This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9193388/E0E7360A89F411EFA913B952C4F9AE02/PDd12fh_DqopaGZ3TqYvYnTQZss.mft File: PDd12fh_DqopaGZ3TqYvYnTQZss.mft (raw, json) Hash identifier: jWYFomKVlgTdjHlzzlxLoSbs+K4MXfDhjw6qgR8pe/Y= Subject key identifier: 79:BE:02:A6:E9:F4:AA:D0:A7:0A:CC:37:74:92:E3:31:C9:47:A9:7B Authority key identifier: 3C:37:75:D9:F8:7F:0E:AA:29:68:66:77:4E:A6:2F:62:74:D0:66:CB Certificate issuer: /CN=A9193388/serialNumber=3C3775D9F87F0EAA296866774EA62F6274D066CB Certificate serial: E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDd12fh_DqopaGZ3TqYvYnTQZss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193388/E0E7360A89F411EFA913B952C4F9AE02/PDd12fh_DqopaGZ3TqYvYnTQZss.mft Manifest number: E4 Signing time: Sun 21 Dec 2025 04:40:13 +0000 Manifest this update: Sun 21 Dec 2025 04:40:12 +0000 Manifest next update: Sun 28 Dec 2025 04:40:12 +0000 Files and hashes: 1: PDd12fh_DqopaGZ3TqYvYnTQZss.crl (hash: jsA4OuFly7Yz8epB3bKOlKSSxRjUCfo0OKXxJzvEiZg=) 2: 02B9688489EF11F0850AA959C4F9AE02.roa (hash: PvYR9h4WJHkSiwS+OrBISxOSGbPqpgxFMJU0vcVA8b8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193388/E0E7360A89F411EFA913B952C4F9AE02/PDd12fh_DqopaGZ3TqYvYnTQZss.crl rsync://rpki.apnic.net/member_repository/A9193388/E0E7360A89F411EFA913B952C4F9AE02/PDd12fh_DqopaGZ3TqYvYnTQZss.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDd12fh_DqopaGZ3TqYvYnTQZss.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 04:40:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 232 (0xe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193388, serialNumber=3C3775D9F87F0EAA296866774EA62F6274D066CB Validity Not Before: Dec 21 04:40:12 2025 GMT Not After : Dec 28 04:40:12 2025 GMT Subject: CN=69477a2c-45d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:16:a0:66:6b:ee:cf:c2:84:fb:f5:4e:1d:0b: 4a:a6:c5:5f:2d:cc:34:72:4a:34:78:a7:d1:e1:da: 97:38:33:84:97:85:61:d3:30:31:fe:dd:a4:7c:3f: df:70:b6:7a:98:e1:71:d8:c9:1b:91:f9:f2:05:56: 64:29:df:a0:2d:f0:07:aa:1e:ed:d8:7e:7c:1b:1c: b5:ce:19:0a:85:d3:01:c2:34:f2:c8:71:f6:d1:36: 87:5b:3c:50:02:2b:0a:49:39:df:4c:98:eb:95:20: b6:36:94:04:39:47:57:2d:2f:37:c2:59:0f:38:60: c8:1b:23:e8:e2:f6:99:34:26:92:65:84:b6:7b:f5: 6f:32:0b:62:a0:5a:39:bb:13:41:5c:bd:6b:8b:00: ce:ec:af:05:a3:56:44:b9:e2:8c:c1:66:52:a2:a7: d3:a6:78:de:fe:98:7f:df:24:5a:20:30:7f:19:06: 43:8d:9e:a2:50:dd:c2:ba:92:48:80:69:e3:d3:e2: aa:33:80:09:52:ed:a1:eb:43:d5:c7:20:69:32:af: e6:03:c0:5f:c8:b7:69:70:e8:91:00:7d:ed:e8:56: 75:22:14:f8:eb:cb:91:7d:0b:c7:95:e0:18:cc:47: 95:c2:34:32:08:4c:d6:c5:09:a1:37:0f:c2:12:91: fe:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:BE:02:A6:E9:F4:AA:D0:A7:0A:CC:37:74:92:E3:31:C9:47:A9:7B X509v3 Authority Key Identifier: keyid:3C:37:75:D9:F8:7F:0E:AA:29:68:66:77:4E:A6:2F:62:74:D0:66:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193388/E0E7360A89F411EFA913B952C4F9AE02/PDd12fh_DqopaGZ3TqYvYnTQZss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDd12fh_DqopaGZ3TqYvYnTQZss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193388/E0E7360A89F411EFA913B952C4F9AE02/PDd12fh_DqopaGZ3TqYvYnTQZss.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:bf:80:46:a6:a8:a7:71:3e:c7:50:85:41:57:b0:5b:bd:e8: ac:24:bf:3b:50:90:92:67:77:18:ff:c4:28:6e:2a:b8:c5:ac: a7:43:55:f1:d1:a9:c2:31:71:81:59:26:3d:c3:e5:0f:ec:63: d4:3a:d0:de:19:fb:f6:65:97:7a:16:5d:48:42:f6:32:e4:61: fc:44:9f:68:1b:bf:6a:9d:e9:65:c6:38:a2:8a:36:f8:07:ea: 47:68:c1:65:da:3c:d6:06:8e:3f:e1:1e:54:78:ff:7a:9f:95: 76:78:87:fa:c7:e6:6b:2d:ab:44:b0:20:10:73:03:0e:40:a7: a9:0a:00:75:26:8b:9e:83:7e:3e:7d:c8:1d:74:1e:5a:11:a8: 69:c1:3d:6b:57:f6:ae:52:32:0f:74:8b:32:7c:57:e0:72:40: 43:8f:a8:f7:10:66:f1:f7:89:8f:5a:b8:88:b8:e2:3f:e8:0a: 50:a8:1a:75:0f:2e:5b:36:af:15:82:a8:ac:ae:90:a9:4a:f3: 90:bc:25:c7:c3:57:f0:8d:73:a7:0b:ea:8c:dc:81:a3:a3:53: c8:89:1a:9a:a9:d5:60:57:a4:8d:a6:cb:c8:07:71:da:39:cc: ef:8e:67:01:1c:7c:f0:66:94:01:04:93:9b:5c:67:7a:b9:9d: 8c:82:58:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMzODgxMTAvBgNVBAUTKDNDMzc3NUQ5Rjg3RjBFQUEyOTY4NjY3NzRFQTYyRjYy NzREMDY2Q0IwHhcNMjUxMjIxMDQ0MDEyWhcNMjUxMjI4MDQ0MDEyWjAYMRYwFAYD VQQDDA02OTQ3N2EyYy00NWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwxagZmvuz8KE+/VOHQtKpsVfLcw0cko0eKfR4dqXODOEl4Vh0zAx/t2kfD/f cLZ6mOFx2MkbkfnyBVZkKd+gLfAHqh7t2H58Gxy1zhkKhdMBwjTyyHH20TaHWzxQ AisKSTnfTJjrlSC2NpQEOUdXLS83wlkPOGDIGyPo4vaZNCaSZYS2e/VvMgtioFo5 uxNBXL1riwDO7K8Fo1ZEueKMwWZSoqfTpnje/ph/3yRaIDB/GQZDjZ6iUN3CupJI gGnj0+KqM4AJUu2h60PVxyBpMq/mA8BfyLdpcOiRAH3t6FZ1IhT468uRfQvHleAY zEeVwjQyCEzWxQmhNw/CEpH+jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHm+Aqbp 9KrQpwrMN3SS4zHJR6l7MB8GA1UdIwQYMBaAFDw3ddn4fw6qKWhmd06mL2J00GbL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzM4OC9FMEU3MzYwQTg5 RjQxMUVGQTkxM0I5NTJDNEY5QUUwMi9QRGQxMmZoX0Rxb3BhR1ozVHFZdlluVFFa c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BEZDEyZmhfRHFvcGFHWjNUcVl2WW5UUVpzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzM4OC9FMEU3MzYwQTg5RjQxMUVGQTkxM0I5NTJDNEY5QUUwMi9QRGQxMmZoX0Rx b3BhR1ozVHFZdlluVFFac3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0v4BGpqincT7HUIVBV7BbveisJL87UJCSZ3cY/8Qobiq4xaynQ1Xx 0anCMXGBWSY9w+UP7GPUOtDeGfv2ZZd6Fl1IQvYy5GH8RJ9oG79qnellxjiiijb4 B+pHaMFl2jzWBo4/4R5UeP96n5V2eIf6x+ZrLatEsCAQcwMOQKepCgB1Joueg34+ fcgddB5aEahpwT1rV/auUjIPdIsyfFfgckBDj6j3EGbx94mPWriIuOI/6ApQqBp1 Dy5bNq8VgqisrpCpSvOQvCXHw1fwjXOnC+qM3IGjo1PIiRqaqdVgV6SNpsvIB3Ha OczvjmcBHHzwZpQBBJObXGd6uZ2MglgH -----END CERTIFICATE-----Generated at Tue Dec 23 02:12:20 2025 by rpki-client