This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft File: PG7AmwlfpfUTYVEIpUR8rLcasaE.mft (raw, json) Hash identifier: yPyv+FsCH9MiTZwzMwUN5A9hY+spe+BGWk+rVWZAKX0= Subject key identifier: FE:6C:39:77:38:29:E7:FC:1B:D9:54:E0:C8:BC:9F:62:DD:A1:CF:03 Authority key identifier: 3C:6E:C0:9B:09:5F:A5:F5:13:61:51:08:A5:44:7C:AC:B7:1A:B1:A1 Certificate issuer: /CN=A917E4BA/serialNumber=3C6EC09B095FA5F513615108A5447CACB71AB1A1 Certificate serial: 0B28 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft Manifest number: 0B21 Signing time: Mon 22 Dec 2025 18:47:20 +0000 Manifest this update: Mon 22 Dec 2025 18:47:19 +0000 Manifest next update: Mon 29 Dec 2025 18:47:19 +0000 Files and hashes: 1: PG7AmwlfpfUTYVEIpUR8rLcasaE.crl (hash: UPab9usXY6L1MvAHCNJ1jS2MmUQYRPI0K7tSF8OSb0E=) 2: 66F91334ED4911ED9A90391BC4F9AE02.roa (hash: 20mwh4S1N9cV75zDwMEBAcXWu2kbD0NO7KHg8fUiIBs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.crl rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2856 (0xb28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E4BA, serialNumber=3C6EC09B095FA5F513615108A5447CACB71AB1A1 Validity Not Before: Dec 22 18:47:19 2025 GMT Not After : Dec 29 18:47:19 2025 GMT Subject: CN=69499238-27f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3e:3b:9c:37:ee:98:d7:44:bb:3d:92:c6:bb: ed:fb:7e:f0:df:49:f2:b1:fa:ae:ea:52:15:0b:1c: 77:4d:8e:c8:4e:97:e1:8d:9d:07:cd:28:72:45:4d: 95:09:f8:71:0d:ba:fd:eb:e2:3b:a0:68:3f:c8:8f: d8:cc:ae:23:7f:d4:64:39:6d:97:2c:84:b4:87:0a: 6a:23:5c:47:ee:4e:05:8c:a2:60:33:b3:7b:5b:1e: 8f:9e:37:e0:ad:86:ff:eb:32:c7:eb:82:68:05:cb: 45:45:1b:6b:bf:07:31:d4:59:ca:5e:47:b6:23:d4: 06:c6:88:42:29:89:b0:c8:d7:62:4e:cb:83:11:ef: 15:8c:f7:66:1c:6e:5c:c7:e8:05:0c:2b:d9:2b:3d: 16:1f:a4:b5:a9:8c:db:3c:2a:42:4f:81:e5:92:82: cc:7f:f9:a1:06:a8:20:84:6b:f9:2d:2c:2e:d9:9c: 6f:11:a9:02:e5:ee:62:5a:e2:5c:c8:2b:5f:b7:e3: bc:e9:2d:e0:83:96:b8:de:28:a6:4f:63:64:c8:b9: a9:74:41:4a:52:22:f5:59:f4:c6:35:95:47:95:d2: cf:28:cd:07:04:a2:2c:37:a5:39:21:85:2e:85:f9: 66:9b:ea:19:35:c6:8c:6c:e0:15:75:55:28:65:9d: 55:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:6C:39:77:38:29:E7:FC:1B:D9:54:E0:C8:BC:9F:62:DD:A1:CF:03 X509v3 Authority Key Identifier: keyid:3C:6E:C0:9B:09:5F:A5:F5:13:61:51:08:A5:44:7C:AC:B7:1A:B1:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:50:ab:c7:07:02:59:23:fb:81:2a:02:a1:7f:66:19:dc:c2: d7:18:54:c6:1d:33:e6:f3:a6:5e:40:04:23:31:91:ac:59:f0: 26:a1:c8:7c:1e:4a:81:6b:07:ca:67:4a:9f:7f:b6:8e:7d:53: 3e:e7:0e:99:03:88:fd:3f:a2:1c:af:36:4b:e8:65:59:24:46: 67:b6:1d:b8:b6:fd:eb:3f:c7:d2:b2:56:07:ff:df:2d:b8:58: 7f:31:35:01:ff:fc:8e:18:c9:18:ae:40:74:f2:2d:cb:f7:97: fd:0f:aa:63:42:30:ca:eb:3a:38:c5:06:70:18:64:6c:21:4b: b3:49:78:e6:5b:42:22:2e:62:c1:27:7a:8d:9a:08:82:03:06: b5:db:11:c0:4e:e7:d3:f5:23:57:48:e9:eb:0f:09:20:56:ff: 07:32:8f:97:dc:c3:34:b1:bf:cb:44:89:33:4d:58:19:0f:ba: 6e:27:6b:18:f6:f8:0a:a5:63:ed:6b:20:2f:c6:37:a7:81:05: 3d:77:08:1f:b7:cc:d8:e9:64:1d:32:16:c9:ce:d4:a9:f7:62: 91:ad:e2:07:8f:9a:f9:96:99:3e:38:92:f4:41:6b:b8:41:a4: cd:3d:33:e1:31:92:38:c6:3c:97:be:45:39:87:5b:f5:e7:de: 92:b0:da:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCygwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0QkExMTAvBgNVBAUTKDNDNkVDMDlCMDk1RkE1RjUxMzYxNTEwOEE1NDQ3Q0FD QjcxQUIxQTEwHhcNMjUxMjIyMTg0NzE5WhcNMjUxMjI5MTg0NzE5WjAYMRYwFAYD VQQDDA02OTQ5OTIzOC0yN2Y4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtT47nDfumNdEuz2Sxrvt+37w30nysfqu6lIVCxx3TY7ITpfhjZ0HzShyRU2V CfhxDbr96+I7oGg/yI/YzK4jf9RkOW2XLIS0hwpqI1xH7k4FjKJgM7N7Wx6Pnjfg rYb/6zLH64JoBctFRRtrvwcx1FnKXke2I9QGxohCKYmwyNdiTsuDEe8VjPdmHG5c x+gFDCvZKz0WH6S1qYzbPCpCT4HlkoLMf/mhBqgghGv5LSwu2ZxvEakC5e5iWuJc yCtft+O86S3gg5a43iimT2NkyLmpdEFKUiL1WfTGNZVHldLPKM0HBKIsN6U5IYUu hflmm+oZNcaMbOAVdVUoZZ1VUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP5sOXc4 Kef8G9lU4Mi8n2Ldoc8DMB8GA1UdIwQYMBaAFDxuwJsJX6X1E2FRCKVEfKy3GrGh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTRCQS9DOTUyQUM5RTUy REMxMUVBODI2MDFCMEZDNEY5QUUwMi9QRzdBbXdsZnBmVVRZVkVJcFVSOHJMY2Fz YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BHN0Ftd2xmcGZVVFlWRUlwVVI4ckxjYXNhRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTRCQS9DOTUyQUM5RTUyREMxMUVBODI2MDFCMEZDNEY5QUUwMi9QRzdBbXdsZnBm VVRZVkVJcFVSOHJMY2FzYUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3UKvHBwJZI/uBKgKhf2YZ3MLXGFTGHTPm86ZeQAQjMZGsWfAmoch8 HkqBawfKZ0qff7aOfVM+5w6ZA4j9P6IcrzZL6GVZJEZnth24tv3rP8fSslYH/98t uFh/MTUB//yOGMkYrkB08i3L95f9D6pjQjDK6zo4xQZwGGRsIUuzSXjmW0IiLmLB J3qNmgiCAwa12xHATufT9SNXSOnrDwkgVv8HMo+X3MM0sb/LRIkzTVgZD7puJ2sY 9vgKpWPtayAvxjengQU9dwgft8zY6WQdMhbJztSp92KRreIHj5r5lpk+OJL0QWu4 QaTNPTPhMZI4xjyXvkU5h1v1596SsNqE -----END CERTIFICATE-----Generated at Tue Dec 23 07:56:06 2025 by rpki-client