This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft File: 38I-PZBdDoNoEhlZbQgimmlPrxM.mft (raw, json) Hash identifier: ka2aEF9G3qtdnjRNafJ6uPS0L8fiVSPWTC8thcU1eDg= Subject key identifier: F2:74:0C:B2:AA:98:E0:A5:CF:D7:35:91:F9:4F:AC:7A:DB:D5:5E:4D Authority key identifier: DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 Certificate issuer: /CN=A91E3D04/serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Certificate serial: 0E92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft Manifest number: 0E77 Signing time: Sun 28 Dec 2025 17:24:47 +0000 Manifest this update: Sun 28 Dec 2025 17:24:46 +0000 Manifest next update: Sun 04 Jan 2026 17:24:46 +0000 Files and hashes: 1: 38I-PZBdDoNoEhlZbQgimmlPrxM.crl (hash: hxVVxi62K19dTvvvSD3qq2UYNJB0icA8O055wVyMZXc=) 2: AC641C88B96B11ECB44AC533C4F9AE02.roa (hash: s3xebHa/jipF1DOC4szye5Ddv89P0OTkiIBe/5lBHnw=) 3: AB52C51AB96B11ECB44AC533C4F9AE02.roa (hash: fXxSo682fkgrV8puX+aCaQZxmTNLL+rJcYQD485NwzM=) 4: 10E6D9CAB55C11ECA9565039C4F9AE02.roa (hash: RzHUUv/miUNX3icVSP0eFdue2uGb59/3arKmFqnz2Fc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 17:24:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3730 (0xe92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3D04, serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Validity Not Before: Dec 28 17:24:46 2025 GMT Not After : Jan 4 17:24:46 2026 GMT Subject: CN=695167de-06e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3c:fe:3a:a7:f7:e8:5c:c5:d5:5c:58:0a:65: 4f:b3:64:57:fc:a4:f1:fb:e6:94:a8:63:ce:4f:7d: cc:52:36:4f:c8:2b:8b:2b:d1:39:b5:53:bc:ea:04: f8:4a:50:cb:15:1e:02:79:3f:28:96:5a:9c:a6:00: c8:50:71:f0:6b:48:91:22:2b:af:aa:ae:c3:21:df: a4:4c:19:ae:7d:0c:5b:75:b3:d8:d6:9c:61:13:19: a7:1f:6c:7f:81:90:8d:6b:9f:d8:39:8d:1f:46:c9: 7f:27:5a:cd:65:76:4d:36:fd:6b:50:d3:dd:eb:08: 3b:0a:c8:54:58:ec:e4:e8:37:61:9f:bc:b8:c5:22: 02:e4:96:4e:6e:57:51:4e:9f:73:86:e5:29:f0:3f: 13:a1:46:5b:63:b3:2a:f8:30:3b:08:44:83:05:5e: 9d:c5:d5:19:10:df:36:d4:44:6a:de:ad:7e:f6:1a: e1:8d:91:8c:88:df:8b:61:94:6c:39:f0:0f:5a:ef: ce:4e:c9:d9:d4:2f:a0:eb:85:5b:ee:95:09:4e:ba: 97:2e:01:3f:07:a4:fd:0e:51:03:1f:0e:60:40:8e: 91:10:c4:04:fa:67:73:10:1e:92:8d:9e:bf:32:52: 06:cc:18:cf:c9:18:3b:07:c1:56:81:b7:5c:8a:5a: 83:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:74:0C:B2:AA:98:E0:A5:CF:D7:35:91:F9:4F:AC:7A:DB:D5:5E:4D X509v3 Authority Key Identifier: keyid:DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:0a:da:95:99:01:c0:e9:58:4d:0c:42:4e:9a:0d:44:be:bf: 6f:d6:f4:10:df:e3:cd:7e:a9:6b:51:ff:4b:dd:51:e1:5b:80: ba:c8:1e:a7:74:be:ba:5f:3c:c1:b2:51:f9:56:b4:e2:d3:98: 4b:99:f1:75:ea:3e:e2:52:43:b1:2f:72:f6:6f:42:77:c9:da: 5c:b4:22:e3:1e:9e:6e:76:4c:72:cc:b9:ba:70:45:4a:27:26: 45:dd:87:33:01:5a:75:ee:fc:33:42:4d:69:54:85:d0:9a:0b: d3:07:30:fb:7c:75:54:ea:df:37:bc:95:0c:11:ec:58:15:4d: 63:6f:3b:00:ca:f2:b2:76:09:79:2f:78:2a:c0:0e:5c:c5:b8: 8b:2e:d2:0e:58:1e:08:d9:a4:22:ca:1d:e2:b2:a2:53:13:8c: fe:67:8d:a6:3c:e2:68:86:df:a5:f7:c1:4e:08:06:da:08:b2: 6a:f9:d3:1c:71:b5:c0:7d:4c:eb:6e:0f:9f:b8:47:68:56:cb: 53:d8:e8:25:99:93:48:29:dc:80:33:4d:f3:bf:0e:c3:6e:29: f5:91:13:d9:b9:f1:8f:0d:bc:c5:70:20:17:6b:b8:17:51:73: 8e:ae:77:61:46:7c:ea:b8:c4:65:03:b0:2d:d3:41:be:a6:2e: f6:c0:bd:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDpIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNEMDQxMTAvBgNVBAUTKERGQzIzRTNEOTA1RDBFODM2ODEyMTk1OTZEMDgyMjlB Njk0RkFGMTMwHhcNMjUxMjI4MTcyNDQ2WhcNMjYwMTA0MTcyNDQ2WjAYMRYwFAYD VQQDDA02OTUxNjdkZS0wNmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtTz+Oqf36FzF1VxYCmVPs2RX/KTx++aUqGPOT33MUjZPyCuLK9E5tVO86gT4 SlDLFR4CeT8ollqcpgDIUHHwa0iRIiuvqq7DId+kTBmufQxbdbPY1pxhExmnH2x/ gZCNa5/YOY0fRsl/J1rNZXZNNv1rUNPd6wg7CshUWOzk6Ddhn7y4xSIC5JZObldR Tp9zhuUp8D8ToUZbY7Mq+DA7CESDBV6dxdUZEN821ERq3q1+9hrhjZGMiN+LYZRs OfAPWu/OTsnZ1C+g64Vb7pUJTrqXLgE/B6T9DlEDHw5gQI6REMQE+mdzEB6SjZ6/ MlIGzBjPyRg7B8FWgbdcilqDJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPJ0DLKq mOClz9c1kflPrHrb1V5NMB8GA1UdIwQYMBaAFN/CPj2QXQ6DaBIZWW0IIpppT68T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0QwNC83QTE3RkU4RUFE RDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERvTm9FaGxaYlFnaW1tbFBy eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4SS1QWkJkRG9Ob0VobFpiUWdpbW1sUHJ4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0QwNC83QTE3RkU4RUFERDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERv Tm9FaGxaYlFnaW1tbFByeE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKCtqVmQHA6VhNDEJOmg1Evr9v1vQQ3+PNfqlrUf9L3VHhW4C6yB6n dL66XzzBslH5VrTi05hLmfF16j7iUkOxL3L2b0J3ydpctCLjHp5udkxyzLm6cEVK JyZF3YczAVp17vwzQk1pVIXQmgvTBzD7fHVU6t83vJUMEexYFU1jbzsAyvKydgl5 L3gqwA5cxbiLLtIOWB4I2aQiyh3isqJTE4z+Z42mPOJoht+l98FOCAbaCLJq+dMc cbXAfUzrbg+fuEdoVstT2OglmZNIKdyAM03zvw7Dbin1kRPZufGPDbzFcCAXa7gX UXOOrndhRnzquMRlA7At00G+pi72wL2C -----END CERTIFICATE-----Generated at Tue Dec 30 10:32:16 2025 by rpki-client