This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.mft File: Ph9iZenSFMnhbLM4JUDUYiNgIVg.mft (raw, json) Hash identifier: QbkFnvHCwvW5IJQZ175IlN83UybzsAFavHHA74BGGPw= Subject key identifier: 9A:BC:CB:CA:59:43:29:C9:06:E1:FA:06:32:8E:BA:7D:68:88:37:81 Authority key identifier: 3E:1F:62:65:E9:D2:14:C9:E1:6C:B3:38:25:40:D4:62:23:60:21:58 Certificate issuer: /CN=A913CB8B/serialNumber=3E1F6265E9D214C9E16CB3382540D46223602158 Certificate serial: 0226 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ph9iZenSFMnhbLM4JUDUYiNgIVg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.mft Manifest number: 0222 Signing time: Fri 05 Dec 2025 00:25:58 +0000 Manifest this update: Fri 05 Dec 2025 00:25:57 +0000 Manifest next update: Fri 12 Dec 2025 00:25:57 +0000 Files and hashes: 1: Ph9iZenSFMnhbLM4JUDUYiNgIVg.crl (hash: 1kfLHjI+2VaiWcoDX8M4EgyfPuSixtoXAAJWjVocRJk=) 2: F56B35708C0011ED836F0539C4F9AE02.roa (hash: UfZMrxaB0qz4pcGB9q6XltymVUTNDZVQp2pT7h14Zqo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.crl rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ph9iZenSFMnhbLM4JUDUYiNgIVg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:25:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 550 (0x226) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CB8B, serialNumber=3E1F6265E9D214C9E16CB3382540D46223602158 Validity Not Before: Dec 5 00:25:57 2025 GMT Not After : Dec 12 00:25:57 2025 GMT Subject: CN=69322695-14f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0f:f3:61:4a:20:0c:bf:ef:dd:ca:d4:e5:57: d6:7d:b5:4c:d8:14:fd:88:c9:4b:ff:b3:4d:ed:c0: 0c:d0:74:1d:64:3c:df:a7:15:9a:c9:64:04:71:5d: 12:30:c2:ad:ba:58:a8:5f:8d:af:8d:71:79:a1:e0: 18:c2:bc:c0:51:3f:66:ef:56:5a:86:2e:bf:e3:c1: 59:8e:3a:94:7a:8a:3e:a7:f2:46:ca:61:0c:35:af: 65:b8:07:b3:55:ce:ed:82:1e:86:16:f5:ef:f5:ff: 59:6c:f2:c1:20:c8:e5:ec:6c:60:8a:7d:34:b5:97: 3d:e1:ff:99:55:13:da:13:1a:63:95:69:66:3b:7c: 8a:60:8c:a7:f0:47:4c:23:76:3f:d1:01:77:33:8f: 7a:1d:6d:26:15:4b:75:26:dd:2b:aa:5e:97:b3:28: 16:a5:80:5a:5f:a0:aa:1f:32:8b:02:96:57:d5:8d: 91:3c:c2:0f:56:64:e0:d7:83:5c:b7:89:f1:a7:10: 0d:64:ca:b3:f8:8c:45:9d:c9:88:cd:70:0f:00:de: 71:91:3f:90:95:db:1b:b0:24:47:01:d0:1a:40:3f: 06:06:ec:11:f0:ee:98:12:47:8e:0e:90:7b:ab:2d: ea:31:38:f8:2a:e1:75:47:22:d3:0e:9c:64:2c:7c: 48:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:BC:CB:CA:59:43:29:C9:06:E1:FA:06:32:8E:BA:7D:68:88:37:81 X509v3 Authority Key Identifier: keyid:3E:1F:62:65:E9:D2:14:C9:E1:6C:B3:38:25:40:D4:62:23:60:21:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ph9iZenSFMnhbLM4JUDUYiNgIVg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:dc:27:b5:cf:a6:47:89:31:08:0a:08:c3:fc:21:36:85:6b: f5:8b:c5:09:8a:5f:04:56:a0:78:ce:52:3a:ea:23:eb:1c:42: 6b:4a:79:50:58:0f:fb:ce:7a:d8:43:ab:34:ae:ff:6e:90:5d: f9:2d:b6:b3:f4:de:56:56:70:bb:3b:df:20:39:89:85:9d:80: 0d:b7:80:4a:74:58:28:5c:97:c2:a7:66:c8:34:50:c0:eb:b5: 1c:a4:c7:7b:fb:5f:73:8f:05:89:de:65:ee:3f:a2:aa:7b:5a: 93:49:26:cd:f9:a1:45:cd:2e:d6:c0:0d:6b:68:45:92:b1:99: 87:3b:43:ef:e6:c9:79:77:7a:55:6e:65:69:e1:41:76:f0:2d: d2:17:c1:f4:0a:3b:fb:e1:32:7b:39:2f:a9:38:1a:b9:90:51: 43:c7:92:dd:21:da:46:c5:69:33:8b:70:58:db:34:7d:4e:bc: d4:f2:66:fa:40:6b:36:de:33:44:65:34:6e:82:f9:62:43:d4: 5a:52:de:8b:cf:aa:2f:09:f3:ae:63:b0:44:33:63:36:13:af: 50:34:4c:c5:85:95:00:f1:09:0b:01:98:c1:a6:0c:71:7f:23: d0:33:4c:0b:a9:d1:eb:ba:7e:d5:1b:cc:3a:dd:2c:1f:a9:41: e3:06:b0:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NCOEIxMTAvBgNVBAUTKDNFMUY2MjY1RTlEMjE0QzlFMTZDQjMzODI1NDBENDYy MjM2MDIxNTgwHhcNMjUxMjA1MDAyNTU3WhcNMjUxMjEyMDAyNTU3WjAYMRYwFAYD VQQDEw02OTMyMjY5NS0xNGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAww/zYUogDL/v3crU5VfWfbVM2BT9iMlL/7NN7cAM0HQdZDzfpxWayWQEcV0S MMKtulioX42vjXF5oeAYwrzAUT9m71Zahi6/48FZjjqUeoo+p/JGymEMNa9luAez Vc7tgh6GFvXv9f9ZbPLBIMjl7Gxgin00tZc94f+ZVRPaExpjlWlmO3yKYIyn8EdM I3Y/0QF3M496HW0mFUt1Jt0rql6XsygWpYBaX6CqHzKLApZX1Y2RPMIPVmTg14Nc t4nxpxANZMqz+IxFncmIzXAPAN5xkT+QldsbsCRHAdAaQD8GBuwR8O6YEkeODpB7 qy3qMTj4KuF1RyLTDpxkLHxIJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJq8y8pZ QynJBuH6BjKOun1oiDeBMB8GA1UdIwQYMBaAFD4fYmXp0hTJ4WyzOCVA1GIjYCFY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0I4Qi9ERDA0NzNGQThC RkQxMUVEOTgzRTVDMzJDNEY5QUUwMi9QaDlpWmVuU0ZNbmhiTE00SlVEVVlpTmdJ VmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BoOWlaZW5TRk1uaGJMTTRKVURVWWlOZ0lWZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Q0I4Qi9ERDA0NzNGQThCRkQxMUVEOTgzRTVDMzJDNEY5QUUwMi9QaDlpWmVuU0ZN bmhiTE00SlVEVVlpTmdJVmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDS3Ce1z6ZHiTEICgjD/CE2hWv1i8UJil8EVqB4zlI66iPrHEJrSnlQ WA/7znrYQ6s0rv9ukF35Lbaz9N5WVnC7O98gOYmFnYANt4BKdFgoXJfCp2bINFDA 67UcpMd7+19zjwWJ3mXuP6Kqe1qTSSbN+aFFzS7WwA1raEWSsZmHO0Pv5sl5d3pV bmVp4UF28C3SF8H0Cjv74TJ7OS+pOBq5kFFDx5LdIdpGxWkzi3BY2zR9TrzU8mb6 QGs23jNEZTRugvliQ9RaUt6Lz6ovCfOuY7BEM2M2E69QNEzFhZUA8QkLAZjBpgxx fyPQM0wLqdHrun7VG8w63SwfqUHjBrAC -----END CERTIFICATE-----Generated at Sun Dec 7 02:18:13 2025 by rpki-client