This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft File: Psexptohoad1gV0cv-cjFLipXdk.mft (raw, json) Hash identifier: fSBkiI+qrBuXfpY513k0zvZFbO8TckipbP+Iq2xtV0o= Subject key identifier: 56:71:90:F4:E9:1E:5D:E6:F6:56:9E:9A:78:0B:02:2E:EE:60:8E:8A Authority key identifier: 3E:C7:B1:A6:DA:21:A1:A7:75:81:5D:1C:BF:E7:23:14:B8:A9:5D:D9 Certificate issuer: /CN=A9170DA5/serialNumber=3EC7B1A6DA21A1A775815D1CBFE72314B8A95DD9 Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft Manifest number: 52 Signing time: Fri 05 Dec 2025 05:06:07 +0000 Manifest this update: Fri 05 Dec 2025 05:06:07 +0000 Manifest next update: Fri 12 Dec 2025 05:06:07 +0000 Files and hashes: 1: Psexptohoad1gV0cv-cjFLipXdk.crl (hash: i7RdaFxBuU+oip+kYoFoK84z2Y3yQ69nu3TNtcUbAcs=) 2: F99E9E78571B11F093AD0C10C4F9AE02.roa (hash: Ntdzzur1e7UcFcIFXVyf4NefmktAA4cSP3KFPUhWals=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.crl rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:06:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DA5, serialNumber=3EC7B1A6DA21A1A775815D1CBFE72314B8A95DD9 Validity Not Before: Dec 5 05:06:07 2025 GMT Not After : Dec 12 05:06:07 2025 GMT Subject: CN=6932683f-64e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:58:57:70:08:76:18:44:b9:7e:70:f8:3f:e9: 4f:ea:a2:3c:be:de:f5:af:71:78:11:14:47:5a:2b: 18:b4:80:fa:90:68:cc:6a:75:6f:d5:58:db:42:2a: fa:94:b2:34:71:c7:de:9e:8c:0d:15:9a:8f:de:a5: e2:89:c7:f9:49:36:12:4d:78:f0:4f:b5:45:57:db: 2b:26:3d:f9:c8:2d:23:30:90:8f:2a:6e:94:fc:f6: 79:ad:fb:64:e4:ed:e6:89:a6:c8:ad:63:85:d4:8f: 50:58:95:62:92:5e:c5:1c:b2:fa:52:9d:fc:9b:75: c0:ee:9b:62:31:6c:5a:f2:81:8f:50:2a:45:a8:c7: 54:96:e4:ca:6b:f4:a9:72:77:f0:65:35:b9:a0:ab: af:b1:fd:57:54:1c:1c:80:f2:bd:6d:29:83:96:19: 0a:4a:76:9e:49:9a:2d:62:f0:17:89:b0:ca:38:45: b8:6e:6a:ac:99:ee:ba:ea:16:09:88:8a:bf:c7:e6: 83:4f:8f:3a:d1:8f:4f:bc:42:fa:eb:15:ac:ef:4b: d8:5a:b3:7f:04:08:91:31:ab:fa:3c:62:a7:6a:83: dc:cd:fc:90:e4:60:7b:28:bd:32:c0:85:69:9c:5c: d3:7b:62:0f:47:d2:55:03:13:19:a0:2b:0a:13:c8: bd:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:71:90:F4:E9:1E:5D:E6:F6:56:9E:9A:78:0B:02:2E:EE:60:8E:8A X509v3 Authority Key Identifier: keyid:3E:C7:B1:A6:DA:21:A1:A7:75:81:5D:1C:BF:E7:23:14:B8:A9:5D:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:7d:b2:ef:e3:a9:68:9b:94:04:60:8c:fd:bb:bb:9e:2c:b7: c3:a3:86:f3:f6:b5:86:a0:0a:fa:aa:3d:d6:64:30:c0:88:a1: d5:c6:f3:56:75:59:6d:a0:17:f8:2b:7e:a9:d2:c2:df:df:60: 68:4f:80:0a:5d:9f:a3:d9:dc:bb:45:10:7e:3a:e6:7a:ee:21: 6b:a2:72:33:0e:6e:69:91:23:b9:bd:c9:06:18:9c:40:9e:42: 1b:66:9b:a8:ba:2a:19:53:54:5e:c3:0b:ec:fb:30:a0:3d:e2: c4:25:95:97:53:4e:13:7b:19:e3:df:27:11:9f:81:62:3b:ad: 8a:1c:37:5e:3c:d1:08:aa:47:c4:32:1a:2f:82:c3:5f:56:35: 40:88:ff:89:38:73:eb:4a:ce:24:db:fa:9a:96:25:ad:c2:5a: 54:69:db:3c:7d:ab:f8:4f:6f:f9:a6:00:4e:3b:b7:cc:2a:34: e2:d3:46:a5:c9:3c:87:c1:fe:09:7c:71:2f:45:a8:e4:e2:0d: 20:33:39:80:8c:1f:80:be:66:4e:4f:36:42:6c:e3:06:b5:1f: 31:29:4d:5f:9b:05:4f:98:62:8e:06:51:76:ab:36:f0:49:af: c0:40:53:57:2b:6f:47:30:75:ee:d6:ea:3b:d4:47:03:2e:67: 23:79:d4:d3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MERBNTExMC8GA1UEBRMoM0VDN0IxQTZEQTIxQTFBNzc1ODE1RDFDQkZFNzIzMTRC OEE5NUREOTAeFw0yNTEyMDUwNTA2MDdaFw0yNTEyMTIwNTA2MDdaMBgxFjAUBgNV BAMTDTY5MzI2ODNmLTY0ZTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDuWFdwCHYYRLl+cPg/6U/qojy+3vWvcXgRFEdaKxi0gPqQaMxqdW/VWNtCKvqU sjRxx96ejA0Vmo/epeKJx/lJNhJNePBPtUVX2ysmPfnILSMwkI8qbpT89nmt+2Tk 7eaJpsitY4XUj1BYlWKSXsUcsvpSnfybdcDum2IxbFrygY9QKkWox1SW5Mpr9Kly d/BlNbmgq6+x/VdUHByA8r1tKYOWGQpKdp5Jmi1i8BeJsMo4RbhuaqyZ7rrqFgmI ir/H5oNPjzrRj0+8QvrrFazvS9has38ECJExq/o8Yqdqg9zN/JDkYHsovTLAhWmc XNN7Yg9H0lUDExmgKwoTyL23AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVnGQ9Oke Xeb2Vp6aeAsCLu5gjoowHwYDVR0jBBgwFoAUPsexptohoad1gV0cv+cjFLipXdkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwREE1L0NFMEVEQTI2NTcx QTExRjBCODUwNzM0MUM0RjlBRTAyL1BzZXhwdG9ob2FkMWdWMGN2LWNqRkxpcFhk ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUHNleHB0b2hvYWQxZ1YwY3YtY2pGTGlwWGRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw REE1L0NFMEVEQTI2NTcxQTExRjBCODUwNzM0MUM0RjlBRTAyL1BzZXhwdG9ob2Fk MWdWMGN2LWNqRkxpcFhkay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADR9su/jqWiblARgjP27u54st8OjhvP2tYagCvqqPdZkMMCIodXG81Z1 WW2gF/grfqnSwt/fYGhPgApdn6PZ3LtFEH465nruIWuicjMObmmRI7m9yQYYnECe Qhtmm6i6KhlTVF7DC+z7MKA94sQllZdTThN7GePfJxGfgWI7rYocN1480QiqR8Qy Gi+Cw19WNUCI/4k4c+tKziTb+pqWJa3CWlRp2zx9q/hPb/mmAE47t8wqNOLTRqXJ PIfB/gl8cS9FqOTiDSAzOYCMH4C+Zk5PNkJs4wa1HzEpTV+bBU+YYo4GUXarNvBJ r8BAU1crb0cwde7W6jvURwMuZyN51NM= -----END CERTIFICATE-----Generated at Sat Dec 6 12:22:53 2025 by rpki-client