This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft File: XQ11AElW7cyrm4QnGnNA5jhV_4o.mft (raw, json) Hash identifier: 1D+s0xU2evoTmgqI7U9XPt5tvJWH07HEKeleTK5zmxw= Subject key identifier: 2A:B1:A7:C4:A0:26:D8:35:DB:BF:AB:21:F9:2A:FD:AD:32:38:51:F9 Authority key identifier: 5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A Certificate issuer: /CN=A912BC39/serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Certificate serial: 0787 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft Manifest number: 0779 Signing time: Mon 22 Dec 2025 20:53:30 +0000 Manifest this update: Mon 22 Dec 2025 20:53:29 +0000 Manifest next update: Mon 29 Dec 2025 20:53:29 +0000 Files and hashes: 1: XQ11AElW7cyrm4QnGnNA5jhV_4o.crl (hash: TJer5Vjpm/gycLHatAjh8dvXCmL2cYTFDkwQ/ReuLis=) 2: 8EBA772E3F2B11EB87759716C4F9AE02.roa (hash: JhJ29hsZ9Nl8Kc5Vc5GMGK+cSOOJDZ3+fb8ZbDKNP/w=) 3: 688EAE1E8A1911EC94921D85C4F9AE02.roa (hash: +jUuW9+jw1JUgmOZj9N0BtBUU0s0p/K1kZNOedeoZQI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:53:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1927 (0x787) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BC39, serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Validity Not Before: Dec 22 20:53:29 2025 GMT Not After : Dec 29 20:53:29 2025 GMT Subject: CN=6949afca-eec7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:e7:fa:46:7e:ab:26:f4:3d:62:20:8f:43:41: 78:f8:36:e3:4c:d7:c3:eb:b1:e3:ad:40:31:8f:63: 46:6e:cd:ec:70:0a:d7:2f:31:ef:f9:a0:9f:8b:7c: ac:4a:63:29:b0:6a:2e:aa:68:6a:51:f1:48:02:05: 58:44:1f:df:9c:46:10:13:90:2f:2f:1b:c1:ad:47: 9b:c8:59:e4:25:01:f7:5a:d1:c0:4d:b7:c7:54:ae: 2a:46:92:b0:47:6d:79:90:58:df:6f:14:a7:85:8d: 48:47:e2:6c:2d:99:c6:b2:c0:e5:0b:41:9c:66:bf: d8:7f:2e:2b:6c:e5:2f:13:9f:19:6f:27:98:5c:d6: ab:3b:ed:8e:b6:28:87:5a:da:72:86:26:97:03:f0: 31:fc:c5:3e:aa:69:10:ce:02:95:6e:14:dc:44:d0: 4e:39:f6:17:6c:7c:1c:d3:4b:21:83:c3:26:26:89: 25:18:42:81:18:c0:ef:f7:61:39:40:4a:7e:b3:e7: c9:39:78:1e:84:68:cb:42:a3:97:1f:35:7f:02:31: dc:0a:89:60:53:c8:70:a6:a3:4c:ed:ae:d7:f9:af: 9a:e4:f2:f6:3f:39:92:f3:c4:6c:de:f0:3b:43:dc: 25:d3:d0:32:3d:f5:82:1f:9c:94:4a:14:97:e5:d8: e8:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:B1:A7:C4:A0:26:D8:35:DB:BF:AB:21:F9:2A:FD:AD:32:38:51:F9 X509v3 Authority Key Identifier: keyid:5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:8e:5a:b1:d9:63:88:8f:68:f5:c8:54:6c:ed:b6:ec:3a:3d: f0:7f:d4:33:87:31:15:9d:29:96:63:1e:b3:1d:5c:b4:b0:33: e6:16:51:a2:0d:89:ff:06:57:c5:c0:dd:84:1a:81:33:bd:48: ea:51:33:d0:9b:d4:b1:63:4d:77:1b:ef:f0:ec:dc:36:64:ad: 3d:d3:48:33:92:e9:60:51:70:01:f6:8c:c0:0f:db:c9:1a:37: 29:c7:14:0b:1e:95:ed:39:f6:21:9e:6e:f7:d5:7d:b2:58:9e: 78:d0:6d:9f:4e:f1:ff:1e:69:c9:2f:66:60:82:1b:33:22:f2: d4:28:3f:1b:ec:a0:a2:0a:37:06:45:6d:4f:d1:d8:8f:c7:86: 15:bd:d0:bf:92:fb:cc:5d:41:fd:3b:a9:78:d8:8b:91:a4:20: 86:e1:bf:21:63:69:92:18:9c:e1:e5:ad:f7:e9:ff:36:a9:5c: 5e:ab:8b:89:08:1b:04:a4:63:15:26:b4:ce:b8:77:94:a0:12: 01:dc:17:d0:a6:c6:74:9c:fe:3d:3d:3c:45:6f:ca:bf:fa:4b: 9b:20:da:44:dd:26:c7:b5:99:f9:fb:23:91:c0:18:01:50:78: 38:23:f9:0a:1a:0f:1c:f8:df:2d:cf:94:0d:23:83:f0:c8:23: 72:60:fe:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJDMzkxMTAvBgNVBAUTKDVEMEQ3NTAwNDk1NkVEQ0NBQjlCODQyNzFBNzM0MEU2 Mzg1NUZGOEEwHhcNMjUxMjIyMjA1MzI5WhcNMjUxMjI5MjA1MzI5WjAYMRYwFAYD VQQDDA02OTQ5YWZjYS1lZWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhef6Rn6rJvQ9YiCPQ0F4+DbjTNfD67HjrUAxj2NGbs3scArXLzHv+aCfi3ys SmMpsGouqmhqUfFIAgVYRB/fnEYQE5AvLxvBrUebyFnkJQH3WtHATbfHVK4qRpKw R215kFjfbxSnhY1IR+JsLZnGssDlC0GcZr/Yfy4rbOUvE58ZbyeYXNarO+2OtiiH WtpyhiaXA/Ax/MU+qmkQzgKVbhTcRNBOOfYXbHwc00shg8MmJoklGEKBGMDv92E5 QEp+s+fJOXgehGjLQqOXHzV/AjHcColgU8hwpqNM7a7X+a+a5PL2PzmS88Rs3vA7 Q9wl09AyPfWCH5yUShSX5djo7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCqxp8Sg Jtg127+rIfkq/a0yOFH5MB8GA1UdIwQYMBaAFF0NdQBJVu3Mq5uEJxpzQOY4Vf+K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkMzOS9CMzdCMTU4RTNG MjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdjeXJtNFFuR25OQTVqaFZf NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hRMTFBRWxXN2N5cm00UW5Hbk5BNWpoVl80by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkMzOS9CMzdCMTU4RTNGMjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdj eXJtNFFuR25OQTVqaFZfNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAjlqx2WOIj2j1yFRs7bbsOj3wf9QzhzEVnSmWYx6zHVy0sDPmFlGi DYn/BlfFwN2EGoEzvUjqUTPQm9SxY013G+/w7Nw2ZK0900gzkulgUXAB9ozAD9vJ GjcpxxQLHpXtOfYhnm731X2yWJ540G2fTvH/HmnJL2ZgghszIvLUKD8b7KCiCjcG RW1P0diPx4YVvdC/kvvMXUH9O6l42IuRpCCG4b8hY2mSGJzh5a336f82qVxeq4uJ CBsEpGMVJrTOuHeUoBIB3BfQpsZ0nP49PTxFb8q/+kubINpE3SbHtZn5+yORwBgB UHg4I/kKGg8c+N8tz5QNI4PwyCNyYP4c -----END CERTIFICATE-----Generated at Tue Dec 23 11:06:07 2025 by rpki-client