This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/PXpOCpmvFe8LN5DQ55YeiHUoGYM.mft File: PXpOCpmvFe8LN5DQ55YeiHUoGYM.mft (raw, json) Hash identifier: DQNyqc/cAiZNcDDL29ZFCzJDSG/wcTyLo/J3XSodXtI= Subject key identifier: F9:69:30:C4:12:39:96:48:E4:47:72:47:35:FA:94:76:28:0E:03:36 Authority key identifier: 3D:7A:4E:0A:99:AF:15:EF:0B:37:90:D0:E7:96:1E:88:75:28:19:83 Certificate issuer: /CN=A915B880/serialNumber=3D7A4E0A99AF15EF0B3790D0E7961E8875281983 Certificate serial: 0EA5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXpOCpmvFe8LN5DQ55YeiHUoGYM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/PXpOCpmvFe8LN5DQ55YeiHUoGYM.mft Manifest number: 0E9C Signing time: Thu 18 Dec 2025 17:30:15 +0000 Manifest this update: Thu 18 Dec 2025 17:30:15 +0000 Manifest next update: Thu 25 Dec 2025 17:30:15 +0000 Files and hashes: 1: PXpOCpmvFe8LN5DQ55YeiHUoGYM.crl (hash: SxlCtcEoQJ0wcW0CeConcbqrgY08VSMkScQedRZp/sw=) 2: 0853C13CA2F011E9B721795CC4F9AE02.roa (hash: F23CXCLEdHEHx/0prljjzO2nfGEWKXpGSMmp6uriDiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/PXpOCpmvFe8LN5DQ55YeiHUoGYM.crl rsync://rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/PXpOCpmvFe8LN5DQ55YeiHUoGYM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXpOCpmvFe8LN5DQ55YeiHUoGYM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:30:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3749 (0xea5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B880, serialNumber=3D7A4E0A99AF15EF0B3790D0E7961E8875281983 Validity Not Before: Dec 18 17:30:15 2025 GMT Not After : Dec 25 17:30:15 2025 GMT Subject: CN=69443a27-8553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:88:1f:34:df:93:30:a4:0f:80:30:40:a2:d0: 59:96:98:19:92:50:e3:c6:2a:51:74:ca:09:af:7f: 82:1a:fd:a8:e8:6d:7b:b1:c3:f3:bb:40:a7:c0:4c: cd:6d:b8:8a:cc:0f:1b:6a:da:ee:67:d8:3c:72:46: 03:d3:32:bc:1b:ac:d0:6a:9a:49:e8:8a:ba:8b:6e: 47:82:16:64:40:6d:88:28:80:67:21:9c:1a:7f:e1: fb:bd:82:bb:fe:ac:55:64:23:f3:ee:5f:37:b2:a2: 00:e1:42:34:db:07:2e:09:8a:94:df:a0:76:07:4d: 89:ab:75:20:78:18:39:d1:39:8d:b1:93:48:5d:9c: e8:27:7e:00:de:49:33:8f:22:5a:04:f2:9f:4a:28: f7:c9:b1:60:48:f7:47:d5:b0:36:c7:19:98:58:3c: 57:bb:f3:b5:f0:db:04:73:af:30:2e:a4:b6:e6:0e: 30:a6:23:e5:53:65:13:91:05:b2:e1:d0:0e:8f:e2: bb:ac:b3:2e:63:c5:8e:3b:7b:6a:61:19:d2:be:ed: 5d:bd:d1:ad:fd:5b:54:2f:d8:fa:86:d4:fe:f5:ec: 0e:02:c3:c3:88:e1:c2:f1:df:8f:48:de:1e:94:82: 2e:32:d5:6d:e2:f0:10:bd:38:79:c8:12:76:17:20: 2e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:69:30:C4:12:39:96:48:E4:47:72:47:35:FA:94:76:28:0E:03:36 X509v3 Authority Key Identifier: keyid:3D:7A:4E:0A:99:AF:15:EF:0B:37:90:D0:E7:96:1E:88:75:28:19:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/PXpOCpmvFe8LN5DQ55YeiHUoGYM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXpOCpmvFe8LN5DQ55YeiHUoGYM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/PXpOCpmvFe8LN5DQ55YeiHUoGYM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:ad:93:1f:ed:66:f9:c8:33:fe:10:13:b3:a0:d5:15:f5:6a: 27:3b:c3:bf:47:81:f7:50:87:ff:9d:c1:20:f0:53:1a:7e:9f: 84:4f:d9:65:8e:dd:21:e5:a6:41:7c:d3:3b:3c:bb:49:0c:7d: 7c:e0:47:41:0c:59:5f:e1:a1:98:7a:8f:ce:6f:90:39:55:06: 50:b9:72:1a:cd:12:0f:f3:6a:95:ae:f0:9d:24:e9:a3:4b:d0: 1c:31:56:c0:f7:e3:95:57:43:0d:b6:a0:3c:77:50:85:13:85: 99:3e:0c:80:b4:77:86:6b:1a:3e:f6:f7:4d:f6:2a:b6:61:36: c3:c0:d8:62:16:de:39:4e:ea:76:8d:28:f5:38:1b:f2:55:bc: 33:18:93:85:5b:3f:cc:aa:a2:58:a8:01:9d:6e:42:67:64:5b: bf:81:e1:77:61:e6:96:63:00:ba:a7:89:d9:45:29:a4:99:5b: e1:c7:7b:82:7e:c2:bf:d9:68:43:eb:2d:80:e7:e4:b5:c1:2e: d7:ab:dc:cd:d0:8f:03:5d:03:9a:59:0a:c5:3e:73:46:c7:ba: 9b:d0:d1:fc:e5:e2:e3:09:dd:2f:2c:f2:4f:6e:f4:1d:dd:a8: 51:e4:72:09:5b:6f:43:f4:e8:f3:7f:8c:90:b2:66:67:b3:30: 25:95:7c:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI4ODAxMTAvBgNVBAUTKDNEN0E0RTBBOTlBRjE1RUYwQjM3OTBEMEU3OTYxRTg4 NzUyODE5ODMwHhcNMjUxMjE4MTczMDE1WhcNMjUxMjI1MTczMDE1WjAYMRYwFAYD VQQDDA02OTQ0M2EyNy04NTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmIgfNN+TMKQPgDBAotBZlpgZklDjxipRdMoJr3+CGv2o6G17scPzu0CnwEzN bbiKzA8batruZ9g8ckYD0zK8G6zQappJ6Iq6i25HghZkQG2IKIBnIZwaf+H7vYK7 /qxVZCPz7l83sqIA4UI02wcuCYqU36B2B02Jq3UgeBg50TmNsZNIXZzoJ34A3kkz jyJaBPKfSij3ybFgSPdH1bA2xxmYWDxXu/O18NsEc68wLqS25g4wpiPlU2UTkQWy 4dAOj+K7rLMuY8WOO3tqYRnSvu1dvdGt/VtUL9j6htT+9ewOAsPDiOHC8d+PSN4e lIIuMtVt4vAQvTh5yBJ2FyAuKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPlpMMQS OZZI5EdyRzX6lHYoDgM2MB8GA1UdIwQYMBaAFD16TgqZrxXvCzeQ0OeWHoh1KBmD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Qjg4MC8xRjUxMThBNEEy RUYxMUU5OUQ0RTBBNUJDNEY5QUUwMi9QWHBPQ3BtdkZlOExONURRNTVZZWlIVW9H WU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BYcE9DcG12RmU4TE41RFE1NVllaUhVb0dZTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Qjg4MC8xRjUxMThBNEEyRUYxMUU5OUQ0RTBBNUJDNEY5QUUwMi9QWHBPQ3BtdkZl OExONURRNTVZZWlIVW9HWU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChrZMf7Wb5yDP+EBOzoNUV9WonO8O/R4H3UIf/ncEg8FMafp+ET9ll jt0h5aZBfNM7PLtJDH184EdBDFlf4aGYeo/Ob5A5VQZQuXIazRIP82qVrvCdJOmj S9AcMVbA9+OVV0MNtqA8d1CFE4WZPgyAtHeGaxo+9vdN9iq2YTbDwNhiFt45Tup2 jSj1OBvyVbwzGJOFWz/MqqJYqAGdbkJnZFu/geF3YeaWYwC6p4nZRSmkmVvhx3uC fsK/2WhD6y2A5+S1wS7Xq9zN0I8DXQOaWQrFPnNGx7qb0NH85eLjCd0vLPJPbvQd 3ahR5HIJW29D9Ojzf4yQsmZnszAllXxf -----END CERTIFICATE-----Generated at Fri Dec 19 23:59:34 2025 by rpki-client