This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft File: PnIyBI3L0sabqyJbikIhYEbBiyU.mft (raw, json) Hash identifier: NzlXGoEbHyelun0KWATMxM8MDixJHZunwX5g8+Vpjwk= Subject key identifier: 17:14:E9:B6:87:27:48:DB:74:FD:FC:30:8B:A6:32:E4:8E:C9:52:F8 Authority key identifier: 3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 Certificate issuer: /CN=A911CA78/serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Certificate serial: 01E0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft Manifest number: 01DB Signing time: Tue 02 Dec 2025 18:32:20 +0000 Manifest this update: Tue 02 Dec 2025 18:32:20 +0000 Manifest next update: Tue 09 Dec 2025 18:32:19 +0000 Files and hashes: 1: PnIyBI3L0sabqyJbikIhYEbBiyU.crl (hash: +UBT8sUMFCclYdt/5qtZs0z4op2ac/NMrrVGS23k7YA=) 2: 1ABB6C4E17DB11EE92B1C26FC4F9AE02.roa (hash: 5FCghaTHfjGe3056E9DhPQUiNt12XMkuoaYKrbjkSQ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 18:32:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 480 (0x1e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Validity Not Before: Dec 2 18:32:20 2025 GMT Not After : Dec 9 18:32:19 2025 GMT Subject: CN=692f30b4-132d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b6:89:58:ab:0b:8c:b2:e4:8d:c6:e9:2e:22: 5d:cf:5f:1f:30:13:72:9c:d8:c9:78:61:f5:b3:23: b0:e5:96:19:82:1c:82:90:27:18:35:c8:40:74:34: 83:9b:9b:a1:61:68:71:af:07:7e:61:84:56:b5:39: 55:20:74:4d:77:2d:fa:6e:4c:06:0f:76:97:f4:99: 6f:8b:3a:a1:14:65:ea:16:34:12:9e:8e:0e:7a:13: 45:ad:78:6f:1f:f5:42:6e:da:4c:ea:96:bc:c1:d2: aa:4d:19:cb:04:27:5a:af:8d:82:e0:14:fe:ca:f4: 1f:e3:8e:37:f1:76:1c:9c:ed:29:7a:96:00:4c:e0: 1f:f9:50:35:09:38:71:2e:05:54:cd:dd:27:18:3c: f6:8a:63:63:db:3f:fc:d3:1e:0c:34:95:93:ec:31: 3a:c8:a6:7a:e3:6d:fc:b7:88:72:8a:e4:85:e9:e8: 60:b9:39:81:3f:f1:c1:02:9e:0d:d2:75:62:7d:0f: b7:f3:8a:01:04:18:c8:96:f8:be:29:16:ed:12:88: a2:01:02:63:17:a8:fb:b1:38:ee:f2:95:87:32:c2: cb:b7:39:0f:d5:14:49:75:c7:1a:79:0e:1f:91:cc: b9:b4:7d:93:35:59:e1:45:2b:ed:53:36:fe:28:c8: 86:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:14:E9:B6:87:27:48:DB:74:FD:FC:30:8B:A6:32:E4:8E:C9:52:F8 X509v3 Authority Key Identifier: keyid:3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:a1:dd:77:80:15:b3:35:cf:8e:d9:b4:ad:e2:2c:9e:6c:3f: 88:f7:3f:5d:da:fe:c4:1e:8b:c5:5f:41:88:30:5a:56:71:73: 73:a2:66:18:65:b5:eb:cd:e8:c7:7f:6d:77:40:e4:2a:92:04: a7:54:05:78:81:71:ff:3b:12:b6:19:d6:99:69:65:7b:51:76: 2a:be:96:cd:73:19:6b:68:92:30:a4:fa:ff:f4:b2:1e:3b:a3: 52:7a:f6:c1:39:4f:df:51:40:da:b9:a0:99:aa:98:f6:e7:93: 58:22:ef:0f:ae:5d:0d:b6:b8:82:b1:ed:10:bd:9e:5c:ec:de: e6:b6:e9:fd:34:3c:0e:a9:37:7f:51:af:b6:7d:fa:ad:71:e9: b1:ac:23:1e:24:b6:a3:a2:37:10:13:4d:38:80:46:52:f2:58: 5d:7e:80:de:75:53:07:92:1a:7b:63:76:f2:14:61:43:8b:d7: 6b:19:a6:73:31:55:57:c7:2e:15:7d:f1:cc:70:9d:fe:6a:89: 01:0f:72:8f:cc:b3:57:f6:00:8b:91:61:ab:c7:f6:64:c2:8e: af:b0:de:af:95:25:26:85:5a:60:4b:92:52:13:b8:a5:7c:84: bc:70:db:5b:50:71:08:2c:5e:94:24:b4:91:29:7a:87:db:2f: aa:0a:40:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDNFNzIzMjA0OERDQkQyQzY5QkFCMjI1QjhBNDIyMTYw NDZDMThCMjUwHhcNMjUxMjAyMTgzMjIwWhcNMjUxMjA5MTgzMjE5WjAYMRYwFAYD VQQDEw02OTJmMzBiNC0xMzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuLaJWKsLjLLkjcbpLiJdz18fMBNynNjJeGH1syOw5ZYZghyCkCcYNchAdDSD m5uhYWhxrwd+YYRWtTlVIHRNdy36bkwGD3aX9JlvizqhFGXqFjQSno4OehNFrXhv H/VCbtpM6pa8wdKqTRnLBCdar42C4BT+yvQf44438XYcnO0pepYATOAf+VA1CThx LgVUzd0nGDz2imNj2z/80x4MNJWT7DE6yKZ64238t4hyiuSF6ehguTmBP/HBAp4N 0nVifQ+384oBBBjIlvi+KRbtEoiiAQJjF6j7sTju8pWHMsLLtzkP1RRJdccaeQ4f kcy5tH2TNVnhRSvtUzb+KMiGzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBcU6baH J0jbdP38MIumMuSOyVL4MB8GA1UdIwQYMBaAFD5yMgSNy9LGm6siW4pCIWBGwYsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC8wMjhGNThGRTE2 RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBzYWJxeUpiaWtJaFlFYkJp eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BuSXlCSTNMMHNhYnF5SmJpa0loWUViQml5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E3OC8wMjhGNThGRTE2RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBz YWJxeUpiaWtJaFlFYkJpeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhod13gBWzNc+O2bSt4iyebD+I9z9d2v7EHovFX0GIMFpWcXNzomYY ZbXrzejHf213QOQqkgSnVAV4gXH/OxK2GdaZaWV7UXYqvpbNcxlraJIwpPr/9LIe O6NSevbBOU/fUUDauaCZqpj255NYIu8Prl0NtriCse0QvZ5c7N7mtun9NDwOqTd/ Ua+2ffqtcemxrCMeJLajojcQE004gEZS8lhdfoDedVMHkhp7Y3byFGFDi9drGaZz MVVXxy4VffHMcJ3+aokBD3KPzLNX9gCLkWGrx/Zkwo6vsN6vlSUmhVpgS5JSE7il fIS8cNtbUHEILF6UJLSRKXqH2y+qCkDB -----END CERTIFICATE-----Generated at Wed Dec 3 14:56:53 2025 by rpki-client