This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft File: piPcBe58I3DKREMQhN5RMh83pwQ.mft (raw, json) Hash identifier: RI5dfK+Q+9h+SfcQBC6qonC9k2RUJSQyBaAn6J8g/z4= Subject key identifier: F7:58:6B:E8:B1:76:32:0F:B4:E3:2C:1D:72:A7:43:FF:7F:9F:AB:DF Authority key identifier: A6:23:DC:05:EE:7C:23:70:CA:44:43:10:84:DE:51:32:1F:37:A7:04 Certificate issuer: /CN=A9146179/serialNumber=A623DC05EE7C2370CA44431084DE51321F37A704 Certificate serial: C8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft Manifest number: C7 Signing time: Sun 21 Dec 2025 04:56:35 +0000 Manifest this update: Sun 21 Dec 2025 04:56:35 +0000 Manifest next update: Sun 28 Dec 2025 04:56:35 +0000 Files and hashes: 1: piPcBe58I3DKREMQhN5RMh83pwQ.crl (hash: hcen2WxNpKjQDc/vkxQZ39qRgbNw0OQNBR8JUiacv7g=) 2: B93E11C0AA7C11EFA2125D79C4F9AE02.roa (hash: L6gwOkLW0S9oSXFYmJ2NgzIUWM0zCt+FTxcWMzfbAlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.crl rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 04:56:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146179, serialNumber=A623DC05EE7C2370CA44431084DE51321F37A704 Validity Not Before: Dec 21 04:56:35 2025 GMT Not After : Dec 28 04:56:35 2025 GMT Subject: CN=69477e03-6643 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:4f:23:04:85:f4:b4:87:d9:f6:47:c6:86:d2: 50:fc:c5:28:83:a5:32:1c:41:72:d4:d8:80:9f:02: e3:75:10:33:87:63:2a:48:5f:ce:6e:1a:48:f0:f4: a0:ec:6b:dc:80:59:f9:fb:11:69:7a:69:51:3e:1c: fa:0c:c2:47:de:43:14:0d:dc:cc:5b:ce:83:bc:4f: a5:07:49:3c:00:a6:96:60:ba:33:23:8d:68:58:47: f3:a8:58:44:cf:48:63:af:52:26:70:81:36:8e:41: 97:0f:e1:61:0e:ac:3e:43:57:82:27:91:68:8c:22: e3:52:56:c5:db:12:85:d1:55:d8:3a:06:d7:37:cd: b3:3b:43:74:b9:a9:f6:c0:61:da:1f:4e:d8:ae:fd: 29:70:a4:19:86:55:2c:a7:1d:b1:ac:be:65:94:3d: 3c:1e:80:04:ca:aa:20:c0:94:5f:3a:10:b4:a5:b0: b0:07:d5:90:89:47:72:66:ba:e4:56:7f:b5:88:c1: 04:9d:81:48:7c:c0:20:d5:8f:5d:01:5e:77:8d:8a: 8c:c0:d2:cb:e4:23:8e:3c:39:50:83:99:11:76:a9: 90:5f:c6:e5:6f:a4:67:9f:4b:4a:48:3c:54:6b:97: 2a:b1:08:c6:f7:08:fc:33:6f:02:5e:00:af:49:20: 35:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:58:6B:E8:B1:76:32:0F:B4:E3:2C:1D:72:A7:43:FF:7F:9F:AB:DF X509v3 Authority Key Identifier: keyid:A6:23:DC:05:EE:7C:23:70:CA:44:43:10:84:DE:51:32:1F:37:A7:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:4d:db:10:62:f0:4f:af:2c:2b:63:eb:7e:2f:24:52:af:07: e0:c6:cc:ef:23:44:e0:8c:c8:dd:8e:1d:0c:4d:06:2f:be:ca: 1b:68:13:78:64:45:89:a9:40:1a:b3:14:8b:04:1a:f1:ae:21: 2c:b9:64:b7:d9:40:27:c0:fa:77:b5:d8:5f:1d:13:29:6c:42: b3:df:44:da:a2:1a:1c:2f:84:e7:83:65:e4:0e:02:85:54:f4: 5e:3e:1d:c4:fa:24:cb:13:8b:7b:92:17:58:d4:c3:fc:85:6f: 92:e9:54:02:06:39:78:a3:cf:92:f9:6e:63:74:31:c8:b5:0f: ab:ce:22:d8:6b:ac:09:28:16:48:eb:a1:0d:c7:c1:fa:c0:13: 79:3e:85:b6:31:9c:c1:9a:05:bb:1e:42:76:03:d4:67:ac:de: bb:f7:95:a4:ec:53:20:1c:72:d2:a7:eb:c6:8d:82:a1:f4:93: 0a:11:00:d8:d4:1c:08:dd:f2:37:81:d8:3f:39:ed:8e:ca:43: 66:1e:bd:de:84:d2:62:66:76:4e:44:0f:6c:c4:b7:b4:be:45: d0:a0:6b:96:70:28:b4:92:0f:1a:af:ed:f5:b3:2a:bb:59:be: 65:60:cc:7f:9c:eb:80:00:dc:dd:d3:e2:61:d4:c9:ea:cb:72: 74:cf:7f:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYxNzkxMTAvBgNVBAUTKEE2MjNEQzA1RUU3QzIzNzBDQTQ0NDMxMDg0REU1MTMy MUYzN0E3MDQwHhcNMjUxMjIxMDQ1NjM1WhcNMjUxMjI4MDQ1NjM1WjAYMRYwFAYD VQQDDA02OTQ3N2UwMy02NjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqk8jBIX0tIfZ9kfGhtJQ/MUog6UyHEFy1NiAnwLjdRAzh2MqSF/ObhpI8PSg 7GvcgFn5+xFpemlRPhz6DMJH3kMUDdzMW86DvE+lB0k8AKaWYLozI41oWEfzqFhE z0hjr1ImcIE2jkGXD+FhDqw+Q1eCJ5FojCLjUlbF2xKF0VXYOgbXN82zO0N0uan2 wGHaH07Yrv0pcKQZhlUspx2xrL5llD08HoAEyqogwJRfOhC0pbCwB9WQiUdyZrrk Vn+1iMEEnYFIfMAg1Y9dAV53jYqMwNLL5COOPDlQg5kRdqmQX8blb6Rnn0tKSDxU a5cqsQjG9wj8M28CXgCvSSA1LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPdYa+ix djIPtOMsHXKnQ/9/n6vfMB8GA1UdIwQYMBaAFKYj3AXufCNwykRDEITeUTIfN6cE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjE3OS80QkZEOUJCQ0FB N0MxMUVGQTMzQkZENzdDNEY5QUUwMi9waVBjQmU1OEkzREtSRU1RaE41Uk1oODNw d1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BpUGNCZTU4STNES1JFTVFoTjVSTWg4M3B3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjE3OS80QkZEOUJCQ0FBN0MxMUVGQTMzQkZENzdDNEY5QUUwMi9waVBjQmU1OEkz REtSRU1RaE41Uk1oODNwd1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2TdsQYvBPrywrY+t+LyRSrwfgxszvI0TgjMjdjh0MTQYvvsobaBN4 ZEWJqUAasxSLBBrxriEsuWS32UAnwPp3tdhfHRMpbEKz30TaohocL4Tng2XkDgKF VPRePh3E+iTLE4t7khdY1MP8hW+S6VQCBjl4o8+S+W5jdDHItQ+rziLYa6wJKBZI 66ENx8H6wBN5PoW2MZzBmgW7HkJ2A9RnrN6795Wk7FMgHHLSp+vGjYKh9JMKEQDY 1BwI3fI3gdg/Oe2OykNmHr3ehNJiZnZORA9sxLe0vkXQoGuWcCi0kg8ar+31syq7 Wb5lYMx/nOuAANzd0+Jh1Mnqy3J0z38t -----END CERTIFICATE-----Generated at Mon Dec 22 22:24:49 2025 by rpki-client