This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9142812/C1E5DD1E807B11EBA83AC01DC4F9AE02/XEWtAAu9UKcPk6XLcLZmgKUo7cA.mft File: XEWtAAu9UKcPk6XLcLZmgKUo7cA.mft (raw, json) Hash identifier: yhH0YZPsnPQGOP3kbWAWhsOtaYLQPPj2c6c204PfCVA= Subject key identifier: BA:6B:59:7E:9C:61:D5:91:0E:9F:44:7E:EE:21:0E:38:1A:05:B6:B2 Authority key identifier: 5C:45:AD:00:0B:BD:50:A7:0F:93:A5:CB:70:B6:66:80:A5:28:ED:C0 Certificate issuer: /CN=A9142812/serialNumber=5C45AD000BBD50A70F93A5CB70B66680A528EDC0 Certificate serial: 06D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEWtAAu9UKcPk6XLcLZmgKUo7cA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142812/C1E5DD1E807B11EBA83AC01DC4F9AE02/XEWtAAu9UKcPk6XLcLZmgKUo7cA.mft Manifest number: 06C6 Signing time: Sat 06 Dec 2025 21:04:46 +0000 Manifest this update: Sat 06 Dec 2025 21:04:46 +0000 Manifest next update: Sat 13 Dec 2025 21:04:46 +0000 Files and hashes: 1: XEWtAAu9UKcPk6XLcLZmgKUo7cA.crl (hash: 5B0GWF1m3+6KZ/KhlhVSFj+Itzqmzy4RYRStAry4P0A=) 2: 9ADBEC30DA6411EF95F32A7FC4F9AE02.roa (hash: Ode9C1rjZZ48xy/QuIzg9S8zoYsoG2CKnN/yX25u2gs=) 3: 9BE20420DA6411EF95F32A7FC4F9AE02.roa (hash: p4MgzG+OXWtv9vZOtFXE4K9GjNanwMoHoivstYkkSaU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142812/C1E5DD1E807B11EBA83AC01DC4F9AE02/XEWtAAu9UKcPk6XLcLZmgKUo7cA.crl rsync://rpki.apnic.net/member_repository/A9142812/C1E5DD1E807B11EBA83AC01DC4F9AE02/XEWtAAu9UKcPk6XLcLZmgKUo7cA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEWtAAu9UKcPk6XLcLZmgKUo7cA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:04:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1746 (0x6d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142812, serialNumber=5C45AD000BBD50A70F93A5CB70B66680A528EDC0 Validity Not Before: Dec 6 21:04:46 2025 GMT Not After : Dec 13 21:04:46 2025 GMT Subject: CN=69349a6e-6b6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7f:0a:bd:29:42:d2:34:11:95:35:a5:51:66: 3c:8c:e4:68:8f:1d:44:89:02:fd:ba:1f:ac:50:4d: 6e:e9:bd:6c:d9:17:74:73:d6:72:3a:e2:85:57:31: 7b:4b:be:45:3d:0d:97:26:7b:15:84:3d:49:5f:16: 2e:05:28:b7:58:2b:42:49:43:c4:99:aa:77:04:6f: 49:7e:73:70:c3:a7:7d:eb:9b:95:d7:40:80:34:16: c7:f9:d6:65:cb:8e:6a:ca:03:95:2a:23:4b:00:b2: d5:12:41:6e:f7:38:ba:3f:49:bf:b3:f8:11:78:fc: 41:07:43:9d:79:a2:27:3e:9e:9a:4e:b9:57:99:ba: 96:42:f8:7f:1b:c6:18:f6:f6:8c:c5:85:7b:e0:1a: 7a:92:97:6d:a5:e4:ce:38:fb:f5:1c:e0:41:31:b2: e8:83:85:80:79:2a:69:f7:b2:b1:7c:d5:23:11:fe: 1a:2f:d5:12:a5:b0:5d:fd:bc:bb:30:51:94:91:0a: 8c:96:6f:7c:16:fd:13:f1:70:eb:9b:f4:a6:c8:54: c6:d5:a6:17:45:35:97:b2:65:5c:a8:8f:2b:89:e5: e2:e6:e5:2a:19:07:6d:11:37:b8:90:5f:61:60:51: 69:fc:9b:d5:10:12:85:74:fa:22:77:2b:37:99:92: c7:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:6B:59:7E:9C:61:D5:91:0E:9F:44:7E:EE:21:0E:38:1A:05:B6:B2 X509v3 Authority Key Identifier: keyid:5C:45:AD:00:0B:BD:50:A7:0F:93:A5:CB:70:B6:66:80:A5:28:ED:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142812/C1E5DD1E807B11EBA83AC01DC4F9AE02/XEWtAAu9UKcPk6XLcLZmgKUo7cA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEWtAAu9UKcPk6XLcLZmgKUo7cA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142812/C1E5DD1E807B11EBA83AC01DC4F9AE02/XEWtAAu9UKcPk6XLcLZmgKUo7cA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:ff:4e:e2:82:37:15:2d:a2:2b:c0:5d:b5:a2:8b:76:95:e6: 57:41:2f:3b:2c:81:47:fb:40:d8:de:63:65:01:eb:29:80:ba: 11:37:38:17:98:44:d8:74:34:9b:9d:c4:58:e2:8b:3a:eb:b4: 3c:0a:70:db:d6:67:a1:9b:7d:11:f6:fe:0f:7c:9e:ee:20:aa: 3a:36:51:8a:72:13:e6:52:19:7e:04:5c:37:7a:1b:28:5d:43: 93:b0:7e:c2:7b:90:11:b9:5c:68:7e:00:0d:00:03:8a:20:15: ba:7a:fc:4b:9c:e3:5f:a8:f7:eb:51:da:94:35:43:bf:48:12: 93:fe:75:33:89:be:e6:ab:d9:4c:ce:24:19:ae:7c:3a:07:18: a4:f2:0d:ed:a4:95:40:11:a7:ce:cd:f7:45:b6:7f:f8:be:05: 06:3d:df:ff:4c:d5:44:7e:86:bb:65:30:d7:17:3c:cc:8f:98: 16:5a:9a:41:e9:ec:97:9b:80:7a:ed:e2:b9:06:de:8c:c0:ac: db:7c:28:1d:bc:a4:60:63:ae:03:4e:4c:57:37:23:56:37:2e: 0e:b5:f7:86:8c:3d:2f:76:38:3a:67:03:d4:22:78:8b:df:85: b1:4f:f9:a9:c0:f3:a2:a9:30:5b:ba:47:3e:13:64:ea:87:73: 0b:71:01:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI4MTIxMTAvBgNVBAUTKDVDNDVBRDAwMEJCRDUwQTcwRjkzQTVDQjcwQjY2Njgw QTUyOEVEQzAwHhcNMjUxMjA2MjEwNDQ2WhcNMjUxMjEzMjEwNDQ2WjAYMRYwFAYD VQQDEw02OTM0OWE2ZS02YjZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtX8KvSlC0jQRlTWlUWY8jORojx1EiQL9uh+sUE1u6b1s2Rd0c9ZyOuKFVzF7 S75FPQ2XJnsVhD1JXxYuBSi3WCtCSUPEmap3BG9JfnNww6d965uV10CANBbH+dZl y45qygOVKiNLALLVEkFu9zi6P0m/s/gRePxBB0OdeaInPp6aTrlXmbqWQvh/G8YY 9vaMxYV74Bp6kpdtpeTOOPv1HOBBMbLog4WAeSpp97KxfNUjEf4aL9USpbBd/by7 MFGUkQqMlm98Fv0T8XDrm/SmyFTG1aYXRTWXsmVcqI8rieXi5uUqGQdtETe4kF9h YFFp/JvVEBKFdPoidys3mZLHGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLprWX6c YdWRDp9Efu4hDjgaBbayMB8GA1UdIwQYMBaAFFxFrQALvVCnD5Oly3C2ZoClKO3A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjgxMi9DMUU1REQxRTgw N0IxMUVCQTgzQUMwMURDNEY5QUUwMi9YRVd0QUF1OVVLY1BrNlhMY0xabWdLVW83 Y0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hFV3RBQXU5VUtjUGs2WExjTFptZ0tVbzdjQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjgxMi9DMUU1REQxRTgwN0IxMUVCQTgzQUMwMURDNEY5QUUwMi9YRVd0QUF1OVVL Y1BrNlhMY0xabWdLVW83Y0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBj/07igjcVLaIrwF21oot2leZXQS87LIFH+0DY3mNlAespgLoRNzgX mETYdDSbncRY4os667Q8CnDb1mehm30R9v4PfJ7uIKo6NlGKchPmUhl+BFw3ehso XUOTsH7Ce5ARuVxofgANAAOKIBW6evxLnONfqPfrUdqUNUO/SBKT/nUzib7mq9lM ziQZrnw6Bxik8g3tpJVAEafOzfdFtn/4vgUGPd//TNVEfoa7ZTDXFzzMj5gWWppB 6eyXm4B67eK5Bt6MwKzbfCgdvKRgY64DTkxXNyNWNy4OtfeGjD0vdjg6ZwPUIniL 34WxT/mpwPOiqTBbukc+E2Tqh3MLcQHp -----END CERTIFICATE-----Generated at Sun Dec 7 15:10:46 2025 by rpki-client