This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft File: PykJw_UywAsCV7klbHbroxTc0A8.mft (raw, json) Hash identifier: P3UZ4aTBQcADBOBgJ5BLp5gFBEdfD7MXRlE7Zm7c9iQ= Subject key identifier: 1D:28:42:2B:C7:27:8B:C5:AF:55:F8:CC:EF:17:17:7E:AE:F7:13:6E Authority key identifier: 3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F Certificate issuer: /CN=A91C71A5/serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Certificate serial: 02F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft Manifest number: 02EE Signing time: Sun 21 Dec 2025 00:30:22 +0000 Manifest this update: Sun 21 Dec 2025 00:30:21 +0000 Manifest next update: Sun 28 Dec 2025 00:30:21 +0000 Files and hashes: 1: PykJw_UywAsCV7klbHbroxTc0A8.crl (hash: 0j0j4nc7kD4VW4Gd1oGbeM9rNGWDgjwFYoRdcv3BZXI=) 2: 99A7637060B311EEBA329E54C4F9AE02.roa (hash: Sdc1sOHrwKDGZqW0ILPwFUzKSKTDUensRtaAvqeeJxU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 760 (0x2f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C71A5, serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Validity Not Before: Dec 21 00:30:21 2025 GMT Not After : Dec 28 00:30:21 2025 GMT Subject: CN=69473f9d-67eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:30:32:a8:01:93:9c:37:e6:a7:60:22:c4:11: eb:f0:a5:52:d1:04:ff:6a:ac:9e:7d:74:09:8c:5b: ea:b2:4d:1c:57:1f:29:e6:7a:52:b7:bc:02:8e:d1: b8:61:5a:ee:be:b1:cf:cf:9f:b2:b4:c2:ef:f6:1d: c6:fe:5e:7c:f8:e5:39:4b:85:e7:ea:76:d7:6f:d3: 96:ff:fb:64:0a:69:90:9d:e4:78:41:06:1e:37:fc: fc:7f:77:02:ed:a6:db:96:96:37:60:4f:83:62:c3: bc:55:eb:49:3e:be:9f:be:a9:a0:9c:dc:2f:3e:62: 85:90:a1:c7:68:c4:04:26:4a:f8:5b:c6:6f:eb:1a: 21:13:10:ca:2d:e6:37:9c:2b:fd:2e:f3:d7:e5:9c: dc:5d:47:5b:e1:2e:8b:87:60:a6:25:f5:72:0d:f7: 1f:e6:9d:0f:2e:1d:49:21:74:72:70:8f:f2:61:84: 83:b7:7f:49:d0:47:62:6b:8c:41:33:0e:c9:60:d5: 9e:11:cf:fe:eb:f8:f5:e5:fe:22:8f:a2:08:0c:a1: f7:9a:c8:93:19:0c:94:bc:3c:ac:06:cd:13:49:24: 7e:49:0a:e3:7b:dd:47:6e:25:17:b1:f2:9a:fb:10: 79:11:e6:38:4f:6d:26:12:b8:7d:ee:f9:e1:1e:4b: 26:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:28:42:2B:C7:27:8B:C5:AF:55:F8:CC:EF:17:17:7E:AE:F7:13:6E X509v3 Authority Key Identifier: keyid:3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:4e:a8:52:fd:2a:4f:0f:ff:bf:94:59:06:7c:f1:ab:1c:af: 99:6c:a9:fc:19:e4:36:a7:95:d8:e9:f9:ae:2d:c2:0f:ba:d4: 04:3c:90:3c:35:87:d5:11:69:87:1a:43:58:64:16:a9:2e:6a: c5:d4:6e:ae:38:67:6c:13:6e:b7:f2:e2:0b:4c:8e:b2:1e:81: 07:73:b2:57:91:57:1b:d5:e5:fe:0f:8d:db:ee:75:4e:6a:2b: 90:5b:9d:1a:fe:4a:d7:a9:7b:78:29:df:46:d9:e2:62:4d:ac: ae:32:1c:64:d1:4c:0c:6a:8f:dd:ae:d2:b4:df:44:45:c6:c9: 58:2f:43:78:e4:a0:01:4f:67:62:71:c9:70:95:46:89:a9:df: dd:bf:32:62:6e:30:ea:b7:48:f9:0d:92:f2:c0:6b:4a:16:2c: b4:1e:58:7d:4d:fe:7b:f0:49:90:c8:21:48:49:e3:ac:85:3b: 19:57:ca:5d:b2:f7:c3:71:10:ed:69:a8:13:31:6e:7d:03:2d: d4:da:16:65:37:2d:18:f1:1b:23:9c:88:50:08:c4:3c:f4:18: b8:40:70:73:d4:ce:66:a6:60:6a:a8:0b:39:a6:ce:65:38:20: 8e:95:dd:8d:8d:7a:57:7d:ba:c3:77:f9:7f:37:77:78:a4:55: 10:19:69:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcxQTUxMTAvBgNVBAUTKDNGMjkwOUMzRjUzMkMwMEIwMjU3QjkyNTZDNzZFQkEz MTREQ0QwMEYwHhcNMjUxMjIxMDAzMDIxWhcNMjUxMjI4MDAzMDIxWjAYMRYwFAYD VQQDDA02OTQ3M2Y5ZC02N2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzAyqAGTnDfmp2AixBHr8KVS0QT/aqyefXQJjFvqsk0cVx8p5npSt7wCjtG4 YVruvrHPz5+ytMLv9h3G/l58+OU5S4Xn6nbXb9OW//tkCmmQneR4QQYeN/z8f3cC 7abblpY3YE+DYsO8VetJPr6fvqmgnNwvPmKFkKHHaMQEJkr4W8Zv6xohExDKLeY3 nCv9LvPX5ZzcXUdb4S6Lh2CmJfVyDfcf5p0PLh1JIXRycI/yYYSDt39J0Edia4xB Mw7JYNWeEc/+6/j15f4ij6IIDKH3msiTGQyUvDysBs0TSSR+SQrje91HbiUXsfKa +xB5EeY4T20mErh97vnhHksmSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB0oQivH J4vFr1X4zO8XF36u9xNuMB8GA1UdIwQYMBaAFD8pCcP1MsALAle5JWx266MU3NAP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzFBNS8zQkZBMjgzNDBB ODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdBc0NWN2tsYkhicm94VGMw QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B5a0p3X1V5d0FzQ1Y3a2xiSGJyb3hUYzBBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzFBNS8zQkZBMjgzNDBBODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdB c0NWN2tsYkhicm94VGMwQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgTqhS/SpPD/+/lFkGfPGrHK+ZbKn8GeQ2p5XY6fmuLcIPutQEPJA8 NYfVEWmHGkNYZBapLmrF1G6uOGdsE2638uILTI6yHoEHc7JXkVcb1eX+D43b7nVO aiuQW50a/krXqXt4Kd9G2eJiTayuMhxk0UwMao/drtK030RFxslYL0N45KABT2di cclwlUaJqd/dvzJibjDqt0j5DZLywGtKFiy0Hlh9Tf578EmQyCFISeOshTsZV8pd svfDcRDtaagTMW59Ay3U2hZlNy0Y8RsjnIhQCMQ89Bi4QHBz1M5mpmBqqAs5ps5l OCCOld2NjXpXfbrDd/l/N3d4pFUQGWl+ -----END CERTIFICATE-----Generated at Sun Dec 21 09:03:19 2025 by rpki-client