This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft File: pOlXbOhgyP9flyr1k7QFTngj5kI.mft (raw, json) Hash identifier: zLTHej2svOiNk8Cq96WJDxYGi7At13pXJdcurHYIVOw= Subject key identifier: 75:9D:1C:06:F1:C1:22:A3:BD:C5:A4:05:F9:80:E2:D2:FF:48:7E:10 Authority key identifier: A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 Certificate issuer: /CN=A9117E4D/serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Certificate serial: 2C9C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft Manifest number: 2C99 Signing time: Sat 06 Dec 2025 14:24:45 +0000 Manifest this update: Sat 06 Dec 2025 14:24:45 +0000 Manifest next update: Sat 13 Dec 2025 14:24:45 +0000 Files and hashes: 1: pOlXbOhgyP9flyr1k7QFTngj5kI.crl (hash: Zu/MHk5n9n3vxWp5wjBS6sJP99BHGTTkX1Le9+8JJMM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:24:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11420 (0x2c9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117E4D, serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Validity Not Before: Dec 6 14:24:45 2025 GMT Not After : Dec 13 14:24:45 2025 GMT Subject: CN=69343cad-2f0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:2d:1e:c5:fe:dd:38:6e:89:1b:f5:6d:40:df: 06:2b:fb:dd:25:84:87:9b:be:07:49:2c:4c:e1:44: dc:21:15:bc:70:e3:c2:72:6f:33:dd:73:0c:55:41: c3:b5:18:71:4e:80:6d:ee:5c:e2:29:66:b3:46:c5: 10:33:5d:43:f3:13:c8:25:fd:83:c7:b3:0f:08:60: b7:17:58:99:aa:0a:9a:2f:91:2a:b0:80:60:de:7b: 38:05:ba:58:ab:e0:8e:37:7b:cb:0e:6c:18:c4:6e: 8e:55:91:28:92:63:e2:07:c3:2a:68:a5:8d:2b:6c: b2:56:30:c6:bd:8b:11:0b:c2:12:b7:e1:e4:b2:3f: 4a:b5:8d:cc:56:4f:42:57:3a:3d:33:cb:ee:95:ec: 2f:ec:ae:54:95:65:11:8e:32:02:ff:97:e8:2d:51: 37:17:d8:64:cc:58:5f:8d:60:d0:14:55:b5:1b:83: 3a:3c:e6:9f:e5:fc:1d:6f:2f:e7:fe:83:73:99:ac: be:4b:d2:10:59:26:15:95:63:77:02:4b:c3:a6:b2: 4e:eb:2b:25:e2:34:31:a8:d6:87:c0:cb:0b:e6:b8: c4:03:64:3c:1e:43:7d:6d:81:1a:fb:2c:9d:50:0b: 71:39:16:8b:9d:bb:fd:e1:25:ee:ef:4f:c6:b7:68: 9c:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:9D:1C:06:F1:C1:22:A3:BD:C5:A4:05:F9:80:E2:D2:FF:48:7E:10 X509v3 Authority Key Identifier: keyid:A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:01:38:b3:06:96:b3:56:90:c0:3a:af:8d:e8:dd:4d:93:b9: a6:50:4a:23:0c:93:1a:e4:a9:b6:74:33:a2:e5:e2:9a:7a:82: 7b:89:02:fd:8e:79:31:d6:01:1d:8c:08:24:24:eb:3e:1f:a2: e4:76:4c:0a:66:c0:b8:32:9d:81:e3:53:80:ca:df:81:48:61: 44:45:02:4a:84:6d:90:1e:fe:81:df:67:00:8f:1c:a6:12:76: 5c:bf:f1:b3:b1:d2:bf:70:07:57:b8:6e:d6:6b:bb:b9:3f:de: 67:71:ba:54:03:09:7a:43:18:62:6e:31:1b:78:23:c3:5c:9b: 36:cf:3c:ea:d1:28:d3:54:82:c9:6d:6a:90:d4:08:13:67:7e: 9b:15:67:9f:80:48:f0:46:d8:b6:b5:52:c5:05:05:a2:50:f5: e0:58:54:a5:8c:61:1a:92:1b:f1:68:e3:e5:69:35:1b:34:b3: 27:24:1e:1b:e2:54:5d:fc:74:93:88:fb:5f:e6:b8:3d:6b:e6: 56:03:01:93:92:57:16:7f:1f:ef:45:03:8a:c2:90:9d:09:9a: d8:39:ff:df:c4:23:7e:15:c3:d9:ec:49:3e:19:77:2e:82:1e: 2c:61:4b:0b:93:f2:ac:75:de:0f:a0:6a:cc:03:3a:61:92:79: 30:19:17:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdFNEQxMTAvBgNVBAUTKEE0RTk1NzZDRTg2MEM4RkY1Rjk3MkFGNTkzQjQwNTRF NzgyM0U2NDIwHhcNMjUxMjA2MTQyNDQ1WhcNMjUxMjEzMTQyNDQ1WjAYMRYwFAYD VQQDEw02OTM0M2NhZC0yZjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0i0exf7dOG6JG/VtQN8GK/vdJYSHm74HSSxM4UTcIRW8cOPCcm8z3XMMVUHD tRhxToBt7lziKWazRsUQM11D8xPIJf2Dx7MPCGC3F1iZqgqaL5EqsIBg3ns4BbpY q+CON3vLDmwYxG6OVZEokmPiB8MqaKWNK2yyVjDGvYsRC8ISt+Hksj9KtY3MVk9C Vzo9M8vulewv7K5UlWURjjIC/5foLVE3F9hkzFhfjWDQFFW1G4M6POaf5fwdby/n /oNzmay+S9IQWSYVlWN3AkvDprJO6ysl4jQxqNaHwMsL5rjEA2Q8HkN9bYEa+yyd UAtxORaLnbv94SXu70/Gt2icDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHWdHAbx wSKjvcWkBfmA4tL/SH4QMB8GA1UdIwQYMBaAFKTpV2zoYMj/X5cq9ZO0BU54I+ZC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0U0RC9BNjRGQkNFMEMw NTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQOWZseXIxazdRRlRuZ2o1 a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3BPbFhiT2hneVA5Zmx5cjFrN1FGVG5najVrSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0U0RC9BNjRGQkNFMEMwNTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQ OWZseXIxazdRRlRuZ2o1a0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4ATizBpazVpDAOq+N6N1Nk7mmUEojDJMa5Km2dDOi5eKaeoJ7iQL9 jnkx1gEdjAgkJOs+H6LkdkwKZsC4Mp2B41OAyt+BSGFERQJKhG2QHv6B32cAjxym EnZcv/GzsdK/cAdXuG7Wa7u5P95ncbpUAwl6QxhibjEbeCPDXJs2zzzq0SjTVILJ bWqQ1AgTZ36bFWefgEjwRti2tVLFBQWiUPXgWFSljGEakhvxaOPlaTUbNLMnJB4b 4lRd/HSTiPtf5rg9a+ZWAwGTklcWfx/vRQOKwpCdCZrYOf/fxCN+FcPZ7Ek+GXcu gh4sYUsLk/Ksdd4PoGrMAzphknkwGRcv -----END CERTIFICATE-----Generated at Sat Dec 6 20:08:48 2025 by rpki-client