This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft File: pGM3j5KTiRbgseQTrw8MinPCH08.mft (raw, json) Hash identifier: M3Bt9d946FWU2L6/qxXENmt6f0UGXTliA0UMr3N+yGs= Subject key identifier: 8D:47:46:3E:79:F7:FF:26:60:C4:F2:41:26:CB:BA:EF:C6:CB:BA:31 Authority key identifier: A4:63:37:8F:92:93:89:16:E0:B1:E4:13:AF:0F:0C:8A:73:C2:1F:4F Certificate issuer: /CN=A917C3A7/serialNumber=A463378F92938916E0B1E413AF0F0C8A73C21F4F Certificate serial: 04BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGM3j5KTiRbgseQTrw8MinPCH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft Manifest number: 04BD Signing time: Mon 22 Dec 2025 22:58:11 +0000 Manifest this update: Mon 22 Dec 2025 22:58:11 +0000 Manifest next update: Mon 29 Dec 2025 22:58:11 +0000 Files and hashes: 1: pGM3j5KTiRbgseQTrw8MinPCH08.crl (hash: uBFO+PrfzRefey0eMYSiMo+G+IUQ6G9rR6w4dajjzdk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.crl rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGM3j5KTiRbgseQTrw8MinPCH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 22:58:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1213 (0x4bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C3A7, serialNumber=A463378F92938916E0B1E413AF0F0C8A73C21F4F Validity Not Before: Dec 22 22:58:11 2025 GMT Not After : Dec 29 22:58:11 2025 GMT Subject: CN=6949cd03-1caa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:42:70:10:b8:04:c2:12:45:24:9c:f0:7b:7f: 63:7c:9a:d3:b2:f3:8c:97:c8:13:c1:04:9e:07:97: a4:00:66:a1:3b:b4:6a:66:bf:5b:2a:89:39:d5:ff: 15:77:cf:42:5b:87:a2:90:e4:81:0a:f5:a7:ab:dd: 58:19:d6:0e:81:11:3c:6e:18:b1:ff:09:b7:70:03: fe:22:26:c3:cf:e8:2e:3f:93:a7:56:4c:3d:98:b3: 62:01:00:8e:3e:8b:96:5c:98:8f:b4:7f:2e:c6:65: 07:3e:0b:5e:41:8b:3a:07:86:96:54:0b:c5:85:e5: 27:e6:bc:11:a4:90:0c:94:6b:9a:88:09:83:f8:dc: 3f:37:ba:f2:41:6d:89:86:84:ab:2d:a9:4d:f3:07: 6e:1f:22:1f:2c:af:c3:cb:d0:e2:30:cf:43:60:b5: 74:94:8a:b4:68:96:5a:4c:7c:de:e9:91:87:f2:68: 27:89:e0:72:db:02:33:18:a7:67:59:ce:8b:dd:33: 4c:c3:0f:a1:20:33:0d:46:1f:68:d5:c3:6b:a8:d7: bc:cc:de:74:e7:13:03:e4:5e:52:1e:05:db:dd:92: 11:74:f3:02:ff:10:c1:89:d1:b2:ac:ee:20:9a:18: 36:64:65:bd:78:7b:1f:67:a4:cd:d8:55:a9:c4:a8: 7d:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:47:46:3E:79:F7:FF:26:60:C4:F2:41:26:CB:BA:EF:C6:CB:BA:31 X509v3 Authority Key Identifier: keyid:A4:63:37:8F:92:93:89:16:E0:B1:E4:13:AF:0F:0C:8A:73:C2:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGM3j5KTiRbgseQTrw8MinPCH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:6e:34:36:15:f6:43:73:8f:4a:46:9f:d4:c6:f9:3c:97:3c: 0a:bd:42:a0:72:7f:3a:53:b4:f4:d5:60:02:88:24:fc:5e:e4: fc:bf:71:84:43:ee:53:ae:72:3b:e1:88:91:cb:68:af:1b:f6: 88:77:fc:a0:c2:ff:3c:31:6d:51:86:47:50:13:f3:49:29:ea: d8:9c:b2:66:43:91:31:67:85:a5:9a:ef:8b:5d:47:2e:99:a3: e4:4f:a7:62:3b:44:26:0e:94:61:1a:26:a3:1c:84:50:40:e1: 00:f2:60:51:58:fc:9f:6d:ba:d2:84:3a:6f:7f:01:34:00:d7: 10:52:1c:ae:a7:44:ce:79:e6:4d:33:a0:01:4e:6d:d5:1f:b0: 3d:52:ae:26:7b:5f:c7:7e:9d:d7:8b:29:88:9a:97:f0:80:08: 4b:00:6e:63:c0:f5:43:77:fe:46:a9:07:f1:be:b2:32:c3:00: 1d:01:6d:be:be:80:a1:6b:14:57:f7:22:65:a9:0c:6b:a0:ed: fa:14:07:64:37:08:39:71:68:ae:17:ef:84:52:65:9f:0e:e0: 0c:d3:27:f0:db:33:7e:f5:19:86:f7:d1:f1:43:42:6e:81:a5: 61:cf:35:6c:2b:67:b6:c4:86:42:bf:f6:4c:05:26:6c:b9:c3: 52:c3:3d:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MzQTcxMTAvBgNVBAUTKEE0NjMzNzhGOTI5Mzg5MTZFMEIxRTQxM0FGMEYwQzhB NzNDMjFGNEYwHhcNMjUxMjIyMjI1ODExWhcNMjUxMjI5MjI1ODExWjAYMRYwFAYD VQQDDA02OTQ5Y2QwMy0xY2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0UJwELgEwhJFJJzwe39jfJrTsvOMl8gTwQSeB5ekAGahO7RqZr9bKok51f8V d89CW4eikOSBCvWnq91YGdYOgRE8bhix/wm3cAP+IibDz+guP5OnVkw9mLNiAQCO PouWXJiPtH8uxmUHPgteQYs6B4aWVAvFheUn5rwRpJAMlGuaiAmD+Nw/N7ryQW2J hoSrLalN8wduHyIfLK/Dy9DiMM9DYLV0lIq0aJZaTHze6ZGH8mgnieBy2wIzGKdn Wc6L3TNMww+hIDMNRh9o1cNrqNe8zN505xMD5F5SHgXb3ZIRdPMC/xDBidGyrO4g mhg2ZGW9eHsfZ6TN2FWpxKh9cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI1HRj55 9/8mYMTyQSbLuu/Gy7oxMB8GA1UdIwQYMBaAFKRjN4+Sk4kW4LHkE68PDIpzwh9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzNBNy9FNDFGRjBBNjUz MjgxMUVDODM1MkQyNDVDNEY5QUUwMi9wR00zajVLVGlSYmdzZVFUcnc4TWluUENI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BHTTNqNUtUaVJiZ3NlUVRydzhNaW5QQ0gwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzNBNy9FNDFGRjBBNjUzMjgxMUVDODM1MkQyNDVDNEY5QUUwMi9wR00zajVLVGlS YmdzZVFUcnc4TWluUENIMDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAibjQ2FfZDc49KRp/Uxvk8lzwKvUKgcn86U7T01WACiCT8XuT8v3GE Q+5TrnI74YiRy2ivG/aId/ygwv88MW1RhkdQE/NJKerYnLJmQ5ExZ4Wlmu+LXUcu maPkT6diO0QmDpRhGiajHIRQQOEA8mBRWPyfbbrShDpvfwE0ANcQUhyup0TOeeZN M6ABTm3VH7A9Uq4me1/Hfp3XiymImpfwgAhLAG5jwPVDd/5GqQfxvrIywwAdAW2+ voChaxRX9yJlqQxroO36FAdkNwg5cWiuF++EUmWfDuAM0yfw2zN+9RmG99HxQ0Ju gaVhzzVsK2e2xIZCv/ZMBSZsucNSwz2c -----END CERTIFICATE-----Generated at Wed Dec 24 19:29:40 2025 by rpki-client