This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft File: XJzBFCqQdWDNmfBuXdAt5OIulEU.mft (raw, json) Hash identifier: XMVK9qDRmjqBX+bsu7YzkV7BeYxXMmp4PZTBuIzaOtI= Subject key identifier: 94:C3:D5:2B:2B:18:01:71:CB:CD:28:69:B5:DA:5D:6E:D3:20:4F:BB Authority key identifier: 5C:9C:C1:14:2A:90:75:60:CD:99:F0:6E:5D:D0:2D:E4:E2:2E:94:45 Certificate issuer: /CN=A911636A/serialNumber=5C9CC1142A907560CD99F06E5DD02DE4E22E9445 Certificate serial: 0263 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft Manifest number: 0256 Signing time: Tue 23 Dec 2025 00:50:48 +0000 Manifest this update: Tue 23 Dec 2025 00:50:48 +0000 Manifest next update: Tue 30 Dec 2025 00:50:48 +0000 Files and hashes: 1: XJzBFCqQdWDNmfBuXdAt5OIulEU.crl (hash: XAlrXnBHE3Ime4Bkoz62l3xLDdv++sSlqBHJ73wWbVk=) 2: D98071A44F4411F0AF01D40FC4F9AE02.roa (hash: jPpBuj/csuD+KDzy/QfN9S3fduIPNOyEYRQiDC1LErw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.crl rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:50:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 611 (0x263) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911636A, serialNumber=5C9CC1142A907560CD99F06E5DD02DE4E22E9445 Validity Not Before: Dec 23 00:50:48 2025 GMT Not After : Dec 30 00:50:48 2025 GMT Subject: CN=6949e768-f987 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d6:43:75:5c:66:98:4c:ca:92:9d:8a:43:09: 0c:fb:9d:86:49:ec:0c:e3:25:18:fd:81:71:5d:dc: 4b:7e:54:81:eb:f2:eb:64:1e:fe:2e:ee:85:70:84: 97:02:9d:8e:36:eb:fc:41:37:23:e9:bf:27:09:1d: b6:15:69:21:bb:5a:21:56:26:dd:07:b7:69:e3:f4: ce:4f:47:28:68:f5:52:47:07:a3:ec:69:8e:df:9d: 50:b1:c2:2b:70:94:e9:3c:12:e0:ed:f6:af:2e:c8: 2c:6c:d5:48:b5:ff:2b:ca:c7:ff:dd:2c:59:8c:4b: 66:d8:a0:5d:9d:f0:0e:23:89:58:29:25:66:0e:86: c9:86:18:0f:64:5d:4d:24:e8:13:c1:22:29:3a:1b: b8:dc:17:1e:97:6b:cf:53:95:6d:c5:b5:90:80:47: a3:6b:a2:0d:b1:06:1e:36:59:f1:7c:32:7e:95:62: 30:dc:53:bd:e9:74:60:be:fd:f3:7a:84:b3:d8:99: e2:55:fc:73:9f:64:d2:0b:17:f4:c4:a7:b3:57:02: 20:60:12:58:2f:aa:e7:b1:fd:82:69:bb:2e:75:df: 9a:8f:3d:37:58:0e:7c:3b:1c:b8:bc:78:ff:aa:1d: 4d:b9:ed:ed:93:c5:12:cb:19:f9:89:45:6c:bb:92: bd:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:C3:D5:2B:2B:18:01:71:CB:CD:28:69:B5:DA:5D:6E:D3:20:4F:BB X509v3 Authority Key Identifier: keyid:5C:9C:C1:14:2A:90:75:60:CD:99:F0:6E:5D:D0:2D:E4:E2:2E:94:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:d8:ba:ed:68:31:3f:86:d5:1b:e5:50:4d:dc:1f:75:95:88: 67:77:5f:9b:a9:8d:2d:63:0e:45:76:c5:dd:f8:e4:d2:8f:cf: 2a:f0:62:a3:7e:48:a4:95:37:1d:a9:71:38:d1:f2:9f:14:69: 8f:4f:39:30:34:9b:76:94:75:b0:1b:ae:41:ba:e3:0a:19:af: da:38:d5:32:2d:b0:30:a0:9c:88:3c:b6:48:88:99:1b:33:c3: 9a:dd:23:1e:d0:50:2c:58:49:24:21:8a:c9:79:24:db:9a:d0: c1:2d:d2:7d:03:9a:11:0c:90:07:d2:16:a0:48:8b:ab:01:55: 04:4e:12:72:a5:4f:4e:6c:60:ad:47:8b:18:5c:ff:cb:06:c7: 90:50:38:ea:43:68:17:9e:92:e4:0b:d0:b8:b9:7c:94:fb:bc: ad:c0:26:1d:a7:f1:75:a4:4d:7e:d4:fd:99:c8:f4:c2:0b:da: 5e:9d:3e:96:4b:7c:4a:7c:93:4b:86:04:58:37:f6:90:f8:96: 37:dd:29:75:fb:33:88:0b:8c:d2:dd:35:09:cf:25:64:7c:08: 73:a7:75:c9:5a:00:0b:9b:5a:a6:0e:7c:4a:e7:2a:c7:e5:b3: 67:8e:2f:87:fb:f7:b1:90:97:66:55:f0:fc:25:07:0d:7a:76: 60:cf:42:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTYzNkExMTAvBgNVBAUTKDVDOUNDMTE0MkE5MDc1NjBDRDk5RjA2RTVERDAyREU0 RTIyRTk0NDUwHhcNMjUxMjIzMDA1MDQ4WhcNMjUxMjMwMDA1MDQ4WjAYMRYwFAYD VQQDDA02OTQ5ZTc2OC1mOTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArtZDdVxmmEzKkp2KQwkM+52GSewM4yUY/YFxXdxLflSB6/LrZB7+Lu6FcISX Ap2ONuv8QTcj6b8nCR22FWkhu1ohVibdB7dp4/TOT0coaPVSRwej7GmO351QscIr cJTpPBLg7favLsgsbNVItf8rysf/3SxZjEtm2KBdnfAOI4lYKSVmDobJhhgPZF1N JOgTwSIpOhu43Bcel2vPU5VtxbWQgEeja6INsQYeNlnxfDJ+lWIw3FO96XRgvv3z eoSz2JniVfxzn2TSCxf0xKezVwIgYBJYL6rnsf2Cabsudd+ajz03WA58Oxy4vHj/ qh1Nue3tk8USyxn5iUVsu5K9iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJTD1Ssr GAFxy80oabXaXW7TIE+7MB8GA1UdIwQYMBaAFFycwRQqkHVgzZnwbl3QLeTiLpRF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjM2QS9CMEYzM0QyQTY2 RUUxMUVEQjNCNDFBNURDNEY5QUUwMi9YSnpCRkNxUWRXRE5tZkJ1WGRBdDVPSXVs RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hKekJGQ3FRZFdETm1mQnVYZEF0NU9JdWxFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjM2QS9CMEYzM0QyQTY2RUUxMUVEQjNCNDFBNURDNEY5QUUwMi9YSnpCRkNxUWRX RE5tZkJ1WGRBdDVPSXVsRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBl2LrtaDE/htUb5VBN3B91lYhnd1+bqY0tYw5FdsXd+OTSj88q8GKj fkiklTcdqXE40fKfFGmPTzkwNJt2lHWwG65BuuMKGa/aONUyLbAwoJyIPLZIiJkb M8Oa3SMe0FAsWEkkIYrJeSTbmtDBLdJ9A5oRDJAH0hagSIurAVUEThJypU9ObGCt R4sYXP/LBseQUDjqQ2gXnpLkC9C4uXyU+7ytwCYdp/F1pE1+1P2ZyPTCC9penT6W S3xKfJNLhgRYN/aQ+JY33Sl1+zOIC4zS3TUJzyVkfAhzp3XJWgALm1qmDnxK5yrH 5bNnji+H+/exkJdmVfD8JQcNenZgz0LS -----END CERTIFICATE-----Generated at Wed Dec 24 17:35:04 2025 by rpki-client