This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft File: PgyjPXanW6ZPDdawakQr5pWGRBo.mft (raw, json) Hash identifier: ZH6H0Wltpl42nnKSMT7Gmw4IzNtyPOEsQZX67LMLQJY= Subject key identifier: 27:A1:9B:7A:A7:3B:36:D6:0B:B1:E0:0B:C3:AE:50:90:28:AF:0B:04 Authority key identifier: 3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A Certificate issuer: /CN=A917C422/serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Certificate serial: 350A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft Manifest number: 34FA Signing time: Mon 22 Dec 2025 14:24:59 +0000 Manifest this update: Mon 22 Dec 2025 14:24:58 +0000 Manifest next update: Mon 29 Dec 2025 14:24:58 +0000 Files and hashes: 1: PgyjPXanW6ZPDdawakQr5pWGRBo.crl (hash: omIcbzDIZjWVgGbRik9viv2mz6a/oI/31vEKJHpOSDg=) 2: D69F6688CD8511EBB5252063C4F9AE02.roa (hash: o45AFhO6SSMQiWqggKeTKMzwcSJwvQDsZ1NlO/kkLkM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 14:24:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13578 (0x350a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422, serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Validity Not Before: Dec 22 14:24:58 2025 GMT Not After : Dec 29 14:24:58 2025 GMT Subject: CN=694954ba-02c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a8:8e:02:2e:0e:f1:31:71:8f:e8:74:c0:5e: 6f:f5:2a:2a:1e:c0:61:0c:93:a2:ec:40:b5:93:b8: d8:16:e7:0b:e2:be:b1:22:fc:ea:0e:be:79:09:71: 56:0a:3e:94:3c:b1:4f:23:a4:f6:f7:52:b8:21:fa: 1d:76:1e:37:5d:d1:be:df:1b:8e:46:f3:e2:28:7a: c9:e8:2b:f5:74:f8:4d:d3:ab:62:4a:e9:5e:27:b7: f8:5c:90:df:29:e4:bb:9f:88:97:f0:45:f3:e9:98: 8a:24:f3:ac:05:1f:7e:6d:2f:85:b8:98:59:53:d8: 85:c1:e0:ff:bb:17:d2:91:39:f5:ef:19:55:38:0d: a0:bd:de:71:07:b2:34:34:a3:38:4d:d3:3a:c0:e8: 1b:e9:d6:02:e6:c6:84:5b:44:b6:69:e3:fb:2e:6a: 94:fb:b2:34:8f:d3:11:2e:a5:c2:52:f1:5b:49:b8: 94:80:64:53:29:2a:29:4e:4d:46:da:6c:95:13:fa: 80:b8:54:d2:c8:1f:f5:5b:20:06:db:b2:26:ad:74: 93:ee:99:a6:9d:73:c9:50:4e:1c:e1:6f:00:e1:a3: eb:ab:d8:4b:4d:61:c4:86:a4:b8:73:2a:bc:1c:3d: 69:c1:85:d9:f6:d5:45:16:3d:2e:ba:f0:ef:97:4d: d6:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:A1:9B:7A:A7:3B:36:D6:0B:B1:E0:0B:C3:AE:50:90:28:AF:0B:04 X509v3 Authority Key Identifier: keyid:3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:77:86:0f:90:c6:5d:fc:44:15:bb:df:e0:a4:73:3c:9a:cb: 78:87:27:a1:c1:36:d6:af:6d:1c:5c:8e:c0:e7:fe:db:8b:b4: 8c:8b:ce:ec:cb:34:c0:3f:7e:72:dc:54:04:12:23:b8:92:4e: c9:ad:3b:7e:be:38:eb:6e:4b:a0:ba:02:c5:da:da:02:1d:ca: 2b:06:d5:8a:05:00:9a:a6:11:fe:44:1b:dd:fe:f8:6e:d8:60: bc:da:86:4f:c0:b6:65:24:c9:b5:2f:d4:d1:77:d3:e9:f9:5a: 2e:71:5f:ed:cd:e6:a8:85:f0:ce:43:61:52:5d:9d:ff:50:49: e5:51:9e:f2:e0:88:7d:ae:b8:d9:61:1c:a0:d4:c9:bf:47:e6: bb:4a:a3:56:2f:3f:e8:6b:26:54:23:56:db:da:e8:ca:dc:b7: c2:c3:41:bc:14:6c:9f:03:ad:ac:c5:fe:c5:89:68:d6:fd:9f: 04:41:1f:28:48:1f:c9:9f:67:70:c2:1f:7a:1f:f6:4d:03:40: 8f:81:35:1d:3d:4a:3d:fc:d4:94:6c:53:e9:22:8d:d3:38:05: 76:56:5e:26:15:a8:ab:e7:23:b8:8f:b4:91:16:90:10:02:ff: ca:d3:15:a8:5b:61:f3:bd:73:bc:78:cb:27:fc:95:ca:a3:97: 73:03:c4:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDNFMENBMzNENzZBNzVCQTY0RjBERDZCMDZBNDQyQkU2 OTU4NjQ0MUEwHhcNMjUxMjIyMTQyNDU4WhcNMjUxMjI5MTQyNDU4WjAYMRYwFAYD VQQDDA02OTQ5NTRiYS0wMmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAraiOAi4O8TFxj+h0wF5v9SoqHsBhDJOi7EC1k7jYFucL4r6xIvzqDr55CXFW Cj6UPLFPI6T291K4Ifoddh43XdG+3xuORvPiKHrJ6Cv1dPhN06tiSuleJ7f4XJDf KeS7n4iX8EXz6ZiKJPOsBR9+bS+FuJhZU9iFweD/uxfSkTn17xlVOA2gvd5xB7I0 NKM4TdM6wOgb6dYC5saEW0S2aeP7LmqU+7I0j9MRLqXCUvFbSbiUgGRTKSopTk1G 2myVE/qAuFTSyB/1WyAG27ImrXST7pmmnXPJUE4c4W8A4aPrq9hLTWHEhqS4cyq8 HD1pwYXZ9tVFFj0uuvDvl03W+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCehm3qn OzbWC7HgC8OuUJAorwsEMB8GA1UdIwQYMBaAFD4Moz12p1umTw3WsGpEK+aVhkQa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi9BMkM3Mzg2ODFE ODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2WlBEZGF3YWtRcjVwV0dS Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BneWpQWGFuVzZaUERkYXdha1FyNXBXR1JCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi9BMkM3Mzg2ODFEODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2 WlBEZGF3YWtRcjVwV0dSQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxd4YPkMZd/EQVu9/gpHM8mst4hyehwTbWr20cXI7A5/7bi7SMi87s yzTAP35y3FQEEiO4kk7JrTt+vjjrbkugugLF2toCHcorBtWKBQCaphH+RBvd/vhu 2GC82oZPwLZlJMm1L9TRd9Pp+VoucV/tzeaohfDOQ2FSXZ3/UEnlUZ7y4Ih9rrjZ YRyg1Mm/R+a7SqNWLz/oayZUI1bb2ujK3LfCw0G8FGyfA62sxf7FiWjW/Z8EQR8o SB/Jn2dwwh96H/ZNA0CPgTUdPUo9/NSUbFPpIo3TOAV2Vl4mFair5yO4j7SRFpAQ Av/K0xWoW2HzvXO8eMsn/JXKo5dzA8Ro -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:50 2025 by rpki-client