This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft File: PQqIwMyj7oZ3zRffPuht5x38ESk.mft (raw, json) Hash identifier: cs7qAhUU3ImmKSmsupYhBq5c5zS7AnsioaCNDLB4XHo= Subject key identifier: 60:87:56:8E:7F:18:CF:DE:15:6F:BE:62:14:51:94:F0:AF:5A:DF:84 Authority key identifier: 3D:0A:88:C0:CC:A3:EE:86:77:CD:17:DF:3E:E8:6D:E7:1D:FC:11:29 Certificate issuer: /CN=A91607DE/serialNumber=3D0A88C0CCA3EE8677CD17DF3EE86DE71DFC1129 Certificate serial: 03B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQqIwMyj7oZ3zRffPuht5x38ESk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft Manifest number: 03B0 Signing time: Thu 18 Dec 2025 23:57:23 +0000 Manifest this update: Thu 18 Dec 2025 23:57:22 +0000 Manifest next update: Thu 25 Dec 2025 23:57:22 +0000 Files and hashes: 1: PQqIwMyj7oZ3zRffPuht5x38ESk.crl (hash: BLYEtExicpXoywAsDdOfmn6RCFD+dLW1ZZZkBAJkTSA=) 2: FD398FA0BB5D11ECA62F8674C4F9AE02.roa (hash: OZN4xQkAGlo2J7xAsq7WK/TKxkfRBmTruJ0GM4QH81c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.crl rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQqIwMyj7oZ3zRffPuht5x38ESk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:57:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 949 (0x3b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91607DE, serialNumber=3D0A88C0CCA3EE8677CD17DF3EE86DE71DFC1129 Validity Not Before: Dec 18 23:57:22 2025 GMT Not After : Dec 25 23:57:22 2025 GMT Subject: CN=694494e3-da9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:2a:96:97:b0:69:22:5b:cf:fe:a9:94:b0:b7: 6c:da:f2:3a:bc:6b:b0:7d:ac:b4:31:ed:5e:0d:c2: 47:80:32:54:37:2f:47:60:55:21:5d:75:d6:16:19: f4:36:95:37:d6:f1:ce:f5:99:b4:6c:81:38:ca:d4: 9b:16:2d:75:09:bd:25:26:51:6e:b7:13:b7:45:f5: 8d:84:d8:7c:12:a4:ec:ad:2b:55:f0:10:7e:c9:44: ae:41:da:9e:86:6e:cd:44:48:6d:f7:5c:2c:e1:97: 88:fc:ae:b9:44:82:ba:a8:6c:d8:ab:c5:38:f6:9b: 7e:35:a4:fb:80:ca:de:b6:f0:35:be:ac:65:f4:85: eb:2c:ab:d8:47:f9:2f:22:62:af:bd:44:01:bc:58: 54:cd:4c:69:40:97:50:ad:8f:e5:c3:8e:05:8f:64: b9:57:bd:06:e9:65:fb:1a:ca:79:8a:42:ad:46:c2: f8:fb:bd:59:6f:d1:b2:72:85:cc:97:d2:fa:4f:5f: 53:65:68:df:c5:6a:ae:0a:b2:70:e5:52:aa:59:ac: 8a:eb:13:69:f3:66:c8:2a:23:f4:4a:12:f1:c0:81: 05:bb:3b:cf:b3:2d:e9:70:3f:61:0a:82:10:a8:43: e8:49:d2:d7:32:01:df:dc:f8:cf:ca:80:c9:4c:13: 61:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:87:56:8E:7F:18:CF:DE:15:6F:BE:62:14:51:94:F0:AF:5A:DF:84 X509v3 Authority Key Identifier: keyid:3D:0A:88:C0:CC:A3:EE:86:77:CD:17:DF:3E:E8:6D:E7:1D:FC:11:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQqIwMyj7oZ3zRffPuht5x38ESk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:96:c7:fe:4f:6a:5f:77:dc:5e:c0:ad:3a:7e:fe:0e:b3:03: ca:90:97:fb:d5:ef:82:d6:70:90:c4:8d:33:2c:43:65:9d:6d: 47:45:d2:2f:e8:ad:ee:42:c4:64:ea:79:be:bc:7d:f6:88:df: 17:b9:fb:50:e4:d8:ae:97:07:78:30:41:c5:20:c8:85:62:e8: 12:30:89:af:de:55:d0:ac:af:10:6d:f4:4d:07:c5:b8:a4:f7: 3d:8c:92:45:ea:24:d0:69:ce:d1:78:63:61:3d:ac:27:ea:09: 01:03:27:0a:8c:05:13:d2:86:94:ee:42:0c:d4:7d:8d:46:55: f5:d3:65:f1:67:68:cd:76:8c:07:c0:ec:d6:4c:3c:19:3a:47: 76:d0:b8:f1:3f:e4:8a:d9:80:21:b5:90:6a:e4:e7:a0:a5:85: 25:e7:6f:e1:e2:21:bb:fa:71:92:b7:70:7f:be:30:06:a3:96: dd:5b:ef:3c:78:10:43:fc:32:6c:3b:12:77:02:dc:0a:6d:1b: 79:26:35:ce:8f:52:65:48:bd:8d:2b:34:1b:b6:b4:14:ef:72: aa:a1:d4:c5:c7:d9:d3:53:7c:14:dd:dc:65:80:02:ca:6f:4a: ef:33:fb:d1:ee:46:1f:4d:c2:d3:bb:3b:a1:39:54:36:4d:57: c9:ae:32:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA3REUxMTAvBgNVBAUTKDNEMEE4OEMwQ0NBM0VFODY3N0NEMTdERjNFRTg2REU3 MURGQzExMjkwHhcNMjUxMjE4MjM1NzIyWhcNMjUxMjI1MjM1NzIyWjAYMRYwFAYD VQQDDA02OTQ0OTRlMy1kYTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8CqWl7BpIlvP/qmUsLds2vI6vGuwfay0Me1eDcJHgDJUNy9HYFUhXXXWFhn0 NpU31vHO9Zm0bIE4ytSbFi11Cb0lJlFutxO3RfWNhNh8EqTsrStV8BB+yUSuQdqe hm7NREht91ws4ZeI/K65RIK6qGzYq8U49pt+NaT7gMretvA1vqxl9IXrLKvYR/kv ImKvvUQBvFhUzUxpQJdQrY/lw44Fj2S5V70G6WX7Gsp5ikKtRsL4+71Zb9GycoXM l9L6T19TZWjfxWquCrJw5VKqWayK6xNp82bIKiP0ShLxwIEFuzvPsy3pcD9hCoIQ qEPoSdLXMgHf3PjPyoDJTBNhmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGCHVo5/ GM/eFW++YhRRlPCvWt+EMB8GA1UdIwQYMBaAFD0KiMDMo+6Gd80X3z7obecd/BEp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDdERS9DNzY4MTRDNkJC NUExMUVDOTA4QUM5NkVDNEY5QUUwMi9QUXFJd015ajdvWjN6UmZmUHVodDV4MzhF U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BRcUl3TXlqN29aM3pSZmZQdWh0NXgzOEVTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDdERS9DNzY4MTRDNkJCNUExMUVDOTA4QUM5NkVDNEY5QUUwMi9QUXFJd015ajdv WjN6UmZmUHVodDV4MzhFU2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQlsf+T2pfd9xewK06fv4OswPKkJf71e+C1nCQxI0zLENlnW1HRdIv 6K3uQsRk6nm+vH32iN8XuftQ5Niulwd4MEHFIMiFYugSMImv3lXQrK8QbfRNB8W4 pPc9jJJF6iTQac7ReGNhPawn6gkBAycKjAUT0oaU7kIM1H2NRlX102XxZ2jNdowH wOzWTDwZOkd20LjxP+SK2YAhtZBq5OegpYUl52/h4iG7+nGSt3B/vjAGo5bdW+88 eBBD/DJsOxJ3AtwKbRt5JjXOj1JlSL2NKzQbtrQU73KqodTFx9nTU3wU3dxlgALK b0rvM/vR7kYfTcLTuzuhOVQ2TVfJrjKP -----END CERTIFICATE-----Generated at Fri Dec 19 19:06:02 2025 by rpki-client