This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft File: 1ppgVl8zchSc5uL8nnI9SQZ2doo.mft (raw, json) Hash identifier: dYQ2tkZXTBbrcl3nP8F+VYofxe7J7j45XLVWQudUKcI= Subject key identifier: 35:05:B0:05:21:6E:A5:CC:F9:6C:E8:7C:EC:9D:D4:C3:17:1C:7D:B4 Authority key identifier: D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A Certificate issuer: /CN=A9185F7D/serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Certificate serial: 34ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft Manifest number: 34ED Signing time: Mon 22 Dec 2025 14:53:16 +0000 Manifest this update: Mon 22 Dec 2025 14:53:16 +0000 Manifest next update: Mon 29 Dec 2025 14:53:16 +0000 Files and hashes: 1: 1ppgVl8zchSc5uL8nnI9SQZ2doo.crl (hash: 76Xl/65tOys1KtDuZKHvw1ruwwGi/A+41IVOWabWSaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 14:53:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13549 (0x34ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185F7D, serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Validity Not Before: Dec 22 14:53:16 2025 GMT Not After : Dec 29 14:53:16 2025 GMT Subject: CN=69495b5c-2e5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d8:08:d6:3d:13:49:c2:ab:da:f4:c3:f0:80: 6f:ac:1b:60:c4:2d:1b:f4:9f:2e:ec:6f:02:24:84: 80:28:6d:24:66:b3:c3:56:d2:49:43:14:b4:aa:71: 2a:51:f0:88:59:e2:b8:e1:88:45:af:94:9d:fc:ec: 23:9d:e2:6d:9e:34:f9:6a:c6:89:13:59:a8:ba:b1: 9d:53:3c:9c:1b:1f:3b:e9:20:03:68:be:f4:ad:fc: 32:96:d2:ec:23:12:d2:58:47:38:8c:81:2b:9f:7a: 8d:cc:a0:0c:01:0f:03:b9:fb:44:bd:77:6a:87:92: 8b:66:a4:ea:00:41:f3:e4:91:04:95:95:b3:b1:b8: ab:ce:d5:2d:65:97:7b:d9:87:1c:d8:ea:8e:0d:4b: b5:97:e9:27:13:db:7e:71:3c:32:cc:88:ad:a4:d6: d8:0f:36:ab:ba:73:89:f5:60:91:ae:28:24:1e:7a: 7d:95:13:2b:8c:a9:cf:c5:ae:51:6e:b8:3d:94:e5: 42:7b:20:09:0b:80:ab:5f:fe:3c:3c:d2:3a:ca:1c: fe:3f:49:bb:50:c7:84:b2:06:3f:8e:5a:b1:67:43: ec:f9:61:a7:bc:79:5a:0d:ff:6a:dc:db:52:68:1f: 6e:4c:8a:a9:62:aa:2f:cf:c2:57:75:6c:b3:74:35: 4b:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:05:B0:05:21:6E:A5:CC:F9:6C:E8:7C:EC:9D:D4:C3:17:1C:7D:B4 X509v3 Authority Key Identifier: keyid:D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:56:97:e8:60:a7:fb:c3:ef:5b:91:8e:83:f8:75:1f:df:e9: cd:0a:f1:f0:d5:0f:3d:38:41:d8:ea:a1:f4:b1:8d:37:49:97: 82:d5:19:c8:c1:a0:f3:cc:00:26:a3:1c:a3:a9:12:18:b8:2c: dd:1f:0e:75:7a:0d:54:1b:12:4f:53:82:e9:eb:38:73:18:83: 41:05:be:0f:2f:9d:cb:80:c6:ec:7d:be:fb:f2:6e:62:09:29: c0:02:c9:be:6d:15:37:2b:53:d8:70:c4:cf:4c:aa:93:65:30: b5:8f:84:22:9b:24:32:c8:e9:3e:61:18:e9:53:8a:cb:f3:cd: 43:f0:7f:4b:d6:bd:36:a6:5a:ca:ce:25:08:18:50:27:06:7f: c3:df:7f:c1:34:12:5f:93:2e:e8:51:e8:c4:ec:fa:7f:4b:a8: 48:05:e3:31:d2:19:83:67:c1:c1:e3:88:cd:d1:9b:7a:27:ad: cc:a2:ce:f2:cc:13:22:82:a0:40:5c:c2:3c:b8:47:b2:14:97: 36:58:2e:e0:29:7b:3d:21:2c:44:4f:8f:ed:f1:27:46:83:09: 37:9e:92:2b:60:2b:a3:7d:a7:f5:eb:41:02:87:aa:6e:dc:cc: 37:32:39:f2:e2:a4:ab:b9:65:77:fc:48:52:7f:4f:1f:be:22: 80:f9:7a:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVGN0QxMTAvBgNVBAUTKEQ2OUE2MDU2NUYzMzcyMTQ5Q0U2RTJGQzlFNzIzRDQ5 MDY3Njc2OEEwHhcNMjUxMjIyMTQ1MzE2WhcNMjUxMjI5MTQ1MzE2WjAYMRYwFAYD VQQDDA02OTQ5NWI1Yy0yZTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0tgI1j0TScKr2vTD8IBvrBtgxC0b9J8u7G8CJISAKG0kZrPDVtJJQxS0qnEq UfCIWeK44YhFr5Sd/OwjneJtnjT5asaJE1mourGdUzycGx876SADaL70rfwyltLs IxLSWEc4jIErn3qNzKAMAQ8DuftEvXdqh5KLZqTqAEHz5JEElZWzsbirztUtZZd7 2Ycc2OqODUu1l+knE9t+cTwyzIitpNbYDzarunOJ9WCRrigkHnp9lRMrjKnPxa5R brg9lOVCeyAJC4CrX/48PNI6yhz+P0m7UMeEsgY/jlqxZ0Ps+WGnvHlaDf9q3NtS aB9uTIqpYqovz8JXdWyzdDVLMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDUFsAUh bqXM+WzofOyd1MMXHH20MB8GA1UdIwQYMBaAFNaaYFZfM3IUnObi/J5yPUkGdnaK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUY3RC82OTc1M0Y1ODFE OUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNoU2M1dUw4bm5JOVNRWjJk b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFwcGdWbDh6Y2hTYzV1TDhubkk5U1FaMmRvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUY3RC82OTc1M0Y1ODFEOUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNo U2M1dUw4bm5JOVNRWjJkb28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmVpfoYKf7w+9bkY6D+HUf3+nNCvHw1Q89OEHY6qH0sY03SZeC1RnI waDzzAAmoxyjqRIYuCzdHw51eg1UGxJPU4Lp6zhzGINBBb4PL53LgMbsfb778m5i CSnAAsm+bRU3K1PYcMTPTKqTZTC1j4QimyQyyOk+YRjpU4rL881D8H9L1r02plrK ziUIGFAnBn/D33/BNBJfky7oUejE7Pp/S6hIBeMx0hmDZ8HB44jN0Zt6J63Mos7y zBMigqBAXMI8uEeyFJc2WC7gKXs9ISxET4/t8SdGgwk3npIrYCujfaf160ECh6pu 3Mw3Mjny4qSruWV3/EhSf08fviKA+Xqv -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:41 2025 by rpki-client