This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/PinOb2p9uUttCRM7c_7VLd7hLas.mft File: PinOb2p9uUttCRM7c_7VLd7hLas.mft (raw, json) Hash identifier: WFSKxu7hAWgaz/VgyZXTukI4Pzqc7iLVNcL4CTwzY9o= Subject key identifier: A5:F8:08:16:A2:95:64:CC:2A:07:6A:A0:42:10:53:1F:FD:D8:CD:98 Authority key identifier: 3E:29:CE:6F:6A:7D:B9:4B:6D:09:13:3B:73:FE:D5:2D:DE:E1:2D:AB Certificate issuer: /CN=A91CF285/serialNumber=3E29CE6F6A7DB94B6D09133B73FED52DDEE12DAB Certificate serial: 10F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PinOb2p9uUttCRM7c_7VLd7hLas.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/PinOb2p9uUttCRM7c_7VLd7hLas.mft Manifest number: 10DF Signing time: Sat 20 Dec 2025 17:01:47 +0000 Manifest this update: Sat 20 Dec 2025 17:01:47 +0000 Manifest next update: Sat 27 Dec 2025 17:01:47 +0000 Files and hashes: 1: PinOb2p9uUttCRM7c_7VLd7hLas.crl (hash: GBK4Gk+aoiGh8MuzWz6HJxDTzAJpWPoG6UXiQA2MSwM=) 2: AB731B004B2A11EFAAFCC92CC4F9AE02.roa (hash: 1iubQBpsLSvGnn+Mx1GBJRtm0BcqUW85CF15NJsmWt0=) 3: 073BC4F4ED3B11EDB5A01A46C4F9AE02.roa (hash: zHchOODRMXh4YPNN1A7mCb7XiL/ujTp4cFUjm4qxBCU=) 4: DC83478EEB0311ED875DD72EC4F9AE02.roa (hash: ZDjZETXLZ7zFreIAvqJ7UMCHnkhV8V9TxpsSD145ZBI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/PinOb2p9uUttCRM7c_7VLd7hLas.crl rsync://rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/PinOb2p9uUttCRM7c_7VLd7hLas.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PinOb2p9uUttCRM7c_7VLd7hLas.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 17:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4338 (0x10f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF285, serialNumber=3E29CE6F6A7DB94B6D09133B73FED52DDEE12DAB Validity Not Before: Dec 20 17:01:47 2025 GMT Not After : Dec 27 17:01:47 2025 GMT Subject: CN=6946d67b-3b9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:0d:50:95:a3:23:84:95:99:01:15:c6:ef:2d: af:e2:bc:d7:17:eb:25:42:f7:ee:9e:8b:9b:80:3e: 9f:f1:2d:a9:5f:ba:16:30:5a:15:35:7d:56:28:54: 8c:ea:d9:75:43:f9:0c:be:de:27:67:67:c0:a0:6e: 3e:16:bd:9c:be:62:aa:78:f9:e2:95:04:2c:74:30: 3e:d3:4e:71:ed:f4:13:43:d4:5f:88:d3:1b:46:3f: 96:ea:9a:6d:89:ae:5d:f3:43:75:72:28:54:18:d5: 0c:ca:cf:af:bb:e6:b6:e6:44:07:d3:4f:b8:aa:49: 01:82:07:f4:b5:57:c7:ac:ae:09:bf:68:ac:f2:d4: 4a:6b:b5:a0:ed:af:c5:8a:ab:98:c2:48:87:df:bb: 6d:0f:8d:f1:24:5b:3c:a3:30:6e:3a:7f:e5:29:c7: d6:94:29:62:e5:eb:63:6a:04:a4:21:42:a9:ce:91: ec:0a:90:f7:44:27:34:9a:db:8f:72:72:dd:2f:30: ca:de:ff:f5:74:62:93:51:be:0b:3e:cd:8b:fa:d3: 5e:68:ac:62:b3:36:88:81:29:73:ba:86:42:b4:6c: c1:7e:a2:14:33:a4:17:1b:d5:6c:6c:5f:bf:99:0d: f2:3b:a1:cb:fb:81:c2:2a:e2:9a:9f:22:3d:32:2e: 6f:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:F8:08:16:A2:95:64:CC:2A:07:6A:A0:42:10:53:1F:FD:D8:CD:98 X509v3 Authority Key Identifier: keyid:3E:29:CE:6F:6A:7D:B9:4B:6D:09:13:3B:73:FE:D5:2D:DE:E1:2D:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/PinOb2p9uUttCRM7c_7VLd7hLas.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PinOb2p9uUttCRM7c_7VLd7hLas.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/PinOb2p9uUttCRM7c_7VLd7hLas.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:a2:90:70:8a:b8:d7:ac:7d:72:95:be:ef:61:75:9a:19:0b: 12:81:08:12:25:8b:b1:2d:f0:74:ca:54:66:c5:2b:fb:3c:74: 77:14:1b:94:4b:7a:29:55:fe:a8:ea:35:fd:eb:8f:e7:a7:c1: 39:b0:df:96:a9:12:57:23:e6:1a:9b:af:6b:cc:98:95:d9:ec: 25:93:40:dd:8f:65:92:50:67:cd:92:61:93:15:f8:14:30:f4: f1:fd:52:93:7c:a7:7a:bf:2d:05:a5:f4:35:aa:75:6f:51:3b: 30:70:a3:6b:c9:09:03:4d:28:22:5f:07:f3:82:dc:76:47:7a: 7d:60:34:46:00:4e:ee:5f:fb:54:e9:e4:28:92:40:10:5c:14: 16:5c:f6:2f:fe:eb:5a:89:a7:da:23:42:fa:aa:a5:cd:3d:b7: 4b:7a:a9:6c:85:37:ca:a2:13:58:a1:1f:0e:2d:d7:9b:a3:47: 9e:54:4e:a7:45:f4:ce:cb:66:1b:12:4d:8c:b6:df:07:2b:b0: 56:9d:07:54:02:f7:26:f3:29:48:a1:7b:8b:af:4c:d2:d8:96: dd:ac:04:16:3d:4e:20:b3:15:64:78:ac:c3:55:9f:35:b2:00: ca:0a:67:9e:61:8e:d3:d6:63:7c:c3:67:62:3f:cc:55:91:d3: 4a:49:4f:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0YyODUxMTAvBgNVBAUTKDNFMjlDRTZGNkE3REI5NEI2RDA5MTMzQjczRkVENTJE REVFMTJEQUIwHhcNMjUxMjIwMTcwMTQ3WhcNMjUxMjI3MTcwMTQ3WjAYMRYwFAYD VQQDDA02OTQ2ZDY3Yi0zYjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Q1QlaMjhJWZARXG7y2v4rzXF+slQvfunoubgD6f8S2pX7oWMFoVNX1WKFSM 6tl1Q/kMvt4nZ2fAoG4+Fr2cvmKqePnilQQsdDA+005x7fQTQ9RfiNMbRj+W6ppt ia5d80N1cihUGNUMys+vu+a25kQH00+4qkkBggf0tVfHrK4Jv2is8tRKa7Wg7a/F iquYwkiH37ttD43xJFs8ozBuOn/lKcfWlCli5etjagSkIUKpzpHsCpD3RCc0mtuP cnLdLzDK3v/1dGKTUb4LPs2L+tNeaKxiszaIgSlzuoZCtGzBfqIUM6QXG9VsbF+/ mQ3yO6HL+4HCKuKanyI9Mi5v5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKX4CBai lWTMKgdqoEIQUx/92M2YMB8GA1UdIwQYMBaAFD4pzm9qfblLbQkTO3P+1S3e4S2r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjI4NS9GRDY0RjBCODM0 MEMxMUU5OTY2QzVBNzZDNEY5QUUwMi9QaW5PYjJwOXVVdHRDUk03Y183VkxkN2hM YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Bpbk9iMnA5dVV0dENSTTdjXzdWTGQ3aExhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjI4NS9GRDY0RjBCODM0MEMxMUU5OTY2QzVBNzZDNEY5QUUwMi9QaW5PYjJwOXVV dHRDUk03Y183VkxkN2hMYXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJopBwirjXrH1ylb7vYXWaGQsSgQgSJYuxLfB0ylRmxSv7PHR3FBuU S3opVf6o6jX964/np8E5sN+WqRJXI+Yam69rzJiV2ewlk0Ddj2WSUGfNkmGTFfgU MPTx/VKTfKd6vy0FpfQ1qnVvUTswcKNryQkDTSgiXwfzgtx2R3p9YDRGAE7uX/tU 6eQokkAQXBQWXPYv/utaiafaI0L6qqXNPbdLeqlshTfKohNYoR8OLdebo0eeVE6n RfTOy2YbEk2Mtt8HK7BWnQdUAvcm8ylIoXuLr0zS2JbdrAQWPU4gsxVkeKzDVZ81 sgDKCmeeYY7T1mN8w2diP8xVkdNKSU+h -----END CERTIFICATE-----Generated at Mon Dec 22 09:03:19 2025 by rpki-client