This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft File: pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft (raw, json) Hash identifier: wogMA1shNqnotY8SE4HtoTphJQwEqA99xHvxZ+Gra2A= Subject key identifier: C3:24:CA:B8:73:0F:17:5D:81:8F:A9:EE:30:F0:44:65:BC:B5:99:A2 Authority key identifier: A6:74:C6:70:1E:2B:0C:E3:D1:07:E9:F2:36:C5:5C:EF:E6:87:68:F1 Certificate issuer: /CN=A91DD902/serialNumber=A674C6701E2B0CE3D107E9F236C55CEFE68768F1 Certificate serial: 0200 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft Manifest number: 01FC Signing time: Sun 07 Dec 2025 00:57:50 +0000 Manifest this update: Sun 07 Dec 2025 00:57:50 +0000 Manifest next update: Sun 14 Dec 2025 00:57:50 +0000 Files and hashes: 1: pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl (hash: +GkRHvguXDHmBKbK6dY+/FtXJiykRXlz5Cno6STEUoI=) 2: 33A48584C92911EDAE3AB84EC4F9AE02.roa (hash: FLrBHslp5iyCkfQbrVJ9NSbQz6e94p5SbxYxtxyABAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:57:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 512 (0x200) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD902, serialNumber=A674C6701E2B0CE3D107E9F236C55CEFE68768F1 Validity Not Before: Dec 7 00:57:50 2025 GMT Not After : Dec 14 00:57:50 2025 GMT Subject: CN=6934d10e-d88f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:e2:a9:7c:76:8f:f6:d5:73:12:7b:b7:70:98: f6:38:9f:19:f3:6a:05:72:3a:f5:a1:90:ec:b7:d7: b2:1f:db:4e:bc:72:65:2a:3e:70:30:9a:75:52:f7: a7:4b:44:c9:1d:46:45:bc:ab:d4:8e:cd:43:1e:ae: 28:e6:6a:c6:51:ea:5a:05:73:1c:77:1e:99:a5:9a: 69:df:c9:db:bf:15:82:7f:c8:17:ca:1a:92:c6:34: f6:3c:6f:8a:c6:ab:e5:01:15:60:af:ab:01:90:28: 90:41:78:7d:bd:e0:6f:45:f6:15:7d:83:1d:d4:45: 8d:43:93:5a:cf:f7:5b:75:77:fb:df:61:82:6d:30: 89:de:1c:2c:fb:4e:e7:a3:2f:d1:4f:fd:8f:50:f0: 47:b7:ed:f5:a4:be:b9:30:17:c2:f5:95:e0:ff:57: 28:ef:56:a3:9c:9f:ef:a6:61:81:3a:bf:5a:56:4e: cb:ec:61:7b:21:b4:bd:79:51:8a:b6:7e:87:29:77: f7:79:82:69:d6:b8:50:d6:19:75:41:1a:34:39:f3: 22:99:ff:b2:79:95:ae:c0:49:f3:ad:96:9a:1c:6d: b8:d5:fa:d9:4a:c4:36:8f:7d:00:7c:69:ee:55:7f: da:95:27:00:ff:56:37:b1:26:4d:ec:8e:95:bf:54: f9:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:24:CA:B8:73:0F:17:5D:81:8F:A9:EE:30:F0:44:65:BC:B5:99:A2 X509v3 Authority Key Identifier: keyid:A6:74:C6:70:1E:2B:0C:E3:D1:07:E9:F2:36:C5:5C:EF:E6:87:68:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:64:15:4e:ef:c0:cb:e5:ef:b7:25:23:b6:a3:47:71:14:75: d9:e6:91:fc:70:31:9a:d8:db:22:92:a5:9f:8a:07:e8:ee:98: c3:6d:24:10:ed:62:d2:82:23:49:d7:fe:c8:19:a0:17:2a:d8: 3b:f0:88:de:50:72:ee:da:15:47:4a:8e:4f:8a:d5:48:78:cc: c3:ef:5f:96:ed:d8:3b:8c:b3:a4:33:ec:e0:9c:5b:2c:06:98: a4:db:93:8a:88:c3:12:f5:d3:c6:86:72:3a:67:16:5d:5b:73: cd:f3:c1:af:ed:7f:b2:6a:f5:02:b4:a5:66:c7:2d:70:d4:16: 69:7a:bf:70:f3:43:19:62:da:c3:5b:39:28:b0:1d:36:54:4a: da:ab:93:22:ee:38:8d:5a:f5:76:66:be:4b:44:bd:6d:1f:92: 74:b0:90:f3:68:7e:3f:d2:ec:95:08:16:61:27:cc:e3:ce:6a: d9:06:af:50:1a:1e:99:1e:98:4d:f2:b2:de:37:91:aa:de:0b: a6:f0:78:0c:98:eb:71:9c:34:14:7e:16:fe:3f:c0:5b:52:b6: 3c:12:c9:fd:23:86:b0:1e:b8:7e:7a:2e:73:9f:3d:df:6c:04: 3c:f3:e5:9c:56:ed:98:43:50:c8:5f:c6:d9:26:57:c4:20:2f: 52:87:39:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ5MDIxMTAvBgNVBAUTKEE2NzRDNjcwMUUyQjBDRTNEMTA3RTlGMjM2QzU1Q0VG RTY4NzY4RjEwHhcNMjUxMjA3MDA1NzUwWhcNMjUxMjE0MDA1NzUwWjAYMRYwFAYD VQQDEw02OTM0ZDEwZS1kODhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7OKpfHaP9tVzEnu3cJj2OJ8Z82oFcjr1oZDst9eyH9tOvHJlKj5wMJp1Uven S0TJHUZFvKvUjs1DHq4o5mrGUepaBXMcdx6ZpZpp38nbvxWCf8gXyhqSxjT2PG+K xqvlARVgr6sBkCiQQXh9veBvRfYVfYMd1EWNQ5Naz/dbdXf732GCbTCJ3hws+07n oy/RT/2PUPBHt+31pL65MBfC9ZXg/1co71ajnJ/vpmGBOr9aVk7L7GF7IbS9eVGK tn6HKXf3eYJp1rhQ1hl1QRo0OfMimf+yeZWuwEnzrZaaHG241frZSsQ2j30AfGnu VX/alScA/1Y3sSZN7I6Vv1T5RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMMkyrhz DxddgY+p7jDwRGW8tZmiMB8GA1UdIwQYMBaAFKZ0xnAeKwzj0Qfp8jbFXO/mh2jx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDkwMi81NzBCM0Y4RUM5 MjYxMUVEQUYyQjlENERDNEY5QUUwMi9wblRHY0I0ckRPUFJCLW55TnNWYzctYUhh UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BuVEdjQjRyRE9QUkItbnlOc1ZjNy1hSGFQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDkwMi81NzBCM0Y4RUM5MjYxMUVEQUYyQjlENERDNEY5QUUwMi9wblRHY0I0ckRP UFJCLW55TnNWYzctYUhhUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdZBVO78DL5e+3JSO2o0dxFHXZ5pH8cDGa2NsikqWfigfo7pjDbSQQ 7WLSgiNJ1/7IGaAXKtg78IjeUHLu2hVHSo5PitVIeMzD71+W7dg7jLOkM+zgnFss Bpik25OKiMMS9dPGhnI6ZxZdW3PN88Gv7X+yavUCtKVmxy1w1BZper9w80MZYtrD WzkosB02VEraq5Mi7jiNWvV2Zr5LRL1tH5J0sJDzaH4/0uyVCBZhJ8zjzmrZBq9Q Gh6ZHphN8rLeN5Gq3gum8HgMmOtxnDQUfhb+P8BbUrY8Esn9I4awHrh+ei5znz3f bAQ88+WcVu2YQ1DIX8bZJlfEIC9ShzlT -----END CERTIFICATE-----Generated at Mon Dec 8 06:20:35 2025 by rpki-client