This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft File: PcXSlD7UrPqSa3dnapi-yLPJea4.mft (raw, json) Hash identifier: AO27f+QvCcmVZvgaKjYGTDbFZuGtml7pEcvBu5hGU5A= Subject key identifier: 91:E3:E0:F1:26:45:B3:80:FF:08:6A:88:04:1E:22:86:A9:16:13:BC Authority key identifier: 3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE Certificate issuer: /CN=A916AF8E/serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE Certificate serial: 07D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft Manifest number: 07D0 Signing time: Mon 22 Dec 2025 20:35:05 +0000 Manifest this update: Mon 22 Dec 2025 20:35:05 +0000 Manifest next update: Mon 29 Dec 2025 20:35:05 +0000 Files and hashes: 1: PcXSlD7UrPqSa3dnapi-yLPJea4.crl (hash: OH5Vqvw3qP8R1o01aU5i+NKM0O0fhV0jecHbd0v+WSQ=) 2: 499DE3FC1C1611EB8BD35065C4F9AE02.roa (hash: QnFh/0YdNLZr/ZfMn+21+lOUTuFHow1/2U5v+xOLivo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:35:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2008 (0x7d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AF8E, serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE Validity Not Before: Dec 22 20:35:05 2025 GMT Not After : Dec 29 20:35:05 2025 GMT Subject: CN=6949ab79-e710 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:19:4c:69:bc:02:cf:dd:7f:2f:a8:8e:dc:bc: ae:4d:f9:87:f8:e5:cc:18:3e:c7:27:dc:89:22:4a: 59:1e:39:cd:54:63:08:62:1d:06:48:bb:05:71:4e: 82:8f:50:66:5f:a2:f5:4a:b3:07:b5:e6:a3:ef:88: 73:7a:62:bd:41:53:d7:10:fb:c3:90:08:c9:46:a8: 54:84:a6:a1:24:95:d4:8f:6b:4a:6e:55:a6:18:d0: d3:12:53:be:58:8c:b2:53:fc:26:89:0b:8d:c7:2a: 1b:db:eb:a9:65:54:c9:c2:f8:4d:d1:d2:50:7b:00: 03:4a:d5:eb:3f:8c:8b:07:7f:8f:f8:ac:2b:af:ba: f9:50:15:6f:3f:29:b4:ca:5c:49:5a:cf:b0:69:c2: 9b:c5:01:ec:26:34:73:87:fa:ee:f4:95:c0:39:b9: 18:77:99:9d:49:c8:bd:49:d9:e9:0e:39:93:93:76: c4:6a:11:53:01:70:b2:31:1e:1b:b1:77:da:6e:49: 8b:31:6a:4e:e7:9b:6f:9a:b4:4b:62:d2:80:0f:e3: 42:e7:f6:ab:cb:53:64:89:01:cb:ee:0e:2d:cf:84: 13:e2:27:53:8f:7a:99:33:27:29:e6:16:30:ba:44: 67:9e:f2:ad:cd:1b:fd:d2:a8:68:44:57:17:d6:0c: 10:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:E3:E0:F1:26:45:B3:80:FF:08:6A:88:04:1E:22:86:A9:16:13:BC X509v3 Authority Key Identifier: keyid:3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:0d:aa:48:e0:6f:84:46:b1:87:9b:86:4f:28:c8:d9:09:e8: 72:02:8f:ff:24:d8:57:0e:b8:d4:c7:17:18:ac:30:83:cb:3c: 73:ce:5e:f6:a7:43:73:50:13:a8:dc:7b:d8:d6:fe:0b:cb:f5: 39:6f:d6:93:2c:bc:92:aa:27:0e:8b:c9:79:06:1f:eb:09:a2: 87:b8:4f:a2:2d:be:e6:a9:b6:38:e5:ae:e6:1a:f5:64:d9:8d: 5e:65:f0:e4:cc:97:1f:f3:c1:3b:ea:4e:e6:92:10:b1:de:2f: fb:ed:02:bb:a8:69:06:ba:f1:f9:2c:c6:3d:3d:61:9a:ab:a7: 1d:1b:56:88:09:da:66:2a:8a:f8:3a:e8:2b:ba:67:cd:de:20: ac:c5:1a:48:fe:52:27:86:1c:64:05:8e:4c:4d:f9:9c:bb:a5: 5e:93:25:de:9c:56:d9:a1:25:2c:ab:92:55:ee:51:72:ac:09: 2c:a5:d4:22:45:67:b5:42:20:c8:89:95:f7:c5:6e:01:40:cf: bc:96:1c:aa:8f:7d:ae:ad:3e:54:b6:2f:4c:13:13:f7:41:40: f8:f0:db:4c:4a:fc:3d:9c:db:83:42:64:88:00:21:a7:7a:8f: 1e:77:b2:ba:07:0d:e4:a5:77:ac:15:e2:1f:64:96:49:5c:00: b6:3e:44:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFGOEUxMTAvBgNVBAUTKDNEQzVEMjk0M0VENEFDRkE5MjZCNzc2NzZBOThCRUM4 QjNDOTc5QUUwHhcNMjUxMjIyMjAzNTA1WhcNMjUxMjI5MjAzNTA1WjAYMRYwFAYD VQQDDA02OTQ5YWI3OS1lNzEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAshlMabwCz91/L6iO3LyuTfmH+OXMGD7HJ9yJIkpZHjnNVGMIYh0GSLsFcU6C j1BmX6L1SrMHteaj74hzemK9QVPXEPvDkAjJRqhUhKahJJXUj2tKblWmGNDTElO+ WIyyU/wmiQuNxyob2+upZVTJwvhN0dJQewADStXrP4yLB3+P+Kwrr7r5UBVvPym0 ylxJWs+wacKbxQHsJjRzh/ru9JXAObkYd5mdSci9SdnpDjmTk3bEahFTAXCyMR4b sXfabkmLMWpO55tvmrRLYtKAD+NC5/ary1NkiQHL7g4tz4QT4idTj3qZMycp5hYw ukRnnvKtzRv90qhoRFcX1gwQ7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJHj4PEm RbOA/whqiAQeIoapFhO8MB8GA1UdIwQYMBaAFD3F0pQ+1Kz6kmt3Z2qYvsizyXmu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUY4RS9EOTRBNzU5NDFD MTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQcVNhM2RuYXBpLXlMUEpl YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BjWFNsRDdVclBxU2EzZG5hcGkteUxQSmVhNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUY4RS9EOTRBNzU5NDFDMTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQ cVNhM2RuYXBpLXlMUEplYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbDapI4G+ERrGHm4ZPKMjZCehyAo//JNhXDrjUxxcYrDCDyzxzzl72 p0NzUBOo3HvY1v4Ly/U5b9aTLLySqicOi8l5Bh/rCaKHuE+iLb7mqbY45a7mGvVk 2Y1eZfDkzJcf88E76k7mkhCx3i/77QK7qGkGuvH5LMY9PWGaq6cdG1aICdpmKor4 OugrumfN3iCsxRpI/lInhhxkBY5MTfmcu6VekyXenFbZoSUsq5JV7lFyrAkspdQi RWe1QiDIiZX3xW4BQM+8lhyqj32urT5Uti9MExP3QUD48NtMSvw9nNuDQmSIACGn eo8ed7K6Bw3kpXesFeIfZJZJXAC2PkQJ -----END CERTIFICATE-----Generated at Wed Dec 24 14:06:43 2025 by rpki-client