This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft File: piPcBe58I3DKREMQhN5RMh83pwQ.mft (raw, json) Hash identifier: GoBrF2XIcGAWfKKlyZoPePnWexBSHYcfbQZ5WdHsBCw= Subject key identifier: 55:13:12:7D:73:3D:C8:79:EF:F2:16:37:3B:90:3D:A9:04:B8:D4:0D Authority key identifier: A6:23:DC:05:EE:7C:23:70:CA:44:43:10:84:DE:51:32:1F:37:A7:04 Certificate issuer: /CN=A9146179/serialNumber=A623DC05EE7C2370CA44431084DE51321F37A704 Certificate serial: BF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft Manifest number: BE Signing time: Wed 03 Dec 2025 04:16:06 +0000 Manifest this update: Wed 03 Dec 2025 04:16:06 +0000 Manifest next update: Wed 10 Dec 2025 04:16:06 +0000 Files and hashes: 1: piPcBe58I3DKREMQhN5RMh83pwQ.crl (hash: Q27zaDvLxf5b7z7Zd6iIAvaWz1q/bWYR9wnea+CLYOo=) 2: B93E11C0AA7C11EFA2125D79C4F9AE02.roa (hash: L6gwOkLW0S9oSXFYmJ2NgzIUWM0zCt+FTxcWMzfbAlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.crl rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 04:16:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146179, serialNumber=A623DC05EE7C2370CA44431084DE51321F37A704 Validity Not Before: Dec 3 04:16:06 2025 GMT Not After : Dec 10 04:16:06 2025 GMT Subject: CN=692fb986-9a01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:64:eb:80:6d:40:f6:7b:68:76:b6:68:52:28: f3:b6:37:dd:11:d3:c4:db:e4:b2:37:ed:2f:20:f0: e4:9d:e2:7b:62:c0:5b:30:9d:cf:00:78:7f:9f:22: dd:c5:d1:0f:d1:64:8d:0d:08:8a:36:51:12:27:29: 82:75:07:58:4f:d7:76:97:96:5c:2c:f7:94:0f:8f: 14:5e:f2:68:38:d0:a8:42:d6:1c:0f:25:02:fe:5d: 89:9a:e9:82:27:b3:77:81:5e:68:dd:bc:e0:cd:66: 9a:ab:72:74:63:9f:b4:4d:7a:fc:a3:18:fd:04:13: 40:70:8c:36:53:ba:c4:1a:d9:85:7c:28:c0:35:08: 2d:3f:5b:ba:00:cd:23:96:ab:21:35:10:3c:70:38: 70:ab:9f:a7:35:d4:bf:38:5d:0f:f1:67:2d:f2:ba: 12:57:e4:a7:35:bc:cb:76:b9:72:4b:c6:6e:d9:02: 9c:f7:70:69:72:2b:e5:c5:a3:5f:d4:f8:12:d4:52: 9e:d5:c1:8b:37:8a:ea:e7:08:2c:46:60:ed:0d:af: 44:54:c2:7e:1b:40:eb:8d:21:73:d7:e6:06:ba:6e: d4:0e:63:0c:af:c2:9a:22:e9:95:84:dc:55:de:1f: c6:57:69:b1:9e:b6:ba:df:8f:bc:c0:2d:db:cb:cd: a1:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:13:12:7D:73:3D:C8:79:EF:F2:16:37:3B:90:3D:A9:04:B8:D4:0D X509v3 Authority Key Identifier: keyid:A6:23:DC:05:EE:7C:23:70:CA:44:43:10:84:DE:51:32:1F:37:A7:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:ea:6b:a9:14:cf:67:64:8e:9a:53:38:fb:d1:ec:77:f7:2b: 25:52:78:4f:69:b4:96:94:98:ee:50:07:ab:32:1a:1a:3b:3a: bc:8e:33:a4:2b:ea:81:ac:48:90:7e:7c:7d:03:77:03:63:b9: ef:5b:ff:07:15:18:4c:27:22:88:c9:94:75:1d:fe:cc:62:6f: c7:9f:b3:8f:74:ab:f9:aa:6a:76:b2:b8:62:b3:31:d2:f9:5d: 95:71:ad:47:3d:70:d9:c7:6c:57:f8:8c:8e:58:31:16:bb:0c: 6d:aa:77:6a:0a:90:06:da:1b:dc:b0:ee:77:1e:bd:02:0e:1d: ca:6f:48:9e:31:40:9e:09:26:d9:fd:e0:4b:84:ff:53:df:50: 74:2b:f7:5e:74:3d:2c:0a:48:1d:e5:10:b2:fe:8c:15:b5:ec: 1d:b4:ae:7c:c4:f7:ed:d1:a4:04:05:e2:0a:da:9f:76:2d:ac: 9c:03:9e:a2:d3:2a:df:86:27:3a:ec:1c:c8:aa:ac:c3:c1:18: 4e:6b:15:c4:b5:08:6b:41:de:22:7a:4e:c9:15:c9:a1:9c:29: a3:79:a4:a8:a6:fe:53:af:05:dd:a8:04:f2:34:07:f6:77:cf: ae:e3:a9:ea:2c:d9:9a:8e:af:19:64:3d:ac:9c:1e:67:fe:2f: f2:02:c3:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYxNzkxMTAvBgNVBAUTKEE2MjNEQzA1RUU3QzIzNzBDQTQ0NDMxMDg0REU1MTMy MUYzN0E3MDQwHhcNMjUxMjAzMDQxNjA2WhcNMjUxMjEwMDQxNjA2WjAYMRYwFAYD VQQDEw02OTJmYjk4Ni05YTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtGTrgG1A9ntodrZoUijztjfdEdPE2+SyN+0vIPDkneJ7YsBbMJ3PAHh/nyLd xdEP0WSNDQiKNlESJymCdQdYT9d2l5ZcLPeUD48UXvJoONCoQtYcDyUC/l2JmumC J7N3gV5o3bzgzWaaq3J0Y5+0TXr8oxj9BBNAcIw2U7rEGtmFfCjANQgtP1u6AM0j lqshNRA8cDhwq5+nNdS/OF0P8Wct8roSV+SnNbzLdrlyS8Zu2QKc93BpcivlxaNf 1PgS1FKe1cGLN4rq5wgsRmDtDa9EVMJ+G0DrjSFz1+YGum7UDmMMr8KaIumVhNxV 3h/GV2mxnra634+8wC3by82hmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFUTEn1z Pch57/IWNzuQPakEuNQNMB8GA1UdIwQYMBaAFKYj3AXufCNwykRDEITeUTIfN6cE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjE3OS80QkZEOUJCQ0FB N0MxMUVGQTMzQkZENzdDNEY5QUUwMi9waVBjQmU1OEkzREtSRU1RaE41Uk1oODNw d1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BpUGNCZTU4STNES1JFTVFoTjVSTWg4M3B3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjE3OS80QkZEOUJCQ0FBN0MxMUVGQTMzQkZENzdDNEY5QUUwMi9waVBjQmU1OEkz REtSRU1RaE41Uk1oODNwd1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBu6mupFM9nZI6aUzj70ex39yslUnhPabSWlJjuUAerMhoaOzq8jjOk K+qBrEiQfnx9A3cDY7nvW/8HFRhMJyKIyZR1Hf7MYm/Hn7OPdKv5qmp2srhiszHS +V2Vca1HPXDZx2xX+IyOWDEWuwxtqndqCpAG2hvcsO53Hr0CDh3Kb0ieMUCeCSbZ /eBLhP9T31B0K/dedD0sCkgd5RCy/owVtewdtK58xPft0aQEBeIK2p92LaycA56i 0yrfhic67BzIqqzDwRhOaxXEtQhrQd4iek7JFcmhnCmjeaSopv5TrwXdqATyNAf2 d8+u46nqLNmajq8ZZD2snB5n/i/yAsPS -----END CERTIFICATE-----Generated at Wed Dec 3 14:56:54 2025 by rpki-client