This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft File: xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft (raw, json) Hash identifier: oP5vcUn94Vscxpa185nSuY2weDXiyRhLiCjqh+c1DjA= Subject key identifier: A5:0F:27:DC:1A:E8:1E:55:C8:C3:B4:C7:74:C1:14:B1:DF:D0:8A:50 Authority key identifier: C7:0B:F3:DF:F4:50:23:D4:1A:F4:C4:DF:5D:76:50:40:B9:24:1A:C7 Certificate issuer: /CN=A91243FE/serialNumber=C70BF3DFF45023D41AF4C4DF5D765040B9241AC7 Certificate serial: 0416 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft Manifest number: 0412 Signing time: Mon 22 Dec 2025 23:26:32 +0000 Manifest this update: Mon 22 Dec 2025 23:26:31 +0000 Manifest next update: Mon 29 Dec 2025 23:26:31 +0000 Files and hashes: 1: xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl (hash: 1CnBjHY+TAwP26smztJWEQBHqSaRk4PezGoPH7lYtlQ=) 2: 5ADF4C92956811EC9028F155C4F9AE02.roa (hash: 6C9pOBCK4sWDlaS78t/pprsEcl/8A0s9Wlk6KVMoAhE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:26:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1046 (0x416) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91243FE, serialNumber=C70BF3DFF45023D41AF4C4DF5D765040B9241AC7 Validity Not Before: Dec 22 23:26:31 2025 GMT Not After : Dec 29 23:26:31 2025 GMT Subject: CN=6949d3a8-07b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:62:75:2a:cd:45:d6:af:90:47:77:5d:5c:5e: fa:c1:6b:f6:1a:c6:35:49:c1:3f:5a:43:39:18:98: 46:d4:3e:c7:a5:93:3d:9b:db:4e:b9:3b:0f:dc:6d: db:27:e0:d7:2d:de:70:2e:d1:3a:31:de:bd:66:9f: 87:35:59:2e:df:ca:b2:92:35:36:e1:5e:86:5c:fa: 55:6b:43:07:5b:b3:44:19:ae:40:58:a4:3c:cd:36: 7e:42:8d:a0:78:1c:53:9b:0c:7e:aa:e3:51:c7:19: 26:58:30:91:2a:59:3c:0b:16:46:1d:95:7c:01:af: 18:15:18:6f:d9:73:5b:07:19:98:82:78:b9:c9:a8: 54:07:c3:4b:98:08:cc:ae:ac:db:91:74:70:ea:0e: fa:a1:04:91:61:7f:08:00:1b:bd:09:89:79:bd:5f: fd:60:85:7b:ee:ae:1e:cd:e8:67:91:97:2f:00:46: 8c:f4:50:89:c3:03:d2:f4:72:5d:30:ee:f3:1f:43: 59:13:92:7d:86:24:98:fc:51:3c:13:69:20:a8:70: 67:0c:da:e2:4d:84:50:c1:bd:fb:6c:ae:87:aa:c8: b4:6a:ff:00:24:ff:35:22:11:ae:e3:10:89:80:0a: e8:87:e4:f5:80:20:f3:9e:1d:6c:7c:88:03:2f:39: fe:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:0F:27:DC:1A:E8:1E:55:C8:C3:B4:C7:74:C1:14:B1:DF:D0:8A:50 X509v3 Authority Key Identifier: keyid:C7:0B:F3:DF:F4:50:23:D4:1A:F4:C4:DF:5D:76:50:40:B9:24:1A:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:82:bd:f5:59:74:a1:b9:0e:27:6d:7f:93:ed:50:f0:78:e9: cb:0f:c3:5d:17:22:0d:5a:03:3f:b1:11:45:69:3a:28:26:98: dd:d0:c4:0f:ea:a7:1c:86:ab:02:58:d7:fe:95:d8:ad:55:f3: 28:24:2c:ce:36:a5:67:ee:f5:48:4d:8e:6a:d3:e9:bd:78:b4: d3:bd:7c:41:3c:a6:3b:82:17:1f:92:d9:da:9f:d2:0b:88:50: 62:ac:d0:a2:e2:a9:d7:47:20:4d:7c:64:64:0f:2e:d4:2e:88: f6:aa:1d:95:6d:4a:2d:8f:63:aa:53:58:69:15:73:91:62:bf: b5:06:3c:3e:f8:89:9c:c9:d3:27:1c:a4:20:d0:4d:39:33:fa: d5:2d:e1:76:b4:19:ba:0d:91:73:37:98:98:bc:a6:44:20:96: 12:b5:a5:23:91:75:da:8e:58:5f:23:1c:5b:51:08:40:67:d0: 86:e0:db:45:9d:05:1a:1a:b4:98:67:93:16:04:bc:7e:6d:25: 83:fc:8a:39:e7:bc:22:a7:42:13:11:bd:78:99:1f:1e:30:89: b4:97:97:8f:8c:ea:1c:c3:3c:f6:7a:78:fd:89:56:8b:7e:0b: 27:12:8d:28:0f:28:2a:e8:a7:7d:35:27:fc:50:4e:67:10:5b: 4f:d3:db:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQzRkUxMTAvBgNVBAUTKEM3MEJGM0RGRjQ1MDIzRDQxQUY0QzRERjVENzY1MDQw QjkyNDFBQzcwHhcNMjUxMjIyMjMyNjMxWhcNMjUxMjI5MjMyNjMxWjAYMRYwFAYD VQQDDA02OTQ5ZDNhOC0wN2IzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2GJ1Ks1F1q+QR3ddXF76wWv2GsY1ScE/WkM5GJhG1D7HpZM9m9tOuTsP3G3b J+DXLd5wLtE6Md69Zp+HNVku38qykjU24V6GXPpVa0MHW7NEGa5AWKQ8zTZ+Qo2g eBxTmwx+quNRxxkmWDCRKlk8CxZGHZV8Aa8YFRhv2XNbBxmYgni5yahUB8NLmAjM rqzbkXRw6g76oQSRYX8IABu9CYl5vV/9YIV77q4ezehnkZcvAEaM9FCJwwPS9HJd MO7zH0NZE5J9hiSY/FE8E2kgqHBnDNriTYRQwb37bK6Hqsi0av8AJP81IhGu4xCJ gAroh+T1gCDznh1sfIgDLzn+gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKUPJ9wa 6B5VyMO0x3TBFLHf0IpQMB8GA1UdIwQYMBaAFMcL89/0UCPUGvTE3112UEC5JBrH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDNGRS85ODE0ODA2Mjk1 NjUxMUVDOTE4M0JFNTNDNEY5QUUwMi94d3Z6M19SUUk5UWE5TVRmWFhaUVFMa2tH c2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h3dnozX1JRSTlRYTlNVGZYWFpRUUxra0dzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDNGRS85ODE0ODA2Mjk1NjUxMUVDOTE4M0JFNTNDNEY5QUUwMi94d3Z6M19SUUk5 UWE5TVRmWFhaUVFMa2tHc2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbgr31WXShuQ4nbX+T7VDweOnLD8NdFyINWgM/sRFFaTooJpjd0MQP 6qcchqsCWNf+lditVfMoJCzONqVn7vVITY5q0+m9eLTTvXxBPKY7ghcfktnan9IL iFBirNCi4qnXRyBNfGRkDy7ULoj2qh2VbUotj2OqU1hpFXORYr+1Bjw++ImcydMn HKQg0E05M/rVLeF2tBm6DZFzN5iYvKZEIJYStaUjkXXajlhfIxxbUQhAZ9CG4NtF nQUaGrSYZ5MWBLx+bSWD/Io557wip0ITEb14mR8eMIm0l5ePjOocwzz2enj9iVaL fgsnEo0oDygq6Kd9NSf8UE5nEFtP09vj -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:42 2025 by rpki-client