This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft File: PUXFozv53U06Htp-0mQGWOH4Mf8.mft (raw, json) Hash identifier: ty/X2Hu7tuN83/brMkJFlj7iZbvdM2FCVDkrL280Ft0= Subject key identifier: 70:22:0E:96:6B:BF:45:0B:61:E8:5F:86:7A:D0:F7:53:2B:C2:1F:6D Authority key identifier: 3D:45:C5:A3:3B:F9:DD:4D:3A:1E:DA:7E:D2:64:06:58:E1:F8:31:FF Certificate issuer: /CN=A9166F0E/serialNumber=3D45C5A33BF9DD4D3A1EDA7ED2640658E1F831FF Certificate serial: 0C08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft Manifest number: 0C01 Signing time: Thu 18 Dec 2025 18:31:51 +0000 Manifest this update: Thu 18 Dec 2025 18:31:51 +0000 Manifest next update: Thu 25 Dec 2025 18:31:51 +0000 Files and hashes: 1: PUXFozv53U06Htp-0mQGWOH4Mf8.crl (hash: YbM7O3FqSUAxoR5NpX7qdfGdiIcbCKqnC7BLE5c6mdw=) 2: A11D7694261F11EAA88CE128C4F9AE02.roa (hash: UABSLYRv5F+q/4e5iQCmZDPY3VJdi+9iaRXz535SqfM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.crl rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3080 (0xc08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166F0E, serialNumber=3D45C5A33BF9DD4D3A1EDA7ED2640658E1F831FF Validity Not Before: Dec 18 18:31:51 2025 GMT Not After : Dec 25 18:31:51 2025 GMT Subject: CN=69444897-ef0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4f:71:99:94:62:ce:96:0e:31:c4:12:36:c6: 85:f2:82:fe:ac:4a:61:ac:e3:51:77:76:30:f1:a8: d8:01:e1:59:65:ca:87:7b:8e:fc:e9:bd:34:8d:02: 07:cc:be:c2:34:2e:24:cd:c6:ae:35:96:e6:88:a1: 1e:af:c4:27:ec:38:2a:d9:df:9f:25:be:ef:94:78: 5b:df:f7:a7:a0:fe:64:d6:69:d5:86:31:c2:a6:d9: f1:54:3e:59:04:17:9a:e1:ea:ea:60:26:cb:cc:14: 40:ba:8a:d9:27:e5:aa:27:38:42:35:93:5d:0a:cf: ab:6e:b4:ad:80:f7:1e:3d:42:75:08:37:f1:50:fd: 79:19:65:ad:95:cc:d8:30:1c:64:b6:17:2b:69:f4: 4f:65:94:1c:33:04:f7:e0:01:0b:91:12:48:39:fb: b8:95:5b:43:ea:d9:8e:86:38:ee:24:51:dd:08:73: 50:de:c8:b5:9d:01:f7:9e:c7:68:32:43:61:8b:4a: 0b:74:ca:cc:4b:a4:f5:b4:b5:ea:e8:cf:ed:e7:5b: b5:cd:af:9a:16:f4:de:a3:b6:13:aa:e5:5c:d5:43: c4:7c:ef:9f:6e:42:78:01:cd:b1:90:5f:ca:76:3b: c9:df:1c:a4:07:94:8f:e1:63:41:d6:22:e8:65:8a: 0b:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:22:0E:96:6B:BF:45:0B:61:E8:5F:86:7A:D0:F7:53:2B:C2:1F:6D X509v3 Authority Key Identifier: keyid:3D:45:C5:A3:3B:F9:DD:4D:3A:1E:DA:7E:D2:64:06:58:E1:F8:31:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:b8:fc:08:ba:5c:fc:11:e3:e1:f7:7d:1a:af:96:1d:89:af: 2d:93:0f:ee:2a:8b:cc:68:03:73:33:96:3b:e6:aa:a5:82:ce: 69:da:cc:14:f4:8e:40:0b:c9:28:b7:f0:59:43:16:35:2b:3a: dc:15:74:10:80:a9:fa:cd:2b:18:fb:d5:d8:a4:59:94:74:e6: 25:af:0b:21:33:46:33:8c:44:54:93:6c:52:64:3b:00:41:eb: 3d:15:54:43:1a:e7:c9:0d:6e:ec:3e:d1:0a:93:ed:62:fa:ae: b9:a9:3d:13:b9:18:e3:d6:e1:0f:df:a0:66:52:ea:05:59:98: c3:13:c2:8a:11:44:96:21:d5:aa:1f:24:cb:79:0c:aa:85:a5: 52:c2:3b:5e:10:ef:7e:2a:33:bf:dc:38:5d:f6:15:f3:c2:c3: 9c:3f:f9:b8:82:e8:a8:ed:1b:df:4f:2c:05:3a:1c:6e:bd:1b: 30:cb:49:44:76:34:e4:ab:ee:f5:3c:d5:53:d8:67:19:7d:f3: 29:84:80:bf:8d:f4:12:07:7a:d5:e0:e6:e9:cc:ac:cd:cf:c8: f1:5d:2b:d6:9f:9b:a9:23:70:10:bd:e2:19:4e:8c:40:8d:2f: e5:f3:22:03:7d:f7:0f:1c:00:0b:36:e6:9b:83:b3:82:76:fb: ec:b7:ed:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZGMEUxMTAvBgNVBAUTKDNENDVDNUEzM0JGOURENEQzQTFFREE3RUQyNjQwNjU4 RTFGODMxRkYwHhcNMjUxMjE4MTgzMTUxWhcNMjUxMjI1MTgzMTUxWjAYMRYwFAYD VQQDDA02OTQ0NDg5Ny1lZjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuE9xmZRizpYOMcQSNsaF8oL+rEphrONRd3Yw8ajYAeFZZcqHe4786b00jQIH zL7CNC4kzcauNZbmiKEer8Qn7Dgq2d+fJb7vlHhb3/enoP5k1mnVhjHCptnxVD5Z BBea4erqYCbLzBRAuorZJ+WqJzhCNZNdCs+rbrStgPcePUJ1CDfxUP15GWWtlczY MBxkthcrafRPZZQcMwT34AELkRJIOfu4lVtD6tmOhjjuJFHdCHNQ3si1nQH3nsdo MkNhi0oLdMrMS6T1tLXq6M/t51u1za+aFvTeo7YTquVc1UPEfO+fbkJ4Ac2xkF/K djvJ3xykB5SP4WNB1iLoZYoLkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHAiDpZr v0ULYehfhnrQ91Mrwh9tMB8GA1UdIwQYMBaAFD1FxaM7+d1NOh7aftJkBljh+DH/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkYwRS8xQTc1OEIwRTI2 MUYxMUVBQUUyRThGMjhDNEY5QUUwMi9QVVhGb3p2NTNVMDZIdHAtMG1RR1dPSDRN ZjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVWEZvenY1M1UwNkh0cC0wbVFHV09INE1mOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkYwRS8xQTc1OEIwRTI2MUYxMUVBQUUyRThGMjhDNEY5QUUwMi9QVVhGb3p2NTNV MDZIdHAtMG1RR1dPSDRNZjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBquPwIulz8EePh930ar5Ydia8tkw/uKovMaANzM5Y75qqlgs5p2swU 9I5AC8kot/BZQxY1KzrcFXQQgKn6zSsY+9XYpFmUdOYlrwshM0YzjERUk2xSZDsA Qes9FVRDGufJDW7sPtEKk+1i+q65qT0TuRjj1uEP36BmUuoFWZjDE8KKEUSWIdWq HyTLeQyqhaVSwjteEO9+KjO/3Dhd9hXzwsOcP/m4guio7RvfTywFOhxuvRswy0lE djTkq+71PNVT2GcZffMphIC/jfQSB3rV4ObpzKzNz8jxXSvWn5upI3AQveIZToxA jS/l8yIDffcPHAALNuabg7OCdvvst+29 -----END CERTIFICATE-----Generated at Fri Dec 19 17:45:24 2025 by rpki-client