This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft File: Pq60tRb3A-pY8W4I2opmdwP7XK4.mft (raw, json) Hash identifier: TpHXMu9d7b/xSUaPd3UZQDOwfWAbbzoV3PEvPQzbiZI= Subject key identifier: 55:FF:9E:AB:47:56:2C:EB:F2:8F:56:46:C9:47:08:B7:04:8D:10:03 Authority key identifier: 3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE Certificate issuer: /CN=A919D109/serialNumber=3EAEB4B516F703EA58F16E08DA8A667703FB5CAE Certificate serial: 01B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft Manifest number: 01AA Signing time: Fri 19 Dec 2025 02:30:22 +0000 Manifest this update: Fri 19 Dec 2025 02:30:22 +0000 Manifest next update: Fri 26 Dec 2025 02:30:22 +0000 Files and hashes: 1: Pq60tRb3A-pY8W4I2opmdwP7XK4.crl (hash: HUWhgpyS/yzD5gTZbizwXSTyE1o3fYv5+Nj8CPUFeFw=) 2: B67DC27A60E311EEB04BEA49C4F9AE02.roa (hash: KXR6Hd0K+TeaVWeHu4u3MS3F4KWrkO/8RzkhsfVV1VI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.crl rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:30:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 435 (0x1b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D109, serialNumber=3EAEB4B516F703EA58F16E08DA8A667703FB5CAE Validity Not Before: Dec 19 02:30:22 2025 GMT Not After : Dec 26 02:30:22 2025 GMT Subject: CN=6944b8be-7835 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:fc:0c:fd:71:94:fd:c0:17:85:ef:d6:c7:58: c1:34:b0:3d:c4:b1:e4:c4:b9:b6:6c:e5:8e:97:1b: a8:b2:8b:c6:a8:fc:b4:97:69:10:90:43:94:b9:30: 98:14:ed:52:bd:c1:58:5d:e4:bb:5b:bd:67:01:a6: 23:d5:5f:c3:8e:1f:79:1a:b6:37:95:f5:d8:6e:be: b7:1d:2d:e6:09:c5:f9:7b:33:04:9e:a5:91:b6:93: 25:a9:0b:0c:ae:43:96:dc:00:40:c8:d7:69:d9:da: 3a:9d:70:c1:ce:d6:6f:56:89:40:e0:5a:b2:c6:7d: 24:ad:c0:38:ca:b8:73:a7:0e:31:0b:33:db:e7:b3: 00:39:13:11:87:a0:cb:bf:1f:39:d9:f5:cf:01:4e: df:ee:37:8a:b1:87:5f:5c:b8:db:b6:f8:aa:04:cd: de:b3:44:47:25:63:f1:61:80:4a:2a:f2:e5:97:61: bd:57:74:2f:fc:4a:85:e2:bd:d3:7c:be:41:60:af: 1c:d8:a4:be:e4:57:2e:a3:0c:49:50:d7:de:0c:9c: cf:49:3c:c9:35:8c:f5:29:69:5a:de:fd:24:29:76: cf:a3:16:1f:61:fe:13:76:d0:f4:fa:8d:7f:0c:5e: 50:ac:34:b3:3e:8d:39:96:f2:76:ac:ae:b7:a5:50: 72:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:FF:9E:AB:47:56:2C:EB:F2:8F:56:46:C9:47:08:B7:04:8D:10:03 X509v3 Authority Key Identifier: keyid:3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:5e:33:78:b0:a8:64:84:a5:4f:0f:a3:79:28:73:7e:9a:c9: 08:46:4c:85:60:0f:66:93:db:45:b9:de:4c:ae:f9:9e:d6:28: a4:5e:21:8c:87:d4:ed:70:c4:9a:30:26:0b:3a:b4:ab:ff:c4: 5f:74:92:73:6e:23:6a:71:03:c7:dd:40:a3:eb:25:11:40:06: 34:e8:14:61:75:ac:3c:b2:fc:b1:aa:9f:94:e5:82:2e:44:72: 6e:6e:fb:3b:88:65:a7:8b:2d:a9:d7:74:7d:15:37:ff:ed:76: e6:95:c9:59:3d:00:c9:fc:81:7f:08:ac:a9:de:1e:ee:f7:f4: 5c:33:e0:93:a9:db:54:91:e5:7c:81:fb:5f:ff:13:c4:7a:76: 56:b6:88:9e:31:e6:51:3b:c9:f6:5e:e8:d3:a0:48:a1:92:77: 70:5a:45:03:50:40:ba:31:00:8a:6e:46:e4:ea:c2:36:2a:85: f7:06:1d:e8:ab:7b:cd:2e:64:15:7e:7e:0a:c5:a5:37:f8:db: af:41:03:2a:61:13:ce:2d:ed:60:5f:c4:99:d1:f6:68:41:14: 52:e7:a4:4a:a0:f0:13:79:c2:bf:2f:bf:be:18:e7:e9:10:d7: 37:60:e9:a1:27:f2:85:9e:84:20:1f:17:a0:43:0b:26:51:36: 64:ed:07:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxMDkxMTAvBgNVBAUTKDNFQUVCNEI1MTZGNzAzRUE1OEYxNkUwOERBOEE2Njc3 MDNGQjVDQUUwHhcNMjUxMjE5MDIzMDIyWhcNMjUxMjI2MDIzMDIyWjAYMRYwFAYD VQQDDA02OTQ0YjhiZS03ODM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvwM/XGU/cAXhe/Wx1jBNLA9xLHkxLm2bOWOlxuosovGqPy0l2kQkEOUuTCY FO1SvcFYXeS7W71nAaYj1V/Djh95GrY3lfXYbr63HS3mCcX5ezMEnqWRtpMlqQsM rkOW3ABAyNdp2do6nXDBztZvVolA4Fqyxn0krcA4yrhzpw4xCzPb57MAORMRh6DL vx852fXPAU7f7jeKsYdfXLjbtviqBM3es0RHJWPxYYBKKvLll2G9V3Qv/EqF4r3T fL5BYK8c2KS+5FcuowxJUNfeDJzPSTzJNYz1KWla3v0kKXbPoxYfYf4TdtD0+o1/ DF5QrDSzPo05lvJ2rK63pVBy2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFX/nqtH Vizr8o9WRslHCLcEjRADMB8GA1UdIwQYMBaAFD6utLUW9wPqWPFuCNqKZncD+1yu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDEwOS9EQUM2NjZDMDVD RTAxMUVFQjZDMUI1MTNDNEY5QUUwMi9QcTYwdFJiM0EtcFk4VzRJMm9wbWR3UDdY SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BxNjB0UmIzQS1wWThXNEkyb3BtZHdQN1hLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDEwOS9EQUM2NjZDMDVDRTAxMUVFQjZDMUI1MTNDNEY5QUUwMi9QcTYwdFJiM0Et cFk4VzRJMm9wbWR3UDdYSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPXjN4sKhkhKVPD6N5KHN+mskIRkyFYA9mk9tFud5Mrvme1iikXiGM h9TtcMSaMCYLOrSr/8RfdJJzbiNqcQPH3UCj6yURQAY06BRhdaw8svyxqp+U5YIu RHJubvs7iGWniy2p13R9FTf/7XbmlclZPQDJ/IF/CKyp3h7u9/RcM+CTqdtUkeV8 gftf/xPEenZWtoieMeZRO8n2XujToEihkndwWkUDUEC6MQCKbkbk6sI2KoX3Bh3o q3vNLmQVfn4KxaU3+NuvQQMqYRPOLe1gX8SZ0fZoQRRS56RKoPATecK/L7++GOfp ENc3YOmhJ/KFnoQgHxegQwsmUTZk7QeK -----END CERTIFICATE-----Generated at Fri Dec 19 23:51:25 2025 by rpki-client