This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft File: PUXFozv53U06Htp-0mQGWOH4Mf8.mft (raw, json) Hash identifier: WykSWHTTeWYcpEtzKYOfOVJC1E8XJswxszowTQaBFWk= Subject key identifier: 3E:76:8D:BA:4C:4B:F1:3D:AD:E2:FF:BD:E1:7D:C5:56:F4:07:9A:1E Authority key identifier: 3D:45:C5:A3:3B:F9:DD:4D:3A:1E:DA:7E:D2:64:06:58:E1:F8:31:FF Certificate issuer: /CN=A9166F0E/serialNumber=3D45C5A33BF9DD4D3A1EDA7ED2640658E1F831FF Certificate serial: 0C02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft Manifest number: 0BFB Signing time: Sat 06 Dec 2025 18:09:16 +0000 Manifest this update: Sat 06 Dec 2025 18:09:16 +0000 Manifest next update: Sat 13 Dec 2025 18:09:16 +0000 Files and hashes: 1: PUXFozv53U06Htp-0mQGWOH4Mf8.crl (hash: YLyssGuvyArk0XkIB0xR4/QFcla5WbWkky1/ou26nvM=) 2: A11D7694261F11EAA88CE128C4F9AE02.roa (hash: UABSLYRv5F+q/4e5iQCmZDPY3VJdi+9iaRXz535SqfM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.crl rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 18:09:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3074 (0xc02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166F0E, serialNumber=3D45C5A33BF9DD4D3A1EDA7ED2640658E1F831FF Validity Not Before: Dec 6 18:09:16 2025 GMT Not After : Dec 13 18:09:16 2025 GMT Subject: CN=6934714c-71f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:af:45:58:e7:b3:8e:76:07:16:6d:57:ca:dd: 10:0f:ed:c2:b7:c9:5e:e2:06:8c:88:08:43:e5:d4: fe:ab:6c:0c:6a:33:82:ab:9c:cb:bf:cf:86:28:ca: 39:eb:10:e2:5e:07:c3:66:1b:bc:c1:39:ba:6c:f8: c2:33:ae:93:65:06:f2:ad:29:7a:c5:61:da:b2:d7: bb:b8:b7:42:07:e6:90:10:d4:0f:ef:91:c7:b6:1f: b4:51:07:e4:82:6a:91:37:ad:d8:e3:f4:4a:cd:e3: 36:34:17:3c:ec:ec:a8:42:1d:bf:fc:1b:fd:1d:25: a6:d0:4d:c4:65:3e:e1:f5:db:2f:31:67:73:7b:df: 27:bc:98:c2:cf:63:21:10:1a:68:77:54:0b:2f:aa: 28:eb:ac:03:af:b2:fe:c4:39:86:6f:0c:07:45:70: ad:92:2c:3f:c1:e2:bf:62:98:b6:53:2b:d8:1f:0e: 34:82:a0:16:27:eb:ca:7d:1f:a9:86:6a:17:ab:62: 33:af:e5:7b:5e:aa:12:d8:e6:ae:f3:9b:5b:11:46: 28:ca:38:62:62:35:89:40:06:12:7f:a2:0b:19:02: d6:25:2f:63:d7:51:68:49:8e:27:a4:52:89:30:f2: 45:d4:ec:02:15:e7:12:c3:60:9e:d8:ee:f8:b9:7b: 55:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:76:8D:BA:4C:4B:F1:3D:AD:E2:FF:BD:E1:7D:C5:56:F4:07:9A:1E X509v3 Authority Key Identifier: keyid:3D:45:C5:A3:3B:F9:DD:4D:3A:1E:DA:7E:D2:64:06:58:E1:F8:31:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:9a:9f:4f:b2:17:f6:8e:8a:d1:ea:02:f3:3c:b3:f4:81:3a: 14:8b:a8:d6:e6:bb:4e:fe:9e:ba:94:d1:d3:5b:71:97:60:bb: f3:77:c4:36:04:48:c8:f3:61:fe:93:b1:35:40:e5:70:4b:25: 0d:80:19:4c:3d:fc:e2:58:ca:66:88:fe:f5:74:7c:2a:e5:8f: eb:7e:42:3b:c4:4b:ce:ee:a6:e1:fa:e8:bb:8f:4d:67:1a:d1: 65:a3:9d:27:56:cb:59:97:f6:dd:8b:33:e7:27:62:72:db:5b: 7b:83:29:d6:b3:79:b1:0e:72:1b:f7:50:19:6b:9e:63:e8:b5: 8e:78:64:f8:d5:28:98:73:0e:d6:35:ad:8c:95:c5:b3:4d:2d: ab:bb:86:d3:c7:13:9c:68:4a:95:80:0d:e9:fb:aa:be:00:4f: 9c:ec:1b:1d:6a:5c:73:ac:f5:8a:87:e2:b1:2b:d0:c9:3b:a8: f1:2b:0a:0d:de:35:e5:99:1a:70:c2:6d:ef:3d:8d:ee:e5:99: ee:1d:33:96:5d:e7:55:6d:df:73:6e:3c:3d:b1:46:79:09:7d: a1:38:a3:28:11:e4:ad:aa:2e:c1:9d:0e:18:da:08:ad:b4:05: 56:04:5e:c5:27:98:61:4c:62:de:82:fc:3e:31:4b:95:a0:ab: 4e:19:c8:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZGMEUxMTAvBgNVBAUTKDNENDVDNUEzM0JGOURENEQzQTFFREE3RUQyNjQwNjU4 RTFGODMxRkYwHhcNMjUxMjA2MTgwOTE2WhcNMjUxMjEzMTgwOTE2WjAYMRYwFAYD VQQDEw02OTM0NzE0Yy03MWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnq9FWOezjnYHFm1Xyt0QD+3Ct8le4gaMiAhD5dT+q2wMajOCq5zLv8+GKMo5 6xDiXgfDZhu8wTm6bPjCM66TZQbyrSl6xWHaste7uLdCB+aQENQP75HHth+0UQfk gmqRN63Y4/RKzeM2NBc87OyoQh2//Bv9HSWm0E3EZT7h9dsvMWdze98nvJjCz2Mh EBpod1QLL6oo66wDr7L+xDmGbwwHRXCtkiw/weK/Ypi2UyvYHw40gqAWJ+vKfR+p hmoXq2Izr+V7XqoS2Oau85tbEUYoyjhiYjWJQAYSf6ILGQLWJS9j11FoSY4npFKJ MPJF1OwCFecSw2Ce2O74uXtVXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD52jbpM S/E9reL/veF9xVb0B5oeMB8GA1UdIwQYMBaAFD1FxaM7+d1NOh7aftJkBljh+DH/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkYwRS8xQTc1OEIwRTI2 MUYxMUVBQUUyRThGMjhDNEY5QUUwMi9QVVhGb3p2NTNVMDZIdHAtMG1RR1dPSDRN ZjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVWEZvenY1M1UwNkh0cC0wbVFHV09INE1mOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkYwRS8xQTc1OEIwRTI2MUYxMUVBQUUyRThGMjhDNEY5QUUwMi9QVVhGb3p2NTNV MDZIdHAtMG1RR1dPSDRNZjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXmp9Pshf2jorR6gLzPLP0gToUi6jW5rtO/p66lNHTW3GXYLvzd8Q2 BEjI82H+k7E1QOVwSyUNgBlMPfziWMpmiP71dHwq5Y/rfkI7xEvO7qbh+ui7j01n GtFlo50nVstZl/bdizPnJ2Jy21t7gynWs3mxDnIb91AZa55j6LWOeGT41SiYcw7W Na2MlcWzTS2ru4bTxxOcaEqVgA3p+6q+AE+c7BsdalxzrPWKh+KxK9DJO6jxKwoN 3jXlmRpwwm3vPY3u5ZnuHTOWXedVbd9zbjw9sUZ5CX2hOKMoEeStqi7BnQ4Y2git tAVWBF7FJ5hhTGLegvw+MUuVoKtOGcj9 -----END CERTIFICATE-----Generated at Sun Dec 7 06:19:09 2025 by rpki-client