This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.mft File: pfBl_MntoR3KTQ38bXyZB1KY1_8.mft (raw, json) Hash identifier: hggaqMK1D1TnF0C/Y6BURTa5+H2rm6tlaSUOdySUcPw= Subject key identifier: 93:A8:7D:56:0A:0A:46:AE:B6:F7:1E:5D:79:04:26:8B:F5:52:24:1E Authority key identifier: A5:F0:65:FC:C9:ED:A1:1D:CA:4D:0D:FC:6D:7C:99:07:52:98:D7:FF Certificate issuer: /CN=A9174685/serialNumber=A5F065FCC9EDA11DCA4D0DFC6D7C99075298D7FF Certificate serial: 0986 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfBl_MntoR3KTQ38bXyZB1KY1_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.mft Manifest number: 0970 Signing time: Sat 20 Dec 2025 19:33:00 +0000 Manifest this update: Sat 20 Dec 2025 19:33:00 +0000 Manifest next update: Sat 27 Dec 2025 19:33:00 +0000 Files and hashes: 1: pfBl_MntoR3KTQ38bXyZB1KY1_8.crl (hash: Vm/1dGtN9JpCzJ4P2E67hjrQq7tR64YTK+V1+ZfYZ7A=) 2: 8BBD25F4EAE311EF95C23D4DC4F9AE02.roa (hash: JxYPfmW8Tav5SjQHIMJfNEwgSNWW1t6Utgf2ZPhePRI=) 3: 31B2B528217811EEBACF3324C4F9AE02.roa (hash: qYcH8o+mgIEkOx3pGeKtDuFDXODm4W8utEiDwxXgwKU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.crl rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfBl_MntoR3KTQ38bXyZB1KY1_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 19:32:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2438 (0x986) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174685, serialNumber=A5F065FCC9EDA11DCA4D0DFC6D7C99075298D7FF Validity Not Before: Dec 20 19:33:00 2025 GMT Not After : Dec 27 19:33:00 2025 GMT Subject: CN=6946f9ec-c59b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d6:00:ae:50:dd:6d:83:7a:fb:7c:46:d7:bc: f8:be:2e:1c:15:bb:5f:1f:ed:17:10:7c:dd:cf:bd: 83:f3:ad:56:86:bf:f2:5b:29:18:d2:a7:72:f3:fc: 78:76:2e:6e:34:33:20:90:8f:e8:a4:96:f6:a7:28: 85:88:45:bf:22:5b:78:ef:1c:84:80:2d:01:4b:ad: 38:3b:f4:47:24:a8:51:88:10:fa:03:5a:18:a4:32: 1b:d2:e7:6d:dd:33:94:ae:57:19:86:23:93:36:dd: 16:56:f6:cf:81:a2:a5:15:c7:81:81:63:c7:b9:32: ee:1b:24:fd:be:92:9d:2e:87:d3:f5:f8:0e:bb:d6: fd:fa:0b:01:06:b2:f0:06:73:68:0c:9d:f3:3f:b3: ce:be:9a:e0:c1:b3:2b:99:62:ce:08:1b:54:3c:64: 2a:70:16:72:03:91:b0:e0:ed:7b:f7:c5:ed:15:63: 28:a5:3c:fc:43:e7:17:23:3e:5f:f7:ca:0d:78:08: be:47:98:2e:4d:aa:57:09:25:50:3d:84:1b:5e:63: cf:e1:31:19:16:de:3a:90:85:1a:ec:22:95:77:3b: 24:63:35:e7:e2:c7:9d:d3:7d:da:52:81:ed:ed:cf: e6:3d:86:0a:36:e8:f7:bd:24:91:da:e3:94:9e:04: 38:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:A8:7D:56:0A:0A:46:AE:B6:F7:1E:5D:79:04:26:8B:F5:52:24:1E X509v3 Authority Key Identifier: keyid:A5:F0:65:FC:C9:ED:A1:1D:CA:4D:0D:FC:6D:7C:99:07:52:98:D7:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfBl_MntoR3KTQ38bXyZB1KY1_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:bd:bf:50:1a:62:02:ac:27:14:74:e7:60:91:1d:cd:e5:4a: f8:46:12:1f:48:c2:77:f1:34:7a:aa:46:7f:3d:48:7c:86:46: b9:d0:5b:b8:21:9e:4b:da:b8:e4:d3:33:49:a0:52:a6:43:21: 9b:ec:ea:c2:4f:26:9c:e0:31:9c:5a:c4:12:93:76:c1:ba:59: 09:b3:e6:81:bf:bc:9d:0d:55:8c:eb:b2:48:ff:ed:c6:67:b4: 54:43:8a:63:42:d0:59:66:5e:62:80:5a:68:55:a8:da:b8:2a: b6:ea:cd:ce:20:05:b8:56:01:95:85:74:df:8e:0f:83:86:d3: c0:d7:08:92:7a:e1:47:61:ba:5b:23:a0:ff:81:38:a9:3f:5c: a4:c2:ae:90:f4:0f:6a:33:d3:b9:b5:b5:8b:9c:0a:b1:a1:36: 5a:ef:f6:5a:6f:09:a3:2f:05:1e:37:b0:8b:28:01:fa:0f:30: f1:80:62:f1:3f:df:f4:2e:43:bc:76:08:9c:16:14:c4:15:c9: 6e:ef:f7:85:89:c3:07:ec:c1:2a:d0:21:81:32:57:87:55:f8: 0c:17:86:50:07:9d:db:a8:51:18:ce:ce:69:50:15:1c:8d:70: 9a:0d:09:a8:04:c3:bf:4d:6f:da:9d:2e:b3:12:86:44:a4:c9: f6:9b:14:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ2ODUxMTAvBgNVBAUTKEE1RjA2NUZDQzlFREExMURDQTREMERGQzZEN0M5OTA3 NTI5OEQ3RkYwHhcNMjUxMjIwMTkzMzAwWhcNMjUxMjI3MTkzMzAwWjAYMRYwFAYD VQQDDA02OTQ2ZjllYy1jNTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArtYArlDdbYN6+3xG17z4vi4cFbtfH+0XEHzdz72D861Whr/yWykY0qdy8/x4 di5uNDMgkI/opJb2pyiFiEW/Ilt47xyEgC0BS604O/RHJKhRiBD6A1oYpDIb0udt 3TOUrlcZhiOTNt0WVvbPgaKlFceBgWPHuTLuGyT9vpKdLofT9fgOu9b9+gsBBrLw BnNoDJ3zP7POvprgwbMrmWLOCBtUPGQqcBZyA5Gw4O1798XtFWMopTz8Q+cXIz5f 98oNeAi+R5guTapXCSVQPYQbXmPP4TEZFt46kIUa7CKVdzskYzXn4sed033aUoHt 7c/mPYYKNuj3vSSR2uOUngQ4NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJOofVYK CkautvceXXkEJov1UiQeMB8GA1UdIwQYMBaAFKXwZfzJ7aEdyk0N/G18mQdSmNf/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDY4NS8yRDE1OTE4MkE5 NzMxMUVBOUFBQkU5MjNDNEY5QUUwMi9wZkJsX01udG9SM0tUUTM4Ylh5WkIxS1kx XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BmQmxfTW50b1IzS1RRMzhiWHlaQjFLWTFfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDY4NS8yRDE1OTE4MkE5NzMxMUVBOUFBQkU5MjNDNEY5QUUwMi9wZkJsX01udG9S M0tUUTM4Ylh5WkIxS1kxXzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSvb9QGmICrCcUdOdgkR3N5Ur4RhIfSMJ38TR6qkZ/PUh8hka50Fu4 IZ5L2rjk0zNJoFKmQyGb7OrCTyac4DGcWsQSk3bBulkJs+aBv7ydDVWM67JI/+3G Z7RUQ4pjQtBZZl5igFpoVajauCq26s3OIAW4VgGVhXTfjg+DhtPA1wiSeuFHYbpb I6D/gTipP1ykwq6Q9A9qM9O5tbWLnAqxoTZa7/ZabwmjLwUeN7CLKAH6DzDxgGLx P9/0LkO8dgicFhTEFclu7/eFicMH7MEq0CGBMleHVfgMF4ZQB53bqFEYzs5pUBUc jXCaDQmoBMO/TW/anS6zEoZEpMn2mxRl -----END CERTIFICATE-----Generated at Mon Dec 22 00:25:23 2025 by rpki-client