This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft File: PB_di6MB3OPbPwvMJchpTOG83H0.mft (raw, json) Hash identifier: cFMFEGr8NlGx5LrXwbI3Bbve+Fs9juF0IxBWl1GHBZg= Subject key identifier: 36:62:D8:6F:06:C1:54:0A:46:39:A0:62:B6:07:30:4D:DF:68:43:09 Authority key identifier: 3C:1F:DD:8B:A3:01:DC:E3:DB:3F:0B:CC:25:C8:69:4C:E1:BC:DC:7D Certificate issuer: /CN=A91A08FD/serialNumber=3C1FDD8BA301DCE3DB3F0BCC25C8694CE1BCDC7D Certificate serial: 0DE9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft Manifest number: 0DDF Signing time: Thu 18 Dec 2025 17:39:26 +0000 Manifest this update: Thu 18 Dec 2025 17:39:26 +0000 Manifest next update: Thu 25 Dec 2025 17:39:26 +0000 Files and hashes: 1: PB_di6MB3OPbPwvMJchpTOG83H0.crl (hash: KgHHCBMjfu0ykshuPI3cnKaero9Z68BzbcvEfP5YASM=) 2: 3802A98EC8AC11E9877DCE2FC4F9AE02.roa (hash: 5AhgINS9PwniKFtC6UdMhxxWx5F0pu9QmvKHh6K5mSA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.crl rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:39:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3561 (0xde9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A08FD, serialNumber=3C1FDD8BA301DCE3DB3F0BCC25C8694CE1BCDC7D Validity Not Before: Dec 18 17:39:26 2025 GMT Not After : Dec 25 17:39:26 2025 GMT Subject: CN=69443c4e-00db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:90:1d:20:4f:72:7e:5e:75:30:9b:14:85:ce: 85:9d:05:42:00:4d:05:32:7d:e5:69:62:14:d4:96: 9f:fc:69:c9:74:5f:6a:85:05:b4:e9:86:62:9a:99: f1:33:a2:10:24:d1:11:12:af:72:89:4a:87:1b:43: 83:e7:4c:dd:87:41:49:e1:e0:90:61:7b:04:1d:01: 3f:f1:7c:a4:d9:c7:38:77:63:2e:2f:fc:e8:5e:c5: 40:79:05:75:0f:2e:1a:5b:e7:ba:85:06:6b:c1:69: b5:bc:b1:c1:bf:ae:e1:80:b9:9b:46:34:e8:4b:56: 61:0e:9b:8c:95:cb:44:84:b0:4d:ec:34:ee:68:34: 47:af:f1:f2:d0:09:b2:31:37:80:e5:79:dc:c7:bb: 10:10:9d:00:ec:79:f9:55:95:9b:4b:83:c1:aa:d3: a7:ae:3a:ad:be:90:31:1b:11:9a:4f:f8:3e:3b:48: dd:b1:3e:52:9b:49:57:25:db:f8:31:43:da:8b:7e: 3a:3b:15:4e:ed:78:0b:d7:d5:d7:88:1f:ed:3f:b2: fd:5c:a4:22:88:e1:ef:ad:6f:9c:51:e0:4f:0b:7e: a7:f7:0a:5d:eb:c7:3a:a7:e4:be:61:98:84:34:f6: 76:c8:35:fc:20:34:f8:e8:48:4d:34:a9:29:ca:d8: bd:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:62:D8:6F:06:C1:54:0A:46:39:A0:62:B6:07:30:4D:DF:68:43:09 X509v3 Authority Key Identifier: keyid:3C:1F:DD:8B:A3:01:DC:E3:DB:3F:0B:CC:25:C8:69:4C:E1:BC:DC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:b2:a8:2e:bb:f7:42:8e:c2:60:3e:7e:35:54:af:13:49:67: 92:6e:27:08:32:07:a1:df:b1:a2:9a:3e:57:99:e0:d8:e3:82: 9d:63:e6:a2:a9:8d:c8:3f:4b:d2:b1:bf:80:13:5f:5d:64:a4: 28:ac:75:01:6a:05:e7:f4:a4:65:87:8f:33:5b:d3:02:dc:94: 87:44:b2:41:e9:8a:4c:0e:e9:fa:4e:19:1b:84:d3:ba:0c:9e: 85:ab:5f:d7:d1:d5:fb:33:dc:17:64:27:80:a9:61:99:b0:1d: 09:3e:ee:04:ae:70:50:d2:91:07:c6:dd:78:c6:ae:e5:11:1f: 12:5f:fe:f5:d6:e5:54:86:8b:e3:bd:4a:8c:96:67:79:b5:0a: e6:5b:3b:ab:84:16:71:a2:e7:f6:75:e7:7e:1e:e6:a3:4a:be: 9b:b6:bb:85:57:b8:59:2a:01:36:f1:69:60:d0:71:b5:d8:9e: 90:78:f8:67:2c:04:18:9a:67:1c:f8:c9:1f:1f:e8:0f:80:91: b8:c6:99:4a:c1:66:b7:eb:83:02:bc:52:66:56:71:76:f0:e6: d9:9a:72:43:c5:b9:a7:ae:1a:13:49:44:64:bb:a1:d5:32:6e: d5:81:36:46:fd:50:cb:58:0e:ba:ec:17:5f:46:c1:92:20:e4: 66:43:b7:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4RkQxMTAvBgNVBAUTKDNDMUZERDhCQTMwMURDRTNEQjNGMEJDQzI1Qzg2OTRD RTFCQ0RDN0QwHhcNMjUxMjE4MTczOTI2WhcNMjUxMjI1MTczOTI2WjAYMRYwFAYD VQQDDA02OTQ0M2M0ZS0wMGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkZAdIE9yfl51MJsUhc6FnQVCAE0FMn3laWIU1Jaf/GnJdF9qhQW06YZimpnx M6IQJNEREq9yiUqHG0OD50zdh0FJ4eCQYXsEHQE/8Xyk2cc4d2MuL/zoXsVAeQV1 Dy4aW+e6hQZrwWm1vLHBv67hgLmbRjToS1ZhDpuMlctEhLBN7DTuaDRHr/Hy0Amy MTeA5Xncx7sQEJ0A7Hn5VZWbS4PBqtOnrjqtvpAxGxGaT/g+O0jdsT5Sm0lXJdv4 MUPai346OxVO7XgL19XXiB/tP7L9XKQiiOHvrW+cUeBPC36n9wpd68c6p+S+YZiE NPZ2yDX8IDT46EhNNKkpyti9EQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDZi2G8G wVQKRjmgYrYHME3faEMJMB8GA1UdIwQYMBaAFDwf3YujAdzj2z8LzCXIaUzhvNx9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDhGRC85RjQyRUFEOEM4 QUIxMUU5ODI5RDI4MkZDNEY5QUUwMi9QQl9kaTZNQjNPUGJQd3ZNSmNocFRPRzgz SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BCX2RpNk1CM09QYlB3dk1KY2hwVE9HODNIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDhGRC85RjQyRUFEOEM4QUIxMUU5ODI5RDI4MkZDNEY5QUUwMi9QQl9kaTZNQjNP UGJQd3ZNSmNocFRPRzgzSDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNsqguu/dCjsJgPn41VK8TSWeSbicIMgeh37Gimj5XmeDY44KdY+ai qY3IP0vSsb+AE19dZKQorHUBagXn9KRlh48zW9MC3JSHRLJB6YpMDun6ThkbhNO6 DJ6Fq1/X0dX7M9wXZCeAqWGZsB0JPu4ErnBQ0pEHxt14xq7lER8SX/711uVUhovj vUqMlmd5tQrmWzurhBZxouf2ded+HuajSr6btruFV7hZKgE28Wlg0HG12J6QePhn LAQYmmcc+MkfH+gPgJG4xplKwWa364MCvFJmVnF28ObZmnJDxbmnrhoTSURku6HV Mm7VgTZG/VDLWA667BdfRsGSIORmQ7fz -----END CERTIFICATE-----Generated at Fri Dec 19 23:53:23 2025 by rpki-client