This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918AA54/D88CD9D6DC3811EC93910B68C4F9AE02/Pmfb94IgKJPx-1r31vwJ0AGP3wY.mft File: Pmfb94IgKJPx-1r31vwJ0AGP3wY.mft (raw, json) Hash identifier: wtnnFOuK6Kfy4DWPZhSG4KVMQB41nWkNu/oDoCMwzz4= Subject key identifier: 9C:97:8B:F9:2B:3C:E4:B1:36:9C:3F:45:E2:83:3F:6C:CA:9B:42:A7 Authority key identifier: 3E:67:DB:F7:82:20:28:93:F1:FB:5A:F7:D6:FC:09:D0:01:8F:DF:06 Certificate issuer: /CN=A918AA54/serialNumber=3E67DBF782202893F1FB5AF7D6FC09D0018FDF06 Certificate serial: 0366 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pmfb94IgKJPx-1r31vwJ0AGP3wY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AA54/D88CD9D6DC3811EC93910B68C4F9AE02/Pmfb94IgKJPx-1r31vwJ0AGP3wY.mft Manifest number: 0360 Signing time: Sun 21 Dec 2025 00:10:30 +0000 Manifest this update: Sun 21 Dec 2025 00:10:30 +0000 Manifest next update: Sun 28 Dec 2025 00:10:30 +0000 Files and hashes: 1: Pmfb94IgKJPx-1r31vwJ0AGP3wY.crl (hash: hVmpo6pvF0Io+MqZMNzZ5iCbebmlILrioT00EUuO+U4=) 2: F7ACA074DC3F11EC8323B460C4F9AE02.roa (hash: +p5cj7LwT5hXMy0c3PlvgwDnOhrwUIuzknInRNhRtuo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AA54/D88CD9D6DC3811EC93910B68C4F9AE02/Pmfb94IgKJPx-1r31vwJ0AGP3wY.crl rsync://rpki.apnic.net/member_repository/A918AA54/D88CD9D6DC3811EC93910B68C4F9AE02/Pmfb94IgKJPx-1r31vwJ0AGP3wY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pmfb94IgKJPx-1r31vwJ0AGP3wY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:10:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 870 (0x366) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AA54, serialNumber=3E67DBF782202893F1FB5AF7D6FC09D0018FDF06 Validity Not Before: Dec 21 00:10:30 2025 GMT Not After : Dec 28 00:10:30 2025 GMT Subject: CN=69473af6-453c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:37:4d:27:4a:df:40:99:89:50:4d:38:ac:0d: e0:77:af:6b:8f:86:e4:62:73:c5:60:f8:b7:28:9d: c1:1a:04:9c:dc:f2:91:76:0d:20:e6:08:4b:85:f0: 8d:4f:28:b7:4e:c2:d2:24:dc:12:25:3c:51:78:51: 83:87:e9:c3:58:49:32:af:e0:e3:a3:0b:04:ed:fc: 26:b3:9b:e4:88:3c:3f:7f:37:a2:19:e5:60:11:47: 43:b6:98:f4:f2:9c:91:cb:a7:7a:55:79:13:70:98: 26:84:0d:d8:ec:8e:d5:6f:87:e8:29:f9:3e:0a:55: 29:c7:32:00:45:79:5d:0c:ec:f1:f3:74:54:5a:7f: dd:fc:34:76:ed:c2:5d:cb:b3:b4:01:09:6c:40:ea: c8:68:e6:13:18:fe:45:25:a4:2d:b4:43:cb:b6:64: 70:6e:c7:ba:32:de:1d:38:db:37:6c:f0:dc:83:e6: dc:4c:c3:ad:96:54:4d:13:1f:9e:ce:fb:9a:4a:a7: 21:9f:5c:c1:3a:89:ab:b4:0e:f2:e7:6c:27:6a:0f: 27:63:f1:a9:e9:f3:ee:98:4c:cb:c4:c8:d1:4a:2c: 38:4e:7c:7d:6f:af:09:96:f8:bc:85:e9:17:11:4d: bc:9e:b8:fa:6c:23:b5:38:4a:0c:2e:d9:8f:4b:49: 96:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:97:8B:F9:2B:3C:E4:B1:36:9C:3F:45:E2:83:3F:6C:CA:9B:42:A7 X509v3 Authority Key Identifier: keyid:3E:67:DB:F7:82:20:28:93:F1:FB:5A:F7:D6:FC:09:D0:01:8F:DF:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AA54/D88CD9D6DC3811EC93910B68C4F9AE02/Pmfb94IgKJPx-1r31vwJ0AGP3wY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pmfb94IgKJPx-1r31vwJ0AGP3wY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AA54/D88CD9D6DC3811EC93910B68C4F9AE02/Pmfb94IgKJPx-1r31vwJ0AGP3wY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:42:bc:cd:50:e0:e6:68:bc:84:0e:d6:f9:2d:fc:d2:35:89: 71:34:24:c8:06:eb:8f:77:cc:b1:a2:df:89:7a:c4:93:c3:dc: 77:e9:ed:73:64:87:22:fa:e0:e5:37:15:21:d4:be:05:30:8e: 64:b6:ee:65:da:5e:a8:5d:03:3c:1d:1f:ea:b0:c6:22:ec:5f: dd:6a:3d:aa:fd:a7:c4:e6:55:e0:24:9f:7f:6c:f8:5e:e7:73: 36:73:bc:ef:91:a6:ca:c9:78:69:b2:fc:1f:ac:fe:9a:75:85: 25:8b:16:e2:4c:50:a6:05:6b:b9:86:c6:bf:f4:7f:2c:9c:98: 34:bd:e0:35:64:17:1d:56:f0:67:55:62:1c:e1:6b:01:f2:f0: 1f:3c:b0:35:7d:6e:96:12:56:4e:d4:43:54:41:e8:28:f0:2e: e5:5c:0c:1c:30:90:97:d6:f3:75:30:e1:ef:09:64:f0:58:00: 21:20:e0:dc:0e:e8:1f:6f:08:c5:f4:02:55:6a:b5:f1:99:7f: 4d:b8:11:74:ca:74:3d:1d:68:1a:1d:b5:26:8d:dc:0b:2b:d3: 74:67:bd:45:8b:71:a6:f7:3f:81:a0:12:9a:10:58:3c:99:f6: 05:f7:da:68:46:b2:e8:70:7a:73:c8:7d:38:2e:09:dd:7f:31: bf:ad:b7:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFBNTQxMTAvBgNVBAUTKDNFNjdEQkY3ODIyMDI4OTNGMUZCNUFGN0Q2RkMwOUQw MDE4RkRGMDYwHhcNMjUxMjIxMDAxMDMwWhcNMjUxMjI4MDAxMDMwWjAYMRYwFAYD VQQDDA02OTQ3M2FmNi00NTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzTdNJ0rfQJmJUE04rA3gd69rj4bkYnPFYPi3KJ3BGgSc3PKRdg0g5ghLhfCN Tyi3TsLSJNwSJTxReFGDh+nDWEkyr+DjowsE7fwms5vkiDw/fzeiGeVgEUdDtpj0 8pyRy6d6VXkTcJgmhA3Y7I7Vb4foKfk+ClUpxzIARXldDOzx83RUWn/d/DR27cJd y7O0AQlsQOrIaOYTGP5FJaQttEPLtmRwbse6Mt4dONs3bPDcg+bcTMOtllRNEx+e zvuaSqchn1zBOomrtA7y52wnag8nY/Gp6fPumEzLxMjRSiw4Tnx9b68Jlvi8hekX EU28nrj6bCO1OEoMLtmPS0mWSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJyXi/kr POSxNpw/ReKDP2zKm0KnMB8GA1UdIwQYMBaAFD5n2/eCICiT8fta99b8CdABj98G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUE1NC9EODhDRDlENkRD MzgxMUVDOTM5MTBCNjhDNEY5QUUwMi9QbWZiOTRJZ0tKUHgtMXIzMXZ3SjBBR1Az d1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BtZmI5NElnS0pQeC0xcjMxdndKMEFHUDN3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUE1NC9EODhDRDlENkRDMzgxMUVDOTM5MTBCNjhDNEY5QUUwMi9QbWZiOTRJZ0tK UHgtMXIzMXZ3SjBBR1Azd1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3QrzNUODmaLyEDtb5LfzSNYlxNCTIBuuPd8yxot+JesSTw9x36e1z ZIci+uDlNxUh1L4FMI5ktu5l2l6oXQM8HR/qsMYi7F/daj2q/afE5lXgJJ9/bPhe 53M2c7zvkabKyXhpsvwfrP6adYUlixbiTFCmBWu5hsa/9H8snJg0veA1ZBcdVvBn VWIc4WsB8vAfPLA1fW6WElZO1ENUQego8C7lXAwcMJCX1vN1MOHvCWTwWAAhIODc DugfbwjF9AJVarXxmX9NuBF0ynQ9HWgaHbUmjdwLK9N0Z71Fi3Gm9z+BoBKaEFg8 mfYF99poRrLocHpzyH04LgndfzG/rbcP -----END CERTIFICATE-----Generated at Sun Dec 21 22:54:43 2025 by rpki-client