This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.mft File: Ph9iZenSFMnhbLM4JUDUYiNgIVg.mft (raw, json) Hash identifier: MlAgTWoxUwVL3TYSsXf5a8Uy4lrjxWMDYvL8mrn3Y7o= Subject key identifier: E7:4B:97:40:57:BB:72:48:F8:1D:1C:A8:28:80:F8:CA:8B:B5:CE:AF Authority key identifier: 3E:1F:62:65:E9:D2:14:C9:E1:6C:B3:38:25:40:D4:62:23:60:21:58 Certificate issuer: /CN=A913CB8B/serialNumber=3E1F6265E9D214C9E16CB3382540D46223602158 Certificate serial: 022D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ph9iZenSFMnhbLM4JUDUYiNgIVg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.mft Manifest number: 0229 Signing time: Fri 19 Dec 2025 01:17:02 +0000 Manifest this update: Fri 19 Dec 2025 01:17:01 +0000 Manifest next update: Fri 26 Dec 2025 01:17:01 +0000 Files and hashes: 1: Ph9iZenSFMnhbLM4JUDUYiNgIVg.crl (hash: 9ZxdXAddJRYxRmZm8GtzkBAsrvpJIU5/t27boANgGWs=) 2: F56B35708C0011ED836F0539C4F9AE02.roa (hash: UfZMrxaB0qz4pcGB9q6XltymVUTNDZVQp2pT7h14Zqo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.crl rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ph9iZenSFMnhbLM4JUDUYiNgIVg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:17:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 557 (0x22d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CB8B, serialNumber=3E1F6265E9D214C9E16CB3382540D46223602158 Validity Not Before: Dec 19 01:17:01 2025 GMT Not After : Dec 26 01:17:01 2025 GMT Subject: CN=6944a78e-0cc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:6c:84:dc:10:cf:b1:6b:0b:69:80:ba:c0:46: 0e:79:43:2a:f8:0b:bb:e2:65:47:5e:ee:49:58:3a: 17:a6:79:3c:be:f5:b3:46:a2:f0:b2:10:cd:a6:2e: 1c:1a:07:74:dc:94:2a:0d:6c:d5:7a:42:88:86:19: 33:00:eb:d0:24:63:b0:16:b6:3b:10:73:69:1a:ff: c1:81:73:53:01:ca:63:4f:82:13:55:d2:db:6f:4a: 24:05:40:0b:38:36:88:ba:ad:b3:1b:cd:69:9b:e3: 4d:00:dd:f2:9d:48:88:b9:92:ce:2e:18:75:3a:67: 16:c0:b2:ff:20:67:7a:37:44:24:e6:55:89:30:68: 8d:ca:d9:0a:a9:eb:23:3d:ee:ab:7c:59:4c:61:3c: 01:71:0c:b6:0c:f2:86:cc:6d:0d:0b:e8:89:13:0f: f5:4e:2d:2d:69:3e:fa:7d:4c:d0:00:6a:c1:3f:43: 89:ee:52:be:41:58:7d:f5:f4:77:57:80:43:86:76: ea:9e:0f:64:13:5b:33:5b:2d:7e:84:c8:91:97:98: a8:61:7a:72:0b:5b:f0:6a:f5:87:34:ac:fa:0c:82: f0:e8:94:56:84:25:e3:d8:46:85:fd:16:91:56:b4: fd:92:19:60:c9:11:8b:34:cc:a0:03:3d:7f:97:79: f7:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:4B:97:40:57:BB:72:48:F8:1D:1C:A8:28:80:F8:CA:8B:B5:CE:AF X509v3 Authority Key Identifier: keyid:3E:1F:62:65:E9:D2:14:C9:E1:6C:B3:38:25:40:D4:62:23:60:21:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ph9iZenSFMnhbLM4JUDUYiNgIVg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:ee:24:fb:04:b0:ba:0f:79:1d:0d:8d:09:2f:be:0e:ee:39: a6:32:54:dd:52:fd:2a:d6:32:9b:eb:09:76:58:f3:b3:b6:02: 90:19:de:4e:39:99:ca:05:54:ed:a4:be:82:58:8f:48:02:14: ce:93:17:e8:7c:e8:66:6e:dd:24:31:09:8f:00:26:9f:45:3f: ea:52:05:b2:b6:fd:18:82:7a:48:a9:46:54:41:15:24:6d:ec: 29:6a:65:bc:f5:c0:1b:82:0f:b1:36:ee:9c:39:fc:9d:d7:e5: 4b:34:d1:0f:ec:fa:17:87:c2:3d:03:1e:8b:0e:70:c7:cd:11: 38:d5:8a:11:b6:3d:0d:1e:e8:f1:42:5d:7c:6e:a1:54:11:77: 6b:bd:87:d3:30:de:4a:32:7c:b5:b5:51:2d:00:1f:3c:3b:08: 1a:be:85:42:20:3e:7f:29:2e:03:3d:8a:dd:17:69:c2:34:3e: de:15:b0:ff:58:cc:d4:10:2f:2c:1c:2e:a7:8b:73:d4:08:83: 2b:22:3e:04:9e:33:a1:66:b0:41:5a:89:10:c9:8f:77:6b:dc: f9:5b:89:45:62:06:1d:09:32:36:cb:07:fb:ab:8e:32:88:3d: d3:a5:09:1a:5a:0a:16:c1:0a:a3:45:68:cf:d3:fb:67:50:19: 60:b2:15:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NCOEIxMTAvBgNVBAUTKDNFMUY2MjY1RTlEMjE0QzlFMTZDQjMzODI1NDBENDYy MjM2MDIxNTgwHhcNMjUxMjE5MDExNzAxWhcNMjUxMjI2MDExNzAxWjAYMRYwFAYD VQQDDA02OTQ0YTc4ZS0wY2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4GyE3BDPsWsLaYC6wEYOeUMq+Au74mVHXu5JWDoXpnk8vvWzRqLwshDNpi4c Ggd03JQqDWzVekKIhhkzAOvQJGOwFrY7EHNpGv/BgXNTAcpjT4ITVdLbb0okBUAL ODaIuq2zG81pm+NNAN3ynUiIuZLOLhh1OmcWwLL/IGd6N0Qk5lWJMGiNytkKqesj Pe6rfFlMYTwBcQy2DPKGzG0NC+iJEw/1Ti0taT76fUzQAGrBP0OJ7lK+QVh99fR3 V4BDhnbqng9kE1szWy1+hMiRl5ioYXpyC1vwavWHNKz6DILw6JRWhCXj2EaF/RaR VrT9khlgyRGLNMygAz1/l3n3xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOdLl0BX u3JI+B0cqCiA+MqLtc6vMB8GA1UdIwQYMBaAFD4fYmXp0hTJ4WyzOCVA1GIjYCFY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0I4Qi9ERDA0NzNGQThC RkQxMUVEOTgzRTVDMzJDNEY5QUUwMi9QaDlpWmVuU0ZNbmhiTE00SlVEVVlpTmdJ VmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BoOWlaZW5TRk1uaGJMTTRKVURVWWlOZ0lWZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Q0I4Qi9ERDA0NzNGQThCRkQxMUVEOTgzRTVDMzJDNEY5QUUwMi9QaDlpWmVuU0ZN bmhiTE00SlVEVVlpTmdJVmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCz7iT7BLC6D3kdDY0JL74O7jmmMlTdUv0q1jKb6wl2WPOztgKQGd5O OZnKBVTtpL6CWI9IAhTOkxfofOhmbt0kMQmPACafRT/qUgWytv0YgnpIqUZUQRUk bewpamW89cAbgg+xNu6cOfyd1+VLNNEP7PoXh8I9Ax6LDnDHzRE41YoRtj0NHujx Ql18bqFUEXdrvYfTMN5KMny1tVEtAB88OwgavoVCID5/KS4DPYrdF2nCND7eFbD/ WMzUEC8sHC6ni3PUCIMrIj4EnjOhZrBBWokQyY93a9z5W4lFYgYdCTI2ywf7q44y iD3TpQkaWgoWwQqjRWjP0/tnUBlgshUf -----END CERTIFICATE-----Generated at Sat Dec 20 20:28:17 2025 by rpki-client