This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft File: PUXFozv53U06Htp-0mQGWOH4Mf8.mft (raw, json) Hash identifier: 2/9Yvsa//gEW8btCZBNnOYGFjf9B60kF1tira7zRtoc= Subject key identifier: 6D:F9:23:E2:77:16:0B:BB:00:2A:F8:44:9D:5F:01:6B:DD:08:5D:8B Authority key identifier: 3D:45:C5:A3:3B:F9:DD:4D:3A:1E:DA:7E:D2:64:06:58:E1:F8:31:FF Certificate issuer: /CN=A9166F0E/serialNumber=3D45C5A33BF9DD4D3A1EDA7ED2640658E1F831FF Certificate serial: 0C11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft Manifest number: 0C0A Signing time: Sun 04 Jan 2026 18:20:26 +0000 Manifest this update: Sun 04 Jan 2026 18:20:26 +0000 Manifest next update: Sun 11 Jan 2026 18:20:26 +0000 Files and hashes: 1: PUXFozv53U06Htp-0mQGWOH4Mf8.crl (hash: VpxcqNYr0hDljLLiFO4QvlAsUu4pEmudFKI06t6wO2g=) 2: A11D7694261F11EAA88CE128C4F9AE02.roa (hash: UABSLYRv5F+q/4e5iQCmZDPY3VJdi+9iaRXz535SqfM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.crl rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 Jan 2026 18:20:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3089 (0xc11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166F0E, serialNumber=3D45C5A33BF9DD4D3A1EDA7ED2640658E1F831FF Validity Not Before: Jan 4 18:20:26 2026 GMT Not After : Jan 11 18:20:26 2026 GMT Subject: CN=695aaf6a-cd99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:7a:6d:21:f7:69:b6:3c:76:b3:87:3d:75:ac: 6c:16:b5:f1:5c:d2:e4:0b:84:ae:31:8a:04:d2:1c: f6:b0:35:d2:df:3d:27:e5:ed:5f:59:b0:9a:6c:f3: cc:c8:9e:db:b1:20:f9:c8:07:5c:d8:9a:b3:18:d2: 4a:d0:9a:b3:0d:f9:5b:2c:c5:32:b6:59:d9:d1:f1: 96:92:8f:9f:0e:28:43:e9:a7:e5:7b:01:f5:34:d1: d3:aa:a7:d4:77:7a:fd:f1:7e:93:ec:00:2c:d3:f9: 7c:7b:5b:f5:9a:09:56:1c:1e:56:f0:dd:e4:8d:93: 01:5a:08:d9:6c:7f:1a:31:4f:93:9f:80:c7:50:9a: 72:59:20:2e:67:34:d0:4f:5f:0a:31:b9:3d:cf:2f: 88:f0:8d:ed:df:69:99:d9:60:9d:31:ca:d6:ee:02: c6:41:8e:6b:4f:76:08:d2:8c:21:71:81:17:32:f1: a0:7a:53:c4:5f:7a:52:87:ea:60:98:ae:b4:3e:08: c0:88:2d:ea:f1:92:ed:e8:fd:57:83:17:9e:65:31: 39:78:fd:c9:b0:59:93:de:26:62:9a:0a:2c:84:e6: a5:ee:34:f6:7e:bc:30:f7:13:09:d9:98:79:6e:f8: 00:c4:17:e5:7c:f9:97:5f:e4:17:c1:cd:1c:02:3f: 01:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:F9:23:E2:77:16:0B:BB:00:2A:F8:44:9D:5F:01:6B:DD:08:5D:8B X509v3 Authority Key Identifier: keyid:3D:45:C5:A3:3B:F9:DD:4D:3A:1E:DA:7E:D2:64:06:58:E1:F8:31:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:87:3b:59:62:70:0b:df:67:b2:c3:eb:ba:70:77:80:1d:86: ee:fe:48:3e:af:e5:c6:bc:7f:6a:91:b6:d7:c6:c7:1d:17:08: b4:a7:3a:0a:78:9f:b8:a9:4f:83:4e:f9:32:ee:fa:00:16:f8: d3:53:b6:9c:15:6c:f6:83:c5:7e:c1:1b:62:c0:22:13:64:4e: a7:4e:b6:35:f4:87:ae:2b:c4:2e:cc:95:a2:9b:40:e6:8e:03: 38:6d:1c:18:6c:e5:06:2b:db:cd:78:01:c3:31:6a:0c:3d:cb: 3d:81:dc:39:f4:fe:37:53:b2:77:0a:66:98:35:64:7b:0e:7e: 65:d9:4b:7c:25:b2:a6:00:ee:0c:28:50:b9:69:6f:75:92:d2: a4:14:f4:be:96:73:07:a1:24:e9:0f:be:86:b8:52:54:cc:e1: ad:92:8c:4d:db:e2:26:18:67:4b:16:68:5d:46:71:c9:10:07: b3:c6:95:60:ca:5a:9c:c5:77:75:24:2a:6a:e1:18:58:a3:d2: 10:11:8a:1b:c3:a6:6f:c0:32:cd:08:43:89:55:48:ba:8e:60: dd:17:f5:68:04:47:0c:63:5d:14:53:d7:0c:38:2e:43:16:56: 95:a2:48:42:52:c5:0d:5c:cb:50:79:37:45:93:66:da:41:2a: 73:71:46:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZGMEUxMTAvBgNVBAUTKDNENDVDNUEzM0JGOURENEQzQTFFREE3RUQyNjQwNjU4 RTFGODMxRkYwHhcNMjYwMTA0MTgyMDI2WhcNMjYwMTExMTgyMDI2WjAYMRYwFAYD VQQDDA02OTVhYWY2YS1jZDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsHptIfdptjx2s4c9daxsFrXxXNLkC4SuMYoE0hz2sDXS3z0n5e1fWbCabPPM yJ7bsSD5yAdc2JqzGNJK0JqzDflbLMUytlnZ0fGWko+fDihD6aflewH1NNHTqqfU d3r98X6T7AAs0/l8e1v1mglWHB5W8N3kjZMBWgjZbH8aMU+Tn4DHUJpyWSAuZzTQ T18KMbk9zy+I8I3t32mZ2WCdMcrW7gLGQY5rT3YI0owhcYEXMvGgelPEX3pSh+pg mK60PgjAiC3q8ZLt6P1XgxeeZTE5eP3JsFmT3iZimgoshOal7jT2frww9xMJ2Zh5 bvgAxBflfPmXX+QXwc0cAj8BZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG35I+J3 Fgu7ACr4RJ1fAWvdCF2LMB8GA1UdIwQYMBaAFD1FxaM7+d1NOh7aftJkBljh+DH/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkYwRS8xQTc1OEIwRTI2 MUYxMUVBQUUyRThGMjhDNEY5QUUwMi9QVVhGb3p2NTNVMDZIdHAtMG1RR1dPSDRN ZjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVWEZvenY1M1UwNkh0cC0wbVFHV09INE1mOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkYwRS8xQTc1OEIwRTI2MUYxMUVBQUUyRThGMjhDNEY5QUUwMi9QVVhGb3p2NTNV MDZIdHAtMG1RR1dPSDRNZjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAihztZYnAL32eyw+u6cHeAHYbu/kg+r+XGvH9qkbbXxscdFwi0pzoK eJ+4qU+DTvky7voAFvjTU7acFWz2g8V+wRtiwCITZE6nTrY19IeuK8QuzJWim0Dm jgM4bRwYbOUGK9vNeAHDMWoMPcs9gdw59P43U7J3CmaYNWR7Dn5l2Ut8JbKmAO4M KFC5aW91ktKkFPS+lnMHoSTpD76GuFJUzOGtkoxN2+ImGGdLFmhdRnHJEAezxpVg ylqcxXd1JCpq4RhYo9IQEYobw6ZvwDLNCEOJVUi6jmDdF/VoBEcMY10UU9cMOC5D FlaVokhCUsUNXMtQeTdFk2baQSpzcUYw -----END CERTIFICATE-----Generated at Mon Jan 5 19:13:35 2026 by rpki-client