This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft File: P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft (raw, json) Hash identifier: x7S6Ts3i30uohRnzUABMewaTYQa0qm5tbRq0qUTcJZg= Subject key identifier: 5B:68:D0:BA:67:54:5D:02:1F:3A:B6:78:C2:5E:2D:1D:09:AE:B7:F0 Authority key identifier: 3F:41:E0:48:D2:2B:2A:1A:EA:4C:E0:B8:44:95:2A:4A:39:D6:CB:37 Certificate issuer: /CN=A919F0DA/serialNumber=3F41E048D22B2A1AEA4CE0B844952A4A39D6CB37 Certificate serial: 34EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft Manifest number: 6153 Signing time: Thu 04 Dec 2025 14:15:22 +0000 Manifest this update: Thu 04 Dec 2025 14:15:21 +0000 Manifest next update: Thu 11 Dec 2025 14:15:21 +0000 Files and hashes: 1: P0HgSNIrKhrqTOC4RJUqSjnWyzc.crl (hash: 41mOaslQMePfpA/58HhFUu4xl1fcM+jGvyRQiDzZBhY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.crl rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 14:15:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13548 (0x34ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0DA, serialNumber=3F41E048D22B2A1AEA4CE0B844952A4A39D6CB37 Validity Not Before: Dec 4 14:15:21 2025 GMT Not After : Dec 11 14:15:21 2025 GMT Subject: CN=69319779-bcfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f2:c0:ad:06:3e:23:d8:58:2c:96:75:a1:8a: 1e:c3:10:a5:5b:ab:6e:51:90:df:35:f7:7d:80:b3: 2b:f0:41:91:94:61:15:ad:2e:79:a9:37:20:be:73: 99:46:c1:dd:87:5f:7f:ef:13:2a:a5:95:4f:5c:24: 59:ee:6f:b9:ea:a7:4d:b3:94:1c:77:b6:3d:31:69: f9:14:15:f8:3f:0e:86:c8:b0:e3:58:64:bf:df:c4: af:20:b1:49:83:99:b0:b4:d8:68:17:1a:bf:19:d1: fe:aa:56:42:da:42:e1:b3:2a:95:35:5d:f7:ee:16: 40:15:65:c1:0e:6b:a4:70:72:e2:15:f3:09:5c:42: 43:05:47:28:cc:98:ea:a7:59:2b:a7:58:e7:3d:3f: dd:b5:15:71:13:e7:ac:6f:44:e9:b7:2b:37:59:73: 94:6a:71:eb:0c:e3:6e:66:dd:51:2a:24:ba:bd:7d: 2c:7f:b4:dc:c6:2e:24:5b:7d:62:af:f9:d9:b4:ca: 76:08:5d:fc:a7:49:af:f3:42:5b:d1:fe:3c:51:82: ef:eb:f5:08:98:ea:d8:98:45:85:5a:d7:e0:65:be: 83:14:2c:4c:92:13:7d:13:07:fb:f9:dd:9f:5a:3c: 5f:ec:98:22:ac:cc:22:89:d6:7f:89:15:f1:cb:67: d7:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:68:D0:BA:67:54:5D:02:1F:3A:B6:78:C2:5E:2D:1D:09:AE:B7:F0 X509v3 Authority Key Identifier: keyid:3F:41:E0:48:D2:2B:2A:1A:EA:4C:E0:B8:44:95:2A:4A:39:D6:CB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:13:29:39:e8:4f:62:85:9a:1d:1d:43:29:e7:13:4d:c6:b4: 06:73:6d:41:f3:69:92:92:43:bd:c3:93:d9:d8:87:fa:9b:d4: b7:40:31:3c:04:ca:3a:c3:50:60:81:8b:f3:42:d6:4f:f2:dd: c1:90:f7:07:03:34:84:8a:37:f5:e1:4b:a9:f2:30:d1:2d:c8: fd:88:af:70:c3:a6:ec:c4:35:ce:18:71:45:df:ce:b1:a1:8d: 6e:8f:f5:f6:8e:51:01:8f:37:85:7a:63:d9:8a:d8:7a:1a:f3: aa:b4:7b:f1:c5:54:8d:b9:34:bd:76:55:cc:94:15:db:e2:5b: 4f:ce:b0:70:65:76:0f:3d:9a:37:f6:e0:5a:ea:a6:8a:63:df: e6:3a:31:06:ec:ed:bc:24:50:b1:2a:07:ad:66:fe:60:d0:b5: 14:c6:5b:2f:a4:46:ed:ea:47:60:e3:89:42:2f:6e:28:08:e3: 16:e0:f9:be:22:d3:b8:18:e8:ef:a2:64:48:83:ba:69:7f:cc: 77:8d:1e:89:d4:ae:15:a8:8c:e4:3e:cd:57:b4:a7:12:03:cf: 7d:fa:68:ee:01:d2:1d:71:61:f7:f4:c9:d3:d5:8f:e9:aa:30: 5c:5f:df:1b:70:b4:60:ef:ce:1b:c0:f6:ce:e4:41:e8:fd:57: 85:a3:0a:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwREExMTAvBgNVBAUTKDNGNDFFMDQ4RDIyQjJBMUFFQTRDRTBCODQ0OTUyQTRB MzlENkNCMzcwHhcNMjUxMjA0MTQxNTIxWhcNMjUxMjExMTQxNTIxWjAYMRYwFAYD VQQDEw02OTMxOTc3OS1iY2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsfLArQY+I9hYLJZ1oYoewxClW6tuUZDfNfd9gLMr8EGRlGEVrS55qTcgvnOZ RsHdh19/7xMqpZVPXCRZ7m+56qdNs5Qcd7Y9MWn5FBX4Pw6GyLDjWGS/38SvILFJ g5mwtNhoFxq/GdH+qlZC2kLhsyqVNV337hZAFWXBDmukcHLiFfMJXEJDBUcozJjq p1krp1jnPT/dtRVxE+esb0Tptys3WXOUanHrDONuZt1RKiS6vX0sf7Tcxi4kW31i r/nZtMp2CF38p0mv80Jb0f48UYLv6/UImOrYmEWFWtfgZb6DFCxMkhN9Ewf7+d2f Wjxf7JgirMwiidZ/iRXxy2fXtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFto0Lpn VF0CHzq2eMJeLR0JrrfwMB8GA1UdIwQYMBaAFD9B4EjSKyoa6kzguESVKko51ss3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBEQS8xNTBEM0VGNDFE NjgxMUUyOEMxODI4QTQwOEIwMkNEMi9QMEhnU05JcktocnFUT0M0UkpVcVNqbld5 emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AwSGdTTklyS2hycVRPQzRSSlVxU2puV3l6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjBEQS8xNTBEM0VGNDFENjgxMUUyOEMxODI4QTQwOEIwMkNEMi9QMEhnU05Jckto cnFUT0M0UkpVcVNqbld5emMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCEyk56E9ihZodHUMp5xNNxrQGc21B82mSkkO9w5PZ2If6m9S3QDE8 BMo6w1BggYvzQtZP8t3BkPcHAzSEijf14Uup8jDRLcj9iK9ww6bsxDXOGHFF386x oY1uj/X2jlEBjzeFemPZith6GvOqtHvxxVSNuTS9dlXMlBXb4ltPzrBwZXYPPZo3 9uBa6qaKY9/mOjEG7O28JFCxKgetZv5g0LUUxlsvpEbt6kdg44lCL24oCOMW4Pm+ ItO4GOjvomRIg7ppf8x3jR6J1K4VqIzkPs1XtKcSA899+mjuAdIdcWH39MnT1Y/p qjBcX98bcLRg784bwPbO5EHo/VeFowpZ -----END CERTIFICATE-----Generated at Sat Dec 6 13:20:27 2025 by rpki-client