This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft File: PP5vPrHYknFeQTbpuoVrmPZxR7A.mft (raw, json) Hash identifier: 59q5XRP26mqrU6QO1UxCy6aqm97Y03wB+XWjsDStyAk= Subject key identifier: E9:BB:89:8D:78:4F:4C:F4:56:5E:5E:66:17:EC:1A:41:16:54:E9:C1 Authority key identifier: 3C:FE:6F:3E:B1:D8:92:71:5E:41:36:E9:BA:85:6B:98:F6:71:47:B0 Certificate issuer: /CN=A9122D89/serialNumber=3CFE6F3EB1D892715E4136E9BA856B98F67147B0 Certificate serial: 07FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PP5vPrHYknFeQTbpuoVrmPZxR7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft Manifest number: 07F8 Signing time: Sat 06 Dec 2025 20:08:01 +0000 Manifest this update: Sat 06 Dec 2025 20:08:00 +0000 Manifest next update: Sat 13 Dec 2025 20:08:00 +0000 Files and hashes: 1: PP5vPrHYknFeQTbpuoVrmPZxR7A.crl (hash: lhV5AgLKDlLD5gKXq+HEjbNypTDQNCoAAanpLifAsdA=) 2: 7E8114F414E611EB82C98471C4F9AE02.roa (hash: J9GQPP4a7clIhGgoBAM9KLX43lz+eBaMPakWPFWVHmk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.crl rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PP5vPrHYknFeQTbpuoVrmPZxR7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 20:07:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2046 (0x7fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122D89, serialNumber=3CFE6F3EB1D892715E4136E9BA856B98F67147B0 Validity Not Before: Dec 6 20:08:00 2025 GMT Not After : Dec 13 20:08:00 2025 GMT Subject: CN=69348d20-9d42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:75:ab:1c:ba:57:31:6e:23:e6:83:12:ed:50: 81:85:29:b4:82:6a:2e:1e:38:be:a0:fa:a7:65:4d: 23:e1:66:71:e9:44:d4:53:ca:4f:7c:3b:c4:e6:7a: 64:cf:12:db:ac:b3:e6:43:51:98:37:10:e8:9a:39: e9:15:d4:44:a3:00:09:1d:ec:ab:48:cf:19:24:8c: 0d:e1:c1:20:b7:63:86:b8:ef:25:73:a1:e9:dc:ff: 54:a5:44:a1:66:69:67:93:f5:45:f9:75:99:32:77: 9a:89:6d:16:a4:6c:3f:8b:01:fd:e3:40:a6:d0:77: a2:fa:60:f6:35:2c:b9:30:5f:44:b1:34:be:cd:3f: 0b:df:1a:8c:2b:aa:f0:53:5a:c7:64:18:02:6c:1e: dc:96:12:74:2d:4f:f5:10:e6:0b:66:a1:b7:d8:95: 7a:88:f5:65:98:ea:35:5d:19:ad:a4:d4:0f:34:a0: c3:18:56:6c:3c:55:ea:71:40:64:ab:a5:e1:76:f5: 78:05:07:26:d0:f7:64:1a:49:71:ea:75:b2:d1:3a: 00:5a:7e:73:99:35:b1:ff:48:ef:ad:81:bf:bc:44: 1e:a1:e7:70:9f:62:8f:cd:2a:94:31:70:f3:45:20: a9:91:82:fd:d1:3a:87:ec:3d:e0:37:35:69:aa:a0: 23:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:BB:89:8D:78:4F:4C:F4:56:5E:5E:66:17:EC:1A:41:16:54:E9:C1 X509v3 Authority Key Identifier: keyid:3C:FE:6F:3E:B1:D8:92:71:5E:41:36:E9:BA:85:6B:98:F6:71:47:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PP5vPrHYknFeQTbpuoVrmPZxR7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:82:02:01:70:54:d9:e8:5a:f8:48:4d:6e:11:85:46:c0:3d: 0b:e6:68:d1:9b:e8:9f:ca:82:c8:a7:55:f2:9b:3a:72:38:a2: 52:de:b3:4c:19:ea:2f:eb:24:62:07:9a:1a:3e:eb:f4:ef:b3: 5e:b5:8f:ba:92:5e:5b:0f:b6:6b:59:a7:65:6f:4a:17:1b:fa: a4:9f:26:87:3b:16:f2:71:56:4e:f3:b4:31:af:eb:36:7c:7c: c8:a0:68:62:6c:fd:26:ba:40:01:1f:fc:fb:fb:7d:d1:31:2a: 39:88:50:3a:1c:36:90:ba:68:d9:28:d6:13:7a:aa:69:13:fd: d3:b5:4a:50:cd:61:8b:4a:ff:65:86:9c:19:6e:1d:ce:a1:43: 43:1d:07:d3:a3:b1:6e:52:2e:b3:69:4d:fa:e5:f2:d6:20:5a: 0b:70:30:d0:c0:dd:87:e8:e4:05:5b:13:68:0b:f5:33:98:9c: fe:e0:02:af:d3:af:a7:6c:54:5f:dc:a4:73:75:71:fd:20:f0: 14:15:df:48:ea:21:c5:d3:a9:0f:94:11:74:3b:07:bd:07:a0: 6e:d9:52:b8:05:86:95:5e:c8:f8:4d:4f:23:d9:bf:d3:f5:79: c6:51:1f:30:01:91:04:78:27:f1:33:6e:54:f6:96:84:f7:70: 29:7d:f4:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJEODkxMTAvBgNVBAUTKDNDRkU2RjNFQjFEODkyNzE1RTQxMzZFOUJBODU2Qjk4 RjY3MTQ3QjAwHhcNMjUxMjA2MjAwODAwWhcNMjUxMjEzMjAwODAwWjAYMRYwFAYD VQQDEw02OTM0OGQyMC05ZDQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsXWrHLpXMW4j5oMS7VCBhSm0gmouHji+oPqnZU0j4WZx6UTUU8pPfDvE5npk zxLbrLPmQ1GYNxDomjnpFdREowAJHeyrSM8ZJIwN4cEgt2OGuO8lc6Hp3P9UpUSh Zmlnk/VF+XWZMneaiW0WpGw/iwH940Cm0Hei+mD2NSy5MF9EsTS+zT8L3xqMK6rw U1rHZBgCbB7clhJ0LU/1EOYLZqG32JV6iPVlmOo1XRmtpNQPNKDDGFZsPFXqcUBk q6XhdvV4BQcm0PdkGklx6nWy0ToAWn5zmTWx/0jvrYG/vEQeoedwn2KPzSqUMXDz RSCpkYL90TqH7D3gNzVpqqAjmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOm7iY14 T0z0Vl5eZhfsGkEWVOnBMB8GA1UdIwQYMBaAFDz+bz6x2JJxXkE26bqFa5j2cUew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkQ4OS9DNkE0QTVFMjA4 NDQxMUVCOUM3MzY1MTRDNEY5QUUwMi9QUDV2UHJIWWtuRmVRVGJwdW9Wcm1QWnhS N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BQNXZQckhZa25GZVFUYnB1b1ZybVBaeFI3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MkQ4OS9DNkE0QTVFMjA4NDQxMUVCOUM3MzY1MTRDNEY5QUUwMi9QUDV2UHJIWWtu RmVRVGJwdW9Wcm1QWnhSN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARggIBcFTZ6Fr4SE1uEYVGwD0L5mjRm+ifyoLIp1XymzpyOKJS3rNM Geov6yRiB5oaPuv077NetY+6kl5bD7ZrWadlb0oXG/qknyaHOxbycVZO87Qxr+s2 fHzIoGhibP0mukABH/z7+33RMSo5iFA6HDaQumjZKNYTeqppE/3TtUpQzWGLSv9l hpwZbh3OoUNDHQfTo7FuUi6zaU365fLWIFoLcDDQwN2H6OQFWxNoC/UzmJz+4AKv 06+nbFRf3KRzdXH9IPAUFd9I6iHF06kPlBF0Owe9B6Bu2VK4BYaVXsj4TU8j2b/T 9XnGUR8wAZEEeCfxM25U9paE93ApffQ+ -----END CERTIFICATE-----Generated at Sat Dec 6 23:46:14 2025 by rpki-client