This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft File: PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft (raw, json) Hash identifier: HYSJ9eLQ2z91hflgxjd9eRTuAd3NJxmPFqYYLQAFtzU= Subject key identifier: 84:E6:F2:0D:C9:58:52:3D:2C:29:38:42:7A:D0:F1:DA:B9:A7:25:F4 Authority key identifier: 3F:1A:8E:A3:D2:AD:C6:EC:B2:36:0E:0C:37:6C:E5:59:B9:FF:71:F2 Certificate issuer: /CN=A9173FAC/serialNumber=3F1A8EA3D2ADC6ECB2360E0C376CE559B9FF71F2 Certificate serial: 7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxqOo9KtxuyyNg4MN2zlWbn_cfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft Manifest number: 7D Signing time: Fri 05 Dec 2025 04:39:37 +0000 Manifest this update: Fri 05 Dec 2025 04:39:37 +0000 Manifest next update: Fri 12 Dec 2025 04:39:37 +0000 Files and hashes: 1: PxqOo9KtxuyyNg4MN2zlWbn_cfI.crl (hash: ASmbE1e3HVA2djYd4TAVlltSxWYqdpVkPVgOIim4+64=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.crl rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxqOo9KtxuyyNg4MN2zlWbn_cfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:39:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173FAC, serialNumber=3F1A8EA3D2ADC6ECB2360E0C376CE559B9FF71F2 Validity Not Before: Dec 5 04:39:37 2025 GMT Not After : Dec 12 04:39:37 2025 GMT Subject: CN=69326209-4060 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:53:19:e0:91:b8:0d:ee:0e:a6:0c:67:22:25: 5e:91:b3:18:e2:0f:2a:8a:65:cc:0f:41:da:93:ac: 87:13:4c:9c:13:2e:93:71:0e:8b:cb:90:66:29:fa: 15:cb:77:2a:c1:82:78:5f:2e:fb:e4:3a:05:b8:bf: a4:39:d3:a9:60:2d:15:7c:2c:ff:d3:5a:4e:43:b7: 16:1b:0a:0f:1c:17:4e:36:ac:f7:4b:e2:39:79:d6: 5d:e5:a8:ad:2b:8a:1c:32:14:34:7c:a1:8c:01:eb: f4:93:2f:51:18:a1:a0:01:3e:43:ff:78:33:52:b9: 08:a4:25:68:4e:33:9d:d4:cf:92:b7:58:33:df:fd: 0a:11:6c:99:65:af:ce:ae:ee:27:a5:89:d9:2c:a4: 21:d9:6a:37:7d:61:00:88:58:c8:c0:b0:f2:b2:ff: 01:f7:f7:36:1a:1b:6f:e6:ef:df:45:43:10:10:19: 7a:ef:ad:ef:3e:a8:af:d1:80:58:37:1f:96:c7:ce: 72:a4:9d:92:f3:b7:94:05:11:88:87:17:57:30:60: 4f:24:65:2e:50:65:4f:11:db:99:fc:65:a5:fa:6e: 75:3f:97:d9:eb:a8:ea:a2:a9:17:24:17:7d:17:e5: f7:e6:e1:53:25:fe:19:98:53:41:c7:85:99:11:74: 31:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:E6:F2:0D:C9:58:52:3D:2C:29:38:42:7A:D0:F1:DA:B9:A7:25:F4 X509v3 Authority Key Identifier: keyid:3F:1A:8E:A3:D2:AD:C6:EC:B2:36:0E:0C:37:6C:E5:59:B9:FF:71:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxqOo9KtxuyyNg4MN2zlWbn_cfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e6:20:b8:84:81:90:d5:0a:bd:47:a2:c2:52:7e:cd:3a:28:a5: ea:d9:94:ae:1e:90:6b:58:29:2e:bb:5b:51:07:20:46:ef:be: 0c:78:bc:5e:58:37:6d:51:3a:79:b3:3c:31:84:9b:9f:d3:14: 99:87:20:aa:55:a5:a3:0e:ac:59:cc:1b:9a:99:ca:14:c3:24: 93:00:ad:c6:93:ea:19:a3:af:e4:0a:98:6c:a3:a6:d6:79:ab: 37:a0:3c:2e:d8:06:88:64:f3:d1:2c:00:fd:dd:ce:8a:74:9d: f3:76:1f:e0:61:92:e2:82:3e:a0:3c:8c:20:5a:2f:5b:26:89: b8:29:5d:59:49:1f:96:bc:81:31:c7:7c:dd:48:d4:ef:71:ec: a8:89:31:d4:2e:ea:31:23:48:91:de:7d:52:14:d6:fd:6a:18: 50:23:b3:7f:15:3c:f5:df:fa:ec:50:d9:d2:66:2b:c0:22:2e: 6e:8f:b5:bf:de:46:5d:43:7d:86:60:56:99:a4:ce:7d:32:b5: 78:a8:9f:89:7f:52:80:4a:55:dc:5e:93:1b:14:50:b4:36:e1: 39:7a:38:ca:a9:55:0e:d7:30:08:c2:78:5b:c6:f8:3e:04:7f: 96:2b:d3:98:8e:48:6f:90:db:85:15:a7:61:d5:3e:d7:0c:d3: a6:94:8a:8b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 M0ZBQzExMC8GA1UEBRMoM0YxQThFQTNEMkFEQzZFQ0IyMzYwRTBDMzc2Q0U1NTlC OUZGNzFGMjAeFw0yNTEyMDUwNDM5MzdaFw0yNTEyMTIwNDM5MzdaMBgxFjAUBgNV BAMTDTY5MzI2MjA5LTQwNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvUxngkbgN7g6mDGciJV6RsxjiDyqKZcwPQdqTrIcTTJwTLpNxDovLkGYp+hXL dyrBgnhfLvvkOgW4v6Q506lgLRV8LP/TWk5DtxYbCg8cF042rPdL4jl51l3lqK0r ihwyFDR8oYwB6/STL1EYoaABPkP/eDNSuQikJWhOM53Uz5K3WDPf/QoRbJllr86u 7ielidkspCHZajd9YQCIWMjAsPKy/wH39zYaG2/m799FQxAQGXrvre8+qK/RgFg3 H5bHznKknZLzt5QFEYiHF1cwYE8kZS5QZU8R25n8ZaX6bnU/l9nrqOqiqRckF30X 5ffm4VMl/hmYU0HHhZkRdDE5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhObyDclY Uj0sKThCetDx2rmnJfQwHwYDVR0jBBgwFoAUPxqOo9KtxuyyNg4MN2zlWbn/cfIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczRkFDL0I4RjVDNzZBMTAx ODExRjA4MEJDQzM0OEM0RjlBRTAyL1B4cU9vOUt0eHV5eU5nNE1OMnpsV2JuX2Nm SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUHhxT285S3R4dXl5Tmc0TU4yemxXYm5fY2ZJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcz RkFDL0I4RjVDNzZBMTAxODExRjA4MEJDQzM0OEM0RjlBRTAyL1B4cU9vOUt0eHV5 eU5nNE1OMnpsV2JuX2NmSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAOYguISBkNUKvUeiwlJ+zTooperZlK4ekGtYKS67W1EHIEbvvgx4vF5Y N21ROnmzPDGEm5/TFJmHIKpVpaMOrFnMG5qZyhTDJJMArcaT6hmjr+QKmGyjptZ5 qzegPC7YBohk89EsAP3dzop0nfN2H+BhkuKCPqA8jCBaL1smibgpXVlJH5a8gTHH fN1I1O9x7KiJMdQu6jEjSJHefVIU1v1qGFAjs38VPPXf+uxQ2dJmK8AiLm6Ptb/e Rl1DfYZgVpmkzn0ytXion4l/UoBKVdxekxsUULQ24Tl6OMqpVQ7XMAjCeFvG+D4E f5Yr05iOSG+Q24UVp2HVPtcM06aUios= -----END CERTIFICATE-----Generated at Sat Dec 6 22:44:46 2025 by rpki-client