This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft File: PcXSlD7UrPqSa3dnapi-yLPJea4.mft (raw, json) Hash identifier: P1tR+9pVjN1KdnxcLnLgBfaYo3ucr9EhV5wVSrEb1sw= Subject key identifier: 55:4C:4B:0C:CE:E5:DD:53:DF:25:3B:CC:AF:37:BA:13:E7:04:A6:B3 Authority key identifier: 3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE Certificate issuer: /CN=A916AF8E/serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE Certificate serial: 07D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft Manifest number: 07CE Signing time: Thu 18 Dec 2025 20:45:20 +0000 Manifest this update: Thu 18 Dec 2025 20:45:20 +0000 Manifest next update: Thu 25 Dec 2025 20:45:20 +0000 Files and hashes: 1: PcXSlD7UrPqSa3dnapi-yLPJea4.crl (hash: V8ZiBDWo5Y6tVZiYhyZgI6F2h6GWlixX5iQEzW8dJks=) 2: 499DE3FC1C1611EB8BD35065C4F9AE02.roa (hash: QnFh/0YdNLZr/ZfMn+21+lOUTuFHow1/2U5v+xOLivo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 20:45:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2006 (0x7d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AF8E, serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE Validity Not Before: Dec 18 20:45:20 2025 GMT Not After : Dec 25 20:45:20 2025 GMT Subject: CN=694467e0-9d3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:f2:e9:f6:02:98:c0:2f:e4:3f:c5:3e:dd:32: 72:d4:4b:3d:61:7a:7d:33:f8:bb:3a:72:93:e6:ea: 6c:5d:a3:a0:0d:29:f9:56:d2:86:e8:8e:54:ea:c1: 25:df:47:ab:b3:9f:53:90:27:14:df:f0:f3:0c:eb: dc:cc:f4:1c:81:9d:ee:b9:8c:ae:04:1a:ab:a9:7d: 1b:3d:f3:82:29:ca:8b:48:ae:7b:a9:fc:cb:96:6d: de:e6:5a:a4:84:37:8e:1c:6c:c5:d9:c9:4b:ac:62: 52:ec:a0:67:cd:c8:a9:b3:91:f6:4f:97:9e:bc:96: c4:35:ba:f1:79:09:1e:32:f6:51:05:b5:5d:5a:ab: 50:97:5c:1f:61:3c:6e:c6:9b:87:75:1d:af:32:8d: 6a:79:b2:3a:39:f5:d0:2a:e8:98:ca:b2:c8:c0:67: 71:5a:5c:86:20:df:de:65:20:d0:0d:9c:f3:52:7b: 96:e9:9c:4c:c0:be:ea:46:e3:2d:e8:43:70:ae:fa: 9c:35:5f:d8:ab:da:67:ce:68:7c:7f:50:f3:99:a6: 1c:d5:1f:c7:0e:a8:46:81:f0:46:2e:d0:59:ec:80: 27:55:8e:1a:4b:f5:62:94:7c:27:de:fa:ef:44:11: da:b8:dc:f1:43:81:3a:06:63:be:f4:f3:be:c1:77: 05:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:4C:4B:0C:CE:E5:DD:53:DF:25:3B:CC:AF:37:BA:13:E7:04:A6:B3 X509v3 Authority Key Identifier: keyid:3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:0a:79:23:65:88:ef:ab:d2:68:b8:2b:60:1c:7e:cb:c3:99: de:29:61:32:a3:86:aa:8f:62:81:c2:88:d0:da:09:54:aa:61: 67:31:4b:37:09:66:77:63:ed:80:d7:f6:1c:64:d9:14:16:e1: cb:3a:a1:6a:ef:b4:49:8b:df:2b:77:4e:fa:dd:94:b1:68:c2: 2a:bc:55:9a:dd:cc:20:fc:7e:63:3f:c9:7d:0a:ed:1c:db:47: f9:f1:3e:aa:bc:75:45:38:73:45:6f:3c:1d:2e:3f:d2:b1:82: 84:e5:0b:64:b3:05:3c:af:c6:26:5f:57:4b:a8:a9:59:ea:50: cd:8c:b8:03:f7:00:48:ea:c6:c3:d8:f4:4d:5c:d2:cf:b2:86: 4d:ea:ea:4f:62:64:00:e5:96:01:ec:b2:79:d9:32:a0:b4:50: 4d:4e:97:68:c2:7a:fe:98:e3:ab:1a:f8:6b:2a:6e:91:9a:2e: f0:ff:95:28:c1:ae:7f:24:83:2d:e1:12:4a:44:a9:6a:4c:c9: f9:c6:df:63:44:62:e1:84:29:98:b0:25:ab:ba:07:c0:8a:90: 88:c3:39:13:32:3f:c1:3c:2a:c2:40:d9:43:f1:aa:aa:fa:27: 0f:ad:33:e9:b0:60:7b:01:7b:6a:ef:e4:7a:cd:4d:6f:46:97: b2:8a:9e:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFGOEUxMTAvBgNVBAUTKDNEQzVEMjk0M0VENEFDRkE5MjZCNzc2NzZBOThCRUM4 QjNDOTc5QUUwHhcNMjUxMjE4MjA0NTIwWhcNMjUxMjI1MjA0NTIwWjAYMRYwFAYD VQQDDA02OTQ0NjdlMC05ZDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkvLp9gKYwC/kP8U+3TJy1Es9YXp9M/i7OnKT5upsXaOgDSn5VtKG6I5U6sEl 30ers59TkCcU3/DzDOvczPQcgZ3uuYyuBBqrqX0bPfOCKcqLSK57qfzLlm3e5lqk hDeOHGzF2clLrGJS7KBnzcips5H2T5eevJbENbrxeQkeMvZRBbVdWqtQl1wfYTxu xpuHdR2vMo1qebI6OfXQKuiYyrLIwGdxWlyGIN/eZSDQDZzzUnuW6ZxMwL7qRuMt 6ENwrvqcNV/Yq9pnzmh8f1DzmaYc1R/HDqhGgfBGLtBZ7IAnVY4aS/VilHwn3vrv RBHauNzxQ4E6BmO+9PO+wXcFsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFVMSwzO 5d1T3yU7zK83uhPnBKazMB8GA1UdIwQYMBaAFD3F0pQ+1Kz6kmt3Z2qYvsizyXmu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUY4RS9EOTRBNzU5NDFD MTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQcVNhM2RuYXBpLXlMUEpl YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BjWFNsRDdVclBxU2EzZG5hcGkteUxQSmVhNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUY4RS9EOTRBNzU5NDFDMTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQ cVNhM2RuYXBpLXlMUEplYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUCnkjZYjvq9JouCtgHH7Lw5neKWEyo4aqj2KBwojQ2glUqmFnMUs3 CWZ3Y+2A1/YcZNkUFuHLOqFq77RJi98rd0763ZSxaMIqvFWa3cwg/H5jP8l9Cu0c 20f58T6qvHVFOHNFbzwdLj/SsYKE5QtkswU8r8YmX1dLqKlZ6lDNjLgD9wBI6sbD 2PRNXNLPsoZN6upPYmQA5ZYB7LJ52TKgtFBNTpdownr+mOOrGvhrKm6Rmi7w/5Uo wa5/JIMt4RJKRKlqTMn5xt9jRGLhhCmYsCWrugfAipCIwzkTMj/BPCrCQNlD8aqq +icPrTPpsGB7AXtq7+R6zU1vRpeyip4q -----END CERTIFICATE-----Generated at Fri Dec 19 18:49:43 2025 by rpki-client