This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft File: 71OR8qIt1l9IQxoyJt3MZbdllqk.mft (raw, json) Hash identifier: 1kdohQMF3ESupfm+zVz7t/wa+6g1hBBXCquSHdB1FD8= Subject key identifier: 1C:EB:50:35:B2:CC:EB:70:D0:89:71:0B:DD:D0:F8:AF:E0:5F:FE:78 Authority key identifier: EF:53:91:F2:A2:2D:D6:5F:48:43:1A:32:26:DD:CC:65:B7:65:96:A9 Certificate issuer: /CN=A9157DA9/serialNumber=EF5391F2A22DD65F48431A3226DDCC65B76596A9 Certificate serial: EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71OR8qIt1l9IQxoyJt3MZbdllqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft Manifest number: EC Signing time: Tue 11 Nov 2025 03:08:56 +0000 Manifest this update: Tue 11 Nov 2025 03:08:56 +0000 Manifest next update: Tue 18 Nov 2025 03:08:56 +0000 Files and hashes: 1: 71OR8qIt1l9IQxoyJt3MZbdllqk.crl (hash: zdt6PcuW/u3AmQNaPUrhULjooMixqZILcjBK0NGOklY=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DA9, serialNumber=EF5391F2A22DD65F48431A3226DDCC65B76596A9 Validity Not Before: Nov 11 03:08:56 2025 GMT Not After : Nov 18 03:08:56 2025 GMT Subject: CN=6912a8c8-417a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:c7:e8:c9:20:52:dd:56:06:29:d4:59:4a:a3: 40:a7:0e:ed:bf:16:c3:5f:a4:b4:1c:ca:67:6f:51: 57:39:6d:21:af:0a:67:fd:53:06:15:09:23:71:dd: 53:e3:0f:87:a9:83:2f:ac:0a:05:b4:78:4c:aa:28: ef:82:bd:e0:16:a5:a1:cb:fa:ff:ee:4c:f4:90:03: 20:a1:30:48:36:5e:4f:2c:f1:74:b8:f3:f3:cf:09: 26:8d:b4:f6:61:73:cd:a6:49:ef:b2:b9:98:68:3d: 6a:51:76:85:0c:f8:50:39:66:54:03:a7:68:bc:9a: 6d:e6:b1:26:0e:4e:2e:17:10:69:b3:45:78:cf:70: ed:0d:38:a7:11:15:29:74:73:75:33:68:56:d6:62: 87:9e:9f:bb:15:64:24:c7:41:29:19:b3:e5:89:c0: 35:87:00:b0:4c:c1:cb:45:d2:75:0f:01:52:b6:24: 03:73:28:b1:02:38:d5:67:6d:ba:3e:09:23:24:20: ab:df:3f:8a:e4:60:dd:1a:c5:69:80:bc:97:e8:f4: 49:72:89:68:26:fe:a9:c2:01:55:35:7c:b2:ba:7d: 65:dd:20:d0:a4:34:0d:44:8a:af:9c:2e:34:f2:67: bb:86:a5:f9:9d:cf:df:89:7e:b2:0f:09:d3:95:12: 29:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:EB:50:35:B2:CC:EB:70:D0:89:71:0B:DD:D0:F8:AF:E0:5F:FE:78 X509v3 Authority Key Identifier: keyid:EF:53:91:F2:A2:2D:D6:5F:48:43:1A:32:26:DD:CC:65:B7:65:96:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71OR8qIt1l9IQxoyJt3MZbdllqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:f4:0b:76:93:6b:38:eb:56:45:20:3a:c1:f8:81:3f:6b:29: da:10:ae:34:d6:c3:b3:14:af:a9:38:43:f1:80:6d:9e:87:1a: 9a:cd:95:d6:7c:07:57:a8:d5:ed:63:ec:72:be:44:d6:11:e5: bf:d9:01:e1:b5:d5:b3:cb:02:14:f5:f9:53:4a:d0:4e:d1:68: 7a:cd:be:cc:cd:b4:9f:1d:34:27:c6:82:c7:2a:5a:17:47:6b: f1:f7:77:2a:79:69:97:72:0b:27:e1:8e:ac:f5:c6:08:ad:48: 54:18:6d:59:2c:5d:16:d1:4e:97:91:17:63:a0:c6:be:2c:63: 4e:f2:30:5b:82:f3:43:ea:dc:38:db:8e:d9:f4:a0:06:6b:21: 45:25:df:57:af:5b:91:96:a0:fc:f2:10:80:5d:b2:31:5c:fb: 10:00:6e:50:3c:57:da:ba:2d:e8:26:d8:09:68:8b:b3:22:2c: d3:71:64:9f:6a:27:0c:9d:0b:2a:38:68:60:4f:2c:93:88:b8: 63:87:2f:d7:c7:bb:21:7c:2b:95:9e:ab:7a:81:ff:98:9b:24: ca:ba:25:95:15:46:20:fe:4c:f3:be:53:af:f5:b9:ce:66:75: 97:a2:ab:ed:9e:4f:28:69:7e:d0:cc:a1:17:84:4e:68:78:f0: bb:c9:37:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQTkxMTAvBgNVBAUTKEVGNTM5MUYyQTIyREQ2NUY0ODQzMUEzMjI2RERDQzY1 Qjc2NTk2QTkwHhcNMjUxMTExMDMwODU2WhcNMjUxMTE4MDMwODU2WjAYMRYwFAYD VQQDEw02OTEyYThjOC00MTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4sfoySBS3VYGKdRZSqNApw7tvxbDX6S0HMpnb1FXOW0hrwpn/VMGFQkjcd1T 4w+HqYMvrAoFtHhMqijvgr3gFqWhy/r/7kz0kAMgoTBINl5PLPF0uPPzzwkmjbT2 YXPNpknvsrmYaD1qUXaFDPhQOWZUA6dovJpt5rEmDk4uFxBps0V4z3DtDTinERUp dHN1M2hW1mKHnp+7FWQkx0EpGbPlicA1hwCwTMHLRdJ1DwFStiQDcyixAjjVZ226 PgkjJCCr3z+K5GDdGsVpgLyX6PRJcoloJv6pwgFVNXyyun1l3SDQpDQNRIqvnC40 8me7hqX5nc/fiX6yDwnTlRIpiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBzrUDWy zOtw0IlxC93Q+K/gX/54MB8GA1UdIwQYMBaAFO9TkfKiLdZfSEMaMibdzGW3ZZap MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBOS80MjNFMUFENDVB MTgxMUVGQkQ0NzczMzhDNEY5QUUwMi83MU9SOHFJdDFsOUlReG95SnQzTVpiZGxs cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcxT1I4cUl0MWw5SVF4b3lKdDNNWmJkbGxxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBOS80MjNFMUFENDVBMTgxMUVGQkQ0NzczMzhDNEY5QUUwMi83MU9SOHFJdDFs OUlReG95SnQzTVpiZGxscWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBX9At2k2s461ZFIDrB+IE/aynaEK401sOzFK+pOEPxgG2ehxqazZXW fAdXqNXtY+xyvkTWEeW/2QHhtdWzywIU9flTStBO0Wh6zb7MzbSfHTQnxoLHKloX R2vx93cqeWmXcgsn4Y6s9cYIrUhUGG1ZLF0W0U6XkRdjoMa+LGNO8jBbgvND6tw4 247Z9KAGayFFJd9Xr1uRlqD88hCAXbIxXPsQAG5QPFfaui3oJtgJaIuzIizTcWSf aicMnQsqOGhgTyyTiLhjhy/Xx7shfCuVnqt6gf+YmyTKuiWVFUYg/kzzvlOv9bnO ZnWXoqvtnk8oaX7QzKEXhE5oePC7yTdL -----END CERTIFICATE-----Generated at Wed Dec 31 23:03:45 2025 by rpki-client