This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft File: pGM3j5KTiRbgseQTrw8MinPCH08.mft (raw, json) Hash identifier: WtEzWTlEWi+POfxvfV94LV1zvLEtBTgh+aO6iHet7HU= Subject key identifier: EA:8B:50:87:C3:9B:B0:A0:A0:D9:9A:35:BE:E0:6A:64:10:95:9E:F3 Authority key identifier: A4:63:37:8F:92:93:89:16:E0:B1:E4:13:AF:0F:0C:8A:73:C2:1F:4F Certificate issuer: /CN=A917C3A7/serialNumber=A463378F92938916E0B1E413AF0F0C8A73C21F4F Certificate serial: 04BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGM3j5KTiRbgseQTrw8MinPCH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft Manifest number: 04BB Signing time: Thu 18 Dec 2025 23:13:25 +0000 Manifest this update: Thu 18 Dec 2025 23:13:25 +0000 Manifest next update: Thu 25 Dec 2025 23:13:25 +0000 Files and hashes: 1: pGM3j5KTiRbgseQTrw8MinPCH08.crl (hash: IKh+oGdQoOgkQgegXXYfjkpXyUB6bkuuvoHKo7yMiIE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.crl rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGM3j5KTiRbgseQTrw8MinPCH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:13:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1211 (0x4bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C3A7, serialNumber=A463378F92938916E0B1E413AF0F0C8A73C21F4F Validity Not Before: Dec 18 23:13:25 2025 GMT Not After : Dec 25 23:13:25 2025 GMT Subject: CN=69448a95-a355 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fe:b4:ad:90:52:46:a3:d0:91:00:13:74:c9: 7e:c1:b7:aa:29:dd:e1:46:c4:27:43:d9:9f:2f:29: 1e:e7:4a:5f:94:d9:02:66:01:ee:f1:63:03:65:03: 65:0d:ac:7b:14:e8:b5:bd:ef:81:00:7d:9a:2b:0d: 0b:f3:f6:9f:a8:d4:74:d5:5f:80:7a:ad:28:33:81: ab:70:45:fa:d9:11:04:92:a8:3b:5c:72:02:5b:9d: 9f:8e:a0:94:f3:ba:9b:9b:09:61:c6:68:aa:99:30: fb:5a:69:20:6b:ed:00:30:bb:a1:6e:9c:3c:11:b9: fb:f4:46:40:22:6f:85:13:f7:98:ef:d5:f4:0d:0a: dc:de:b4:66:d3:95:e3:1d:13:9d:38:f9:7b:d5:25: 15:3a:88:4a:79:32:ac:07:c8:09:1e:95:81:59:0b: 57:fc:d5:de:02:2d:31:9b:3d:fd:11:1c:0f:76:8d: cc:ac:3d:d4:8f:3f:aa:c4:75:a4:60:1f:0d:cb:48: 9d:1a:0f:56:5b:87:29:15:80:e5:31:25:bd:d6:13: 9d:a0:f2:2a:c5:fb:4b:16:fa:3a:9e:48:95:19:56: d3:95:40:7b:c0:f4:bf:2a:6e:72:a4:ae:28:9d:1e: 09:b1:9d:fa:1d:a8:7e:25:cb:bd:b2:f1:93:0d:34: 50:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:8B:50:87:C3:9B:B0:A0:A0:D9:9A:35:BE:E0:6A:64:10:95:9E:F3 X509v3 Authority Key Identifier: keyid:A4:63:37:8F:92:93:89:16:E0:B1:E4:13:AF:0F:0C:8A:73:C2:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGM3j5KTiRbgseQTrw8MinPCH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:42:af:a6:28:8d:7c:d3:b5:ba:94:41:88:b9:06:f3:a4:12: 15:84:e2:60:9c:7a:5f:f3:07:b2:b7:4e:13:11:88:55:b8:16: 13:8f:3b:bf:65:cd:f3:d5:10:04:15:c6:0f:f5:d2:c2:08:ab: a9:6d:16:55:bd:e3:c4:22:d7:db:9f:3f:15:8e:06:e2:74:cf: 1b:4c:90:be:0e:44:42:f5:78:18:aa:67:e0:a7:a1:2e:a0:29: 1b:fa:a5:30:b5:87:45:48:0d:ee:60:b7:a5:d5:73:ee:6f:21: f1:d9:f0:38:e9:72:1d:4a:fe:0e:96:6b:ae:38:d2:ef:92:ca: f6:a6:61:ca:19:2e:e5:37:4d:2b:79:dd:cf:78:fa:99:07:33: d0:45:8e:c1:88:5a:42:95:09:21:01:5d:b3:1b:3d:03:8c:bb: 72:6b:8d:3e:ba:40:d0:d1:17:de:d4:40:91:2c:31:a0:8d:30: a1:3a:2e:59:fd:3c:70:56:9e:17:9f:7d:0f:53:e9:a8:a3:af: c2:f6:dd:24:e0:c7:d8:58:a4:5f:8d:3d:d4:45:9e:13:5f:bc: e3:3c:e6:aa:62:a1:97:f1:33:df:e9:7c:31:55:38:90:1e:3e: 7a:f5:b1:d9:ca:bd:9e:b4:d9:64:b7:ad:7c:81:10:f2:07:7c: 6a:25:d4:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MzQTcxMTAvBgNVBAUTKEE0NjMzNzhGOTI5Mzg5MTZFMEIxRTQxM0FGMEYwQzhB NzNDMjFGNEYwHhcNMjUxMjE4MjMxMzI1WhcNMjUxMjI1MjMxMzI1WjAYMRYwFAYD VQQDDA02OTQ0OGE5NS1hMzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuv60rZBSRqPQkQATdMl+wbeqKd3hRsQnQ9mfLyke50pflNkCZgHu8WMDZQNl Dax7FOi1ve+BAH2aKw0L8/afqNR01V+Aeq0oM4GrcEX62REEkqg7XHICW52fjqCU 87qbmwlhxmiqmTD7Wmkga+0AMLuhbpw8Ebn79EZAIm+FE/eY79X0DQrc3rRm05Xj HROdOPl71SUVOohKeTKsB8gJHpWBWQtX/NXeAi0xmz39ERwPdo3MrD3Ujz+qxHWk YB8Ny0idGg9WW4cpFYDlMSW91hOdoPIqxftLFvo6nkiVGVbTlUB7wPS/Km5ypK4o nR4JsZ36Hah+Jcu9svGTDTRQ9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOqLUIfD m7CgoNmaNb7gamQQlZ7zMB8GA1UdIwQYMBaAFKRjN4+Sk4kW4LHkE68PDIpzwh9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzNBNy9FNDFGRjBBNjUz MjgxMUVDODM1MkQyNDVDNEY5QUUwMi9wR00zajVLVGlSYmdzZVFUcnc4TWluUENI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BHTTNqNUtUaVJiZ3NlUVRydzhNaW5QQ0gwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzNBNy9FNDFGRjBBNjUzMjgxMUVDODM1MkQyNDVDNEY5QUUwMi9wR00zajVLVGlS YmdzZVFUcnc4TWluUENIMDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8Qq+mKI1807W6lEGIuQbzpBIVhOJgnHpf8weyt04TEYhVuBYTjzu/ Zc3z1RAEFcYP9dLCCKupbRZVvePEItfbnz8VjgbidM8bTJC+DkRC9XgYqmfgp6Eu oCkb+qUwtYdFSA3uYLel1XPubyHx2fA46XIdSv4OlmuuONLvksr2pmHKGS7lN00r ed3PePqZBzPQRY7BiFpClQkhAV2zGz0DjLtya40+ukDQ0Rfe1ECRLDGgjTChOi5Z /TxwVp4Xn30PU+moo6/C9t0k4MfYWKRfjT3URZ4TX7zjPOaqYqGX8TPf6XwxVTiQ Hj569bHZyr2etNlkt618gRDyB3xqJdQq -----END CERTIFICATE-----Generated at Fri Dec 19 22:01:04 2025 by rpki-client