This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft File: S_PofKK5q1lZdiDQT8BUEY1-09k.mft (raw, json) Hash identifier: jw953aJ8k3TJqaH3nGSU5m2h3YjnZ4/UPKrssSt43xU= Subject key identifier: A8:20:FB:2A:CE:85:DB:5F:4F:68:24:63:B5:9D:89:A9:7D:E1:C5:56 Authority key identifier: 4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 Certificate issuer: /CN=A9191B71/serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Certificate serial: 039F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft Manifest number: 0397 Signing time: Fri 19 Dec 2025 00:01:32 +0000 Manifest this update: Fri 19 Dec 2025 00:01:32 +0000 Manifest next update: Fri 26 Dec 2025 00:01:32 +0000 Files and hashes: 1: S_PofKK5q1lZdiDQT8BUEY1-09k.crl (hash: NTsQbklxCeJ07H4/P6gtkdSglFy2cUiA6ipLaYw9VWw=) 2: 5734DF38D56811EF89A7D332C4F9AE02.roa (hash: yEbc6F9bHI0IpI/Ljg73yL3b8qnvoYUzAxWD62rFx2U=) 3: 5A48B534C6C811ECA5A9AB33C4F9AE02.roa (hash: b/WM2XRqJxBELFgBognptBOHT/qHpjt428YJO43uOQY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 927 (0x39f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191B71, serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Validity Not Before: Dec 19 00:01:32 2025 GMT Not After : Dec 26 00:01:32 2025 GMT Subject: CN=694495dc-e46f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:5d:b5:f3:b5:d9:c6:da:5d:02:ed:50:9d:fb: 33:77:c7:ca:55:1a:41:65:90:90:67:f0:3a:b0:b4: 67:c2:6c:86:ff:1f:83:a4:73:f3:93:a0:60:5a:9b: ab:14:5a:9b:2a:fc:99:48:53:7a:45:51:d1:de:be: 00:a3:7a:6c:c5:ac:31:2a:5a:54:aa:69:de:a1:ca: 0c:bb:ad:f5:e8:e0:81:ef:84:41:0b:79:8a:91:89: 0a:a6:f8:32:fc:ce:cc:e8:e8:71:78:99:40:c4:bf: ba:62:e8:05:b0:e6:e5:68:38:59:cf:e9:41:1a:8e: 12:56:c2:7f:33:81:a8:86:34:f9:91:0b:48:a7:15: 6e:53:9e:e9:5d:1c:bd:f3:ed:49:25:ae:20:0b:0a: 04:06:11:0f:47:a9:94:07:aa:56:9b:ac:59:ab:2f: ac:62:b1:bd:a7:3f:09:51:6c:d7:98:81:b2:e0:4a: c5:b6:a6:d5:41:e8:1f:f1:af:d5:55:a7:9b:0b:f7: b7:9f:07:1c:52:e3:31:14:b7:f7:ca:fb:84:f9:4e: 16:e4:ca:30:ea:8a:e7:d6:34:ff:6b:d2:8f:37:cc: ca:39:d1:0d:08:5d:f1:75:d3:89:1a:f6:fd:ae:90: ee:ae:5c:70:a1:a2:70:f1:04:43:5a:62:2f:12:09: f1:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:20:FB:2A:CE:85:DB:5F:4F:68:24:63:B5:9D:89:A9:7D:E1:C5:56 X509v3 Authority Key Identifier: keyid:4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:0c:27:bd:bb:ca:ab:3b:01:62:c3:c8:a0:15:98:59:aa:73: 6e:60:4e:4c:09:dd:79:53:4a:02:d2:e8:a7:5b:b1:3c:ce:95: 00:c1:19:20:7d:73:74:db:de:bd:bf:7b:d2:7b:fb:b9:bd:1b: d8:07:6b:7c:7b:53:99:5a:8f:e7:26:dd:06:d2:52:f0:cf:ce: 52:d3:cb:e5:fb:44:b2:3a:8f:89:e3:92:21:bc:6d:e8:5b:1a: 42:99:b2:4a:a8:db:49:8b:b4:d8:16:7f:39:c2:11:77:81:b2: 2e:98:c6:62:24:2e:44:ed:eb:0f:ea:68:b2:2c:30:c4:68:d4: d0:fe:dc:f7:05:ac:2e:5a:f8:3d:21:08:3f:84:a5:5c:74:92: 74:3e:9a:87:ea:30:a5:31:97:9b:08:e9:3b:27:ee:ce:0b:e7: eb:c2:fb:e3:bc:16:81:e1:16:2c:31:d7:8c:dc:5d:5d:c3:d7: 04:64:31:fd:fe:46:26:85:ae:75:60:3a:a7:75:c9:51:2e:60: fd:34:22:d5:fa:23:c2:96:1a:52:84:d7:12:b9:4f:34:52:26: d4:b5:ad:9a:d2:56:b3:36:7f:51:9e:e8:12:c0:fb:c2:1f:74: 67:88:58:ed:37:b9:9d:89:de:7c:e9:04:0d:49:94:d1:0e:82: ca:20:40:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA58wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFCNzExMTAvBgNVBAUTKDRCRjNFODdDQTJCOUFCNTk1OTc2MjBEMDRGQzA1NDEx OEQ3RUQzRDkwHhcNMjUxMjE5MDAwMTMyWhcNMjUxMjI2MDAwMTMyWjAYMRYwFAYD VQQDDA02OTQ0OTVkYy1lNDZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoV2187XZxtpdAu1Qnfszd8fKVRpBZZCQZ/A6sLRnwmyG/x+DpHPzk6BgWpur FFqbKvyZSFN6RVHR3r4Ao3psxawxKlpUqmneocoMu6316OCB74RBC3mKkYkKpvgy /M7M6OhxeJlAxL+6YugFsOblaDhZz+lBGo4SVsJ/M4GohjT5kQtIpxVuU57pXRy9 8+1JJa4gCwoEBhEPR6mUB6pWm6xZqy+sYrG9pz8JUWzXmIGy4ErFtqbVQegf8a/V VaebC/e3nwccUuMxFLf3yvuE+U4W5Mow6orn1jT/a9KPN8zKOdENCF3xddOJGvb9 rpDurlxwoaJw8QRDWmIvEgnx/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKgg+yrO hdtfT2gkY7Wdial94cVWMB8GA1UdIwQYMBaAFEvz6HyiuatZWXYg0E/AVBGNftPZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUI3MS9CODQ5QkExMkM2 MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXExbFpkaURRVDhCVUVZMS0w OWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NfUG9mS0s1cTFsWmRpRFFUOEJVRVkxLTA5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUI3MS9CODQ5QkExMkM2MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXEx bFpkaURRVDhCVUVZMS0wOWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/DCe9u8qrOwFiw8igFZhZqnNuYE5MCd15U0oC0uinW7E8zpUAwRkg fXN02969v3vSe/u5vRvYB2t8e1OZWo/nJt0G0lLwz85S08vl+0SyOo+J45IhvG3o WxpCmbJKqNtJi7TYFn85whF3gbIumMZiJC5E7esP6miyLDDEaNTQ/tz3BawuWvg9 IQg/hKVcdJJ0PpqH6jClMZebCOk7J+7OC+frwvvjvBaB4RYsMdeM3F1dw9cEZDH9 /kYmha51YDqndclRLmD9NCLV+iPClhpShNcSuU80UibUta2a0lazNn9RnugSwPvC H3RniFjtN7mdid586QQNSZTRDoLKIECb -----END CERTIFICATE-----Generated at Fri Dec 19 18:35:32 2025 by rpki-client