This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft File: PgyjPXanW6ZPDdawakQr5pWGRBo.mft (raw, json) Hash identifier: RQ1Tipu5ZBRlNe+BHIglQhcQYsvQwTkRjJm1tS2hrhk= Subject key identifier: 12:15:42:32:BB:8E:94:F4:C1:C4:09:6B:28:7E:55:89:75:8B:68:D1 Authority key identifier: 3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A Certificate issuer: /CN=A917C422/serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Certificate serial: 350B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft Manifest number: 34FB Signing time: Wed 24 Dec 2025 14:25:03 +0000 Manifest this update: Wed 24 Dec 2025 14:25:02 +0000 Manifest next update: Wed 31 Dec 2025 14:25:02 +0000 Files and hashes: 1: PgyjPXanW6ZPDdawakQr5pWGRBo.crl (hash: /sS7ObuPrHERft/W3ukKFg4sErIOYVOFgbQZEtPfd8w=) 2: D69F6688CD8511EBB5252063C4F9AE02.roa (hash: o45AFhO6SSMQiWqggKeTKMzwcSJwvQDsZ1NlO/kkLkM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 14:25:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13579 (0x350b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422, serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Validity Not Before: Dec 24 14:25:02 2025 GMT Not After : Dec 31 14:25:02 2025 GMT Subject: CN=694bf7bf-bd69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:df:65:02:32:a3:8f:a2:9d:a4:37:3c:68:09: af:be:35:21:15:b4:bb:0f:af:70:8a:10:ec:fb:16: 01:98:0a:47:c4:e1:61:9c:f3:ca:d6:b6:18:0c:2b: a1:ed:bc:45:c3:68:5e:e0:b8:7a:f3:64:99:8c:36: 81:17:b8:a3:d2:10:46:e9:28:c0:d0:f2:99:5a:54: aa:5a:22:ed:a9:7a:c8:40:f6:ca:f8:2d:ec:da:e5: cd:d9:2c:b7:4b:a4:20:70:4d:80:ee:71:54:43:25: a3:5c:21:5f:05:77:c3:7d:23:1c:86:58:21:0a:19: ae:ec:80:6b:26:7f:b3:c0:59:e7:03:cd:09:86:04: 52:7e:59:da:b3:6b:49:74:f4:7f:18:8a:c0:3d:13: 55:e7:0c:b8:51:17:43:47:80:a5:e1:07:a3:12:2e: 32:f4:5f:91:ec:31:3c:9c:0d:ab:98:a0:88:ef:dc: 05:18:ea:2c:bd:4e:c5:40:49:ee:7f:3a:5b:46:7e: 4d:4f:f9:8a:ce:ea:58:d6:13:c4:b7:29:4f:74:72: 22:8f:0e:0a:28:da:58:17:f4:f1:49:a6:c1:3d:1e: fa:a5:bb:41:64:01:6f:ff:2e:76:58:db:b8:40:96: 9b:2c:fd:d5:79:81:9c:22:11:8f:d6:c9:d2:63:b2: e8:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:15:42:32:BB:8E:94:F4:C1:C4:09:6B:28:7E:55:89:75:8B:68:D1 X509v3 Authority Key Identifier: keyid:3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:24:5a:3e:19:5f:cd:71:51:36:a7:89:af:04:1e:cc:83:74: ce:c0:fa:c2:ee:f0:3b:00:9d:52:ad:30:56:ba:ce:59:9c:73: 63:ef:82:78:95:e0:25:b0:ad:bc:6d:e7:8b:a1:4e:ab:6a:72: 24:d7:be:46:d6:1b:12:ac:2e:cd:0e:0c:5f:1a:26:b8:af:4b: 7e:24:34:e8:b0:b1:e3:ad:40:59:b0:86:2d:d6:1d:3e:5b:c9: f3:7f:12:66:21:16:b4:37:be:4f:1a:2c:11:f2:00:56:69:b2: e3:2e:1c:7f:3d:ac:59:8c:db:43:aa:93:bd:47:ae:5e:dd:10: 39:58:39:00:c3:1b:5d:96:96:10:50:f8:07:ca:f2:4b:12:4e: 8a:f8:27:79:28:48:15:ab:71:be:45:96:0a:84:a4:e9:86:2f: d9:e2:3f:10:0f:77:9a:39:dd:58:c6:73:39:25:d7:cd:28:9f: 7b:b9:04:e5:2f:42:de:20:ae:41:98:93:3a:20:e6:0f:ff:c8: b3:c6:bb:cf:c4:8b:26:08:06:f7:fc:f9:8b:c6:6d:7f:68:4f: 76:1c:8b:6c:49:4b:f0:b6:e2:21:86:a1:b3:64:5c:e1:0b:d4: 27:17:78:48:43:d1:3b:8b:5f:fb:67:ec:0c:85:8d:7e:7c:c9: 91:e7:94:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDNFMENBMzNENzZBNzVCQTY0RjBERDZCMDZBNDQyQkU2 OTU4NjQ0MUEwHhcNMjUxMjI0MTQyNTAyWhcNMjUxMjMxMTQyNTAyWjAYMRYwFAYD VQQDDA02OTRiZjdiZi1iZDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz99lAjKjj6KdpDc8aAmvvjUhFbS7D69wihDs+xYBmApHxOFhnPPK1rYYDCuh 7bxFw2he4Lh682SZjDaBF7ij0hBG6SjA0PKZWlSqWiLtqXrIQPbK+C3s2uXN2Sy3 S6QgcE2A7nFUQyWjXCFfBXfDfSMchlghChmu7IBrJn+zwFnnA80JhgRSflnas2tJ dPR/GIrAPRNV5wy4URdDR4Cl4QejEi4y9F+R7DE8nA2rmKCI79wFGOosvU7FQEnu fzpbRn5NT/mKzupY1hPEtylPdHIijw4KKNpYF/TxSabBPR76pbtBZAFv/y52WNu4 QJabLP3VeYGcIhGP1snSY7LofQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBIVQjK7 jpT0wcQJayh+VYl1i2jRMB8GA1UdIwQYMBaAFD4Moz12p1umTw3WsGpEK+aVhkQa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi9BMkM3Mzg2ODFE ODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2WlBEZGF3YWtRcjVwV0dS Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BneWpQWGFuVzZaUERkYXdha1FyNXBXR1JCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi9BMkM3Mzg2ODFEODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2 WlBEZGF3YWtRcjVwV0dSQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYJFo+GV/NcVE2p4mvBB7Mg3TOwPrC7vA7AJ1SrTBWus5ZnHNj74J4 leAlsK28beeLoU6ranIk175G1hsSrC7NDgxfGia4r0t+JDTosLHjrUBZsIYt1h0+ W8nzfxJmIRa0N75PGiwR8gBWabLjLhx/PaxZjNtDqpO9R65e3RA5WDkAwxtdlpYQ UPgHyvJLEk6K+Cd5KEgVq3G+RZYKhKTphi/Z4j8QD3eaOd1YxnM5JdfNKJ97uQTl L0LeIK5BmJM6IOYP/8izxrvPxIsmCAb3/PmLxm1/aE92HItsSUvwtuIhhqGzZFzh C9QnF3hIQ9E7i1/7Z+wMhY1+fMmR55RV -----END CERTIFICATE-----Generated at Thu Dec 25 13:59:08 2025 by rpki-client