This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft File: Psexptohoad1gV0cv-cjFLipXdk.mft (raw, json) Hash identifier: miMYDjOaVv3im0ClqcgG97ZKo8M/QQcJgNIlvwypS2I= Subject key identifier: 91:9C:39:4A:36:A0:88:97:71:5A:E6:AA:72:A0:FB:EC:12:26:97:D6 Authority key identifier: 3E:C7:B1:A6:DA:21:A1:A7:75:81:5D:1C:BF:E7:23:14:B8:A9:5D:D9 Certificate issuer: /CN=A9170DA5/serialNumber=3EC7B1A6DA21A1A775815D1CBFE72314B8A95DD9 Certificate serial: 54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft Manifest number: 53 Signing time: Sun 07 Dec 2025 05:16:41 +0000 Manifest this update: Sun 07 Dec 2025 05:16:40 +0000 Manifest next update: Sun 14 Dec 2025 05:16:40 +0000 Files and hashes: 1: Psexptohoad1gV0cv-cjFLipXdk.crl (hash: fe4eRVTtO3EvOsJaiOdpUo3Szw20y2xLml+BO1GQLVI=) 2: F99E9E78571B11F093AD0C10C4F9AE02.roa (hash: Ntdzzur1e7UcFcIFXVyf4NefmktAA4cSP3KFPUhWals=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.crl rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 05:16:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DA5, serialNumber=3EC7B1A6DA21A1A775815D1CBFE72314B8A95DD9 Validity Not Before: Dec 7 05:16:40 2025 GMT Not After : Dec 14 05:16:40 2025 GMT Subject: CN=69350db8-694f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a7:00:62:28:20:e1:33:04:c7:cf:de:f6:a5: 58:dd:d1:92:0b:5f:91:fd:08:e9:b5:b8:88:2d:4e: 86:0d:56:33:bf:79:71:50:1b:39:03:29:6b:9b:af: 90:87:6e:80:81:25:95:c7:69:9f:11:4d:b1:9d:ec: 84:28:b6:b5:d3:ae:5d:bb:8e:c9:90:ae:74:64:25: d1:e1:c6:ce:89:63:49:3f:3b:39:85:0d:f3:3b:21: 2c:f7:df:89:ed:b0:75:74:af:b1:c5:be:96:52:9d: 2d:d2:a8:ef:b1:92:71:e0:6b:e2:11:b8:c7:5c:b6: a7:b7:ae:81:46:ba:ea:ac:62:1a:13:f7:b3:4f:56: 03:93:ad:43:17:f1:08:bc:b0:37:d5:f2:f7:d9:36: f7:62:11:d4:61:a6:77:bd:60:0a:d3:d7:23:d2:cf: c9:4a:14:9e:f1:24:a0:f1:ba:09:c0:5a:02:18:f4: 91:ac:55:ec:07:7f:24:83:01:ed:8f:2a:6c:5d:67: 7f:fa:e1:90:38:91:fd:1f:5a:37:d5:cd:f9:25:6e: ba:09:cc:0f:cd:a9:60:4a:81:d7:13:1b:62:13:37: aa:9b:63:46:a6:04:c5:03:83:02:95:8d:07:e6:6a: 86:dc:a6:f4:ff:7f:48:cd:81:d9:c9:1a:a8:f5:7b: ba:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:9C:39:4A:36:A0:88:97:71:5A:E6:AA:72:A0:FB:EC:12:26:97:D6 X509v3 Authority Key Identifier: keyid:3E:C7:B1:A6:DA:21:A1:A7:75:81:5D:1C:BF:E7:23:14:B8:A9:5D:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:bb:87:12:98:83:a4:fc:77:2c:9c:38:65:0d:dc:bd:f3:1b: 7e:f8:24:63:b8:a6:98:26:9f:e4:7c:b3:22:5d:53:1e:4a:29: 28:02:ef:4a:03:c5:4c:b2:dc:dd:b7:3d:87:27:64:48:2e:64: de:35:8c:8a:b6:18:9c:b1:0f:9f:db:4f:f4:8b:cd:ac:8a:b4: 8a:07:26:40:2e:42:6b:0c:9a:36:06:00:77:05:b1:b8:8b:c5: e7:67:fb:d8:21:b3:77:93:ae:7e:f7:ca:4e:09:1e:af:17:63: bf:c1:78:39:3e:66:ee:de:45:f7:1a:e2:ec:86:b3:dd:9b:1b: 6d:2d:92:12:8b:06:c0:81:1a:8d:90:00:b5:74:06:cd:90:47: c9:dc:50:22:cb:4b:59:9a:52:5e:17:eb:5e:01:00:e4:be:c0: 55:00:42:f8:38:80:0e:3c:b4:68:3a:13:2f:2e:11:29:9e:fa: 40:d0:ec:21:f4:96:c0:fc:da:fe:1f:0a:c8:27:99:e2:66:71: 22:d8:5e:4f:78:de:a8:8b:2c:1e:60:3c:2b:45:d9:da:57:73: 06:a7:27:cb:a9:1d:db:5a:27:f8:cc:a3:10:95:24:be:2e:2f: bc:39:54:e1:88:ea:03:37:35:29:24:32:8d:6f:31:ac:72:bc: 1e:d5:80:57 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MERBNTExMC8GA1UEBRMoM0VDN0IxQTZEQTIxQTFBNzc1ODE1RDFDQkZFNzIzMTRC OEE5NUREOTAeFw0yNTEyMDcwNTE2NDBaFw0yNTEyMTQwNTE2NDBaMBgxFjAUBgNV BAMTDTY5MzUwZGI4LTY5NGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3pwBiKCDhMwTHz972pVjd0ZILX5H9COm1uIgtToYNVjO/eXFQGzkDKWubr5CH boCBJZXHaZ8RTbGd7IQotrXTrl27jsmQrnRkJdHhxs6JY0k/OzmFDfM7ISz334nt sHV0r7HFvpZSnS3SqO+xknHga+IRuMdctqe3roFGuuqsYhoT97NPVgOTrUMX8Qi8 sDfV8vfZNvdiEdRhpne9YArT1yPSz8lKFJ7xJKDxugnAWgIY9JGsVewHfySDAe2P KmxdZ3/64ZA4kf0fWjfVzfklbroJzA/NqWBKgdcTG2ITN6qbY0amBMUDgwKVjQfm aobcpvT/f0jNgdnJGqj1e7rhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkZw5Sjag iJdxWuaqcqD77BIml9YwHwYDVR0jBBgwFoAUPsexptohoad1gV0cv+cjFLipXdkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwREE1L0NFMEVEQTI2NTcx QTExRjBCODUwNzM0MUM0RjlBRTAyL1BzZXhwdG9ob2FkMWdWMGN2LWNqRkxpcFhk ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUHNleHB0b2hvYWQxZ1YwY3YtY2pGTGlwWGRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw REE1L0NFMEVEQTI2NTcxQTExRjBCODUwNzM0MUM0RjlBRTAyL1BzZXhwdG9ob2Fk MWdWMGN2LWNqRkxpcFhkay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABC7hxKYg6T8dyycOGUN3L3zG374JGO4ppgmn+R8syJdUx5KKSgC70oD xUyy3N23PYcnZEguZN41jIq2GJyxD5/bT/SLzayKtIoHJkAuQmsMmjYGAHcFsbiL xedn+9ghs3eTrn73yk4JHq8XY7/BeDk+Zu7eRfca4uyGs92bG20tkhKLBsCBGo2Q ALV0Bs2QR8ncUCLLS1maUl4X614BAOS+wFUAQvg4gA48tGg6Ey8uESme+kDQ7CH0 lsD82v4fCsgnmeJmcSLYXk943qiLLB5gPCtF2dpXcwanJ8upHdtaJ/jMoxCVJL4u L7w5VOGI6gM3NSkkMo1vMaxyvB7VgFc= -----END CERTIFICATE-----Generated at Mon Dec 8 06:23:32 2025 by rpki-client