This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft File: PdCVvno70d2CniomSfx-gafv40w.mft (raw, json) Hash identifier: ey+VooPclseqKQk1twhPSGHnje+fMumt3sbUOi59tFg= Subject key identifier: 1C:03:6D:14:F2:7D:92:C8:4D:E2:EF:46:E5:4A:1E:71:91:C1:95:EB Authority key identifier: 3D:D0:95:BE:7A:3B:D1:DD:82:9E:2A:26:49:FC:7E:81:A7:EF:E3:4C Certificate issuer: /CN=A91C8307/serialNumber=3DD095BE7A3BD1DD829E2A2649FC7E81A7EFE34C Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft Manifest number: BB Signing time: Sun 21 Dec 2025 05:05:59 +0000 Manifest this update: Sun 21 Dec 2025 05:05:58 +0000 Manifest next update: Sun 28 Dec 2025 05:05:58 +0000 Files and hashes: 1: PdCVvno70d2CniomSfx-gafv40w.crl (hash: FhjhOLgDuDQnCaSBujsSXKfAQs60KoJXjqV1/I/yQlc=) 2: DEDB3932BED411EF835BB47AC4F9AE02.roa (hash: O2sa7pTiQKdOhkw1Yh9cM+13JLJmRbo0IeSALJBybOk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.crl rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 05:05:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8307, serialNumber=3DD095BE7A3BD1DD829E2A2649FC7E81A7EFE34C Validity Not Before: Dec 21 05:05:58 2025 GMT Not After : Dec 28 05:05:58 2025 GMT Subject: CN=69478037-55e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b0:c5:61:69:a6:76:9a:70:29:fb:fe:54:2b: 15:59:b3:93:d8:dc:2a:96:0c:dd:cf:5d:63:16:a8: a0:3c:e6:e2:88:d6:c8:05:64:61:33:29:d1:ed:68: 54:df:d4:ea:a1:b2:0f:66:a3:c7:9f:6b:47:d4:cb: 2b:ff:c3:2f:15:11:3e:08:83:7f:af:f4:13:cc:ad: 75:ab:58:a2:ec:14:23:66:94:23:a0:2c:88:ac:fc: 06:d0:02:a6:94:75:d3:fb:20:dc:8a:ab:f9:69:1b: 12:42:e5:d7:35:f9:d8:ab:2c:19:81:39:97:93:c3: 83:da:3c:c2:a7:7a:01:99:70:8b:04:22:85:d0:49: 98:b9:1f:26:e5:eb:a8:ac:1c:99:d4:39:ca:1d:03: 88:aa:5e:ab:61:1b:cd:a2:a7:18:c8:c2:5d:7e:03: ab:79:22:56:d2:7e:db:b1:da:ac:ca:29:1d:1e:15: 49:69:ee:42:33:fc:48:07:11:de:ae:04:5f:b9:fa: d3:2c:f1:cc:b0:ab:ee:55:4e:bc:b1:c0:cd:55:b1: e5:ee:57:4c:cf:ab:7a:7c:b8:3e:69:b9:2e:b9:8d: 4b:57:f2:61:5d:88:ce:0a:b5:1d:f6:6f:e6:c0:89: 12:29:02:38:d8:90:ab:bb:17:d5:9d:88:82:a0:bf: f0:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:03:6D:14:F2:7D:92:C8:4D:E2:EF:46:E5:4A:1E:71:91:C1:95:EB X509v3 Authority Key Identifier: keyid:3D:D0:95:BE:7A:3B:D1:DD:82:9E:2A:26:49:FC:7E:81:A7:EF:E3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:e5:9b:67:c9:f3:37:ee:26:21:9f:e1:10:c2:d6:02:7f:68: 7c:a0:f3:63:a1:10:e7:73:c8:11:5b:51:ae:1a:12:a3:99:53: c0:8c:fb:62:7e:0a:9f:ee:39:90:ef:bc:bf:7c:47:f1:1d:00: 29:db:9b:ff:ee:46:55:0a:37:1a:af:0b:ec:47:55:6f:2a:68: 70:b0:2b:af:b9:1d:dd:6c:86:86:9b:85:d0:fd:8d:78:d5:84: bd:e2:6b:3a:ac:4e:b0:a3:e3:ea:37:2e:dd:cc:dd:2c:c1:49: ac:06:13:fc:0d:0c:0a:09:21:c7:f2:31:13:8a:f0:0d:80:9f: e0:77:e6:73:6f:a1:c7:2a:38:91:27:16:af:df:8e:bc:7b:96: 88:67:32:e6:f0:17:4b:4a:0c:2c:00:a4:ce:78:f5:bd:51:9f: 96:be:4d:b7:60:21:3e:f6:cc:e0:19:83:06:37:06:a6:77:1e: 68:1f:82:f8:26:5a:00:6a:f7:04:13:c0:0e:c0:98:1d:d3:31: ed:82:31:35:0b:9f:b9:6a:ef:82:c7:e1:9d:a8:46:dd:e2:70: 70:44:2e:9a:07:a5:98:d1:c6:c4:77:17:28:33:95:09:ad:70: e3:f3:3f:05:5d:a9:0f:92:97:6b:9d:56:b2:df:00:f2:0c:07: c6:fb:d3:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgzMDcxMTAvBgNVBAUTKDNERDA5NUJFN0EzQkQxREQ4MjlFMkEyNjQ5RkM3RTgx QTdFRkUzNEMwHhcNMjUxMjIxMDUwNTU4WhcNMjUxMjI4MDUwNTU4WjAYMRYwFAYD VQQDDA02OTQ3ODAzNy01NWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp7DFYWmmdppwKfv+VCsVWbOT2Nwqlgzdz11jFqigPObiiNbIBWRhMynR7WhU 39TqobIPZqPHn2tH1Msr/8MvFRE+CIN/r/QTzK11q1ii7BQjZpQjoCyIrPwG0AKm lHXT+yDciqv5aRsSQuXXNfnYqywZgTmXk8OD2jzCp3oBmXCLBCKF0EmYuR8m5euo rByZ1DnKHQOIql6rYRvNoqcYyMJdfgOreSJW0n7bsdqsyikdHhVJae5CM/xIBxHe rgRfufrTLPHMsKvuVU68scDNVbHl7ldMz6t6fLg+abkuuY1LV/JhXYjOCrUd9m/m wIkSKQI42JCruxfVnYiCoL/wHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBwDbRTy fZLITeLvRuVKHnGRwZXrMB8GA1UdIwQYMBaAFD3Qlb56O9Hdgp4qJkn8foGn7+NM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODMwNy8zNDMyRjYwQ0JF Q0QxMUVGOThDNzQxMzJDNEY5QUUwMi9QZENWdm5vNzBkMkNuaW9tU2Z4LWdhZnY0 MHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BkQ1Z2bm83MGQyQ25pb21TZngtZ2FmdjQwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODMwNy8zNDMyRjYwQ0JFQ0QxMUVGOThDNzQxMzJDNEY5QUUwMi9QZENWdm5vNzBk MkNuaW9tU2Z4LWdhZnY0MHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBf5ZtnyfM37iYhn+EQwtYCf2h8oPNjoRDnc8gRW1GuGhKjmVPAjPti fgqf7jmQ77y/fEfxHQAp25v/7kZVCjcarwvsR1VvKmhwsCuvuR3dbIaGm4XQ/Y14 1YS94ms6rE6wo+PqNy7dzN0swUmsBhP8DQwKCSHH8jETivANgJ/gd+Zzb6HHKjiR Jxav3468e5aIZzLm8BdLSgwsAKTOePW9UZ+Wvk23YCE+9szgGYMGNwamdx5oH4L4 JloAavcEE8AOwJgd0zHtgjE1C5+5au+Cx+GdqEbd4nBwRC6aB6WY0cbEdxcoM5UJ rXDj8z8FXakPkpdrnVay3wDyDAfG+9NL -----END CERTIFICATE-----Generated at Mon Dec 22 00:51:13 2025 by rpki-client