This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.mft File: PX_qy2M6a4KTI7HplE1K-Y3do3I.mft (raw, json) Hash identifier: h8DSrhe4if/gfpGPZFrFm2yPGfi6ZDkyHtfWTNTBRnc= Subject key identifier: CF:D5:61:BF:97:E4:E7:FF:41:21:23:05:7D:46:53:72:5A:8B:22:33 Authority key identifier: 3D:7F:EA:CB:63:3A:6B:82:93:23:B1:E9:94:4D:4A:F9:8D:DD:A3:72 Certificate issuer: /CN=A9172BD3/serialNumber=3D7FEACB633A6B829323B1E9944D4AF98DDDA372 Certificate serial: 016F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PX_qy2M6a4KTI7HplE1K-Y3do3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.mft Manifest number: 0169 Signing time: Sun 07 Dec 2025 02:23:12 +0000 Manifest this update: Sun 07 Dec 2025 02:23:11 +0000 Manifest next update: Sun 14 Dec 2025 02:23:11 +0000 Files and hashes: 1: PX_qy2M6a4KTI7HplE1K-Y3do3I.crl (hash: qTx02LtAdqcfhMN98gYE71RqfP/j3YA57wuyRr2NnHI=) 2: 78321A66068D11EF92608943C4F9AE02.roa (hash: t3FRQePlchRMM21FbtXsaZzbDzSWRANgfDaLHDn0f9I=) 3: 97F15FD8068D11EF839A3054C4F9AE02.roa (hash: vjgahSKHgAt0pKH9ZvyBQssVmzZCnj8JvOvCUHQg/Eg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.crl rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PX_qy2M6a4KTI7HplE1K-Y3do3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 02:23:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 367 (0x16f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172BD3, serialNumber=3D7FEACB633A6B829323B1E9944D4AF98DDDA372 Validity Not Before: Dec 7 02:23:11 2025 GMT Not After : Dec 14 02:23:11 2025 GMT Subject: CN=6934e510-f52d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a1:d9:27:4e:64:4c:28:de:de:6e:5b:ff:18: 52:1c:8a:52:db:0f:90:b7:46:89:b2:ca:6d:93:79: 05:e8:1f:ee:27:40:9e:cb:3a:a8:58:11:98:b1:32: bf:b3:fb:a7:94:c9:b1:20:48:ee:80:f5:05:39:72: e0:4b:94:3e:19:c0:07:6c:1d:b1:86:fc:ec:93:38: 81:b9:5a:fd:8e:16:f5:55:ba:41:ed:5e:25:05:0f: c7:8e:7c:37:c7:be:79:50:26:49:31:75:44:ab:9f: 21:dd:1f:11:02:76:40:f6:1d:e4:6f:47:2d:4a:8f: bd:74:5f:00:50:2d:7b:e5:f4:30:19:64:de:7a:83: c7:04:cc:e3:f7:3d:1d:87:cb:1d:f2:19:f6:8a:17: 53:24:b5:30:62:02:a9:58:e6:a1:c4:0d:7e:ec:f5: 12:f0:e2:9d:8b:0e:1b:fb:93:71:88:f2:05:84:a5: 64:75:d2:02:94:93:d9:21:5d:c5:78:4d:c1:ff:24: 19:2c:f3:a5:91:98:4e:e6:13:89:0e:dc:cc:32:70: 7b:bc:f5:b8:b0:ed:5f:7d:9b:25:c8:90:ca:29:da: b9:09:86:ad:e1:74:6f:cd:9e:9a:5b:e4:d2:95:c5: 0d:0c:7b:e3:7a:f0:41:75:ac:59:df:f4:fa:a0:fd: 3c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:D5:61:BF:97:E4:E7:FF:41:21:23:05:7D:46:53:72:5A:8B:22:33 X509v3 Authority Key Identifier: keyid:3D:7F:EA:CB:63:3A:6B:82:93:23:B1:E9:94:4D:4A:F9:8D:DD:A3:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PX_qy2M6a4KTI7HplE1K-Y3do3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:50:e9:8f:1c:78:ef:72:c6:9c:ef:b3:32:7a:0a:10:71:91: 3d:bc:c7:27:ad:0e:07:31:f1:a3:91:77:c9:32:8f:66:b8:08: 58:bf:8d:32:67:dc:bb:03:b4:9b:f2:54:a3:77:83:48:bb:18: 4b:84:64:18:9a:f3:af:bd:aa:ce:01:b2:2a:44:82:5c:73:da: 49:9f:dc:d7:d2:d7:da:79:2f:d4:90:fd:41:2c:66:b7:8a:79: ee:85:d6:2b:b3:8f:e0:a2:0f:09:e1:6c:6a:fa:06:cb:56:35: 4b:55:e5:ed:d8:70:91:04:09:40:86:f6:c3:40:3a:91:a7:61: 59:03:03:61:ca:79:d2:ee:68:6d:e4:b9:ea:4a:44:b3:47:03: 2b:f8:c4:8f:6a:9b:1a:cc:b5:b4:d1:e4:1d:b1:26:36:06:84: 39:3c:d0:b1:35:d4:10:74:0e:45:1d:81:0d:bd:c5:b2:f4:2b: fe:99:7d:6e:69:90:2d:c3:a6:3e:24:b2:cb:46:db:6e:c0:77: a5:d3:af:65:c2:e5:ce:10:e0:e2:24:e2:f7:83:a9:78:46:91: 4b:9c:0f:be:14:e3:5d:87:2b:f6:7d:81:ad:96:e0:0b:17:82: 78:24:6e:93:d8:57:15:92:d9:fe:8f:b7:1e:d2:24:70:c3:84: 1c:b1:90:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJCRDMxMTAvBgNVBAUTKDNEN0ZFQUNCNjMzQTZCODI5MzIzQjFFOTk0NEQ0QUY5 OEREREEzNzIwHhcNMjUxMjA3MDIyMzExWhcNMjUxMjE0MDIyMzExWjAYMRYwFAYD VQQDEw02OTM0ZTUxMC1mNTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw6HZJ05kTCje3m5b/xhSHIpS2w+Qt0aJssptk3kF6B/uJ0CeyzqoWBGYsTK/ s/unlMmxIEjugPUFOXLgS5Q+GcAHbB2xhvzskziBuVr9jhb1VbpB7V4lBQ/Hjnw3 x755UCZJMXVEq58h3R8RAnZA9h3kb0ctSo+9dF8AUC175fQwGWTeeoPHBMzj9z0d h8sd8hn2ihdTJLUwYgKpWOahxA1+7PUS8OKdiw4b+5NxiPIFhKVkddIClJPZIV3F eE3B/yQZLPOlkZhO5hOJDtzMMnB7vPW4sO1ffZslyJDKKdq5CYat4XRvzZ6aW+TS lcUNDHvjevBBdaxZ3/T6oP08XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM/VYb+X 5Of/QSEjBX1GU3JaiyIzMB8GA1UdIwQYMBaAFD1/6stjOmuCkyOx6ZRNSvmN3aNy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkJEMy82NEJGRjE0RUIz RjcxMUVFOTJBNDc3MTdDNEY5QUUwMi9QWF9xeTJNNmE0S1RJN0hwbEUxSy1ZM2Rv M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BYX3F5Mk02YTRLVEk3SHBsRTFLLVkzZG8zSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkJEMy82NEJGRjE0RUIzRjcxMUVFOTJBNDc3MTdDNEY5QUUwMi9QWF9xeTJNNmE0 S1RJN0hwbEUxSy1ZM2RvM0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMUOmPHHjvcsac77MyegoQcZE9vMcnrQ4HMfGjkXfJMo9muAhYv40y Z9y7A7Sb8lSjd4NIuxhLhGQYmvOvvarOAbIqRIJcc9pJn9zX0tfaeS/UkP1BLGa3 innuhdYrs4/gog8J4Wxq+gbLVjVLVeXt2HCRBAlAhvbDQDqRp2FZAwNhynnS7mht 5LnqSkSzRwMr+MSPapsazLW00eQdsSY2BoQ5PNCxNdQQdA5FHYENvcWy9Cv+mX1u aZAtw6Y+JLLLRttuwHel069lwuXOEODiJOL3g6l4RpFLnA++FONdhyv2fYGtluAL F4J4JG6T2FcVktn+j7ce0iRww4QcsZCQ -----END CERTIFICATE-----Generated at Sun Dec 7 16:34:29 2025 by rpki-client