This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft File: PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft (raw, json) Hash identifier: aaOS0TIbXt0YqNM1kEA/RQu9DVSjpcw6xOUTXhvK5as= Subject key identifier: 4F:D5:E2:A1:84:1B:A3:04:5F:9D:0A:0B:1E:D5:C2:75:78:D4:79:93 Authority key identifier: 3F:1A:8E:A3:D2:AD:C6:EC:B2:36:0E:0C:37:6C:E5:59:B9:FF:71:F2 Certificate issuer: /CN=A9173FAC/serialNumber=3F1A8EA3D2ADC6ECB2360E0C376CE559B9FF71F2 Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxqOo9KtxuyyNg4MN2zlWbn_cfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft Manifest number: 8A Signing time: Wed 31 Dec 2025 05:35:39 +0000 Manifest this update: Wed 31 Dec 2025 05:35:38 +0000 Manifest next update: Wed 07 Jan 2026 05:35:38 +0000 Files and hashes: 1: PxqOo9KtxuyyNg4MN2zlWbn_cfI.crl (hash: M5S21vBuVHNOHMtu23HBpVhv9n9JXLnJcjUaOIG5y28=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.crl rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxqOo9KtxuyyNg4MN2zlWbn_cfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 05:35:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173FAC, serialNumber=3F1A8EA3D2ADC6ECB2360E0C376CE559B9FF71F2 Validity Not Before: Dec 31 05:35:38 2025 GMT Not After : Jan 7 05:35:38 2026 GMT Subject: CN=6954b62b-d59d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:20:9c:9a:cd:20:3d:1d:8c:39:de:70:bc:5f: 5e:85:34:f2:07:98:01:5c:56:ff:a1:20:28:fd:bb: b9:52:16:30:b1:3b:f7:d3:cd:65:92:f1:63:e5:fd: e4:93:cb:8b:bc:fb:6f:bc:6c:9e:53:cf:d1:71:cc: 9a:d5:d7:12:a0:cc:8d:37:bb:9f:dc:78:2e:60:c4: d4:1c:ba:21:82:87:8b:8e:48:d7:79:32:58:66:24: 4d:73:b4:b4:35:94:9f:e8:d7:5a:3f:ac:c9:11:e2: 8f:92:61:73:3d:fb:b3:e2:6c:e1:2e:80:68:95:eb: 7d:dd:31:e8:86:20:6a:bd:1d:07:f3:95:44:b4:2a: 2f:da:b2:8a:ea:19:6f:12:90:7a:e7:ad:34:82:1e: 4c:c7:95:be:23:04:e5:b6:aa:1d:be:6a:75:7f:c0: 81:e9:9e:e8:a6:e7:11:41:26:b1:99:78:39:0d:1f: ba:83:25:e3:61:69:17:f5:39:6b:1b:7a:f7:3a:73: 46:b7:53:3c:8b:ab:51:83:fc:8e:fc:29:91:5e:a7: b4:db:ec:cc:ab:6f:03:82:16:5d:dc:9c:75:be:af: e8:5b:8d:e3:45:62:29:fb:31:a1:6f:b4:0c:b1:c8: 87:43:f0:24:1f:f4:89:c0:66:19:8b:a5:54:82:2c: c1:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:D5:E2:A1:84:1B:A3:04:5F:9D:0A:0B:1E:D5:C2:75:78:D4:79:93 X509v3 Authority Key Identifier: keyid:3F:1A:8E:A3:D2:AD:C6:EC:B2:36:0E:0C:37:6C:E5:59:B9:FF:71:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxqOo9KtxuyyNg4MN2zlWbn_cfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:f6:52:94:d6:ba:62:ff:46:f8:19:fa:e5:bb:d8:51:b4:20: 3c:1d:e1:80:cb:66:4b:4a:f5:6a:89:ba:c8:18:10:e9:6a:81: 4b:d0:17:5a:e1:47:93:44:15:0d:17:4d:af:67:de:e7:93:fa: de:86:09:0b:40:dc:e6:22:08:7f:58:45:47:e5:d3:5b:6e:35: f7:bd:83:7a:20:fc:51:8f:83:52:85:12:4b:da:69:d2:2d:62: 2f:e7:2f:f2:b4:19:8f:4a:ff:d8:33:7c:56:d3:a1:29:77:86: c8:43:ee:f1:86:e6:c3:73:07:60:9d:63:46:3f:ef:2e:40:42: 8e:49:54:7a:f8:48:54:af:e0:f5:f8:70:c6:f0:0a:d8:e9:55: 84:84:ad:db:52:38:56:09:5f:61:3f:30:01:7e:a5:e3:4a:7e: 8e:b2:2d:82:a3:c9:ef:a1:40:cd:30:f7:60:3e:85:88:23:6b: 6f:13:a9:97:93:3d:3c:e3:e7:07:cd:fa:5c:ae:02:bf:71:7c: 53:22:6a:5c:86:49:e8:44:2c:dd:b3:43:ee:49:51:7e:c4:a6: 08:5a:60:c3:c4:64:9f:9e:b9:51:b8:77:2c:07:32:3d:4e:38: cf:05:d3:5a:13:42:de:a6:05:b3:d1:8f:a6:e1:88:7d:73:3a: 47:a4:bf:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNGQUMxMTAvBgNVBAUTKDNGMUE4RUEzRDJBREM2RUNCMjM2MEUwQzM3NkNFNTU5 QjlGRjcxRjIwHhcNMjUxMjMxMDUzNTM4WhcNMjYwMTA3MDUzNTM4WjAYMRYwFAYD VQQDDA02OTU0YjYyYi1kNTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwCCcms0gPR2MOd5wvF9ehTTyB5gBXFb/oSAo/bu5UhYwsTv3081lkvFj5f3k k8uLvPtvvGyeU8/Rccya1dcSoMyNN7uf3HguYMTUHLohgoeLjkjXeTJYZiRNc7S0 NZSf6NdaP6zJEeKPkmFzPfuz4mzhLoBolet93THohiBqvR0H85VEtCov2rKK6hlv EpB65600gh5Mx5W+IwTltqodvmp1f8CB6Z7opucRQSaxmXg5DR+6gyXjYWkX9Tlr G3r3OnNGt1M8i6tRg/yO/CmRXqe02+zMq28DghZd3Jx1vq/oW43jRWIp+zGhb7QM sciHQ/AkH/SJwGYZi6VUgizBNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE/V4qGE G6MEX50KCx7VwnV41HmTMB8GA1UdIwQYMBaAFD8ajqPSrcbssjYODDds5Vm5/3Hy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0ZBQy9COEY1Qzc2QTEw MTgxMUYwODBCQ0MzNDhDNEY5QUUwMi9QeHFPbzlLdHh1eXlOZzRNTjJ6bFdibl9j ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B4cU9vOUt0eHV5eU5nNE1OMnpsV2JuX2NmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0ZBQy9COEY1Qzc2QTEwMTgxMUYwODBCQ0MzNDhDNEY5QUUwMi9QeHFPbzlLdHh1 eXlOZzRNTjJ6bFdibl9jZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQ9lKU1rpi/0b4Gfrlu9hRtCA8HeGAy2ZLSvVqibrIGBDpaoFL0Bda 4UeTRBUNF02vZ97nk/rehgkLQNzmIgh/WEVH5dNbbjX3vYN6IPxRj4NShRJL2mnS LWIv5y/ytBmPSv/YM3xW06Epd4bIQ+7xhubDcwdgnWNGP+8uQEKOSVR6+EhUr+D1 +HDG8ArY6VWEhK3bUjhWCV9hPzABfqXjSn6Osi2Co8nvoUDNMPdgPoWII2tvE6mX kz084+cHzfpcrgK/cXxTImpchknoRCzds0PuSVF+xKYIWmDDxGSfnrlRuHcsBzI9 TjjPBdNaE0LepgWz0Y+m4Yh9czpHpL/4 -----END CERTIFICATE-----Generated at Wed Dec 31 21:49:29 2025 by rpki-client