This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft File: pfsx1NUSX3yarlADNaSA_HeQjxU.mft (raw, json) Hash identifier: I6bH1A30lMExRt30ezxo03wuUpxMmJzVLF1735Q8pmM= Subject key identifier: CF:45:DE:AB:E5:81:2F:AC:E4:2B:9C:6C:45:96:91:8A:E8:66:78:85 Authority key identifier: A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 Certificate issuer: /CN=A91A4A13/serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Certificate serial: 0215 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft Manifest number: 0210 Signing time: Tue 23 Dec 2025 01:19:03 +0000 Manifest this update: Tue 23 Dec 2025 01:19:02 +0000 Manifest next update: Tue 30 Dec 2025 01:19:02 +0000 Files and hashes: 1: pfsx1NUSX3yarlADNaSA_HeQjxU.crl (hash: XwkPYr90AhlUae7ty9Q0IHfTCZB+y/2H16supZNDv6k=) 2: A8D327E4BBC711ED8DF23C40C4F9AE02.roa (hash: m/OLPsM6ynBix8nuh4bjX0QKg8+81tb5WXXf1UHLuyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:19:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 533 (0x215) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4A13, serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Validity Not Before: Dec 23 01:19:02 2025 GMT Not After : Dec 30 01:19:02 2025 GMT Subject: CN=6949ee07-423a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:0b:a6:5c:c2:8c:fd:68:f5:e7:af:26:a2:69: 1d:b1:33:01:01:a8:b2:66:c1:49:27:cf:a8:b9:f9: 05:c8:d6:f5:9b:91:98:6f:b4:cb:29:a0:ad:b8:b6: e5:17:30:8b:e2:f5:27:44:53:58:44:a8:c8:d3:6f: ca:ff:80:b0:57:a8:20:12:2f:cf:42:09:a4:51:5a: 84:15:2e:c9:6d:d1:66:88:32:0a:31:d2:ba:48:0b: 9a:5e:da:4b:18:2e:87:42:b5:15:2e:99:3b:37:53: b4:5f:88:de:98:38:b1:55:76:91:4f:f2:11:86:89: 87:85:c0:f1:6a:99:00:a1:f6:c6:1b:55:10:89:f8: 87:83:85:0c:bc:f8:0e:a2:81:f0:98:23:e1:b5:88: 53:3c:6d:fc:36:74:6e:11:2f:77:5e:05:e3:fc:e5: 0d:f9:83:d9:19:4a:bc:31:07:c5:17:ce:44:c3:7b: fe:6e:61:e4:37:29:35:bb:a2:eb:d0:98:55:28:ea: 6e:fa:4f:e2:07:d9:29:6f:ea:d8:69:ff:69:d9:d0: a6:1c:0d:a8:14:48:65:b3:14:96:53:48:fc:24:d3: 56:48:e7:3b:c2:29:0d:0e:c0:51:85:e3:aa:d9:22: 75:7d:50:78:3c:b1:1c:58:c7:f8:ef:31:46:02:30: a5:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:45:DE:AB:E5:81:2F:AC:E4:2B:9C:6C:45:96:91:8A:E8:66:78:85 X509v3 Authority Key Identifier: keyid:A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:0c:0f:2d:9d:18:c2:3c:8b:ff:f7:25:a3:c4:03:df:6e:25: b2:5f:a4:0b:6e:cb:ea:d0:3f:87:18:be:2d:de:f4:2b:f4:13: 3f:a5:72:46:4a:20:10:a4:6a:35:41:d9:be:6e:c9:bb:36:a1: da:ac:46:e7:41:5f:a8:7a:ee:d3:52:10:27:d9:d4:19:91:ca: eb:d5:34:37:44:90:4b:d9:03:7c:9f:20:24:d4:7c:05:20:f6: 52:2f:e9:12:57:41:49:39:86:85:ac:5c:8b:cf:af:d7:d3:8c: 5e:87:44:49:b2:c4:69:42:39:4e:8a:75:76:0e:82:08:2b:c5: 70:25:e3:9f:b0:3d:e3:5d:28:70:dd:55:d9:4c:bc:19:18:c3: 70:b8:c0:28:b4:19:0d:f3:cb:de:5f:ef:db:47:81:56:e5:fa: 60:5f:9f:3b:06:26:e5:48:b6:01:53:c7:04:1d:2a:f3:a9:5d: 32:b1:0e:88:1c:9c:0e:2d:c8:62:37:aa:69:34:b4:44:8e:e4: c8:bf:c4:ab:b2:1a:f0:2e:c5:3c:d4:21:dd:93:1a:53:8e:5d: 39:05:56:c2:19:bd:66:d4:c7:a3:34:42:8d:70:33:2b:22:da: af:6b:18:0c:a4:7a:72:ba:82:9a:d9:73:95:d9:35:c7:d3:ae: af:39:95:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRBMTMxMTAvBgNVBAUTKEE1RkIzMUQ0RDUxMjVGN0M5QUFFNTAwMzM1QTQ4MEZD Nzc5MDhGMTUwHhcNMjUxMjIzMDExOTAyWhcNMjUxMjMwMDExOTAyWjAYMRYwFAYD VQQDDA02OTQ5ZWUwNy00MjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2QumXMKM/Wj1568momkdsTMBAaiyZsFJJ8+oufkFyNb1m5GYb7TLKaCtuLbl FzCL4vUnRFNYRKjI02/K/4CwV6ggEi/PQgmkUVqEFS7JbdFmiDIKMdK6SAuaXtpL GC6HQrUVLpk7N1O0X4jemDixVXaRT/IRhomHhcDxapkAofbGG1UQifiHg4UMvPgO ooHwmCPhtYhTPG38NnRuES93XgXj/OUN+YPZGUq8MQfFF85Ew3v+bmHkNyk1u6Lr 0JhVKOpu+k/iB9kpb+rYaf9p2dCmHA2oFEhlsxSWU0j8JNNWSOc7wikNDsBRheOq 2SJ1fVB4PLEcWMf47zFGAjClKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM9F3qvl gS+s5CucbEWWkYroZniFMB8GA1UdIwQYMBaAFKX7MdTVEl98mq5QAzWkgPx3kI8V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEExMy9CQjZDOUI1NEI5 ODAxMUVEQTM3QjFCNjVDNEY5QUUwMi9wZnN4MU5VU1gzeWFybEFETmFTQV9IZVFq eFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Bmc3gxTlVTWDN5YXJsQUROYVNBX0hlUWp4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEExMy9CQjZDOUI1NEI5ODAxMUVEQTM3QjFCNjVDNEY5QUUwMi9wZnN4MU5VU1gz eWFybEFETmFTQV9IZVFqeFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtDA8tnRjCPIv/9yWjxAPfbiWyX6QLbsvq0D+HGL4t3vQr9BM/pXJG SiAQpGo1Qdm+bsm7NqHarEbnQV+oeu7TUhAn2dQZkcrr1TQ3RJBL2QN8nyAk1HwF IPZSL+kSV0FJOYaFrFyLz6/X04xeh0RJssRpQjlOinV2DoIIK8VwJeOfsD3jXShw 3VXZTLwZGMNwuMAotBkN88veX+/bR4FW5fpgX587BiblSLYBU8cEHSrzqV0ysQ6I HJwOLchiN6ppNLREjuTIv8SrshrwLsU81CHdkxpTjl05BVbCGb1m1MejNEKNcDMr ItqvaxgMpHpyuoKa2XOV2TXH066vOZWl -----END CERTIFICATE-----Generated at Tue Dec 23 14:57:34 2025 by rpki-client