This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft File: S_PofKK5q1lZdiDQT8BUEY1-09k.mft (raw, json) Hash identifier: seU5kWwwlV4eb/TS5JwBIAuV+5YOAOrgWsCgfaCTbxI= Subject key identifier: 02:98:9B:B3:0F:44:82:EC:C3:B7:E1:C4:99:F1:D2:38:20:4D:44:B9 Authority key identifier: 4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 Certificate issuer: /CN=A9191B71/serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Certificate serial: 0399 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft Manifest number: 0391 Signing time: Sat 06 Dec 2025 23:24:15 +0000 Manifest this update: Sat 06 Dec 2025 23:24:15 +0000 Manifest next update: Sat 13 Dec 2025 23:24:15 +0000 Files and hashes: 1: S_PofKK5q1lZdiDQT8BUEY1-09k.crl (hash: sAiZQzqa8YTVWP/y9yXP3iHFGHKvLCIS/8UcRYfIJzQ=) 2: 5734DF38D56811EF89A7D332C4F9AE02.roa (hash: yEbc6F9bHI0IpI/Ljg73yL3b8qnvoYUzAxWD62rFx2U=) 3: 5A48B534C6C811ECA5A9AB33C4F9AE02.roa (hash: b/WM2XRqJxBELFgBognptBOHT/qHpjt428YJO43uOQY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 23:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 921 (0x399) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191B71, serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Validity Not Before: Dec 6 23:24:15 2025 GMT Not After : Dec 13 23:24:15 2025 GMT Subject: CN=6934bb1f-998f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:72:be:93:06:6c:6a:e5:c0:28:f8:69:c1:e4: 37:00:99:b2:77:85:29:fb:a9:49:37:0b:31:5d:6d: cd:42:b4:11:35:a7:10:dc:83:d1:85:22:98:26:43: 7d:1a:57:5a:18:04:e8:5b:b6:1d:de:90:85:70:69: 1d:f3:07:f2:b3:c7:e7:50:ea:ef:a4:d4:8c:29:d2: 11:90:31:8e:27:cd:e1:e4:b1:3b:56:df:24:5b:fd: 84:10:0a:1e:cc:0e:e0:e4:19:3c:84:86:7a:72:8b: 02:1e:33:37:4c:58:15:26:16:f8:31:22:5a:19:aa: f8:7e:66:7c:63:ae:0f:1c:24:4f:9a:e4:99:de:fd: 2c:f3:6c:8e:06:f9:45:d3:9b:c7:04:e0:44:47:dd: f5:53:55:df:47:a1:70:10:01:f8:76:3d:b6:7b:dc: 66:12:22:b5:76:94:27:59:04:f2:04:9c:7a:c0:4d: cf:e7:95:b0:41:e1:f8:97:8a:80:56:9d:b9:bc:f7: ee:db:91:a0:32:96:ce:a8:16:48:da:25:8c:88:99: 66:4d:24:a6:e5:ee:a0:d1:1d:13:0c:a5:31:df:c1: e8:09:93:0d:f3:0f:74:cb:be:41:56:fc:6d:43:bf: 2b:6f:40:ed:5e:36:eb:4d:2b:e1:22:f8:cf:c0:30: 27:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:98:9B:B3:0F:44:82:EC:C3:B7:E1:C4:99:F1:D2:38:20:4D:44:B9 X509v3 Authority Key Identifier: keyid:4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:98:2f:14:6b:21:f2:10:65:0b:a6:c6:9d:99:8b:b8:04:63: 76:c8:40:3b:85:35:78:a9:fd:4c:f3:fc:ce:2a:eb:d5:2e:aa: 2f:bc:be:11:9c:a0:dd:3b:80:c1:32:38:7a:88:2c:12:8a:43: 06:8e:60:3d:37:98:43:e6:66:0b:62:d2:b3:ce:da:07:72:5f: 3d:cf:14:4f:34:1d:66:16:8b:db:2e:3b:29:01:14:21:13:52: da:65:ef:ad:d3:e3:b5:44:11:61:22:4a:a1:9a:b3:df:e9:f2: ec:12:7a:68:60:17:53:b4:8e:28:46:ba:8b:02:dd:60:58:fe: 1a:01:b9:b9:a5:18:e7:14:3c:d3:7b:cf:3e:58:5e:29:27:d1: 4c:c7:d2:ef:4b:bf:b5:4f:26:3e:96:17:35:e1:d8:78:69:a0: a5:ce:69:fe:fb:96:3d:d5:d4:b6:e3:13:2b:2a:d7:cc:0c:25: b5:62:25:4f:8d:2d:14:ff:c0:e4:7a:de:2d:1d:30:0e:07:a4: ab:ff:0c:f7:e4:fc:99:0c:78:d5:bb:7c:ab:10:56:d1:34:ae: 4d:f8:1a:f5:e5:84:cd:6d:46:a7:bb:3e:9f:67:97:92:7e:2e: 56:28:28:8e:ec:72:de:c6:0e:91:dd:35:22:35:46:85:46:e5: 94:35:0a:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFCNzExMTAvBgNVBAUTKDRCRjNFODdDQTJCOUFCNTk1OTc2MjBEMDRGQzA1NDEx OEQ3RUQzRDkwHhcNMjUxMjA2MjMyNDE1WhcNMjUxMjEzMjMyNDE1WjAYMRYwFAYD VQQDEw02OTM0YmIxZi05OThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3nK+kwZsauXAKPhpweQ3AJmyd4Up+6lJNwsxXW3NQrQRNacQ3IPRhSKYJkN9 GldaGAToW7Yd3pCFcGkd8wfys8fnUOrvpNSMKdIRkDGOJ83h5LE7Vt8kW/2EEAoe zA7g5Bk8hIZ6cosCHjM3TFgVJhb4MSJaGar4fmZ8Y64PHCRPmuSZ3v0s82yOBvlF 05vHBOBER931U1XfR6FwEAH4dj22e9xmEiK1dpQnWQTyBJx6wE3P55WwQeH4l4qA Vp25vPfu25GgMpbOqBZI2iWMiJlmTSSm5e6g0R0TDKUx38HoCZMN8w90y75BVvxt Q78rb0DtXjbrTSvhIvjPwDAnzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAKYm7MP RILsw7fhxJnx0jggTUS5MB8GA1UdIwQYMBaAFEvz6HyiuatZWXYg0E/AVBGNftPZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUI3MS9CODQ5QkExMkM2 MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXExbFpkaURRVDhCVUVZMS0w OWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NfUG9mS0s1cTFsWmRpRFFUOEJVRVkxLTA5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUI3MS9CODQ5QkExMkM2MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXEx bFpkaURRVDhCVUVZMS0wOWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtmC8UayHyEGULpsadmYu4BGN2yEA7hTV4qf1M8/zOKuvVLqovvL4R nKDdO4DBMjh6iCwSikMGjmA9N5hD5mYLYtKzztoHcl89zxRPNB1mFovbLjspARQh E1LaZe+t0+O1RBFhIkqhmrPf6fLsEnpoYBdTtI4oRrqLAt1gWP4aAbm5pRjnFDzT e88+WF4pJ9FMx9LvS7+1TyY+lhc14dh4aaClzmn++5Y91dS24xMrKtfMDCW1YiVP jS0U/8Dket4tHTAOB6Sr/wz35PyZDHjVu3yrEFbRNK5N+Br15YTNbUanuz6fZ5eS fi5WKCiO7HLexg6R3TUiNUaFRuWUNQp/ -----END CERTIFICATE-----Generated at Sun Dec 7 02:59:22 2025 by rpki-client