This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft File: PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft (raw, json) Hash identifier: s5yAEQWnXFqkwDZN32A/+zEOmrd+c5SeW+YVCJJzZew= Subject key identifier: 84:63:9A:BE:4F:71:EB:A0:DD:D9:F0:D4:20:5A:EE:51:45:5F:DE:D2 Authority key identifier: 3C:35:87:DC:3A:F2:E9:37:EC:DB:65:A8:38:92:75:9A:41:C8:85:0B Certificate issuer: /CN=A9134B4A/serialNumber=3C3587DC3AF2E937ECDB65A83892759A41C8850B Certificate serial: 012C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft Manifest number: 0123 Signing time: Sun 21 Dec 2025 03:57:35 +0000 Manifest this update: Sun 21 Dec 2025 03:57:34 +0000 Manifest next update: Sun 28 Dec 2025 03:57:34 +0000 Files and hashes: 1: PDWH3Dry6Tfs22WoOJJ1mkHIhQs.crl (hash: f11JeCPfIRbF59n8LMBiX1y5W3KLRYKup7iURtuHskU=) 2: A63B6120238711F08D2B4460C4F9AE02.roa (hash: OMBfI+nHRaL8yyAWZKMqye5oo33aQnkkup2yUiK7Glg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.crl rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 03:57:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 300 (0x12c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134B4A, serialNumber=3C3587DC3AF2E937ECDB65A83892759A41C8850B Validity Not Before: Dec 21 03:57:34 2025 GMT Not After : Dec 28 03:57:34 2025 GMT Subject: CN=6947702e-0cf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:40:c8:75:92:61:7e:ca:00:86:40:8c:6c:62: f8:0c:8c:59:9e:12:de:44:0b:69:e8:da:5e:44:29: ed:6c:e5:6f:c1:f2:b3:f5:b7:2f:d7:37:0f:79:32: cd:b6:33:6d:38:b7:d5:de:a8:e6:e1:f5:95:bc:91: a7:15:26:73:2d:cb:c4:3b:a5:9d:5c:94:f7:bb:29: c4:5a:56:60:02:47:d6:17:3b:0c:05:4b:e1:00:01: bb:77:ac:41:28:4e:07:5e:28:93:38:89:bb:1e:ef: bf:5c:50:5d:49:e4:51:da:ac:d7:a5:36:a9:60:55: c6:e6:09:1d:b3:9a:64:90:e6:83:e4:75:56:e0:24: 1d:60:0d:16:98:5b:98:15:cf:f0:32:9a:b6:85:f2: 89:9c:c5:f5:87:c7:13:4d:6c:59:7d:4c:b8:dc:48: 7e:5a:9c:af:58:f4:d6:ba:6d:e0:75:ae:a0:b9:49: 6e:be:1a:c5:f7:d4:b7:10:2b:6b:9a:5a:4b:52:14: a9:11:e9:2b:7f:fb:92:e4:a4:eb:16:86:f7:4f:4a: 56:38:9c:05:67:69:69:da:82:bd:87:cf:d3:34:7f: a9:e0:7f:0d:28:c5:70:c1:29:2d:2a:7b:c6:7c:52: cc:e3:ca:ff:70:b1:eb:db:80:32:37:73:b0:d1:f0: 7e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:63:9A:BE:4F:71:EB:A0:DD:D9:F0:D4:20:5A:EE:51:45:5F:DE:D2 X509v3 Authority Key Identifier: keyid:3C:35:87:DC:3A:F2:E9:37:EC:DB:65:A8:38:92:75:9A:41:C8:85:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:b4:0e:8e:85:33:bb:f1:5f:74:de:da:45:2e:5f:e1:28:0d: 12:a1:a6:ce:92:38:f5:44:ad:18:a1:cc:4c:80:82:d3:94:b7: 8a:c4:77:da:2c:4d:50:00:29:42:e8:ea:a1:28:67:74:05:d4: 92:59:04:5f:64:e2:65:1c:fb:2b:89:3c:83:6e:90:57:e8:31: 19:e8:64:ed:59:04:b7:88:2f:f8:f9:61:77:21:4f:d7:99:ca: dd:87:80:30:38:fb:7e:17:eb:8b:4e:b8:59:5b:08:94:1e:eb: 31:a8:5e:03:18:14:c0:ed:3d:51:e8:1f:0a:31:af:67:a7:98: 66:15:ab:83:8b:78:4d:97:e9:91:ad:7b:67:f2:f1:ec:44:48: 10:53:93:81:33:87:60:11:e7:d9:21:13:1b:2e:30:92:35:37: 15:8f:13:c9:b8:5b:cb:82:d2:d8:f3:71:65:23:d9:09:6f:5e: 0c:7d:87:9f:23:af:14:dd:98:69:8c:71:a5:c1:73:f6:d8:92: 4b:9d:23:cf:bb:93:56:ac:88:a8:0a:28:a1:52:74:c5:bf:48: f3:f8:01:aa:da:a7:d3:17:b9:64:8b:23:d4:ea:07:09:1e:4e: bf:76:a2:a1:fe:cd:15:06:87:51:1e:5c:71:86:23:e4:61:c6: f2:ef:1b:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRCNEExMTAvBgNVBAUTKDNDMzU4N0RDM0FGMkU5MzdFQ0RCNjVBODM4OTI3NTlB NDFDODg1MEIwHhcNMjUxMjIxMDM1NzM0WhcNMjUxMjI4MDM1NzM0WjAYMRYwFAYD VQQDDA02OTQ3NzAyZS0wY2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAukDIdZJhfsoAhkCMbGL4DIxZnhLeRAtp6NpeRCntbOVvwfKz9bcv1zcPeTLN tjNtOLfV3qjm4fWVvJGnFSZzLcvEO6WdXJT3uynEWlZgAkfWFzsMBUvhAAG7d6xB KE4HXiiTOIm7Hu+/XFBdSeRR2qzXpTapYFXG5gkds5pkkOaD5HVW4CQdYA0WmFuY Fc/wMpq2hfKJnMX1h8cTTWxZfUy43Eh+WpyvWPTWum3gda6guUluvhrF99S3ECtr mlpLUhSpEekrf/uS5KTrFob3T0pWOJwFZ2lp2oK9h8/TNH+p4H8NKMVwwSktKnvG fFLM48r/cLHr24AyN3Ow0fB+VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIRjmr5P ceug3dnw1CBa7lFFX97SMB8GA1UdIwQYMBaAFDw1h9w68uk37NtlqDiSdZpByIUL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEI0QS9FMjY0OTlBMjJG ODkxMUVGQTNEMDRBNkJDNEY5QUUwMi9QRFdIM0RyeTZUZnMyMldvT0pKMW1rSElo UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BEV0gzRHJ5NlRmczIyV29PSkoxbWtISWhRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEI0QS9FMjY0OTlBMjJGODkxMUVGQTNEMDRBNkJDNEY5QUUwMi9QRFdIM0RyeTZU ZnMyMldvT0pKMW1rSEloUXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCtA6OhTO78V903tpFLl/hKA0SoabOkjj1RK0YocxMgILTlLeKxHfa LE1QAClC6OqhKGd0BdSSWQRfZOJlHPsriTyDbpBX6DEZ6GTtWQS3iC/4+WF3IU/X mcrdh4AwOPt+F+uLTrhZWwiUHusxqF4DGBTA7T1R6B8KMa9np5hmFauDi3hNl+mR rXtn8vHsREgQU5OBM4dgEefZIRMbLjCSNTcVjxPJuFvLgtLY83FlI9kJb14MfYef I68U3ZhpjHGlwXP22JJLnSPPu5NWrIioCiihUnTFv0jz+AGq2qfTF7lkiyPU6gcJ Hk6/dqKh/s0VBodRHlxxhiPkYcby7xtE -----END CERTIFICATE-----Generated at Mon Dec 22 20:32:23 2025 by rpki-client