This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft File: 1ppgVl8zchSc5uL8nnI9SQZ2doo.mft (raw, json) Hash identifier: aoAPDEJ2lIikQXU/WJjh8xpCKtV1HbJYB3vsde5B2F8= Subject key identifier: 35:86:5B:67:32:B2:D7:81:99:AC:9F:7B:45:90:1A:3E:77:F7:6F:C3 Authority key identifier: D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A Certificate issuer: /CN=A9185F7D/serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Certificate serial: 34E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft Manifest number: 34E5 Signing time: Sat 06 Dec 2025 14:51:35 +0000 Manifest this update: Sat 06 Dec 2025 14:51:35 +0000 Manifest next update: Sat 13 Dec 2025 14:51:35 +0000 Files and hashes: 1: 1ppgVl8zchSc5uL8nnI9SQZ2doo.crl (hash: wSJUNlBwLm7msMhmob/W8w3pzwCwK3wBRdM0kzXnnac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:51:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13541 (0x34e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185F7D, serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Validity Not Before: Dec 6 14:51:35 2025 GMT Not After : Dec 13 14:51:35 2025 GMT Subject: CN=693442f7-fece Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:7f:0b:47:9c:6c:34:73:7a:7f:06:a0:1d:0f: 56:e3:a1:53:2c:62:d9:24:a3:40:1c:0f:0a:78:2a: 70:6d:2a:8d:ba:85:46:45:ca:52:22:47:83:cc:27: 5a:15:a4:35:02:29:d3:38:b9:13:0b:b7:26:ec:48: 45:a5:92:12:67:cf:29:3b:19:1d:23:e3:b2:b8:63: ab:d9:f2:d8:f4:b0:ac:89:84:3f:61:c1:a4:67:2f: 20:cc:35:25:09:65:d9:e4:af:9c:b6:d8:39:68:db: 14:d7:26:d3:05:bb:be:7a:77:b5:18:a0:ec:7c:a9: ef:82:6b:cf:26:35:99:3c:fb:6d:d3:9c:fa:3f:2f: 73:b0:1c:0c:84:1a:71:6e:97:df:db:c3:35:25:70: a5:47:88:1a:ac:13:53:ba:d8:48:8f:a1:39:62:a0: d7:18:43:24:f8:08:47:6d:d3:c7:7e:b1:96:a0:c2: 67:87:25:92:85:33:14:31:b4:3f:6d:79:78:b6:93: e1:f4:8e:fc:ba:b3:c6:36:45:c9:5e:46:f8:94:0d: 75:ae:02:22:8c:05:0e:c0:d4:48:3c:da:67:bb:f7: 7b:b8:62:97:f9:62:bc:37:cb:1b:81:39:cd:6a:33: 71:fa:16:2e:df:b6:b6:97:04:14:31:59:ed:93:85: 28:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:86:5B:67:32:B2:D7:81:99:AC:9F:7B:45:90:1A:3E:77:F7:6F:C3 X509v3 Authority Key Identifier: keyid:D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:2a:34:5d:e8:21:e0:e3:10:9e:79:3b:28:e8:1a:8f:e7:30: 33:61:10:c0:f9:a4:0c:ad:17:3b:50:cb:8a:53:79:3c:10:44: 0f:e6:23:0f:b7:07:97:84:72:9b:37:8e:a5:e3:cf:8c:51:77: 93:ed:c1:5b:db:d3:42:d2:f2:83:9e:08:7a:99:cd:e2:f4:75: 01:84:68:fd:5c:f4:bc:4f:1d:19:72:6e:9c:76:f8:86:46:cc: f1:5a:92:4b:78:36:1b:ca:de:7e:61:f5:ac:36:8c:c4:fa:fa: 25:f5:5e:f8:da:e4:3c:59:90:33:28:47:25:ab:d0:dd:17:8e: 95:8b:e9:5a:6b:8e:13:ac:fb:7d:e6:df:c9:b4:9d:c5:9e:31: 31:3f:2d:a2:24:de:6b:fc:8e:89:5b:c2:e5:59:11:58:a3:89: 91:4a:b5:87:58:b4:c0:9e:dc:d9:d5:81:49:c3:8e:8c:af:02: 5e:22:cc:2e:ac:7c:c7:3c:76:e1:a1:de:33:63:f4:66:f8:59: e1:02:18:5c:4f:bb:05:78:04:f9:2b:d6:63:05:d5:c8:e7:14: 66:9a:dc:f2:0f:1e:af:b7:9c:93:6d:8a:39:c2:37:72:d2:55: 99:7e:e5:97:55:bc:67:0f:bc:c2:5e:6a:98:1b:d6:4a:3a:99: 81:ee:17:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVGN0QxMTAvBgNVBAUTKEQ2OUE2MDU2NUYzMzcyMTQ5Q0U2RTJGQzlFNzIzRDQ5 MDY3Njc2OEEwHhcNMjUxMjA2MTQ1MTM1WhcNMjUxMjEzMTQ1MTM1WjAYMRYwFAYD VQQDEw02OTM0NDJmNy1mZWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4H8LR5xsNHN6fwagHQ9W46FTLGLZJKNAHA8KeCpwbSqNuoVGRcpSIkeDzCda FaQ1AinTOLkTC7cm7EhFpZISZ88pOxkdI+OyuGOr2fLY9LCsiYQ/YcGkZy8gzDUl CWXZ5K+cttg5aNsU1ybTBbu+ene1GKDsfKnvgmvPJjWZPPtt05z6Py9zsBwMhBpx bpff28M1JXClR4garBNTuthIj6E5YqDXGEMk+AhHbdPHfrGWoMJnhyWShTMUMbQ/ bXl4tpPh9I78urPGNkXJXkb4lA11rgIijAUOwNRIPNpnu/d7uGKX+WK8N8sbgTnN ajNx+hYu37a2lwQUMVntk4Uo5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDWGW2cy steBmayfe0WQGj5392/DMB8GA1UdIwQYMBaAFNaaYFZfM3IUnObi/J5yPUkGdnaK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUY3RC82OTc1M0Y1ODFE OUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNoU2M1dUw4bm5JOVNRWjJk b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFwcGdWbDh6Y2hTYzV1TDhubkk5U1FaMmRvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUY3RC82OTc1M0Y1ODFEOUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNo U2M1dUw4bm5JOVNRWjJkb28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAKjRd6CHg4xCeeTso6BqP5zAzYRDA+aQMrRc7UMuKU3k8EEQP5iMP tweXhHKbN46l48+MUXeT7cFb29NC0vKDngh6mc3i9HUBhGj9XPS8Tx0Zcm6cdviG RszxWpJLeDYbyt5+YfWsNozE+vol9V742uQ8WZAzKEclq9DdF46Vi+laa44TrPt9 5t/JtJ3FnjExPy2iJN5r/I6JW8LlWRFYo4mRSrWHWLTAntzZ1YFJw46MrwJeIswu rHzHPHbhod4zY/Rm+FnhAhhcT7sFeAT5K9ZjBdXI5xRmmtzyDx6vt5yTbYo5wjdy 0lWZfuWXVbxnD7zCXmqYG9ZKOpmB7hcn -----END CERTIFICATE-----Generated at Sat Dec 6 17:22:09 2025 by rpki-client