This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft File: xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft (raw, json) Hash identifier: 3rHlWUiReG8CP1mewJtzcdpbII+vRpjN3XYPTg7kJg4= Subject key identifier: 2C:BC:C1:10:4F:71:86:90:8E:1B:45:E4:79:4C:AB:03:E2:C2:D6:CA Authority key identifier: C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E Certificate issuer: /CN=A9125C22/serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Certificate serial: 06D8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft Manifest number: 06D3 Signing time: Wed 24 Dec 2025 21:24:05 +0000 Manifest this update: Wed 24 Dec 2025 21:24:05 +0000 Manifest next update: Wed 31 Dec 2025 21:24:05 +0000 Files and hashes: 1: xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl (hash: GVJf45FuwduU36Tn2FZNPA//IsLiilkd3Wv8YfPyHck=) 2: 485D694A454911EEB8718378C4F9AE02.roa (hash: 8goNJpX3SWLmR+a+Wvt1jnrzs1RIuPAmcWPIzJu1GEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 21:24:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1752 (0x6d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C22, serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Validity Not Before: Dec 24 21:24:05 2025 GMT Not After : Dec 31 21:24:05 2025 GMT Subject: CN=694c59f5-ffd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:7d:86:1b:33:5f:a9:42:12:10:7c:d0:54:74: fb:47:b8:19:d3:5a:c1:bc:56:25:35:cc:e3:2f:97: 5b:3f:7b:05:c1:69:ba:84:04:28:25:40:72:ed:3d: f4:38:3f:58:71:d6:da:d2:78:da:79:6b:83:62:66: 3e:57:73:df:43:61:1a:df:c2:f5:d0:48:c9:bb:55: 2f:29:de:69:5d:83:d9:de:64:c9:d8:7d:25:05:5b: a7:7c:db:23:ab:d8:c9:bc:9f:84:d0:86:df:6d:6b: 6e:f9:5a:ed:3b:03:bd:47:e1:a1:57:dc:69:82:d0: 6a:5b:ce:29:a7:bb:7c:cb:c2:c8:fa:aa:3a:e3:dd: c2:9c:d3:ba:e9:22:36:1f:f2:5c:f8:82:b3:b2:08: d9:d7:e2:ad:92:ae:f3:0a:88:f6:45:40:70:7f:e8: 39:40:16:de:ae:e4:32:d0:50:01:4a:e2:b6:9d:be: c9:a1:96:ca:9e:6f:7e:9b:02:57:b5:ed:1b:bb:52: 0f:2d:ac:0b:a6:3c:82:6d:c1:5f:87:8b:d0:6e:44: 0c:a3:a1:b7:4c:fb:f6:f1:f1:fe:32:92:b1:e3:35: 96:a0:bc:cf:2f:97:d1:b5:8b:8a:ed:58:86:73:37: 8a:06:06:0c:a1:b0:14:18:e8:dd:c5:da:73:f0:3c: ac:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:BC:C1:10:4F:71:86:90:8E:1B:45:E4:79:4C:AB:03:E2:C2:D6:CA X509v3 Authority Key Identifier: keyid:C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:1a:a4:98:09:82:db:df:28:76:0d:d5:e1:41:82:73:75:55: d6:5f:e5:2c:5c:11:0b:23:2b:1f:93:7f:9a:dd:44:03:f0:46: 4f:b1:03:5c:1c:34:fc:6c:c2:33:84:83:b9:26:82:1c:c3:2b: 81:90:28:48:98:75:25:55:17:16:61:f3:af:a8:c9:a0:29:5f: e7:a7:14:d4:d2:0b:d8:ab:d3:1d:e4:a9:2d:c3:b6:19:cd:80: 54:60:35:34:29:4f:3d:a5:87:c1:48:80:9d:a8:bb:88:3d:64: 5a:03:83:87:36:da:da:bb:0b:c6:64:df:69:e5:96:e0:b5:e2: 60:47:d4:b9:a1:c0:fa:38:d2:d2:02:d6:a6:55:2d:46:01:9b: 43:ff:b1:33:78:96:fa:30:52:46:77:3f:b4:00:31:e0:25:f6: af:aa:f0:34:fa:96:73:57:30:51:50:83:d4:25:4d:6a:de:33: 57:f7:46:5f:15:7c:79:12:e7:14:d8:94:f7:a5:4b:ea:a3:67: fe:ca:92:2d:c8:b3:88:63:0f:1f:e3:20:3d:d7:66:30:47:db: b2:40:d4:2d:95:a8:0e:b8:89:ae:74:c2:45:2b:7a:cb:75:2e: 5d:40:89:f8:62:51:eb:53:a6:71:2d:d0:54:9b:48:c4:2b:b6: d2:5f:a9:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMjIxMTAvBgNVBAUTKEM3MEI0RTA0N0NBQTczNzcyNEI4OUQ1ODREQjVDMEMx QTg1OEQyOEUwHhcNMjUxMjI0MjEyNDA1WhcNMjUxMjMxMjEyNDA1WjAYMRYwFAYD VQQDDA02OTRjNTlmNS1mZmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2n2GGzNfqUISEHzQVHT7R7gZ01rBvFYlNczjL5dbP3sFwWm6hAQoJUBy7T30 OD9Ycdba0njaeWuDYmY+V3PfQ2Ea38L10EjJu1UvKd5pXYPZ3mTJ2H0lBVunfNsj q9jJvJ+E0IbfbWtu+VrtOwO9R+GhV9xpgtBqW84pp7t8y8LI+qo6493CnNO66SI2 H/Jc+IKzsgjZ1+Ktkq7zCoj2RUBwf+g5QBberuQy0FABSuK2nb7JoZbKnm9+mwJX te0bu1IPLawLpjyCbcFfh4vQbkQMo6G3TPv28fH+MpKx4zWWoLzPL5fRtYuK7ViG czeKBgYMobAUGOjdxdpz8DysUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCy8wRBP cYaQjhtF5HlMqwPiwtbKMB8GA1UdIwQYMBaAFMcLTgR8qnN3JLidWE21wMGoWNKO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMyMi9GQUNDQkM1QzdG QUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMzY2t1SjFZVGJYQXdhaFkw bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3h3dE9CSHlxYzNja3VKMVlUYlhBd2FoWTBvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMyMi9GQUNDQkM1QzdGQUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMz Y2t1SjFZVGJYQXdhaFkwbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwGqSYCYLb3yh2DdXhQYJzdVXWX+UsXBELIysfk3+a3UQD8EZPsQNc HDT8bMIzhIO5JoIcwyuBkChImHUlVRcWYfOvqMmgKV/npxTU0gvYq9Md5Kktw7YZ zYBUYDU0KU89pYfBSICdqLuIPWRaA4OHNtrauwvGZN9p5ZbgteJgR9S5ocD6ONLS AtamVS1GAZtD/7EzeJb6MFJGdz+0ADHgJfavqvA0+pZzVzBRUIPUJU1q3jNX90Zf FXx5EucU2JT3pUvqo2f+ypItyLOIYw8f4yA912YwR9uyQNQtlagOuImudMJFK3rL dS5dQIn4YlHrU6ZxLdBUm0jEK7bSX6mp -----END CERTIFICATE-----Generated at Wed Dec 24 23:00:07 2025 by rpki-client