This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft File: PnIyBI3L0sabqyJbikIhYEbBiyU.mft (raw, json) Hash identifier: UhwlPK8Q9X15fRe3/fD+UHERWWc9mZeFM981r9+1wgk= Subject key identifier: 8F:AF:D3:AA:C3:4B:26:A0:44:4B:E1:6A:9D:B7:95:7B:9C:81:4B:02 Authority key identifier: 3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 Certificate issuer: /CN=A911CA78/serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Certificate serial: 01ED Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft Manifest number: 01E8 Signing time: Sun 28 Dec 2025 18:29:18 +0000 Manifest this update: Sun 28 Dec 2025 18:29:18 +0000 Manifest next update: Sun 04 Jan 2026 18:29:18 +0000 Files and hashes: 1: PnIyBI3L0sabqyJbikIhYEbBiyU.crl (hash: b6Grer3ucLUNxknyNtg9RjYphhJMxUya+hHIRQSqvOY=) 2: 1ABB6C4E17DB11EE92B1C26FC4F9AE02.roa (hash: 5FCghaTHfjGe3056E9DhPQUiNt12XMkuoaYKrbjkSQ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 18:29:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 493 (0x1ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Validity Not Before: Dec 28 18:29:18 2025 GMT Not After : Jan 4 18:29:18 2026 GMT Subject: CN=695176fe-fb77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f6:a9:c5:55:8d:de:91:49:af:12:5a:34:d0: 30:23:2d:24:a7:ac:5d:ac:67:99:5a:73:06:4c:5b: 30:2c:5e:c3:16:e1:9f:af:d2:e0:16:7b:57:76:0b: ef:67:87:9a:06:84:a2:0a:fe:14:f7:a9:5e:77:41: fc:24:5a:61:d9:25:da:fb:4f:a7:65:97:1d:21:1f: 34:16:ce:5d:53:fb:96:f6:e6:6e:f8:c3:ce:2a:a2: 32:61:0f:54:26:fe:57:6c:66:50:51:87:74:78:42: a6:81:95:5f:92:c8:74:a5:2f:81:9f:14:f7:c7:21: 17:dd:e3:7c:93:80:0a:61:97:5b:26:8e:13:d1:86: 7e:8b:7e:86:2a:5f:ec:e7:08:49:5c:a8:e2:e2:30: 05:ee:12:bf:3c:e6:ad:5c:c1:5c:f0:b6:53:a8:c5: a5:a8:d3:3b:ee:a4:e8:57:a3:cb:f9:72:60:87:b9: b6:c3:e2:ca:01:69:ac:1f:23:f7:95:b4:d1:6a:14: e4:87:74:33:b3:18:25:0d:37:26:25:5c:f3:a3:52: 9f:ef:52:74:ca:97:3c:32:e0:af:7d:f3:9e:17:23: 08:09:90:24:1b:b5:bc:f3:4e:46:cc:2c:75:f1:b8: b2:e6:8b:12:df:af:59:32:04:36:15:5c:76:50:64: 2d:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:AF:D3:AA:C3:4B:26:A0:44:4B:E1:6A:9D:B7:95:7B:9C:81:4B:02 X509v3 Authority Key Identifier: keyid:3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:76:e1:cd:a1:90:90:24:32:4f:7a:5b:aa:f6:b0:65:94:d6: f1:44:74:29:fa:6a:49:e1:5d:71:3a:b4:54:0c:40:da:28:39: 2c:52:1b:7e:0e:9a:65:4b:13:24:90:a8:b9:28:fa:e4:eb:fd: 83:49:e2:25:66:81:9a:24:4b:ce:fd:a0:59:aa:44:68:c8:df: fa:fd:5b:56:cc:c4:62:d8:fc:ea:1e:93:d4:ac:a2:a8:0d:df: 20:ce:24:94:72:7c:36:54:40:7a:84:d9:4b:80:a9:cb:37:13: 41:c9:10:6b:75:1d:4a:55:dd:5d:88:0a:cf:5e:71:a8:a6:5e: 40:78:76:fb:a3:0d:20:74:40:66:d8:d8:eb:1e:a2:14:fb:29: d8:0b:d9:ea:c5:ac:10:da:1d:58:8e:9b:04:d6:17:1c:3b:03: a3:03:7b:dc:37:e9:83:2c:f1:6d:1d:b1:4b:48:0c:5c:61:08: 5f:9f:69:b3:ce:18:72:51:34:aa:39:02:8a:5d:35:e5:ec:43: 76:4d:ea:76:95:91:81:cd:fc:14:43:40:43:94:cf:3c:1c:ed: c1:d8:f0:f3:88:74:1f:b3:24:ee:87:fd:ee:ba:06:79:b8:bc: 8b:40:b6:ea:ac:50:5a:3b:6a:c8:8f:31:b3:ea:ef:4a:cc:24: c5:71:06:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDNFNzIzMjA0OERDQkQyQzY5QkFCMjI1QjhBNDIyMTYw NDZDMThCMjUwHhcNMjUxMjI4MTgyOTE4WhcNMjYwMTA0MTgyOTE4WjAYMRYwFAYD VQQDDA02OTUxNzZmZS1mYjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsPapxVWN3pFJrxJaNNAwIy0kp6xdrGeZWnMGTFswLF7DFuGfr9LgFntXdgvv Z4eaBoSiCv4U96led0H8JFph2SXa+0+nZZcdIR80Fs5dU/uW9uZu+MPOKqIyYQ9U Jv5XbGZQUYd0eEKmgZVfksh0pS+BnxT3xyEX3eN8k4AKYZdbJo4T0YZ+i36GKl/s 5whJXKji4jAF7hK/POatXMFc8LZTqMWlqNM77qToV6PL+XJgh7m2w+LKAWmsHyP3 lbTRahTkh3QzsxglDTcmJVzzo1Kf71J0ypc8MuCvffOeFyMICZAkG7W8805GzCx1 8biy5osS369ZMgQ2FVx2UGQtjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI+v06rD SyagREvhap23lXucgUsCMB8GA1UdIwQYMBaAFD5yMgSNy9LGm6siW4pCIWBGwYsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC8wMjhGNThGRTE2 RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBzYWJxeUpiaWtJaFlFYkJp eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BuSXlCSTNMMHNhYnF5SmJpa0loWUViQml5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E3OC8wMjhGNThGRTE2RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBz YWJxeUpiaWtJaFlFYkJpeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhduHNoZCQJDJPeluq9rBllNbxRHQp+mpJ4V1xOrRUDEDaKDksUht+ DpplSxMkkKi5KPrk6/2DSeIlZoGaJEvO/aBZqkRoyN/6/VtWzMRi2PzqHpPUrKKo Dd8gziSUcnw2VEB6hNlLgKnLNxNByRBrdR1KVd1diArPXnGopl5AeHb7ow0gdEBm 2NjrHqIU+ynYC9nqxawQ2h1YjpsE1hccOwOjA3vcN+mDLPFtHbFLSAxcYQhfn2mz zhhyUTSqOQKKXTXl7EN2Tep2lZGBzfwUQ0BDlM88HO3B2PDziHQfsyTuh/3uugZ5 uLyLQLbqrFBaO2rIjzGz6u9KzCTFcQbk -----END CERTIFICATE-----Generated at Mon Dec 29 16:19:54 2025 by rpki-client