This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft File: PUfmaHu030DFGwOkVZwQyiL2dy8.mft (raw, json) Hash identifier: FIjwHPQdJcSrtNrrNtvOertZPD+T5nXq3R6tQ1d2+p0= Subject key identifier: A2:9C:9E:D2:D9:DC:0C:D2:F8:99:E6:5D:BD:BC:62:81:DE:A0:27:D7 Authority key identifier: 3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F Certificate issuer: /CN=A91AA5C6/serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Certificate serial: 01C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft Manifest number: 01B9 Signing time: Tue 23 Dec 2025 02:11:18 +0000 Manifest this update: Tue 23 Dec 2025 02:11:18 +0000 Manifest next update: Tue 30 Dec 2025 02:11:18 +0000 Files and hashes: 1: PUfmaHu030DFGwOkVZwQyiL2dy8.crl (hash: xSC6V4nSz5qtPR3kRNezyIF/Q1Jl7hVNLQUHlqTQ7nU=) 2: EA1E8B8A51C711EE9A3CC954C4F9AE02.roa (hash: zLJmvWY7239Phf4yPfDTSksmKOjgZNQc6mllvDN5PGA=) 3: FAA2E3324C3811EEB7116433C4F9AE02.roa (hash: lp3xmOm8VpMKZjMN4wnKudx9lNNJk9A7QEoVNpNZM/Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:11:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 455 (0x1c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA5C6, serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Validity Not Before: Dec 23 02:11:18 2025 GMT Not After : Dec 30 02:11:18 2025 GMT Subject: CN=6949fa46-4dd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:57:6d:f8:4b:74:1a:82:97:3f:42:17:cb:55: b3:37:de:5a:d8:1a:1e:ea:1c:2d:10:fc:54:0c:03: 6a:82:77:1d:59:2b:74:6a:73:01:19:de:55:b6:ff: d1:c1:e5:c5:af:3a:1f:13:87:9c:f5:85:a5:49:2a: 54:ae:c9:91:5f:42:e3:f6:b4:99:ed:1c:15:cb:b8: 87:9f:34:13:01:dc:13:a0:6c:d8:89:fa:74:5c:7f: 8e:eb:02:4c:b9:1f:da:2f:74:fa:c8:60:29:fa:28: 86:c5:24:f7:90:9d:4a:12:b5:3e:63:ab:fc:1a:97: ae:0f:d0:96:aa:fd:95:ad:2f:ea:a3:3e:c6:0d:be: a6:9b:ce:38:1f:8a:c1:17:5e:7e:55:b3:22:06:5e: 6b:2f:30:ea:d7:da:14:f1:f1:6d:c0:fa:76:c4:e6: cb:6a:1d:e0:1e:ed:16:ba:06:20:04:b6:2b:c2:09: 56:49:70:d2:46:cd:50:e1:ad:41:e4:f0:7f:7b:f4: 33:2a:c5:46:05:2e:87:50:3a:fa:c9:86:3b:82:1d: d6:88:9d:00:ae:b1:96:7a:e5:83:ce:81:c7:24:a8: 54:63:3b:d1:fc:60:ca:26:c2:0c:3e:a4:c3:25:4e: a9:a7:e0:f7:96:13:97:11:3f:4e:b4:ef:f8:c1:2e: a9:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:9C:9E:D2:D9:DC:0C:D2:F8:99:E6:5D:BD:BC:62:81:DE:A0:27:D7 X509v3 Authority Key Identifier: keyid:3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:fb:b9:b8:82:34:95:13:b2:f5:78:7f:df:4d:d8:e0:a7:f3: f5:0a:7d:46:53:22:7e:73:ca:2d:28:9d:72:99:5f:9e:c8:91: b9:e9:93:ce:72:9c:68:bf:ee:ee:95:ba:ab:36:93:22:24:24: 31:63:d8:61:90:b2:63:eb:3a:e1:44:f0:03:06:b3:e9:de:b1: 20:99:8e:69:98:5e:6f:7a:83:ce:af:19:10:b6:28:f5:97:62: b8:87:01:b0:15:e3:5b:10:04:29:69:4d:8f:de:ea:94:8e:72: 04:51:4a:bb:4d:43:51:cf:35:dc:34:6d:0b:a0:7c:3a:f7:53: 73:e8:53:35:a3:48:70:69:01:57:74:57:e4:65:d6:f9:62:fc: 76:46:e3:70:23:fe:63:87:39:05:f3:8b:0b:af:13:15:90:c2: 89:e0:18:10:72:09:5f:44:e4:f8:28:e8:a2:8e:41:d0:c4:af: 74:0f:10:94:cf:12:cf:56:2d:59:b3:b6:1b:78:17:e4:1a:ef: bb:50:d8:22:9b:7a:1b:6c:21:48:af:69:18:d2:b3:c3:fb:85: 44:51:b5:cc:51:ce:3a:d7:b4:7e:2e:2a:5e:35:e5:80:5f:1f: 0a:1f:91:19:51:5a:0c:e6:d0:dc:c1:d5:78:3f:f3:f6:d0:65: 0a:19:58:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE1QzYxMTAvBgNVBAUTKDNENDdFNjY4N0JCNERGNDBDNTFCMDNBNDU1OUMxMENB MjJGNjc3MkYwHhcNMjUxMjIzMDIxMTE4WhcNMjUxMjMwMDIxMTE4WjAYMRYwFAYD VQQDDA02OTQ5ZmE0Ni00ZGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs1dt+Et0GoKXP0IXy1WzN95a2Boe6hwtEPxUDANqgncdWSt0anMBGd5Vtv/R weXFrzofE4ec9YWlSSpUrsmRX0Lj9rSZ7RwVy7iHnzQTAdwToGzYifp0XH+O6wJM uR/aL3T6yGAp+iiGxST3kJ1KErU+Y6v8GpeuD9CWqv2VrS/qoz7GDb6mm844H4rB F15+VbMiBl5rLzDq19oU8fFtwPp2xObLah3gHu0WugYgBLYrwglWSXDSRs1Q4a1B 5PB/e/QzKsVGBS6HUDr6yYY7gh3WiJ0ArrGWeuWDzoHHJKhUYzvR/GDKJsIMPqTD JU6pp+D3lhOXET9OtO/4wS6p6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKKcntLZ 3AzS+JnmXb28YoHeoCfXMB8GA1UdIwQYMBaAFD1H5mh7tN9AxRsDpFWcEMoi9ncv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTVDNi9ENTU1MTlCNDRD MzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMwREZHd09rVlp3UXlpTDJk eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVZm1hSHUwMzBERkd3T2tWWndReWlMMmR5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTVDNi9ENTU1MTlCNDRDMzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMw REZHd09rVlp3UXlpTDJkeTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0+7m4gjSVE7L1eH/fTdjgp/P1Cn1GUyJ+c8otKJ1ymV+eyJG56ZPO cpxov+7ulbqrNpMiJCQxY9hhkLJj6zrhRPADBrPp3rEgmY5pmF5veoPOrxkQtij1 l2K4hwGwFeNbEAQpaU2P3uqUjnIEUUq7TUNRzzXcNG0LoHw691Nz6FM1o0hwaQFX dFfkZdb5Yvx2RuNwI/5jhzkF84sLrxMVkMKJ4BgQcglfROT4KOiijkHQxK90DxCU zxLPVi1Zs7YbeBfkGu+7UNgim3obbCFIr2kY0rPD+4VEUbXMUc4617R+LipeNeWA Xx8KH5EZUVoM5tDcwdV4P/P20GUKGVjm -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:42 2025 by rpki-client