This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft File: PkPgI8CFNZTq13soKJo_HxDDCR0.mft (raw, json) Hash identifier: J51/1e9S6SuZQM1ANAUHr2qnQUm/4juAkpYEWc2z4kM= Subject key identifier: 58:5C:A5:D5:89:B2:AB:58:B7:07:55:68:95:80:57:FA:9C:FB:B1:0B Authority key identifier: 3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D Certificate issuer: /CN=A9150B47/serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Certificate serial: 34E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft Manifest number: 34E0 Signing time: Sat 06 Dec 2025 15:00:00 +0000 Manifest this update: Sat 06 Dec 2025 14:59:59 +0000 Manifest next update: Sat 13 Dec 2025 14:59:59 +0000 Files and hashes: 1: PkPgI8CFNZTq13soKJo_HxDDCR0.crl (hash: s3sYLr0O9UGA+PQ9Ff4t63mzBxm/M4rBrN4Kvm+hbDo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:59:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13539 (0x34e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150B47, serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Validity Not Before: Dec 6 14:59:59 2025 GMT Not After : Dec 13 14:59:59 2025 GMT Subject: CN=693444f0-54a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:de:47:50:9c:55:a9:e4:d0:f3:f9:57:5c:cc: e5:10:c5:6c:5c:99:56:6a:a9:26:ed:0a:b5:bb:9f: fd:22:32:bd:dc:e7:fa:d8:4a:7b:54:25:e1:d8:d1: 53:81:f5:df:03:f2:6e:1f:e6:c8:ef:55:19:35:8d: 6b:be:35:1e:91:44:5d:8b:95:ee:de:0e:65:a4:3c: c9:e3:c3:70:d3:41:52:2b:f9:ea:1c:52:d0:77:bc: 29:fd:c9:58:a7:3a:4a:c6:fa:bd:40:dd:0f:2f:7a: f9:53:25:bf:f7:30:3c:38:65:e9:83:fb:31:b9:4d: fc:af:82:65:39:fc:e3:81:ca:bd:6a:b6:b0:10:2b: 20:e4:8c:e9:1f:ec:d1:70:3a:4a:50:8b:f3:3d:2d: e6:91:ab:80:ba:23:54:56:d8:4a:66:0c:06:f7:e6: a4:19:9a:e7:01:df:78:72:51:15:c7:11:60:0a:1d: cf:98:db:2b:3b:22:d4:4b:35:e9:10:fb:e3:25:e9: ed:86:c7:d9:f1:f0:e1:02:0f:1e:aa:24:c8:af:89: 7a:b2:15:39:10:07:40:03:73:ce:4b:b5:60:30:6c: 28:1e:b3:5d:e4:ba:d7:dc:6f:79:4d:7b:0a:f7:56: 43:13:79:ca:3b:12:ee:4c:55:cf:41:7d:73:0e:cd: 0b:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:5C:A5:D5:89:B2:AB:58:B7:07:55:68:95:80:57:FA:9C:FB:B1:0B X509v3 Authority Key Identifier: keyid:3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:f1:78:8b:91:f2:95:bb:55:cb:7d:60:47:04:a8:99:de:01: b4:e3:d6:2d:b8:be:99:11:45:c9:ef:d1:64:72:34:7b:f0:62: 8d:49:fe:0f:22:e8:83:b2:5b:ec:53:5e:1a:71:5e:21:47:87: d8:56:6e:89:8f:a8:b4:3a:62:0e:88:a9:d8:84:bf:c9:f3:4e: f8:78:74:97:8b:8e:af:80:ff:ec:73:7d:3d:de:a7:12:07:8a: 02:dd:80:a4:1a:c7:e3:a9:c7:96:d2:2e:85:1a:e0:46:55:13: 97:fc:d1:9e:e0:06:4e:85:dd:be:71:79:f1:e4:f2:ac:f2:52: 52:bc:3f:5c:80:f2:93:c5:3b:50:e3:ba:ce:fa:b7:e8:52:ed: da:57:91:7f:9e:1c:6b:e8:8d:9c:a1:ea:1a:57:c6:a9:6a:a5: 93:5b:2d:bc:34:a8:ea:77:e1:0c:e6:7e:b5:3e:dd:20:f7:e7: ab:33:c4:bf:81:49:1a:cf:a0:13:7e:41:68:da:43:a3:48:98: ae:38:f3:c6:10:7e:4c:1f:9b:34:ee:9a:ed:12:f3:88:56:f1: e2:bc:85:a4:f8:c7:d2:b6:2e:72:d5:5a:19:61:3b:75:37:0d: 8e:c9:6f:7b:e0:6b:eb:bf:49:b8:69:a1:e8:b2:f1:d1:86:11: 11:7a:ad:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBCNDcxMTAvBgNVBAUTKDNFNDNFMDIzQzA4NTM1OTRFQUQ3N0IyODI4OUEzRjFG MTBDMzA5MUQwHhcNMjUxMjA2MTQ1OTU5WhcNMjUxMjEzMTQ1OTU5WjAYMRYwFAYD VQQDEw02OTM0NDRmMC01NGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9N5HUJxVqeTQ8/lXXMzlEMVsXJlWaqkm7Qq1u5/9IjK93Of62Ep7VCXh2NFT gfXfA/JuH+bI71UZNY1rvjUekURdi5Xu3g5lpDzJ48Nw00FSK/nqHFLQd7wp/clY pzpKxvq9QN0PL3r5UyW/9zA8OGXpg/sxuU38r4JlOfzjgcq9arawECsg5IzpH+zR cDpKUIvzPS3mkauAuiNUVthKZgwG9+akGZrnAd94clEVxxFgCh3PmNsrOyLUSzXp EPvjJenthsfZ8fDhAg8eqiTIr4l6shU5EAdAA3POS7VgMGwoHrNd5LrX3G95TXsK 91ZDE3nKOxLuTFXPQX1zDs0LSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFhcpdWJ sqtYtwdVaJWAV/qc+7ELMB8GA1UdIwQYMBaAFD5D4CPAhTWU6td7KCiaPx8Qwwkd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEI0Ny9EQTE3NTU3ODFE QTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5aVHExM3NvS0pvX0h4RERD UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BrUGdJOENGTlpUcTEzc29LSm9fSHhERENSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEI0Ny9EQTE3NTU3ODFEQTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5a VHExM3NvS0pvX0h4RERDUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBK8XiLkfKVu1XLfWBHBKiZ3gG049YtuL6ZEUXJ79FkcjR78GKNSf4P IuiDslvsU14acV4hR4fYVm6Jj6i0OmIOiKnYhL/J8074eHSXi46vgP/sc3093qcS B4oC3YCkGsfjqceW0i6FGuBGVROX/NGe4AZOhd2+cXnx5PKs8lJSvD9cgPKTxTtQ 47rO+rfoUu3aV5F/nhxr6I2coeoaV8apaqWTWy28NKjqd+EM5n61Pt0g9+erM8S/ gUkaz6ATfkFo2kOjSJiuOPPGEH5MH5s07prtEvOIVvHivIWk+MfSti5y1VoZYTt1 Nw2OyW974Gvrv0m4aaHosvHRhhEReq3m -----END CERTIFICATE-----Generated at Sat Dec 6 20:28:45 2025 by rpki-client