This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft File: pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft (raw, json) Hash identifier: lzdpz56Wb6CCNhnTAJvi9RZD7q4uNS565TXtL+Y3JL4= Subject key identifier: BC:2B:8B:CB:5E:FE:AC:89:9A:EF:37:95:E7:1A:95:AA:9B:F3:2D:9F Authority key identifier: A5:17:41:DC:19:CB:93:90:40:26:76:A0:3A:1F:DA:EB:E0:E7:F2:BC Certificate issuer: /CN=A911DCFB/serialNumber=A51741DC19CB9390402676A03A1FDAEBE0E7F2BC Certificate serial: 05A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pRdB3BnLk5BAJnagOh_a6-Dn8rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft Manifest number: 059B Signing time: Sat 20 Dec 2025 22:28:32 +0000 Manifest this update: Sat 20 Dec 2025 22:28:32 +0000 Manifest next update: Sat 27 Dec 2025 22:28:32 +0000 Files and hashes: 1: pRdB3BnLk5BAJnagOh_a6-Dn8rw.crl (hash: Vcg3yRnJTA/+2+sfTtfaKOxQ97VqlZ6BzJwM0iV+7f0=) 2: 4CBECA5CF9C311EBBA064C70C4F9AE02.roa (hash: CnaozKo0w+oDNLtVLnsapD7Ti4dTXp4OsMG95HJSOiM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.crl rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pRdB3BnLk5BAJnagOh_a6-Dn8rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 22:14:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1441 (0x5a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DCFB, serialNumber=A51741DC19CB9390402676A03A1FDAEBE0E7F2BC Validity Not Before: Dec 20 22:28:32 2025 GMT Not After : Dec 27 22:28:32 2025 GMT Subject: CN=69472310-1d72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e8:07:7e:f7:de:bf:62:b9:3f:81:45:cc:f0: 3e:d5:c1:a2:dc:b2:04:44:f0:e0:5d:1a:65:f0:a5: 1f:fd:a4:38:81:a5:23:f3:f6:8b:40:49:27:31:0e: f8:2c:30:82:ff:cd:a1:16:b1:b5:2a:c7:5c:96:01: 52:be:f1:ec:fe:6d:ae:2c:39:dc:02:cd:8c:21:7c: 6c:b5:bc:b2:a8:6b:2d:8f:35:f1:ff:82:1a:f6:8a: f7:4c:8b:46:dd:6e:c6:fa:25:b2:74:eb:00:5b:36: 31:cb:79:90:84:cc:ec:0e:c3:95:1c:7a:ee:43:94: b6:e4:13:0c:c3:3a:bb:49:c3:63:6f:9b:d7:86:c8: 18:5c:7b:9c:a2:96:21:ee:2d:7e:57:5f:93:c0:58: cb:f6:bb:60:2a:e6:03:be:9d:4a:93:1e:29:51:ce: 2b:b3:78:ef:f6:19:67:eb:ff:13:81:d4:2b:2d:e7: c6:70:67:2f:cc:67:7d:3b:43:77:4e:67:14:a7:ba: 43:5b:47:6e:81:6d:75:83:cb:d2:08:3b:32:bb:a6: b2:2f:9c:7b:da:bb:e9:6e:94:e7:00:6b:77:cb:7a: 47:11:8c:30:4c:e0:cd:f4:43:47:a9:16:42:36:4d: 80:61:44:56:cc:92:60:60:99:04:46:3e:d0:0b:c1: 55:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:2B:8B:CB:5E:FE:AC:89:9A:EF:37:95:E7:1A:95:AA:9B:F3:2D:9F X509v3 Authority Key Identifier: keyid:A5:17:41:DC:19:CB:93:90:40:26:76:A0:3A:1F:DA:EB:E0:E7:F2:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pRdB3BnLk5BAJnagOh_a6-Dn8rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:b8:7c:3e:af:2b:62:2c:24:ef:89:0e:ff:f4:fd:27:08:7d: 10:05:20:f6:3a:bb:47:bb:5e:53:f4:a9:f3:3e:e2:50:d2:14: 34:f5:1f:91:ba:53:af:6a:b1:4c:07:ad:06:a5:11:ef:12:d5: 82:70:92:9d:05:fc:c0:e1:cb:76:33:91:c4:0c:52:54:83:f5: cb:92:b8:95:13:02:43:aa:47:8a:cf:78:22:2a:83:fc:92:dd: 2a:0b:22:56:ce:38:46:01:6b:d2:aa:4a:38:1b:da:b4:e2:81: ac:e7:3b:f1:a0:d0:88:1d:a4:a9:d2:81:79:34:46:5b:f4:39: 24:04:d0:11:03:33:dd:6e:78:f7:1e:e7:16:8a:fd:60:3e:39: 61:f7:58:c7:3e:b3:af:1c:68:d9:f7:8d:86:d3:18:64:19:cf: ff:54:3d:45:57:eb:c5:c6:7a:d2:c0:d3:a3:53:d1:bf:3d:4f: 48:f6:2e:b9:2f:9e:c5:64:5b:52:76:d7:4f:ba:33:c3:99:f8: cf:ce:2d:03:32:d5:5f:9d:00:c8:1c:6b:f6:25:4b:72:3c:52: 0e:57:40:27:39:16:19:05:d2:7c:35:67:aa:6f:c0:67:cb:59: 43:73:b8:89:ce:87:e6:aa:d6:5c:0b:f7:69:04:b2:df:32:80: c0:7b:2b:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURDRkIxMTAvBgNVBAUTKEE1MTc0MURDMTlDQjkzOTA0MDI2NzZBMDNBMUZEQUVC RTBFN0YyQkMwHhcNMjUxMjIwMjIyODMyWhcNMjUxMjI3MjIyODMyWjAYMRYwFAYD VQQDDA02OTQ3MjMxMC0xZDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvugHfvfev2K5P4FFzPA+1cGi3LIERPDgXRpl8KUf/aQ4gaUj8/aLQEknMQ74 LDCC/82hFrG1KsdclgFSvvHs/m2uLDncAs2MIXxstbyyqGstjzXx/4Ia9or3TItG 3W7G+iWydOsAWzYxy3mQhMzsDsOVHHruQ5S25BMMwzq7ScNjb5vXhsgYXHucopYh 7i1+V1+TwFjL9rtgKuYDvp1Kkx4pUc4rs3jv9hln6/8TgdQrLefGcGcvzGd9O0N3 TmcUp7pDW0dugW11g8vSCDsyu6ayL5x72rvpbpTnAGt3y3pHEYwwTODN9ENHqRZC Nk2AYURWzJJgYJkERj7QC8FV9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLwri8te /qyJmu83lecalaqb8y2fMB8GA1UdIwQYMBaAFKUXQdwZy5OQQCZ2oDof2uvg5/K8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRENGQi9BQUVBMERDMEY5 QkYxMUVCODAyNDVFNkFDNEY5QUUwMi9wUmRCM0JuTGs1QkFKbmFnT2hfYTYtRG44 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BSZEIzQm5MazVCQUpuYWdPaF9hNi1Ebjhydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RENGQi9BQUVBMERDMEY5QkYxMUVCODAyNDVFNkFDNEY5QUUwMi9wUmRCM0JuTGs1 QkFKbmFnT2hfYTYtRG44cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLuHw+rytiLCTviQ7/9P0nCH0QBSD2OrtHu15T9KnzPuJQ0hQ09R+R ulOvarFMB60GpRHvEtWCcJKdBfzA4ct2M5HEDFJUg/XLkriVEwJDqkeKz3giKoP8 kt0qCyJWzjhGAWvSqko4G9q04oGs5zvxoNCIHaSp0oF5NEZb9DkkBNARAzPdbnj3 HucWiv1gPjlh91jHPrOvHGjZ942G0xhkGc//VD1FV+vFxnrSwNOjU9G/PU9I9i65 L57FZFtSdtdPujPDmfjPzi0DMtVfnQDIHGv2JUtyPFIOV0AnORYZBdJ8NWeqb8Bn y1lDc7iJzofmqtZcC/dpBLLfMoDAeyvf -----END CERTIFICATE-----Generated at Sun Dec 21 03:55:47 2025 by rpki-client