This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft File: pxA_0z9simRI_GOUCql9k_gfgQU.mft (raw, json) Hash identifier: GYW3AaDJW3nymHRxWx5l5tGkvVcxeo6K5rDRlu/CqmI= Subject key identifier: 77:1D:3E:E2:AA:07:6F:45:03:D2:91:FD:9C:CC:D6:A6:6C:7D:95:7E Authority key identifier: A7:10:3F:D3:3F:6C:8A:64:48:FC:63:94:0A:A9:7D:93:F8:1F:81:05 Certificate issuer: /CN=A9126D40/serialNumber=A7103FD33F6C8A6448FC63940AA97D93F81F8105 Certificate serial: 05AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pxA_0z9simRI_GOUCql9k_gfgQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft Manifest number: 05A8 Signing time: Mon 22 Dec 2025 22:16:07 +0000 Manifest this update: Mon 22 Dec 2025 22:16:07 +0000 Manifest next update: Mon 29 Dec 2025 22:16:07 +0000 Files and hashes: 1: pxA_0z9simRI_GOUCql9k_gfgQU.crl (hash: Dath32SQxuM0Jib0Zl+M7MXrzsVsi6r/HpeUrh96kWU=) 2: 5B0A7AFCF3F611EB8DD81585C4F9AE02.roa (hash: R8hfJ5cUDeHXSHt31Yaxeq/Vdh/2fKfS7Ifq3y/hy0s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.crl rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pxA_0z9simRI_GOUCql9k_gfgQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 22:16:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1453 (0x5ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126D40, serialNumber=A7103FD33F6C8A6448FC63940AA97D93F81F8105 Validity Not Before: Dec 22 22:16:07 2025 GMT Not After : Dec 29 22:16:07 2025 GMT Subject: CN=6949c327-b9ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e1:64:9d:2b:12:97:95:01:df:ab:1a:dd:cb: a2:ac:a4:5d:77:43:10:b5:99:4e:d0:0c:85:2e:9e: f2:03:6d:18:ff:06:fc:f1:9f:fd:ea:fd:1a:a8:04: 80:f7:5c:81:32:72:70:f8:bd:99:05:e7:0a:90:a6: 40:9e:8f:65:43:45:18:2b:ce:15:9f:c2:ba:0a:03: 54:ba:93:85:dd:bc:cc:50:19:7b:d4:62:de:3e:4f: d2:b8:97:3f:0a:ae:76:25:8d:f0:46:86:82:9c:b8: 6f:9e:95:da:60:c2:7f:e0:4a:98:9c:d1:65:b8:a6: 52:53:79:5e:0b:6e:50:da:8b:ef:61:fe:38:08:6a: 5c:fb:50:20:c8:e2:25:06:5a:b8:c1:87:ae:dc:15: 9d:fd:de:f9:0a:ac:5d:66:6a:81:74:d0:49:f6:d4: 7b:f6:b2:a4:77:24:e4:95:2f:51:6a:98:e8:e3:78: 26:ec:c1:51:b9:c6:31:d0:86:eb:11:f2:bd:85:fd: 6f:ad:16:8c:a6:b5:57:27:b0:79:a3:8e:53:cb:96: d9:45:4f:b4:69:b3:7a:e4:df:b0:bd:57:e9:92:7c: c8:97:87:2d:3a:56:f5:25:70:4b:be:92:52:3b:01: a3:94:5b:ec:aa:b9:4b:dd:c3:ce:1b:a2:f4:02:cc: ec:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:1D:3E:E2:AA:07:6F:45:03:D2:91:FD:9C:CC:D6:A6:6C:7D:95:7E X509v3 Authority Key Identifier: keyid:A7:10:3F:D3:3F:6C:8A:64:48:FC:63:94:0A:A9:7D:93:F8:1F:81:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pxA_0z9simRI_GOUCql9k_gfgQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:69:19:f1:7c:0d:ca:14:b9:21:19:4a:ea:fe:24:b2:60:5b: 22:ff:24:23:4e:d2:d4:99:ee:d9:76:30:81:f0:01:a5:a4:82: 4b:c3:cc:a0:21:64:86:fd:9d:2f:3b:be:eb:9a:c4:8e:36:6b: 27:b3:1b:c8:04:5d:04:74:3c:91:d7:f3:fd:36:70:2e:43:c3: 29:33:6f:46:fe:0c:3e:f3:12:3a:03:86:aa:08:2a:00:4c:06: 82:a7:55:9e:33:7d:12:d5:66:cc:e7:8a:d9:c9:57:37:b5:4b: 87:a2:bc:d1:ad:bc:1b:8a:f1:cf:53:6d:12:84:ef:28:52:da: e0:ed:27:c3:57:0d:8e:2b:aa:86:43:6e:3c:c3:2b:7d:17:ff: 82:98:26:69:57:83:5f:62:c7:fe:76:94:e2:66:fe:54:f8:f0: 5d:90:a4:ad:ec:63:27:69:3f:3c:bf:1f:f0:d5:9c:8f:41:0f: 98:ee:81:0f:09:4d:e5:c5:f4:e2:35:f5:ef:fd:a9:7b:8b:a0: f6:f3:e3:ae:a9:55:fa:e1:d9:54:68:88:0e:94:e2:23:21:e8: 8b:de:a9:c0:55:7d:19:52:5a:2a:67:0b:cc:84:c9:a6:16:b7: 9e:78:87:62:9f:e0:4d:4d:e3:36:c5:70:5a:3c:de:67:1b:1f: ca:28:22:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZENDAxMTAvBgNVBAUTKEE3MTAzRkQzM0Y2QzhBNjQ0OEZDNjM5NDBBQTk3RDkz RjgxRjgxMDUwHhcNMjUxMjIyMjIxNjA3WhcNMjUxMjI5MjIxNjA3WjAYMRYwFAYD VQQDDA02OTQ5YzMyNy1iOWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAruFknSsSl5UB36sa3cuirKRdd0MQtZlO0AyFLp7yA20Y/wb88Z/96v0aqASA 91yBMnJw+L2ZBecKkKZAno9lQ0UYK84Vn8K6CgNUupOF3bzMUBl71GLePk/SuJc/ Cq52JY3wRoaCnLhvnpXaYMJ/4EqYnNFluKZSU3leC25Q2ovvYf44CGpc+1AgyOIl Blq4wYeu3BWd/d75CqxdZmqBdNBJ9tR79rKkdyTklS9Rapjo43gm7MFRucYx0Ibr EfK9hf1vrRaMprVXJ7B5o45Ty5bZRU+0abN65N+wvVfpknzIl4ctOlb1JXBLvpJS OwGjlFvsqrlL3cPOG6L0AszsYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHcdPuKq B29FA9KR/ZzM1qZsfZV+MB8GA1UdIwQYMBaAFKcQP9M/bIpkSPxjlAqpfZP4H4EF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkQ0MC8zQzYzMzNDNkYz RjMxMUVCQTI5MkU1ODBDNEY5QUUwMi9weEFfMHo5c2ltUklfR09VQ3FsOWtfZ2Zn UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3B4QV8wejlzaW1SSV9HT1VDcWw5a19nZmdRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkQ0MC8zQzYzMzNDNkYzRjMxMUVCQTI5MkU1ODBDNEY5QUUwMi9weEFfMHo5c2lt UklfR09VQ3FsOWtfZ2ZnUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnaRnxfA3KFLkhGUrq/iSyYFsi/yQjTtLUme7ZdjCB8AGlpIJLw8yg IWSG/Z0vO77rmsSONmsnsxvIBF0EdDyR1/P9NnAuQ8MpM29G/gw+8xI6A4aqCCoA TAaCp1WeM30S1WbM54rZyVc3tUuHorzRrbwbivHPU20ShO8oUtrg7SfDVw2OK6qG Q248wyt9F/+CmCZpV4NfYsf+dpTiZv5U+PBdkKSt7GMnaT88vx/w1ZyPQQ+Y7oEP CU3lxfTiNfXv/al7i6D28+OuqVX64dlUaIgOlOIjIeiL3qnAVX0ZUloqZwvMhMmm FreeeIdin+BNTeM2xXBaPN5nGx/KKCIv -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:36 2025 by rpki-client