This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft File: pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft (raw, json) Hash identifier: QGSkIwy+EwUmXn38yHWGOlY6EVYVV+EWFdM+j9HTxGQ= Subject key identifier: DF:11:4F:D8:85:91:7B:9F:D2:68:49:2E:9F:0A:B3:BC:AF:09:63:4E Authority key identifier: A4:69:4B:E4:7C:4F:3B:C9:48:05:D4:A3:66:A0:07:C6:90:70:51:2E Certificate issuer: /CN=A9131EDD/serialNumber=A4694BE47C4F3BC94805D4A366A007C69070512E Certificate serial: 06E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft Manifest number: 06D8 Signing time: Thu 04 Dec 2025 20:54:26 +0000 Manifest this update: Thu 04 Dec 2025 20:54:25 +0000 Manifest next update: Thu 11 Dec 2025 20:54:25 +0000 Files and hashes: 1: pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl (hash: kqUSRvti8/6udTBOJqHwwcFr9RNk/6WNdO7UzF2zUc8=) 2: E84DCBC422D211EDAF1F924EC4F9AE02.roa (hash: TyaeGX842kMEGDRBcupYe577AZgEgKGiqyo02h56Luk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 20:54:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1763 (0x6e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131EDD, serialNumber=A4694BE47C4F3BC94805D4A366A007C69070512E Validity Not Before: Dec 4 20:54:25 2025 GMT Not After : Dec 11 20:54:25 2025 GMT Subject: CN=6931f502-bf55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a7:d9:e1:45:24:cb:bd:14:ed:ef:8b:46:3a: 20:b0:69:f7:c9:e7:65:a7:e8:ea:b4:65:f1:e5:9f: cb:b5:cc:3f:df:46:7d:38:7f:74:23:a0:dc:a5:27: f2:08:1e:6c:c4:06:74:93:50:1f:2e:05:3b:0f:6f: 6c:95:f0:05:23:fa:d4:26:37:a3:7f:26:b5:25:34: e9:39:c0:a9:6f:83:b3:c3:08:18:3e:13:73:a9:b9: a8:10:98:53:36:5b:dd:0b:e8:50:63:53:a1:62:21: b3:bc:d4:05:01:c3:5c:56:a1:8c:27:d4:3b:95:8b: 32:b3:36:ca:7a:a5:71:fe:43:8e:52:1e:5f:a1:a0: bf:0b:9d:1c:e7:80:e2:a7:3f:df:63:c9:32:1a:0f: 4e:19:97:a1:af:16:aa:59:60:44:d0:ca:33:43:d7: 1d:fe:d7:c1:62:b9:9c:a5:b5:69:d1:44:0b:ce:22: 10:8b:13:fa:0c:7e:93:e7:10:e1:14:ca:81:f5:24: 7a:6e:cb:17:66:33:c3:b7:84:43:05:30:98:c4:2f: d9:2b:1e:72:bd:f8:80:95:dc:7f:a9:5d:f1:45:5b: 64:26:e2:83:ce:44:25:53:74:44:22:5f:85:fe:a4: 4d:c5:e5:21:0c:96:d6:95:08:70:49:40:fe:f7:84: ba:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:11:4F:D8:85:91:7B:9F:D2:68:49:2E:9F:0A:B3:BC:AF:09:63:4E X509v3 Authority Key Identifier: keyid:A4:69:4B:E4:7C:4F:3B:C9:48:05:D4:A3:66:A0:07:C6:90:70:51:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:83:44:d6:97:7e:7e:4a:9f:05:2f:a7:5f:a7:6a:b2:2e:6e: 77:c2:42:aa:fa:80:9a:6b:57:06:5a:fe:e3:9e:a0:18:77:3f: 4a:28:c9:97:8d:2a:73:45:05:dc:28:da:03:33:c4:d6:9c:ba: 69:b0:20:5c:42:69:22:7e:a4:7a:99:48:b7:88:d0:a8:94:52: ff:78:25:0f:c9:01:1b:b8:29:76:c0:c1:14:95:52:58:ff:ff: 29:7b:22:2b:a7:23:77:f8:90:34:79:8c:68:38:14:cf:56:b4: 49:69:60:6e:b4:10:64:5d:5c:d9:79:93:6d:a5:2d:6b:17:41: 9f:f4:70:fc:2a:17:63:15:c2:ba:79:70:1f:51:e9:3e:d9:08: 97:8e:f9:7b:2f:9a:96:ca:f7:7c:2f:a4:97:74:cd:8e:6b:b6: 90:53:67:29:c5:86:71:49:86:51:d7:d4:9a:48:d5:16:41:4e: 9c:e7:14:1f:a6:2b:7c:07:d7:06:c8:1a:e6:8e:4f:11:37:18: 68:13:c5:18:4b:12:41:cb:27:a9:09:2e:2a:0d:40:d6:01:da: ac:4b:73:18:70:0a:61:fa:b3:ee:d0:ba:57:9d:70:0e:9b:45: fc:ff:e1:6d:d4:9f:f9:9d:f7:7f:ea:36:19:ab:cc:dc:61:4f: cf:c8:47:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFFREQxMTAvBgNVBAUTKEE0Njk0QkU0N0M0RjNCQzk0ODA1RDRBMzY2QTAwN0M2 OTA3MDUxMkUwHhcNMjUxMjA0MjA1NDI1WhcNMjUxMjExMjA1NDI1WjAYMRYwFAYD VQQDEw02OTMxZjUwMi1iZjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6fZ4UUky70U7e+LRjogsGn3yedlp+jqtGXx5Z/Ltcw/30Z9OH90I6DcpSfy CB5sxAZ0k1AfLgU7D29slfAFI/rUJjejfya1JTTpOcCpb4OzwwgYPhNzqbmoEJhT NlvdC+hQY1OhYiGzvNQFAcNcVqGMJ9Q7lYsyszbKeqVx/kOOUh5foaC/C50c54Di pz/fY8kyGg9OGZehrxaqWWBE0MozQ9cd/tfBYrmcpbVp0UQLziIQixP6DH6T5xDh FMqB9SR6bssXZjPDt4RDBTCYxC/ZKx5yvfiAldx/qV3xRVtkJuKDzkQlU3REIl+F /qRNxeUhDJbWlQhwSUD+94S6mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN8RT9iF kXuf0mhJLp8Ks7yvCWNOMB8GA1UdIwQYMBaAFKRpS+R8TzvJSAXUo2agB8aQcFEu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUVERC8yMTBCNDMwNDdC QkYxMUVCQTAyQTQzMzlDNEY5QUUwMi9wR2xMNUh4UE84bElCZFNqWnFBSHhwQndV UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BHbEw1SHhQTzhsSUJkU2pacUFIeHBCd1VTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUVERC8yMTBCNDMwNDdCQkYxMUVCQTAyQTQzMzlDNEY5QUUwMi9wR2xMNUh4UE84 bElCZFNqWnFBSHhwQndVUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8g0TWl35+Sp8FL6dfp2qyLm53wkKq+oCaa1cGWv7jnqAYdz9KKMmX jSpzRQXcKNoDM8TWnLppsCBcQmkifqR6mUi3iNColFL/eCUPyQEbuCl2wMEUlVJY //8peyIrpyN3+JA0eYxoOBTPVrRJaWButBBkXVzZeZNtpS1rF0Gf9HD8KhdjFcK6 eXAfUek+2QiXjvl7L5qWyvd8L6SXdM2Oa7aQU2cpxYZxSYZR19SaSNUWQU6c5xQf pit8B9cGyBrmjk8RNxhoE8UYSxJByyepCS4qDUDWAdqsS3MYcAph+rPu0LpXnXAO m0X8/+Ft1J/5nfd/6jYZq8zcYU/PyEcB -----END CERTIFICATE-----Generated at Sat Dec 6 22:10:06 2025 by rpki-client