This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/pRz7iig43CPyh2RKRzXvwT2MMRM.mft File: pRz7iig43CPyh2RKRzXvwT2MMRM.mft (raw, json) Hash identifier: 1G2I49rOOTIPjT6Z8d94+bSjd/1jOHROZNyNOOJ9IHw= Subject key identifier: 29:65:6B:C1:CA:A7:B2:B4:65:35:AF:7F:C9:72:66:34:F4:77:27:F0 Authority key identifier: A5:1C:FB:8A:28:38:DC:23:F2:87:64:4A:47:35:EF:C1:3D:8C:31:13 Certificate issuer: /CN=A9197724/serialNumber=A51CFB8A2838DC23F287644A4735EFC13D8C3113 Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pRz7iig43CPyh2RKRzXvwT2MMRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/pRz7iig43CPyh2RKRzXvwT2MMRM.mft Manifest number: DD Signing time: Tue 23 Dec 2025 04:32:44 +0000 Manifest this update: Tue 23 Dec 2025 04:32:44 +0000 Manifest next update: Tue 30 Dec 2025 04:32:44 +0000 Files and hashes: 1: pRz7iig43CPyh2RKRzXvwT2MMRM.crl (hash: MtxmPHqc6dX61Vyh7lowxWw5ZfX0vkGIRouUAclJ2D0=) 2: A2C3AA7E904E11EF9FC6B922C4F9AE02.roa (hash: GgkYKX0rvLLAl9jFjsCJGv7qCn12Qh8j9soV+v0r+iY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/pRz7iig43CPyh2RKRzXvwT2MMRM.crl rsync://rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/pRz7iig43CPyh2RKRzXvwT2MMRM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pRz7iig43CPyh2RKRzXvwT2MMRM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:32:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197724, serialNumber=A51CFB8A2838DC23F287644A4735EFC13D8C3113 Validity Not Before: Dec 23 04:32:44 2025 GMT Not After : Dec 30 04:32:44 2025 GMT Subject: CN=694a1b6c-b482 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0d:58:aa:45:36:e9:30:47:76:ea:28:5c:4d: 7d:93:e6:16:69:3a:38:8b:66:ea:28:d7:e2:86:57: a9:f9:04:2f:d7:88:45:b7:e3:07:e8:d8:b0:cf:ea: f5:7e:9f:cd:df:98:73:31:16:96:76:42:84:69:03: 6d:9b:13:53:ea:25:24:7e:73:b1:b2:bb:40:1a:7d: c5:d0:6a:63:9f:ed:08:af:0b:57:87:fe:66:c0:87: fc:04:fe:22:2c:30:d3:b3:c3:c0:9f:da:5e:d0:f9: 5f:83:4f:de:d0:2c:c4:38:d3:61:d4:1b:8e:6a:84: eb:6a:c1:53:6d:6f:5d:fe:3c:33:45:89:32:ee:74: 83:94:23:a6:8f:08:72:e4:cf:f8:5e:e9:7d:4a:b4: 92:c9:c9:e0:31:0d:aa:c4:e2:be:76:e4:92:1f:0b: 95:b0:1a:51:07:66:3f:39:8a:4d:bd:76:0c:c8:67: 1d:f8:77:41:c1:df:a8:16:91:d0:da:4d:6b:80:e8: ad:0b:74:51:e6:41:a7:a7:5b:5e:76:69:f7:f3:2f: af:3e:51:40:91:fd:9e:f3:37:e9:f4:41:e2:10:7c: a0:6b:55:eb:e6:e2:b1:03:c5:76:2f:6d:14:a5:d9: 06:a4:03:8b:60:a0:00:f3:5b:25:d8:9d:5c:20:65: ab:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:65:6B:C1:CA:A7:B2:B4:65:35:AF:7F:C9:72:66:34:F4:77:27:F0 X509v3 Authority Key Identifier: keyid:A5:1C:FB:8A:28:38:DC:23:F2:87:64:4A:47:35:EF:C1:3D:8C:31:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/pRz7iig43CPyh2RKRzXvwT2MMRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pRz7iig43CPyh2RKRzXvwT2MMRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/pRz7iig43CPyh2RKRzXvwT2MMRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:31:31:1d:b4:07:7f:c1:69:50:43:cf:04:f0:f8:b2:e4:e7: 28:fd:51:d6:88:31:ff:f7:54:d8:0c:eb:50:a3:85:52:eb:b4: 2b:42:c8:eb:2a:3f:82:90:c4:ec:ee:9e:f2:38:ba:6c:ec:d8: 69:92:22:97:de:da:1b:d9:0c:56:ab:a3:eb:a0:d1:ad:d5:b1: d8:3f:c8:3e:9d:41:99:2e:41:66:88:ea:01:6d:67:24:ce:31: 69:59:54:d7:a8:cd:ef:63:5f:ba:65:d3:6f:5a:f6:0e:05:0a: a2:ca:e5:c9:12:45:26:4f:61:d7:bf:d0:ee:7f:62:56:60:c0: e0:bf:99:55:25:05:bb:c9:8b:53:d7:b7:bb:a5:e6:13:4b:0c: 8f:1b:5b:24:17:94:79:3d:e8:97:cd:71:7b:a6:b2:b1:42:19: d7:b3:01:59:7a:f8:63:46:63:80:98:17:19:97:ca:32:91:96: 69:f7:bb:14:79:ee:0e:2e:06:91:31:dd:34:54:46:5e:2f:62: be:82:1b:61:88:18:27:a7:9e:2a:b2:f3:4d:7c:00:fc:c9:b7: b9:b3:d3:ce:1c:32:fd:b0:02:01:90:a2:80:c9:28:41:78:31: 4c:63:b0:43:60:5c:8f:72:a4:69:0e:50:74:68:f6:ba:41:d3: 7a:32:16:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc3MjQxMTAvBgNVBAUTKEE1MUNGQjhBMjgzOERDMjNGMjg3NjQ0QTQ3MzVFRkMx M0Q4QzMxMTMwHhcNMjUxMjIzMDQzMjQ0WhcNMjUxMjMwMDQzMjQ0WjAYMRYwFAYD VQQDDA02OTRhMWI2Yy1iNDgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwQ1YqkU26TBHduooXE19k+YWaTo4i2bqKNfihlep+QQv14hFt+MH6Niwz+r1 fp/N35hzMRaWdkKEaQNtmxNT6iUkfnOxsrtAGn3F0Gpjn+0IrwtXh/5mwIf8BP4i LDDTs8PAn9pe0Plfg0/e0CzEONNh1BuOaoTrasFTbW9d/jwzRYky7nSDlCOmjwhy 5M/4Xul9SrSSycngMQ2qxOK+duSSHwuVsBpRB2Y/OYpNvXYMyGcd+HdBwd+oFpHQ 2k1rgOitC3RR5kGnp1tedmn38y+vPlFAkf2e8zfp9EHiEHyga1Xr5uKxA8V2L20U pdkGpAOLYKAA81sl2J1cIGWrWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFClla8HK p7K0ZTWvf8lyZjT0dyfwMB8GA1UdIwQYMBaAFKUc+4ooONwj8odkSkc178E9jDET MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzcyNC81NkM2NzA3Njkw NEQxMUVGQTExMDM4NjRDNEY5QUUwMi9wUno3aWlnNDNDUHloMlJLUnpYdndUMk1N Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BSejdpaWc0M0NQeWgyUktSelh2d1QyTU1STS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzcyNC81NkM2NzA3NjkwNEQxMUVGQTExMDM4NjRDNEY5QUUwMi9wUno3aWlnNDND UHloMlJLUnpYdndUMk1NUk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiMTEdtAd/wWlQQ88E8Piy5Oco/VHWiDH/91TYDOtQo4VS67QrQsjr Kj+CkMTs7p7yOLps7NhpkiKX3tob2QxWq6ProNGt1bHYP8g+nUGZLkFmiOoBbWck zjFpWVTXqM3vY1+6ZdNvWvYOBQqiyuXJEkUmT2HXv9Duf2JWYMDgv5lVJQW7yYtT 17e7peYTSwyPG1skF5R5PeiXzXF7prKxQhnXswFZevhjRmOAmBcZl8oykZZp97sU ee4OLgaRMd00VEZeL2K+ghthiBgnp54qsvNNfAD8ybe5s9POHDL9sAIBkKKAyShB eDFMY7BDYFyPcqRpDlB0aPa6QdN6MhZN -----END CERTIFICATE-----Generated at Wed Dec 24 21:53:05 2025 by rpki-client