This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft File: PdCVvno70d2CniomSfx-gafv40w.mft (raw, json) Hash identifier: qoznwVklDHD1kdkh9bRzO2io1uzJR/27cQgiiVqklK4= Subject key identifier: 29:C1:83:C8:09:F2:A8:85:C4:AF:F7:87:8C:FE:5E:C1:49:C0:95:E7 Authority key identifier: 3D:D0:95:BE:7A:3B:D1:DD:82:9E:2A:26:49:FC:7E:81:A7:EF:E3:4C Certificate issuer: /CN=A91C8307/serialNumber=3DD095BE7A3BD1DD829E2A2649FC7E81A7EFE34C Certificate serial: C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft Manifest number: BF Signing time: Mon 29 Dec 2025 05:01:43 +0000 Manifest this update: Mon 29 Dec 2025 05:01:42 +0000 Manifest next update: Mon 05 Jan 2026 05:01:42 +0000 Files and hashes: 1: PdCVvno70d2CniomSfx-gafv40w.crl (hash: ZIx/74m7ynyjiL8loUvWvF/6Sg165aOqP9HBen3LNBU=) 2: DEDB3932BED411EF835BB47AC4F9AE02.roa (hash: O2sa7pTiQKdOhkw1Yh9cM+13JLJmRbo0IeSALJBybOk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.crl rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 05:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8307, serialNumber=3DD095BE7A3BD1DD829E2A2649FC7E81A7EFE34C Validity Not Before: Dec 29 05:01:42 2025 GMT Not After : Jan 5 05:01:42 2026 GMT Subject: CN=69520b36-a523 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:f0:d9:5b:b3:53:d4:3b:12:56:d3:52:1b:eb: 86:eb:65:dc:2d:c3:a5:ad:67:fa:f6:6c:b5:53:bc: fe:21:18:8f:9a:e8:47:27:18:df:48:c1:b7:5a:6b: 0e:cf:9e:fa:2b:88:15:df:ec:3a:ee:6c:b0:6e:95: a9:ac:ac:b4:ce:c7:e7:52:96:3e:e7:2a:4e:25:21: 1e:39:ba:bc:80:02:77:77:35:52:f6:b4:06:f7:82: db:9a:cc:e9:4c:8d:cb:fb:04:c2:86:41:9c:4d:cd: 55:de:38:12:29:a5:a1:96:89:22:f1:e2:22:fb:94: 2a:40:a7:ff:c3:d9:db:7f:a8:35:64:2e:17:38:2b: a5:d5:f1:85:5c:48:2f:a8:0e:7e:5a:12:04:12:91: 4c:43:57:fe:0d:0b:e3:99:8c:d5:82:ff:28:01:7e: 4e:43:b9:3a:91:08:73:1e:20:da:f2:91:ab:28:35: 05:07:b1:40:63:e8:fd:74:1d:db:62:21:2d:c4:6d: 8b:1a:c8:5f:43:4a:66:8f:32:db:75:f1:84:26:d6: 9c:27:91:f7:d9:1f:6e:7c:1d:d2:aa:10:05:8c:29: 36:11:64:8c:6b:72:13:14:c5:f7:0d:20:b4:c6:7a: 32:83:99:a1:4c:ef:77:c0:3c:c5:5e:26:1d:76:4c: 77:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:C1:83:C8:09:F2:A8:85:C4:AF:F7:87:8C:FE:5E:C1:49:C0:95:E7 X509v3 Authority Key Identifier: keyid:3D:D0:95:BE:7A:3B:D1:DD:82:9E:2A:26:49:FC:7E:81:A7:EF:E3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:f8:99:a8:4e:ca:04:43:77:09:ed:66:67:b7:55:4b:c9:50: de:fd:e7:82:50:42:eb:57:46:b2:6c:5b:c4:ab:4d:3e:c7:63: d1:4d:c4:2a:88:08:ec:65:bf:38:26:9d:1a:da:e8:fa:ee:75: b6:72:0b:9f:f5:11:35:ae:ea:18:c0:ae:e1:e3:64:9b:79:0d: cf:ef:e6:51:eb:77:92:b7:0c:10:9f:2f:fa:76:d8:c4:65:99: 47:6c:5d:d7:1c:44:90:fa:ec:06:0d:86:7d:ac:58:c0:93:56: 75:cc:f2:9d:b9:c9:02:76:e5:8c:0a:88:61:18:4b:ad:0c:e4: 5d:5d:59:3c:b3:6f:ef:2d:24:cf:c7:46:d3:03:6b:dd:00:b2: a2:02:a2:19:fc:35:17:ec:c8:d7:86:f7:52:21:74:cd:8a:9f: 7f:4c:e0:54:97:7f:f2:15:c2:cb:e4:01:91:2e:83:98:d5:4b: de:7d:89:4a:2a:5e:61:a7:07:d6:48:75:73:1a:72:eb:fa:63: 86:9d:ca:27:a8:85:27:d9:9f:f7:c8:91:c2:a7:8e:80:f9:fb: 3a:cf:07:5d:3c:36:16:db:d1:f2:99:d5:cf:21:a4:60:0e:2f: 7b:40:04:a6:ac:cc:b7:95:d1:c3:72:c6:bb:d0:df:d5:93:1f: 79:33:a6:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgzMDcxMTAvBgNVBAUTKDNERDA5NUJFN0EzQkQxREQ4MjlFMkEyNjQ5RkM3RTgx QTdFRkUzNEMwHhcNMjUxMjI5MDUwMTQyWhcNMjYwMTA1MDUwMTQyWjAYMRYwFAYD VQQDDA02OTUyMGIzNi1hNTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAofDZW7NT1DsSVtNSG+uG62XcLcOlrWf69my1U7z+IRiPmuhHJxjfSMG3WmsO z576K4gV3+w67mywbpWprKy0zsfnUpY+5ypOJSEeObq8gAJ3dzVS9rQG94Lbmszp TI3L+wTChkGcTc1V3jgSKaWhloki8eIi+5QqQKf/w9nbf6g1ZC4XOCul1fGFXEgv qA5+WhIEEpFMQ1f+DQvjmYzVgv8oAX5OQ7k6kQhzHiDa8pGrKDUFB7FAY+j9dB3b YiEtxG2LGshfQ0pmjzLbdfGEJtacJ5H32R9ufB3SqhAFjCk2EWSMa3ITFMX3DSC0 xnoyg5mhTO93wDzFXiYddkx3KwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCnBg8gJ 8qiFxK/3h4z+XsFJwJXnMB8GA1UdIwQYMBaAFD3Qlb56O9Hdgp4qJkn8foGn7+NM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODMwNy8zNDMyRjYwQ0JF Q0QxMUVGOThDNzQxMzJDNEY5QUUwMi9QZENWdm5vNzBkMkNuaW9tU2Z4LWdhZnY0 MHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BkQ1Z2bm83MGQyQ25pb21TZngtZ2FmdjQwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODMwNy8zNDMyRjYwQ0JFQ0QxMUVGOThDNzQxMzJDNEY5QUUwMi9QZENWdm5vNzBk MkNuaW9tU2Z4LWdhZnY0MHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBf+JmoTsoEQ3cJ7WZnt1VLyVDe/eeCUELrV0aybFvEq00+x2PRTcQq iAjsZb84Jp0a2uj67nW2cguf9RE1ruoYwK7h42SbeQ3P7+ZR63eStwwQny/6dtjE ZZlHbF3XHESQ+uwGDYZ9rFjAk1Z1zPKduckCduWMCohhGEutDORdXVk8s2/vLSTP x0bTA2vdALKiAqIZ/DUX7MjXhvdSIXTNip9/TOBUl3/yFcLL5AGRLoOY1UvefYlK Kl5hpwfWSHVzGnLr+mOGnconqIUn2Z/3yJHCp46A+fs6zwddPDYW29HymdXPIaRg Di97QASmrMy3ldHDcsa70N/Vkx95M6a5 -----END CERTIFICATE-----Generated at Tue Dec 30 04:34:02 2025 by rpki-client