This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.mft File: pgmpTmohAbr5XIwvVc7EF5Jb788.mft (raw, json) Hash identifier: AuqmhvQxZRY6loEGpd9RYCaSqCyUB9jBuUJ3EGTOwk0= Subject key identifier: 31:9A:11:8E:6D:59:C2:E6:14:B9:05:A3:40:D1:EA:84:97:87:2C:F1 Authority key identifier: A6:09:A9:4E:6A:21:01:BA:F9:5C:8C:2F:55:CE:C4:17:92:5B:EF:CF Certificate issuer: /CN=A9122010/serialNumber=A609A94E6A2101BAF95C8C2F55CEC417925BEFCF Certificate serial: 0157 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pgmpTmohAbr5XIwvVc7EF5Jb788.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.mft Manifest number: 0153 Signing time: Tue 23 Dec 2025 03:11:28 +0000 Manifest this update: Tue 23 Dec 2025 03:11:27 +0000 Manifest next update: Tue 30 Dec 2025 03:11:27 +0000 Files and hashes: 1: pgmpTmohAbr5XIwvVc7EF5Jb788.crl (hash: +nSGtljemehBJFF9HHjppzqp9XSoWwZDG4nKNPm+h1g=) 2: 2FA91770D61A11EE9BDDD627C4F9AE02.roa (hash: Y2k2zpzO5L2UX1/syfcTHwfwkADI2HQTu1qn6JdDuuE=) 3: EF260118D54211EEA18A7234C4F9AE02.roa (hash: xjhn9qUtE7xRbdf4fFZHDUa2ZArgvxrc59opJoY9If0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.crl rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pgmpTmohAbr5XIwvVc7EF5Jb788.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:11:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 343 (0x157) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122010, serialNumber=A609A94E6A2101BAF95C8C2F55CEC417925BEFCF Validity Not Before: Dec 23 03:11:27 2025 GMT Not After : Dec 30 03:11:27 2025 GMT Subject: CN=694a085f-0600 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c7:01:1d:c9:c3:78:dc:f9:03:46:31:46:d6: 69:18:4d:ba:2c:bf:20:20:ed:4d:76:20:04:d8:61: 23:23:c0:2e:8c:17:79:af:21:15:76:a9:a2:75:aa: 0c:91:6d:8d:cf:6d:77:de:a9:b9:21:3c:5b:bc:23: f9:f9:87:76:48:e7:44:ee:00:3f:2c:5d:3c:70:bf: f1:11:71:10:4f:c2:6e:87:24:69:36:9c:a5:92:50: 95:ea:96:ad:63:68:7b:b2:eb:b9:90:a1:f9:bb:6f: 31:88:60:dc:81:fe:05:ef:a5:81:df:4b:9e:f7:2c: be:3f:3e:a5:ee:25:60:f0:78:80:a5:79:48:8a:e0: 1a:f6:ec:fb:24:3e:8b:e9:09:5a:df:a1:43:b3:d7: f3:c5:41:5b:19:c2:89:3b:92:c3:e0:f0:1d:13:cf: 50:b4:09:77:1d:6f:42:4c:9d:d9:a0:e6:83:c4:ab: d7:65:a7:5c:4f:9c:c4:38:92:d0:af:2d:f1:64:59: 14:c3:da:d0:01:43:b4:4d:eb:0e:e0:99:bd:ee:9a: 72:00:21:51:ee:e0:87:72:d4:87:aa:e7:fa:14:6f: b1:fe:08:79:76:b2:f6:b8:0f:a2:41:db:a4:61:35: 36:a8:f2:ae:dd:93:04:e1:78:42:c0:b2:60:58:3c: b8:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:9A:11:8E:6D:59:C2:E6:14:B9:05:A3:40:D1:EA:84:97:87:2C:F1 X509v3 Authority Key Identifier: keyid:A6:09:A9:4E:6A:21:01:BA:F9:5C:8C:2F:55:CE:C4:17:92:5B:EF:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pgmpTmohAbr5XIwvVc7EF5Jb788.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:1c:48:4a:fa:cb:a4:0c:55:ef:e3:a8:3a:ec:62:7c:9c:de: 48:38:8f:4e:63:11:35:b8:c3:5b:52:3b:37:59:12:bb:1b:d9: a3:00:f2:8a:4b:19:aa:ba:50:b6:0b:ce:10:33:82:82:13:40: 5f:31:e6:f6:df:43:55:5b:ab:7c:6a:07:97:eb:e2:b3:5e:05: 8a:58:49:ce:06:32:a9:b5:61:82:95:a9:fd:e3:35:63:9d:7c: 60:43:21:40:d0:c9:24:81:c1:0d:6b:42:ad:27:45:f3:33:88: 5e:5f:da:a9:59:46:83:30:34:94:77:f2:09:dc:44:58:43:55: e9:25:60:af:ee:d5:06:af:15:b0:aa:02:af:36:05:94:75:93: 15:dc:df:da:52:f1:20:67:1b:65:54:1d:00:5f:a3:32:1d:b6: 28:27:b7:c8:8e:6c:3e:cc:bc:9e:7f:b6:4e:f9:22:fa:2d:ac: fe:06:5b:90:31:a4:21:7b:b5:78:5c:aa:e7:4e:62:3f:f8:a5: e6:8d:96:16:28:6a:9f:94:44:9d:38:b1:50:7c:68:d1:d3:9c: ff:22:5b:90:a8:37:83:a1:cb:f4:49:9a:d7:ac:a8:b3:25:90: df:61:b2:84:2f:16:1c:c4:eb:41:58:e4:91:a2:17:d3:db:23: 3d:64:11:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIwMTAxMTAvBgNVBAUTKEE2MDlBOTRFNkEyMTAxQkFGOTVDOEMyRjU1Q0VDNDE3 OTI1QkVGQ0YwHhcNMjUxMjIzMDMxMTI3WhcNMjUxMjMwMDMxMTI3WjAYMRYwFAYD VQQDDA02OTRhMDg1Zi0wNjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsMcBHcnDeNz5A0YxRtZpGE26LL8gIO1NdiAE2GEjI8AujBd5ryEVdqmidaoM kW2Nz2133qm5ITxbvCP5+Yd2SOdE7gA/LF08cL/xEXEQT8JuhyRpNpylklCV6pat Y2h7suu5kKH5u28xiGDcgf4F76WB30ue9yy+Pz6l7iVg8HiApXlIiuAa9uz7JD6L 6Qla36FDs9fzxUFbGcKJO5LD4PAdE89QtAl3HW9CTJ3ZoOaDxKvXZadcT5zEOJLQ ry3xZFkUw9rQAUO0TesO4Jm97ppyACFR7uCHctSHquf6FG+x/gh5drL2uA+iQduk YTU2qPKu3ZME4XhCwLJgWDy4mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGaEY5t WcLmFLkFo0DR6oSXhyzxMB8GA1UdIwQYMBaAFKYJqU5qIQG6+VyML1XOxBeSW+/P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjAxMC9FQTAyMUE5NEQ1 M0YxMUVFQThENjI0MEZDNEY5QUUwMi9wZ21wVG1vaEFicjVYSXd2VmM3RUY1SmI3 ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BnbXBUbW9oQWJyNVhJd3ZWYzdFRjVKYjc4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjAxMC9FQTAyMUE5NEQ1M0YxMUVFQThENjI0MEZDNEY5QUUwMi9wZ21wVG1vaEFi cjVYSXd2VmM3RUY1SmI3ODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7HEhK+sukDFXv46g67GJ8nN5IOI9OYxE1uMNbUjs3WRK7G9mjAPKK SxmqulC2C84QM4KCE0BfMeb230NVW6t8ageX6+KzXgWKWEnOBjKptWGClan94zVj nXxgQyFA0MkkgcENa0KtJ0XzM4heX9qpWUaDMDSUd/IJ3ERYQ1XpJWCv7tUGrxWw qgKvNgWUdZMV3N/aUvEgZxtlVB0AX6MyHbYoJ7fIjmw+zLyef7ZO+SL6Laz+BluQ MaQhe7V4XKrnTmI/+KXmjZYWKGqflESdOLFQfGjR05z/IluQqDeDocv0SZrXrKiz JZDfYbKELxYcxOtBWOSRohfT2yM9ZBHR -----END CERTIFICATE-----Generated at Tue Dec 23 07:52:04 2025 by rpki-client