This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft File: PusZaI0z1iGZTls9nkbsqqUJ9CM.mft (raw, json) Hash identifier: 4aUjkhhCS/NUIocEvpzRkipNUQnlAOPpR+IBUGW8Ins= Subject key identifier: 26:84:87:FE:31:11:51:A2:9D:D2:A8:D2:A4:55:13:76:D6:F9:15:64 Authority key identifier: 3E:EB:19:68:8D:33:D6:21:99:4E:5B:3D:9E:46:EC:AA:A5:09:F4:23 Certificate issuer: /CN=A91DE4AC/serialNumber=3EEB19688D33D621994E5B3D9E46ECAAA509F423 Certificate serial: 0485 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft Manifest number: 047F Signing time: Mon 22 Dec 2025 23:09:48 +0000 Manifest this update: Mon 22 Dec 2025 23:09:48 +0000 Manifest next update: Mon 29 Dec 2025 23:09:48 +0000 Files and hashes: 1: PusZaI0z1iGZTls9nkbsqqUJ9CM.crl (hash: l9LsdqpuGWg24hGzjxkNz1/ho/iiJuAM+WA8pBZyoGo=) 2: 0716B2646C7111EC8C5E6967C4F9AE02.roa (hash: FC5KH7zmbNiXwzzDmtV6gG59796J2EuM05tZKkGKGqk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.crl rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:09:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1157 (0x485) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE4AC, serialNumber=3EEB19688D33D621994E5B3D9E46ECAAA509F423 Validity Not Before: Dec 22 23:09:48 2025 GMT Not After : Dec 29 23:09:48 2025 GMT Subject: CN=6949cfbc-c4d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3d:7c:a8:08:3c:77:60:49:5e:5f:ba:b9:8b: c9:1e:70:b8:3b:f0:01:f3:1c:60:16:21:0b:03:84: 69:38:5f:c0:12:c2:76:7f:d1:28:35:c4:c6:e9:bf: 1f:10:69:93:b1:6d:2c:e4:44:48:13:91:45:a6:2f: 94:76:52:c2:ca:59:fe:54:29:dd:f4:c1:a1:ed:36: a1:b9:a2:d5:df:9e:8f:12:f4:61:19:08:af:c7:f1: d1:51:c3:8c:6b:cb:ec:fe:00:2f:c1:0f:94:71:07: 1e:de:74:05:15:dd:36:70:c6:9a:09:90:20:f0:d8: 27:d0:5e:65:cc:8a:43:25:4e:d9:68:07:87:66:69: 57:77:89:06:6d:49:80:16:26:ce:f8:e8:c4:9b:10: 28:e6:8b:1a:be:cf:0d:8c:c0:bd:8d:0f:1f:6f:a8: fb:d5:a8:a2:e8:4e:ec:5b:63:4f:bd:b6:36:40:64: e2:e0:c7:bd:e2:96:41:e3:bb:2f:8b:87:e8:ef:c2: c3:0c:a7:89:7a:e3:93:fd:50:c6:32:1a:4f:4e:34: 6b:48:28:0d:21:fb:d6:c0:c9:e0:95:ee:e2:c1:5f: 9b:ea:b6:20:b6:02:b6:ea:eb:b4:39:d5:65:70:fb: 1e:58:a6:e4:d9:dc:b9:15:13:64:43:db:38:59:ea: 0a:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:84:87:FE:31:11:51:A2:9D:D2:A8:D2:A4:55:13:76:D6:F9:15:64 X509v3 Authority Key Identifier: keyid:3E:EB:19:68:8D:33:D6:21:99:4E:5B:3D:9E:46:EC:AA:A5:09:F4:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:73:e6:d2:55:7c:52:a7:0a:ab:fe:d7:1e:30:99:f7:95:8a: 7a:da:08:c3:f2:7b:83:a1:17:e9:b0:62:cf:ef:3c:57:d2:1b: 36:df:88:3c:3b:c5:b2:34:43:87:d5:b6:f1:4f:0d:a8:58:74: f2:95:1f:c7:86:27:1d:19:e2:ec:1d:77:f3:89:6a:57:53:61: d7:6c:85:f2:a6:6a:41:01:50:98:0a:bf:02:f2:e4:67:d1:3b: 5c:62:41:32:4a:fe:85:a1:84:8c:79:07:fc:8f:4f:a5:a0:95: e9:44:16:96:fe:f3:5a:21:30:f5:ea:a8:65:23:ca:f4:a7:c0: 93:fd:d5:d3:07:39:ec:9e:48:a9:b0:f9:ec:be:07:9b:73:4a: 6f:47:75:de:47:27:b5:1e:f4:52:18:71:a3:22:ba:70:d3:55: bd:63:53:28:3f:5d:f1:f9:00:e2:2b:6b:fd:6e:28:ce:e7:9a: f7:f4:c7:0b:56:9c:7e:aa:0a:73:1a:21:0d:0a:07:54:76:f9: 32:ed:07:46:4b:f4:19:db:80:32:41:e8:d9:bc:e9:3a:a9:6e: 22:c8:91:a7:78:6e:a8:69:6a:ea:2e:86:de:1c:87:39:52:ae: e0:78:cc:45:74:18:60:08:fd:5b:7f:4b:6d:9e:fe:88:f0:ba: ee:2e:f0:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU0QUMxMTAvBgNVBAUTKDNFRUIxOTY4OEQzM0Q2MjE5OTRFNUIzRDlFNDZFQ0FB QTUwOUY0MjMwHhcNMjUxMjIyMjMwOTQ4WhcNMjUxMjI5MjMwOTQ4WjAYMRYwFAYD VQQDDA02OTQ5Y2ZiYy1jNGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyT18qAg8d2BJXl+6uYvJHnC4O/AB8xxgFiELA4RpOF/AEsJ2f9EoNcTG6b8f EGmTsW0s5ERIE5FFpi+UdlLCyln+VCnd9MGh7TahuaLV356PEvRhGQivx/HRUcOM a8vs/gAvwQ+UcQce3nQFFd02cMaaCZAg8Ngn0F5lzIpDJU7ZaAeHZmlXd4kGbUmA FibO+OjEmxAo5osavs8NjMC9jQ8fb6j71aii6E7sW2NPvbY2QGTi4Me94pZB47sv i4fo78LDDKeJeuOT/VDGMhpPTjRrSCgNIfvWwMngle7iwV+b6rYgtgK26uu0OdVl cPseWKbk2dy5FRNkQ9s4WeoKVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCaEh/4x EVGindKo0qRVE3bW+RVkMB8GA1UdIwQYMBaAFD7rGWiNM9YhmU5bPZ5G7KqlCfQj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTRBQy8zNDQxRDJEMDZD NkUxMUVDQjIzM0ZCNjFDNEY5QUUwMi9QdXNaYUkwejFpR1pUbHM5bmtic3FxVUo5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B1c1phSTB6MWlHWlRsczlua2JzcXFVSjlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTRBQy8zNDQxRDJEMDZDNkUxMUVDQjIzM0ZCNjFDNEY5QUUwMi9QdXNaYUkwejFp R1pUbHM5bmtic3FxVUo5Q00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgc+bSVXxSpwqr/tceMJn3lYp62gjD8nuDoRfpsGLP7zxX0hs234g8 O8WyNEOH1bbxTw2oWHTylR/HhicdGeLsHXfziWpXU2HXbIXypmpBAVCYCr8C8uRn 0TtcYkEySv6FoYSMeQf8j0+loJXpRBaW/vNaITD16qhlI8r0p8CT/dXTBznsnkip sPnsvgebc0pvR3XeRye1HvRSGHGjIrpw01W9Y1MoP13x+QDiK2v9bijO55r39McL Vpx+qgpzGiENCgdUdvky7QdGS/QZ24AyQejZvOk6qW4iyJGneG6oaWrqLobeHIc5 Uq7geMxFdBhgCP1bf0ttnv6I8LruLvBz -----END CERTIFICATE-----Generated at Wed Dec 24 17:37:56 2025 by rpki-client