE:DD:3A:FB:6E:40:5D:6D:06:FB Authority key identifier: A6:2D:E7:56:A9:B1:69:BB:CF:F7:B5:56:D4:33:00:95:5D:40:E3:20 Certificate issuer: /CN=A91104BD/serialNumber=A62DE756A9B169BBCFF7B556D43300955D40E320 Certificate serial: 0BAB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft Manifest number: 0BA4 Signing time: Mon 22 Dec 2025 18:30:12 +0000 Manifest this update: Mon 22 Dec 2025 18:30:12 +0000 Manifest next update: Mon 29 Dec 2025 18:30:12 +0000 Files and hashes: 1: pi3nVqmxabvP97VW1DMAlV1A4yA.crl (hash: QBPz2qOiR3pbQeD8p1z/knife2/RAkQ54kD+jqjUks4=) 2: D326CC30384411EA9D540B58C4F9AE02.roa (hash: y7gm3Ye3cCKsMlMiwHP3v0HJTLEmZvMTdt93lWQK5j4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.crl rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:30:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2987 (0xbab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91104BD, serialNumber=A62DE756A9B169BBCFF7B556D43300955D40E320 Validity Not Before: Dec 22 18:30:12 2025 GMT Not After : Dec 29 18:30:12 2025 GMT Subject: CN=69498e34-bc93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:3b:fc:b3:f6:d9:93:a5:09:6a:54:29:01:e6: 59:65:bf:56:bd:82:f1:95:cc:1a:7f:54:39:84:75: d6:28:ac:85:bc:a6:37:13:4f:37:bf:f7:e9:99:ee: f4:12:9b:08:d8:41:86:72:48:9f:e2:b5:ec:4a:62: 55:03:fb:32:44:f9:ad:3f:f4:7c:62:ce:bb:5f:62: 1a:d9:87:42:3c:bd:9f:86:01:34:4d:6b:09:ba:fe: d0:3f:50:8e:a9:46:da:99:da:ee:fa:bc:63:05:4f: 37:08:06:74:f1:b9:e3:8f:f6:a3:93:ec:c8:03:d8: b3:db:03:44:bc:c3:3b:6e:4a:29:a0:4f:83:d4:d7: ca:f3:30:f1:b0:f7:a8:c4:f6:5e:e2:9d:32:e7:87: 21:99:6d:0a:31:e6:92:27:f0:7f:f8:6a:69:4c:09: 2f:25:32:8b:6f:68:33:05:ce:8c:51:32:f8:b9:3e: 3e:5f:37:34:f9:9e:3b:66:4b:23:d3:a8:43:a3:ca: b5:c4:ba:68:16:45:45:9c:9e:05:54:90:1f:c4:73: 50:b8:ad:69:8a:ee:0e:b2:a5:7d:30:b8:3c:15:5f: f6:26:79:bb:3f:50:9c:72:b6:64:55:95:3e:0b:78: e9:46:6d:9b:80:c0:1c:eb:ac:a2:0b:8a:25:f8:ac: ba:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:2C:BE:D6:B2:E5:DC:FB:D3:F4:BE:DD:3A:FB:6E:40:5D:6D:06:FB X509v3 Authority Key Identifier: keyid:A6:2D:E7:56:A9:B1:69:BB:CF:F7:B5:56:D4:33:00:95:5D:40:E3:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:ea:a7:b7:eb:12:00:44:d7:7c:b6:ab:09:45:59:cf:73:23: de:57:fa:f0:c3:f1:81:67:eb:f3:9d:f5:67:50:21:c3:94:4e: 30:37:2d:24:0e:30:54:2d:d5:dc:3e:6f:42:69:6a:1f:c1:16: 0d:e5:73:0d:36:1e:98:b1:8c:c0:c5:a1:e8:55:68:55:e3:40: 61:11:27:17:6c:c8:d9:b6:cc:09:37:81:ae:a5:7f:99:5c:eb: 46:b8:a6:f6:69:2e:4d:46:46:70:9e:de:bc:52:c3:c8:7b:9e: ed:34:ed:82:eb:29:d0:e6:d7:ff:27:fb:ea:03:0d:5c:d1:50: c9:d2:89:18:3d:d8:03:d6:26:16:c5:91:1f:b1:de:33:31:36: d1:47:41:1f:8d:e0:31:7c:d1:7d:4a:ed:63:7c:73:eb:66:3a: f1:18:1a:f6:cc:33:68:37:f3:de:f4:d9:76:ef:90:cc:37:6a: d4:84:00:aa:9e:c8:36:53:cd:a4:e4:be:6e:5b:46:9d:c1:b7: cd:83:9a:ef:94:49:a3:f8:1f:0b:16:53:4b:e2:45:02:da:dc: 4a:b5:ae:f0:49:ee:b6:d8:62:9e:58:f3:23:14:25:0f:a2:36: cb:5e:6a:09:d9:e9:3e:bc:db:a5:1a:20:48:e8:dc:2b:0f:1b: a7:08:f7:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA0QkQxMTAvBgNVBAUTKEE2MkRFNzU2QTlCMTY5QkJDRkY3QjU1NkQ0MzMwMDk1 NUQ0MEUzMjAwHhcNMjUxMjIyMTgzMDEyWhcNMjUxMjI5MTgzMDEyWjAYMRYwFAYD VQQDDA02OTQ5OGUzNC1iYzkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Tv8s/bZk6UJalQpAeZZZb9WvYLxlcwaf1Q5hHXWKKyFvKY3E083v/fpme70 EpsI2EGGckif4rXsSmJVA/syRPmtP/R8Ys67X2Ia2YdCPL2fhgE0TWsJuv7QP1CO qUbamdru+rxjBU83CAZ08bnjj/ajk+zIA9iz2wNEvMM7bkopoE+D1NfK8zDxsPeo xPZe4p0y54chmW0KMeaSJ/B/+GppTAkvJTKLb2gzBc6MUTL4uT4+Xzc0+Z47Zksj 06hDo8q1xLpoFkVFnJ4FVJAfxHNQuK1piu4OsqV9MLg8FV/2Jnm7P1CccrZkVZU+ C3jpRm2bgMAc66yiC4ol+Ky6zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHssvtay 5dz70/S+3Tr7bkBdbQb7MB8GA1UdIwQYMBaAFKYt51apsWm7z/e1VtQzAJVdQOMg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDRCRC80MzczRDUwQzM4 NDMxMUVBQTYxOTJFNTNDNEY5QUUwMi9waTNuVnFteGFidlA5N1ZXMURNQWxWMUE0 eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BpM25WcW14YWJ2UDk3VlcxRE1BbFYxQTR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDRCRC80MzczRDUwQzM4NDMxMUVBQTYxOTJFNTNDNEY5QUUwMi9waTNuVnFteGFi dlA5N1ZXMURNQWxWMUE0eUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBo6qe36xIARNd8tqsJRVnPcyPeV/rww/GBZ+vznfVnUCHDlE4wNy0k DjBULdXcPm9CaWofwRYN5XMNNh6YsYzAxaHoVWhV40BhEScXbMjZtswJN4GupX+Z XOtGuKb2aS5NRkZwnt68UsPIe57tNO2C6ynQ5tf/J/vqAw1c0VDJ0okYPdgD1iYW xZEfsd4zMTbRR0EfjeAxfNF9Su1jfHPrZjrxGBr2zDNoN/Pe9Nl275DMN2rUhACq nsg2U82k5L5uW0adwbfNg5rvlEmj+B8LFlNL4kUC2txKta7wSe622GKeWPMjFCUP ojbLXmoJ2ek+vNulGiBI6NwrDxunCPcd -----END CERTIFICATE-----Generated at Tue Dec 23 16:11:32 2025 by rpki-client