This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft File: XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft (raw, json) Hash identifier: 1mPTXuuAG9K+QPxtsdf8IDAKxhnf26vDcL1HS+91Vg4= Subject key identifier: B1:23:03:02:84:36:F5:21:15:D4:99:5A:42:46:40:D0:D4:CD:3B:86 Authority key identifier: 5E:E7:CF:43:9A:42:23:23:29:82:A2:CB:4D:E5:4F:37:C7:20:5A:A9 Certificate issuer: /CN=A913AE78/serialNumber=5EE7CF439A4223232982A2CB4DE54F37C7205AA9 Certificate serial: 07B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XufPQ5pCIyMpgqLLTeVPN8cgWqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft Manifest number: 07B0 Signing time: Mon 22 Dec 2025 20:41:21 +0000 Manifest this update: Mon 22 Dec 2025 20:41:21 +0000 Manifest next update: Mon 29 Dec 2025 20:41:21 +0000 Files and hashes: 1: XufPQ5pCIyMpgqLLTeVPN8cgWqk.crl (hash: fxeV3Dw4rkuW3Nmz+0B1DZXzo1CFYW6Vj7unWpwzqrs=) 2: D6138A3C292A11EB9CEDCC26C4F9AE02.roa (hash: J8JdQshiJip721LPrJBgXIVa6Wu0FEEhzzbZ5GMATtY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.crl rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XufPQ5pCIyMpgqLLTeVPN8cgWqk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:41:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1975 (0x7b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE78, serialNumber=5EE7CF439A4223232982A2CB4DE54F37C7205AA9 Validity Not Before: Dec 22 20:41:21 2025 GMT Not After : Dec 29 20:41:21 2025 GMT Subject: CN=6949acf1-016c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:80:13:d0:af:85:45:ee:1d:14:4e:f8:38:95: 13:7d:40:42:3e:58:dc:66:95:a0:dd:c5:4d:3c:de: cd:ec:7a:71:bd:de:d5:61:58:70:a8:eb:d1:00:72: 12:f5:49:ce:fc:61:b3:ff:0c:a4:c6:27:f9:39:80: 14:a0:5e:65:33:16:d3:6e:d9:92:37:0d:18:5d:d9: fc:66:f2:20:70:48:72:59:00:62:96:58:1d:74:6f: 9c:4b:a5:6c:31:69:1d:2b:bd:79:2f:eb:3e:71:5e: 68:f3:5d:90:db:86:b0:b0:24:48:ba:e2:99:ae:cc: 5e:ea:fa:10:b9:57:db:5e:18:4e:37:86:ab:14:4a: c0:6e:93:a7:fc:83:69:48:db:42:26:ab:79:c1:0a: 4e:6a:8d:af:e5:8e:96:57:2b:e8:a7:00:1e:c6:d1: d5:98:74:f7:86:bd:75:a8:3c:88:6d:1c:18:c1:fc: 88:53:24:08:0b:df:8c:be:46:ea:3a:32:4e:12:8f: 2c:90:5b:6c:2e:ca:20:e5:26:74:db:bc:ee:29:d7: 80:79:ef:d4:0d:0a:e6:e1:67:2a:99:78:0a:9c:5a: ad:ef:ee:15:69:93:c2:c6:3a:56:27:a0:27:63:86: 65:0a:60:4d:d8:79:8f:8d:07:c9:eb:16:6d:1d:dd: 0c:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:23:03:02:84:36:F5:21:15:D4:99:5A:42:46:40:D0:D4:CD:3B:86 X509v3 Authority Key Identifier: keyid:5E:E7:CF:43:9A:42:23:23:29:82:A2:CB:4D:E5:4F:37:C7:20:5A:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XufPQ5pCIyMpgqLLTeVPN8cgWqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:a8:ca:d2:f4:8c:d5:9a:b4:c9:88:a3:b9:1c:1d:8d:88:f9: 0b:3f:0d:8f:d0:be:fd:a1:d8:d1:35:5a:ec:21:38:7a:dc:a1: 4e:84:d6:56:4d:5c:4f:47:29:2d:1e:8b:6d:a7:91:d7:36:67: ea:cf:b8:d2:24:db:95:d8:51:58:f1:ce:1d:15:77:04:d9:1d: da:d6:1c:43:58:c8:f8:d9:cb:fd:0f:c5:15:e1:b0:5a:4b:16: aa:f6:bb:2d:37:6b:c0:f2:0e:3e:80:e8:23:ab:03:4b:ff:d8: 1b:b5:49:11:11:5a:14:96:3a:f8:60:61:34:8f:2b:4a:fb:16: af:07:6e:f7:b5:33:b2:b2:01:8d:0c:ed:b9:07:6b:77:95:25: 2c:77:86:08:ad:03:27:6a:1f:db:1c:15:88:3f:3e:25:cb:43: 80:08:21:dc:c7:fc:1d:9d:c0:2f:3a:a4:03:d7:d0:ef:4b:ab: 85:aa:ca:6d:4c:1a:64:11:46:6c:70:6e:9f:6e:c5:fb:0c:d7: a7:11:cc:56:47:43:3c:1a:c3:a8:5d:a3:28:f8:8c:14:fa:ca: b3:32:c0:5f:b5:5b:0d:b4:2b:25:dc:51:46:7f:e0:07:1e:95: 4c:8e:83:e5:3c:e2:73:94:38:b6:2a:7c:b9:64:3d:a5:76:eb: 9b:b5:41:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFNzgxMTAvBgNVBAUTKDVFRTdDRjQzOUE0MjIzMjMyOTgyQTJDQjRERTU0RjM3 QzcyMDVBQTkwHhcNMjUxMjIyMjA0MTIxWhcNMjUxMjI5MjA0MTIxWjAYMRYwFAYD VQQDDA02OTQ5YWNmMS0wMTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqIAT0K+FRe4dFE74OJUTfUBCPljcZpWg3cVNPN7N7Hpxvd7VYVhwqOvRAHIS 9UnO/GGz/wykxif5OYAUoF5lMxbTbtmSNw0YXdn8ZvIgcEhyWQBillgddG+cS6Vs MWkdK715L+s+cV5o812Q24awsCRIuuKZrsxe6voQuVfbXhhON4arFErAbpOn/INp SNtCJqt5wQpOao2v5Y6WVyvopwAextHVmHT3hr11qDyIbRwYwfyIUyQIC9+Mvkbq OjJOEo8skFtsLsog5SZ027zuKdeAee/UDQrm4WcqmXgKnFqt7+4VaZPCxjpWJ6An Y4ZlCmBN2HmPjQfJ6xZtHd0MFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLEjAwKE NvUhFdSZWkJGQNDUzTuGMB8GA1UdIwQYMBaAFF7nz0OaQiMjKYKiy03lTzfHIFqp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUU3OC9GMUY0RDNDRTI5 MjkxMUVCOTRFMzhEMjZDNEY5QUUwMi9YdWZQUTVwQ0l5TXBncUxMVGVWUE44Y2dX cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h1ZlBRNXBDSXlNcGdxTExUZVZQTjhjZ1dxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUU3OC9GMUY0RDNDRTI5MjkxMUVCOTRFMzhEMjZDNEY5QUUwMi9YdWZQUTVwQ0l5 TXBncUxMVGVWUE44Y2dXcWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhqMrS9IzVmrTJiKO5HB2NiPkLPw2P0L79odjRNVrsITh63KFOhNZW TVxPRyktHottp5HXNmfqz7jSJNuV2FFY8c4dFXcE2R3a1hxDWMj42cv9D8UV4bBa Sxaq9rstN2vA8g4+gOgjqwNL/9gbtUkREVoUljr4YGE0jytK+xavB273tTOysgGN DO25B2t3lSUsd4YIrQMnah/bHBWIPz4ly0OACCHcx/wdncAvOqQD19DvS6uFqspt TBpkEUZscG6fbsX7DNenEcxWR0M8GsOoXaMo+IwU+sqzMsBftVsNtCsl3FFGf+AH HpVMjoPlPOJzlDi2Kny5ZD2lduubtUFj -----END CERTIFICATE-----Generated at Wed Dec 24 15:42:38 2025 by rpki-client