This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915DE6C/74FBB3D643D411F090B47668C4F9AE02/pbtkBP5TtawGtBCz1s2gNKITHpA.mft File: pbtkBP5TtawGtBCz1s2gNKITHpA.mft (raw, json) Hash identifier: j43haMVDYFOMDHRxPo+b2UUiyLDEfTxpNpMqL5DPKi0= Subject key identifier: 51:6A:C6:D2:7F:56:F6:69:EA:AF:2C:0C:08:14:49:8F:C6:B4:BC:EE Authority key identifier: A5:BB:64:04:FE:53:B5:AC:06:B4:10:B3:D6:CD:A0:34:A2:13:1E:90 Certificate issuer: /CN=A915DE6C/serialNumber=A5BB6404FE53B5AC06B410B3D6CDA034A2131E90 Certificate serial: 66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pbtkBP5TtawGtBCz1s2gNKITHpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DE6C/74FBB3D643D411F090B47668C4F9AE02/pbtkBP5TtawGtBCz1s2gNKITHpA.mft Manifest number: 66 Signing time: Tue 23 Dec 2025 05:53:12 +0000 Manifest this update: Tue 23 Dec 2025 05:53:12 +0000 Manifest next update: Tue 30 Dec 2025 05:53:12 +0000 Files and hashes: 1: pbtkBP5TtawGtBCz1s2gNKITHpA.crl (hash: JkXlRb0UXBAZv6gOcee0JiEWVBho8x0jXq9d9oKupoE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DE6C/74FBB3D643D411F090B47668C4F9AE02/pbtkBP5TtawGtBCz1s2gNKITHpA.crl rsync://rpki.apnic.net/member_repository/A915DE6C/74FBB3D643D411F090B47668C4F9AE02/pbtkBP5TtawGtBCz1s2gNKITHpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pbtkBP5TtawGtBCz1s2gNKITHpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:53:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DE6C, serialNumber=A5BB6404FE53B5AC06B410B3D6CDA034A2131E90 Validity Not Before: Dec 23 05:53:12 2025 GMT Not After : Dec 30 05:53:12 2025 GMT Subject: CN=694a2e48-ad6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:e3:63:01:60:8d:9d:27:7c:0c:13:a0:2a:4e: f5:a2:7a:2b:05:2f:07:29:9b:5c:99:bb:08:48:9e: b3:db:aa:c1:7e:2b:3f:46:9d:aa:bf:3e:3d:7a:b4: 2b:b4:d4:bb:21:94:c4:03:0a:15:bf:32:14:06:6a: 5f:f8:74:b4:ba:3e:cf:44:5a:88:c7:43:fc:0d:f9: dd:5a:2a:56:68:55:8a:53:1e:0d:e0:73:ce:8a:10: fa:d0:d8:3e:07:20:d3:47:49:ac:22:dc:7b:dd:02: 4c:3b:61:f5:09:6d:d3:d0:60:92:aa:4a:da:b5:b6: 44:94:22:64:92:2f:b5:6c:d4:fd:1a:76:d8:3e:bc: d2:30:03:a6:ef:d2:81:b6:42:d9:ed:77:bc:47:41: 8b:75:b7:63:a4:65:8b:c0:cf:55:c2:7f:6a:0b:15: f9:7b:5b:80:a3:db:56:0a:26:87:3d:14:a9:36:a0: 26:81:e9:8b:db:b5:29:f2:e5:48:32:c4:9a:b3:31: 45:bc:53:cc:ce:a6:c6:d7:ea:33:2e:07:2c:ac:19: 91:05:b5:61:89:b3:9f:2b:6c:df:dc:66:a2:b2:0d: 64:1b:99:4b:66:38:f8:b5:38:8d:fa:c5:08:ee:aa: 19:a4:27:bb:13:78:e1:61:7c:11:d8:02:45:04:9d: 71:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:6A:C6:D2:7F:56:F6:69:EA:AF:2C:0C:08:14:49:8F:C6:B4:BC:EE X509v3 Authority Key Identifier: keyid:A5:BB:64:04:FE:53:B5:AC:06:B4:10:B3:D6:CD:A0:34:A2:13:1E:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DE6C/74FBB3D643D411F090B47668C4F9AE02/pbtkBP5TtawGtBCz1s2gNKITHpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pbtkBP5TtawGtBCz1s2gNKITHpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DE6C/74FBB3D643D411F090B47668C4F9AE02/pbtkBP5TtawGtBCz1s2gNKITHpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:29:80:e7:ed:44:56:ce:c7:9a:b2:e9:88:62:94:40:68:2f: 15:bc:cc:d8:a5:e1:1c:42:ea:5e:82:e5:10:b9:84:98:f3:30: cd:9b:d5:8d:f4:69:83:11:28:77:c9:d2:94:ab:5d:49:22:ec: 2a:ca:53:22:d5:c6:cf:df:22:d9:20:a4:fe:2a:36:b7:11:1e: a9:ef:b7:48:23:8d:de:17:e2:99:01:94:39:cf:f6:d0:32:ac: e4:99:d1:42:f6:3d:fa:ba:38:36:f1:72:b5:18:2c:f1:ff:6f: 12:c3:9a:5c:29:99:8f:51:84:2e:a1:f1:f3:bb:17:b9:51:84: cc:86:37:01:1d:13:c4:96:3e:39:dd:df:48:bf:a0:9e:a3:f6: ec:22:98:4f:b5:42:5a:bd:3c:7f:42:f1:cc:ab:de:94:42:08: aa:b2:c8:ad:75:56:c9:00:fa:4f:12:fb:e6:f6:48:37:17:cf: e9:4f:f5:21:96:37:71:2f:f9:bf:f7:de:8b:8c:46:b6:de:09: 30:f2:a9:c9:c7:9c:b6:09:f1:ee:79:bc:86:3d:91:91:68:e5: 06:5d:32:8b:63:9d:84:f7:7f:a0:de:11:70:bb:bd:38:24:21: ea:03:a8:48:fd:84:ae:c3:40:34:1d:fa:bf:d2:87:26:9f:69: 40:ba:3b:39 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 REU2QzExMC8GA1UEBRMoQTVCQjY0MDRGRTUzQjVBQzA2QjQxMEIzRDZDREEwMzRB MjEzMUU5MDAeFw0yNTEyMjMwNTUzMTJaFw0yNTEyMzAwNTUzMTJaMBgxFjAUBgNV BAMMDTY5NGEyZTQ4LWFkNmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD242MBYI2dJ3wME6AqTvWieisFLwcpm1yZuwhInrPbqsF+Kz9Gnaq/Pj16tCu0 1LshlMQDChW/MhQGal/4dLS6Ps9EWojHQ/wN+d1aKlZoVYpTHg3gc86KEPrQ2D4H INNHSawi3HvdAkw7YfUJbdPQYJKqStq1tkSUImSSL7Vs1P0adtg+vNIwA6bv0oG2 Qtntd7xHQYt1t2OkZYvAz1XCf2oLFfl7W4Cj21YKJoc9FKk2oCaB6YvbtSny5Ugy xJqzMUW8U8zOpsbX6jMuByysGZEFtWGJs58rbN/cZqKyDWQbmUtmOPi1OI36xQju qhmkJ7sTeOFhfBHYAkUEnXHXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUWrG0n9W 9mnqrywMCBRJj8a0vO4wHwYDVR0jBBgwFoAUpbtkBP5TtawGtBCz1s2gNKITHpAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVERTZDLzc0RkJCM0Q2NDNE NDExRjA5MEI0NzY2OEM0RjlBRTAyL3BidGtCUDVUdGF3R3RCQ3oxczJnTktJVEhw QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcGJ0a0JQNVR0YXdHdEJDejFzMmdOS0lUSHBBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVE RTZDLzc0RkJCM0Q2NDNENDExRjA5MEI0NzY2OEM0RjlBRTAyL3BidGtCUDVUdGF3 R3RCQ3oxczJnTktJVEhwQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANMpgOftRFbOx5qy6YhilEBoLxW8zNil4RxC6l6C5RC5hJjzMM2b1Y30 aYMRKHfJ0pSrXUki7CrKUyLVxs/fItkgpP4qNrcRHqnvt0gjjd4X4pkBlDnP9tAy rOSZ0UL2Pfq6ODbxcrUYLPH/bxLDmlwpmY9RhC6h8fO7F7lRhMyGNwEdE8SWPjnd 30i/oJ6j9uwimE+1Qlq9PH9C8cyr3pRCCKqyyK11VskA+k8S++b2SDcXz+lP9SGW N3Ev+b/33ouMRrbeCTDyqcnHnLYJ8e55vIY9kZFo5QZdMotjnYT3f6DeEXC7vTgk IeoDqEj9hK7DQDQd+r/ShyafaUC6Ozk= -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:10 2025 by rpki-client