This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft File: PQqIwMyj7oZ3zRffPuht5x38ESk.mft (raw, json) Hash identifier: EgUjI4yLjUV1raWd3LBv4CiEkMFubZShgGtVj4T3gYU= Subject key identifier: 14:1C:DE:91:E5:94:51:71:D7:2B:51:8E:E1:26:1C:FF:85:E5:80:E6 Authority key identifier: 3D:0A:88:C0:CC:A3:EE:86:77:CD:17:DF:3E:E8:6D:E7:1D:FC:11:29 Certificate issuer: /CN=A91607DE/serialNumber=3D0A88C0CCA3EE8677CD17DF3EE86DE71DFC1129 Certificate serial: 03BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQqIwMyj7oZ3zRffPuht5x38ESk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft Manifest number: 03B5 Signing time: Sun 28 Dec 2025 23:46:51 +0000 Manifest this update: Sun 28 Dec 2025 23:46:51 +0000 Manifest next update: Sun 04 Jan 2026 23:46:51 +0000 Files and hashes: 1: PQqIwMyj7oZ3zRffPuht5x38ESk.crl (hash: wXjy9wRExyNoVyEX4oRJrhVc89SrUwbtULBUo4IR7ec=) 2: FD398FA0BB5D11ECA62F8674C4F9AE02.roa (hash: OZN4xQkAGlo2J7xAsq7WK/TKxkfRBmTruJ0GM4QH81c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.crl rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQqIwMyj7oZ3zRffPuht5x38ESk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 23:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 954 (0x3ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91607DE, serialNumber=3D0A88C0CCA3EE8677CD17DF3EE86DE71DFC1129 Validity Not Before: Dec 28 23:46:51 2025 GMT Not After : Jan 4 23:46:51 2026 GMT Subject: CN=6951c16b-2f31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:38:b4:81:28:f5:aa:1b:cf:c4:4d:b4:86:dc: 14:0a:7c:51:bc:83:fb:8c:bb:63:38:35:be:d7:69: 07:da:fa:fe:bd:55:7a:0f:97:95:55:5b:b8:7d:8a: 5f:fe:83:7d:2e:60:5d:a4:d3:2f:4d:47:e6:cd:83: d9:4b:b1:c0:d5:f9:9d:91:80:41:62:20:bf:13:5b: 81:ef:1f:cc:d7:4c:88:87:0e:dd:59:b2:dd:c7:2a: 4e:0b:b4:85:31:40:79:c9:a3:f0:d9:57:15:64:20: 34:f6:1e:04:ba:d9:d6:e5:56:cc:7b:83:02:5e:23: f9:de:11:95:03:da:58:59:7f:1c:2e:86:83:3f:03: cd:31:63:a6:1e:89:33:a8:7b:2d:22:27:8d:55:5a: 21:09:f6:ae:b8:1d:33:cb:85:1a:ea:b7:29:77:b1: 6f:a6:47:17:e0:f0:2f:4e:bb:15:dd:48:9b:41:00: 9a:43:bb:e7:e0:14:4a:f4:69:ea:1a:2c:96:9d:7d: e3:15:9e:06:1a:1f:bc:bd:1d:3d:2e:52:b4:53:b6: 3b:fb:74:f6:42:88:b1:de:a0:71:38:21:b3:e8:e4: f1:3e:3e:15:16:78:40:2c:27:72:83:d3:ea:bc:3f: 90:4b:a6:15:8a:ea:2c:6c:3c:5d:51:05:55:fb:d8: 2b:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:1C:DE:91:E5:94:51:71:D7:2B:51:8E:E1:26:1C:FF:85:E5:80:E6 X509v3 Authority Key Identifier: keyid:3D:0A:88:C0:CC:A3:EE:86:77:CD:17:DF:3E:E8:6D:E7:1D:FC:11:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQqIwMyj7oZ3zRffPuht5x38ESk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:92:b2:65:76:bb:8a:f1:e2:9d:1f:ba:30:95:b7:fb:30:8f: a8:19:a7:5f:2a:40:fe:b4:3a:2f:30:9e:1c:a2:4a:29:65:a3: c9:05:40:4e:d0:2f:32:f2:df:7d:51:db:41:3a:e8:73:63:cd: 53:8a:5c:f3:3d:36:ef:6f:b9:92:d7:ab:5c:1b:1f:5d:24:05: 3a:83:88:69:8e:3d:8e:7b:d1:29:a8:4f:1f:5e:37:80:5d:cd: 71:79:cd:ad:8d:83:5e:9a:0a:6e:70:61:38:ed:b7:00:bd:c9: 56:95:5b:52:7d:df:df:9b:77:73:f5:e9:66:05:de:da:0d:47: 0c:0b:59:9b:af:4c:d8:42:bf:e5:8d:1c:93:c4:35:20:32:9c: c5:87:c0:2b:a0:39:e6:a3:2f:17:8b:6c:41:2e:9f:8b:bc:d9: 65:76:3b:f6:d0:df:0e:51:1a:15:10:54:03:6a:da:13:fc:a2: 8c:eb:07:60:cf:88:47:cb:d3:7a:ab:da:aa:01:f7:4b:76:fd: 3a:ec:cf:e7:39:74:0c:3c:7c:88:3b:37:48:6c:5b:a2:58:a2: 9b:91:7f:5a:71:cc:61:95:d5:23:e0:3b:e8:2b:28:0d:94:e0: 40:45:11:9b:81:87:09:7b:03:6b:64:1e:1a:0c:bc:81:43:48: ff:e3:c4:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA3REUxMTAvBgNVBAUTKDNEMEE4OEMwQ0NBM0VFODY3N0NEMTdERjNFRTg2REU3 MURGQzExMjkwHhcNMjUxMjI4MjM0NjUxWhcNMjYwMTA0MjM0NjUxWjAYMRYwFAYD VQQDDA02OTUxYzE2Yi0yZjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzi0gSj1qhvPxE20htwUCnxRvIP7jLtjODW+12kH2vr+vVV6D5eVVVu4fYpf /oN9LmBdpNMvTUfmzYPZS7HA1fmdkYBBYiC/E1uB7x/M10yIhw7dWbLdxypOC7SF MUB5yaPw2VcVZCA09h4EutnW5VbMe4MCXiP53hGVA9pYWX8cLoaDPwPNMWOmHokz qHstIieNVVohCfauuB0zy4Ua6rcpd7FvpkcX4PAvTrsV3UibQQCaQ7vn4BRK9Gnq GiyWnX3jFZ4GGh+8vR09LlK0U7Y7+3T2Qoix3qBxOCGz6OTxPj4VFnhALCdyg9Pq vD+QS6YViuosbDxdUQVV+9grmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBQc3pHl lFFx1ytRjuEmHP+F5YDmMB8GA1UdIwQYMBaAFD0KiMDMo+6Gd80X3z7obecd/BEp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDdERS9DNzY4MTRDNkJC NUExMUVDOTA4QUM5NkVDNEY5QUUwMi9QUXFJd015ajdvWjN6UmZmUHVodDV4MzhF U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BRcUl3TXlqN29aM3pSZmZQdWh0NXgzOEVTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDdERS9DNzY4MTRDNkJCNUExMUVDOTA4QUM5NkVDNEY5QUUwMi9QUXFJd015ajdv WjN6UmZmUHVodDV4MzhFU2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0krJldruK8eKdH7owlbf7MI+oGadfKkD+tDovMJ4cokopZaPJBUBO 0C8y8t99UdtBOuhzY81TilzzPTbvb7mS16tcGx9dJAU6g4hpjj2Oe9EpqE8fXjeA Xc1xec2tjYNemgpucGE47bcAvclWlVtSfd/fm3dz9elmBd7aDUcMC1mbr0zYQr/l jRyTxDUgMpzFh8AroDnmoy8Xi2xBLp+LvNlldjv20N8OURoVEFQDatoT/KKM6wdg z4hHy9N6q9qqAfdLdv067M/nOXQMPHyIOzdIbFuiWKKbkX9accxhldUj4DvoKygN lOBARRGbgYcJewNrZB4aDLyBQ0j/48SN -----END CERTIFICATE-----Generated at Mon Dec 29 10:13:33 2025 by rpki-client