This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.mft File: BlXikVyt6RZ3qrSMI8HiJLQ9uqU.mft (raw, json) Hash identifier: ZpAXbLUHi+9WGyB2x+F091m6jjmQgzyVtzWga2IJTFc= Subject key identifier: EC:10:F5:AF:67:F2:64:68:E0:B6:C8:E8:05:4D:6A:48:98:96:6E:27 Authority key identifier: 06:55:E2:91:5C:AD:E9:16:77:AA:B4:8C:23:C1:E2:24:B4:3D:BA:A5 Certificate issuer: /CN=A9178D35/serialNumber=0655E2915CADE91677AAB48C23C1E224B43DBAA5 Certificate serial: 34EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.mft Manifest number: 34EE Signing time: Thu 18 Dec 2025 14:35:27 +0000 Manifest this update: Thu 18 Dec 2025 14:35:27 +0000 Manifest next update: Thu 25 Dec 2025 14:35:27 +0000 Files and hashes: 1: BlXikVyt6RZ3qrSMI8HiJLQ9uqU.crl (hash: /qNe0MqAb24zbOWIipoUcyBw/ZnNiSF4hegd9FdKEfM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.crl rsync://rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 14:35:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13550 (0x34ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178D35, serialNumber=0655E2915CADE91677AAB48C23C1E224B43DBAA5 Validity Not Before: Dec 18 14:35:27 2025 GMT Not After : Dec 25 14:35:27 2025 GMT Subject: CN=6944112f-c8e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:15:df:c5:c3:e3:92:8c:dc:b7:98:b6:0e:fb: e7:2a:c6:ba:ee:51:df:0e:ad:66:26:d5:e0:c0:f5: c6:5b:88:be:64:46:0b:1a:45:c4:f1:54:3f:40:c0: 11:29:ee:19:a1:fc:75:83:0a:c7:a8:f8:65:78:34: 4b:b9:b5:55:5b:38:55:d9:c5:05:ae:c8:4c:49:f9: 21:8d:30:c6:ca:c6:78:a5:e0:f2:68:77:54:fd:84: 47:ee:05:3c:19:e8:17:2c:2e:33:b1:f7:d7:1a:ef: 16:fa:b5:46:6c:f5:83:93:af:68:1f:69:af:4e:cd: 93:36:62:73:6c:3a:d6:3f:25:fa:da:0c:41:29:43: 45:cc:18:c6:f2:1b:1b:87:de:a8:58:27:0b:51:be: 17:e9:2c:9a:e5:25:79:25:1c:47:ac:83:cc:b2:4e: 5a:62:f0:02:22:0f:9e:fe:3a:9c:54:61:aa:d6:c1: 21:82:83:56:6c:a0:d6:c1:b8:da:3c:61:6a:8b:29: fa:77:e1:9b:43:5b:0b:c4:82:3a:8d:63:3d:c9:22: 0e:d1:fc:17:b4:e8:31:96:b3:03:0e:ba:92:ed:1e: 88:24:dc:06:22:d6:f7:48:d3:e7:6e:63:e1:1b:b4: 48:e5:14:19:f2:6d:72:94:e4:2b:01:f2:01:5b:ee: 57:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:10:F5:AF:67:F2:64:68:E0:B6:C8:E8:05:4D:6A:48:98:96:6E:27 X509v3 Authority Key Identifier: keyid:06:55:E2:91:5C:AD:E9:16:77:AA:B4:8C:23:C1:E2:24:B4:3D:BA:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:b4:fa:25:84:82:24:3b:99:2f:b9:63:f8:6b:9c:ab:1f:9d: 04:55:73:79:bd:59:77:29:2e:a2:89:1f:ae:bf:5c:94:c3:3c: 28:d5:b2:66:0c:8d:8c:26:9c:f2:05:28:9a:59:c3:a9:bc:15: 38:03:55:97:11:ee:b2:74:e4:40:20:7e:9d:e3:2c:98:ea:ae: 5f:60:81:6e:a1:19:d1:a2:ac:ab:5e:37:7b:0d:e4:f9:9e:ef: 44:2c:1b:c9:4b:cb:69:11:03:5e:6b:0b:5b:34:66:b5:18:b4: 37:0f:18:8d:84:23:dc:74:5d:92:75:c3:eb:54:dc:26:33:18: c9:e8:a7:75:ee:55:08:ac:ed:1b:75:47:8a:3b:45:32:19:ef: 34:55:b7:e2:75:81:0e:c1:71:9f:38:b4:36:f6:d9:4e:0e:08: 68:57:6f:06:8f:c7:a0:19:a6:2a:a3:13:a4:53:6d:3d:10:66: f4:91:0b:23:ba:61:8f:f6:f2:1c:6c:b1:57:ce:95:1a:5d:14: 77:ab:ba:67:a4:43:08:35:a4:2f:b4:1a:81:56:49:b2:a7:70: 0f:1b:9a:7e:2d:dc:51:b2:85:af:e0:44:d5:1b:4e:ea:c3:b6: 0f:02:f9:45:7e:81:5a:61:7f:dd:6f:fa:da:e4:f2:55:62:0a: 34:a3:d4:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhEMzUxMTAvBgNVBAUTKDA2NTVFMjkxNUNBREU5MTY3N0FBQjQ4QzIzQzFFMjI0 QjQzREJBQTUwHhcNMjUxMjE4MTQzNTI3WhcNMjUxMjI1MTQzNTI3WjAYMRYwFAYD VQQDDA02OTQ0MTEyZi1jOGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAphXfxcPjkozct5i2DvvnKsa67lHfDq1mJtXgwPXGW4i+ZEYLGkXE8VQ/QMAR Ke4Zofx1gwrHqPhleDRLubVVWzhV2cUFrshMSfkhjTDGysZ4peDyaHdU/YRH7gU8 GegXLC4zsffXGu8W+rVGbPWDk69oH2mvTs2TNmJzbDrWPyX62gxBKUNFzBjG8hsb h96oWCcLUb4X6Sya5SV5JRxHrIPMsk5aYvACIg+e/jqcVGGq1sEhgoNWbKDWwbja PGFqiyn6d+GbQ1sLxII6jWM9ySIO0fwXtOgxlrMDDrqS7R6IJNwGItb3SNPnbmPh G7RI5RQZ8m1ylOQrAfIBW+5XawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOwQ9a9n 8mRo4LbI6AVNakiYlm4nMB8GA1UdIwQYMBaAFAZV4pFcrekWd6q0jCPB4iS0Pbql MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEQzNS9ENkY4ODVBNDFE OEMxMUUyOUZBNjIzRUEwOEIwMkNEMi9CbFhpa1Z5dDZSWjNxclNNSThIaUpMUTl1 cVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JsWGlrVnl0NlJaM3FyU01JOEhpSkxROXVxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEQzNS9ENkY4ODVBNDFEOEMxMUUyOUZBNjIzRUEwOEIwMkNEMi9CbFhpa1Z5dDZS WjNxclNNSThIaUpMUTl1cVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBltPolhIIkO5kvuWP4a5yrH50EVXN5vVl3KS6iiR+uv1yUwzwo1bJm DI2MJpzyBSiaWcOpvBU4A1WXEe6ydORAIH6d4yyY6q5fYIFuoRnRoqyrXjd7DeT5 nu9ELBvJS8tpEQNeawtbNGa1GLQ3DxiNhCPcdF2SdcPrVNwmMxjJ6Kd17lUIrO0b dUeKO0UyGe80VbfidYEOwXGfOLQ29tlODghoV28Gj8egGaYqoxOkU209EGb0kQsj umGP9vIcbLFXzpUaXRR3q7pnpEMINaQvtBqBVkmyp3APG5p+LdxRsoWv4ETVG07q w7YPAvlFfoFaYX/db/ra5PJVYgo0o9T5 -----END CERTIFICATE-----Generated at Fri Dec 19 23:50:35 2025 by rpki-client