This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4FBE/25E826AE993211F0A354BA69C4F9AE02/pih1evOkgoa9_fg6tOZOJNguDGs.mft File: pih1evOkgoa9_fg6tOZOJNguDGs.mft (raw, json) Hash identifier: /MG4S5c689Zs5RM3+4A+1hf9GcySy+kcysj4r3V1mFo= Subject key identifier: D8:CB:01:2D:A5:01:D8:36:CE:F9:67:D1:30:7D:D9:36:E5:CA:91:DA Authority key identifier: A6:28:75:7A:F3:A4:82:86:BD:FD:F8:3A:B4:E6:4E:24:D8:2E:0C:6B Certificate issuer: /CN=A91C4FBE/serialNumber=A628757AF3A48286BDFDF83AB4E64E24D82E0C6B Certificate serial: 38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pih1evOkgoa9_fg6tOZOJNguDGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4FBE/25E826AE993211F0A354BA69C4F9AE02/pih1evOkgoa9_fg6tOZOJNguDGs.mft Manifest number: 35 Signing time: Tue 23 Dec 2025 06:27:01 +0000 Manifest this update: Tue 23 Dec 2025 06:27:01 +0000 Manifest next update: Tue 30 Dec 2025 06:27:01 +0000 Files and hashes: 1: pih1evOkgoa9_fg6tOZOJNguDGs.crl (hash: QevNlP3UvCqSPkbkTDaZTqkaJ6z3WyGBdge1nIBsu0Y=) 2: 0B4BDC0E993311F08534326BC4F9AE02.roa (hash: Xax62WHpnxH02bV+GhSPo1Favqt7yKHwi+ro9f5anjI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4FBE/25E826AE993211F0A354BA69C4F9AE02/pih1evOkgoa9_fg6tOZOJNguDGs.crl rsync://rpki.apnic.net/member_repository/A91C4FBE/25E826AE993211F0A354BA69C4F9AE02/pih1evOkgoa9_fg6tOZOJNguDGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pih1evOkgoa9_fg6tOZOJNguDGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 06:27:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4FBE, serialNumber=A628757AF3A48286BDFDF83AB4E64E24D82E0C6B Validity Not Before: Dec 23 06:27:01 2025 GMT Not After : Dec 30 06:27:01 2025 GMT Subject: CN=694a3635-e67b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:14:64:ad:e0:3d:23:72:f4:ec:4c:10:25:d6: 85:d0:60:7c:72:07:54:0a:d9:02:8b:7b:67:f2:33: 17:70:37:1a:20:72:8a:ce:29:6d:dc:9f:75:78:f4: b5:90:ca:9d:75:3f:f8:3a:d1:87:09:1e:8b:0d:5f: 97:b8:a4:17:25:b3:2d:96:83:37:f5:e5:cf:d9:fc: ad:2e:80:b3:2b:d7:77:2a:53:bf:18:3b:e6:27:c3: 8e:e4:fa:dc:18:60:29:45:34:88:54:a5:58:7d:af: 82:54:2b:2a:ef:94:b9:fc:74:bd:c3:c6:5f:64:3e: 7e:17:18:65:73:42:96:41:f5:d8:76:5c:37:24:c8: 27:c0:b5:2e:6f:61:3b:43:08:72:3c:ad:1b:02:cd: 71:c5:71:90:e5:90:26:1d:ae:7f:35:97:a0:a7:29: c0:9a:c2:2b:a3:da:5c:cf:09:eb:2d:c9:a0:79:07: 43:d2:5c:85:64:61:f9:6a:99:44:76:f6:f3:59:b7: 48:d5:04:39:b3:80:c4:ee:85:f9:30:eb:56:e0:41: 2a:2c:f9:9d:33:ef:cf:b8:ad:4c:77:f4:cf:f4:38: 27:33:14:cc:17:3b:42:ae:b7:f6:e2:b1:50:37:30: d4:56:69:3e:a4:34:ad:35:ea:14:18:8e:01:b2:45: 39:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:CB:01:2D:A5:01:D8:36:CE:F9:67:D1:30:7D:D9:36:E5:CA:91:DA X509v3 Authority Key Identifier: keyid:A6:28:75:7A:F3:A4:82:86:BD:FD:F8:3A:B4:E6:4E:24:D8:2E:0C:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4FBE/25E826AE993211F0A354BA69C4F9AE02/pih1evOkgoa9_fg6tOZOJNguDGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pih1evOkgoa9_fg6tOZOJNguDGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4FBE/25E826AE993211F0A354BA69C4F9AE02/pih1evOkgoa9_fg6tOZOJNguDGs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:7d:e2:ee:c3:93:16:d1:54:af:e4:2c:a9:ae:ed:6f:47:2a: 18:83:bf:25:f8:91:81:e0:c8:97:58:1e:71:4b:93:84:f3:c8: fe:10:c3:5f:b9:bd:e1:7b:0f:0d:0d:2e:44:95:a9:9b:ec:c6: d1:bb:98:d7:2b:38:3c:4f:1f:69:5e:52:a6:64:83:f1:8a:c8: 57:f6:28:d2:bb:79:62:83:fd:36:16:9b:23:41:1c:61:0e:d3: 3c:9e:20:6c:2e:af:44:3e:6e:93:9c:19:2d:19:71:68:da:34: 4e:96:a4:0a:10:3a:d2:97:2e:7d:1e:67:a1:7d:7b:d3:50:72: da:e8:72:11:c8:a7:25:38:8d:64:a4:a3:6f:04:67:d0:b9:30: e2:1b:5d:9e:81:dd:a6:ee:aa:92:d6:4e:0b:af:90:ce:c9:e7: 30:03:d7:d5:83:54:0c:80:78:e6:f0:7d:3d:72:47:3e:d4:40: 9a:79:7e:46:31:7c:7c:68:88:2b:79:dc:aa:40:d8:64:a1:bb: 61:08:70:e5:39:9b:38:cc:7c:b1:cd:d6:54:5f:4b:25:d8:6c: 74:c5:fe:cd:76:ca:1b:e6:85:d7:74:4c:cc:4d:05:22:11:c5: 0a:ed:fa:0a:75:46:7d:82:4e:db:30:f0:b8:0d:a8:08:5e:3c: 9b:8d:ca:cb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NEZCRTExMC8GA1UEBRMoQTYyODc1N0FGM0E0ODI4NkJERkRGODNBQjRFNjRFMjRE ODJFMEM2QjAeFw0yNTEyMjMwNjI3MDFaFw0yNTEyMzAwNjI3MDFaMBgxFjAUBgNV BAMMDTY5NGEzNjM1LWU2N2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9FGSt4D0jcvTsTBAl1oXQYHxyB1QK2QKLe2fyMxdwNxogcorOKW3cn3V49LWQ yp11P/g60YcJHosNX5e4pBclsy2Wgzf15c/Z/K0ugLMr13cqU78YO+Ynw47k+twY YClFNIhUpVh9r4JUKyrvlLn8dL3Dxl9kPn4XGGVzQpZB9dh2XDckyCfAtS5vYTtD CHI8rRsCzXHFcZDlkCYdrn81l6CnKcCawiuj2lzPCestyaB5B0PSXIVkYflqmUR2 9vNZt0jVBDmzgMTuhfkw61bgQSos+Z0z78+4rUx39M/0OCczFMwXO0Kut/bisVA3 MNRWaT6kNK016hQYjgGyRTkPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2MsBLaUB 2DbO+WfRMH3ZNuXKkdowHwYDVR0jBBgwFoAUpih1evOkgoa9/fg6tOZOJNguDGsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0RkJFLzI1RTgyNkFFOTkz MjExRjBBMzU0QkE2OUM0RjlBRTAyL3BpaDFldk9rZ29hOV9mZzZ0T1pPSk5ndURH cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcGloMWV2T2tnb2E5X2ZnNnRPWk9KTmd1REdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0 RkJFLzI1RTgyNkFFOTkzMjExRjBBMzU0QkE2OUM0RjlBRTAyL3BpaDFldk9rZ29h OV9mZzZ0T1pPSk5ndURHcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALF94u7DkxbRVK/kLKmu7W9HKhiDvyX4kYHgyJdYHnFLk4TzyP4Qw1+5 veF7Dw0NLkSVqZvsxtG7mNcrODxPH2leUqZkg/GKyFf2KNK7eWKD/TYWmyNBHGEO 0zyeIGwur0Q+bpOcGS0ZcWjaNE6WpAoQOtKXLn0eZ6F9e9NQctrochHIpyU4jWSk o28EZ9C5MOIbXZ6B3abuqpLWTguvkM7J5zAD19WDVAyAeObwfT1yRz7UQJp5fkYx fHxoiCt53KpA2GShu2EIcOU5mzjMfLHN1lRfSyXYbHTF/s12yhvmhdd0TMxNBSIR xQrt+gp1Rn2CTtsw8LgNqAhePJuNyss= -----END CERTIFICATE-----Generated at Wed Dec 24 19:33:11 2025 by rpki-client