This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft File: PkPgI8CFNZTq13soKJo_HxDDCR0.mft (raw, json) Hash identifier: iiEfYaYVbAEF8lTyZ8WWz9LzBs/bViETEKb7hhn07cI= Subject key identifier: 8D:0C:01:91:67:AF:F7:08:0C:1E:F3:F9:AD:51:84:16:1E:49:BF:24 Authority key identifier: 3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D Certificate issuer: /CN=A9150B47/serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Certificate serial: 34EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft Manifest number: 34E8 Signing time: Mon 22 Dec 2025 15:01:48 +0000 Manifest this update: Mon 22 Dec 2025 15:01:48 +0000 Manifest next update: Mon 29 Dec 2025 15:01:48 +0000 Files and hashes: 1: PkPgI8CFNZTq13soKJo_HxDDCR0.crl (hash: Z/1Lb9d36pc7qw0CjJkfKaM8T2gfItD3Gw2kNw86vDo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:01:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13547 (0x34eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150B47, serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Validity Not Before: Dec 22 15:01:48 2025 GMT Not After : Dec 29 15:01:48 2025 GMT Subject: CN=69495d5c-bffc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a0:6d:59:1e:db:a7:f8:b3:d0:9b:a7:7a:be: 34:f1:09:a1:84:ed:72:7f:b5:3d:29:a9:09:d3:99: 95:32:15:ed:37:88:8f:20:52:d0:f4:e5:e3:0d:dd: aa:65:96:6c:f7:4f:1c:b5:29:ef:e6:c7:3c:c0:78: 33:24:64:eb:b5:71:aa:8f:84:fe:9c:83:4e:17:cc: 7e:f8:17:f4:04:d3:47:3e:1c:72:91:a2:0e:52:38: 84:5d:42:e9:0f:2a:fc:9e:a2:84:50:77:7d:a4:6e: 69:e4:5a:af:be:0a:c7:9a:91:aa:27:93:3c:06:cc: 02:74:cc:29:89:91:5d:ce:68:05:10:74:7d:a1:d9: 33:82:84:07:5e:6f:f7:fd:0c:22:ce:b3:89:22:51: 81:13:d0:0c:49:b0:85:ec:dd:97:d2:a7:09:4f:7f: 92:b1:91:a5:b8:42:33:fb:d3:09:9c:f2:a2:b3:c5: 4c:24:c3:8f:d7:56:6a:3a:f2:59:94:2c:40:15:2a: ab:8c:f2:d3:26:cf:f4:14:dc:10:af:71:d9:7a:15: e8:aa:97:3f:0f:16:03:bb:41:7a:77:82:c1:57:f7: d2:a5:d1:6d:8f:f2:89:4a:95:16:bf:2b:5a:0c:76: 8a:fb:f9:41:42:75:df:d7:b3:eb:f7:23:40:04:e0: 00:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:0C:01:91:67:AF:F7:08:0C:1E:F3:F9:AD:51:84:16:1E:49:BF:24 X509v3 Authority Key Identifier: keyid:3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:13:9b:c8:19:af:0f:b5:b7:2f:c7:b9:5c:ea:b4:d2:78:42: c8:17:40:5d:31:4b:93:eb:11:b8:d8:5a:55:b7:62:a7:93:3a: 6b:62:9d:d0:64:75:6e:80:bf:ce:14:7c:a1:80:df:88:0d:69: cd:99:fe:c6:65:ce:62:3a:27:c2:65:48:7f:63:bb:73:ea:7f: b6:bb:ee:6d:9c:21:6b:e4:7d:f1:0b:ae:9a:fc:94:54:3b:78: c1:35:92:f4:6d:1e:91:8e:a1:9a:33:5d:84:d1:6c:47:30:5d: c5:3b:a5:23:80:cf:34:4c:2b:9e:e5:ac:3f:5d:00:f4:34:53: 2f:b5:b7:6d:be:df:b5:be:32:c0:d9:43:9e:8b:1a:c5:de:5a: 56:21:6f:ac:7e:e6:7e:13:17:1e:9a:7a:06:de:30:a6:2f:52: 47:a9:c9:94:44:9b:b1:9e:94:fa:68:e4:0a:d9:53:74:f5:36: f4:f8:65:b2:2f:98:5f:c3:cc:2d:fa:6a:1b:7c:3e:a1:d1:5c: 2b:b7:11:c8:5d:e3:36:53:5f:65:42:70:ca:70:7d:47:a5:3c: e3:d9:b3:48:a4:be:c6:fb:9b:fd:dc:02:34:4d:5a:0c:87:ee: 2a:f7:cd:79:71:ef:60:bf:40:cc:a4:63:ae:bd:bd:8c:72:79: c8:c8:58:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBCNDcxMTAvBgNVBAUTKDNFNDNFMDIzQzA4NTM1OTRFQUQ3N0IyODI4OUEzRjFG MTBDMzA5MUQwHhcNMjUxMjIyMTUwMTQ4WhcNMjUxMjI5MTUwMTQ4WjAYMRYwFAYD VQQDDA02OTQ5NWQ1Yy1iZmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6BtWR7bp/iz0Juner408QmhhO1yf7U9KakJ05mVMhXtN4iPIFLQ9OXjDd2q ZZZs908ctSnv5sc8wHgzJGTrtXGqj4T+nINOF8x++Bf0BNNHPhxykaIOUjiEXULp Dyr8nqKEUHd9pG5p5FqvvgrHmpGqJ5M8BswCdMwpiZFdzmgFEHR9odkzgoQHXm/3 /QwizrOJIlGBE9AMSbCF7N2X0qcJT3+SsZGluEIz+9MJnPKis8VMJMOP11ZqOvJZ lCxAFSqrjPLTJs/0FNwQr3HZehXoqpc/DxYDu0F6d4LBV/fSpdFtj/KJSpUWvyta DHaK+/lBQnXf17Pr9yNABOAARQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI0MAZFn r/cIDB7z+a1RhBYeSb8kMB8GA1UdIwQYMBaAFD5D4CPAhTWU6td7KCiaPx8Qwwkd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEI0Ny9EQTE3NTU3ODFE QTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5aVHExM3NvS0pvX0h4RERD UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BrUGdJOENGTlpUcTEzc29LSm9fSHhERENSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEI0Ny9EQTE3NTU3ODFEQTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5a VHExM3NvS0pvX0h4RERDUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3E5vIGa8Ptbcvx7lc6rTSeELIF0BdMUuT6xG42FpVt2KnkzprYp3Q ZHVugL/OFHyhgN+IDWnNmf7GZc5iOifCZUh/Y7tz6n+2u+5tnCFr5H3xC66a/JRU O3jBNZL0bR6RjqGaM12E0WxHMF3FO6UjgM80TCue5aw/XQD0NFMvtbdtvt+1vjLA 2UOeixrF3lpWIW+sfuZ+ExcemnoG3jCmL1JHqcmURJuxnpT6aOQK2VN09Tb0+GWy L5hfw8wt+mobfD6h0VwrtxHIXeM2U19lQnDKcH1HpTzj2bNIpL7G+5v93AI0TVoM h+4q9815ce9gv0DMpGOuvb2McnnIyFg8 -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:36 2025 by rpki-client