This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9142E1E/1C7CDF68824211EFAD3D8181C4F9AE02/STXJCZ1YAoESreyiiRQ1_MWPuiw.mft File: STXJCZ1YAoESreyiiRQ1_MWPuiw.mft (raw, json) Hash identifier: i33jHdZK3p1s4meSxxXoxCAtCBr2A9hbcd9aaeEwXDY= Subject key identifier: 92:64:E0:0D:33:A9:64:B9:23:7F:F0:FD:CE:6F:79:7C:3C:E1:5F:0E Authority key identifier: 49:35:C9:09:9D:58:02:81:12:AD:EC:A2:89:14:35:FC:C5:8F:BA:2C Certificate issuer: /CN=A9142E1E/serialNumber=4935C9099D58028112ADECA2891435FCC58FBA2C Certificate serial: E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STXJCZ1YAoESreyiiRQ1_MWPuiw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142E1E/1C7CDF68824211EFAD3D8181C4F9AE02/STXJCZ1YAoESreyiiRQ1_MWPuiw.mft Manifest number: E5 Signing time: Tue 23 Dec 2025 04:25:08 +0000 Manifest this update: Tue 23 Dec 2025 04:25:08 +0000 Manifest next update: Tue 30 Dec 2025 04:25:08 +0000 Files and hashes: 1: STXJCZ1YAoESreyiiRQ1_MWPuiw.crl (hash: e/Pg4U9YRxsZzfCo7+Q+BCfQxUNCBF466WeY9fEqGac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142E1E/1C7CDF68824211EFAD3D8181C4F9AE02/STXJCZ1YAoESreyiiRQ1_MWPuiw.crl rsync://rpki.apnic.net/member_repository/A9142E1E/1C7CDF68824211EFAD3D8181C4F9AE02/STXJCZ1YAoESreyiiRQ1_MWPuiw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STXJCZ1YAoESreyiiRQ1_MWPuiw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:25:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142E1E, serialNumber=4935C9099D58028112ADECA2891435FCC58FBA2C Validity Not Before: Dec 23 04:25:08 2025 GMT Not After : Dec 30 04:25:08 2025 GMT Subject: CN=694a19a4-03d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:93:d3:18:5f:3b:1d:04:28:d3:db:ad:12:c1: 4c:67:7a:9a:92:07:41:c4:24:12:a5:71:b6:35:46: a5:d5:e7:a2:3e:12:2f:9e:4d:13:aa:25:88:f2:59: be:97:37:e5:7e:f5:eb:00:a4:11:90:67:b1:57:8f: 6b:12:d0:1d:23:51:a9:ce:cb:bb:f7:9e:67:77:39: cd:d3:a0:8e:39:67:98:c5:d3:d2:c3:8e:a6:1a:fc: 7e:4f:b3:a9:cd:50:1f:38:6a:2c:e7:fa:7c:b1:51: 4e:25:b1:fc:34:6f:1c:d3:d7:d8:8c:35:bd:f0:77: 5f:d8:66:60:b2:40:eb:49:33:f2:97:d3:59:18:0c: 9a:dd:1b:57:e7:9e:a4:ac:8f:59:a8:38:45:d3:1a: 1f:fe:9b:23:de:93:e3:5d:f4:30:01:2b:03:6e:ba: d7:30:58:c2:c2:79:bf:ab:b2:f1:24:c4:a2:9f:66: 92:dc:e9:d6:e0:70:58:dc:31:3a:ee:d5:7f:9c:4d: 65:f2:0d:cd:1b:e6:22:5b:e0:9a:4a:89:70:cb:a8: f7:d7:7b:3c:3e:78:f5:f1:51:08:5a:22:70:45:2d: a5:45:78:4d:a6:80:e9:d1:a9:d2:05:91:d4:d8:2c: db:39:e9:e9:f7:d7:ab:c5:32:82:93:00:9d:ac:f0: e6:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:64:E0:0D:33:A9:64:B9:23:7F:F0:FD:CE:6F:79:7C:3C:E1:5F:0E X509v3 Authority Key Identifier: keyid:49:35:C9:09:9D:58:02:81:12:AD:EC:A2:89:14:35:FC:C5:8F:BA:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142E1E/1C7CDF68824211EFAD3D8181C4F9AE02/STXJCZ1YAoESreyiiRQ1_MWPuiw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STXJCZ1YAoESreyiiRQ1_MWPuiw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142E1E/1C7CDF68824211EFAD3D8181C4F9AE02/STXJCZ1YAoESreyiiRQ1_MWPuiw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:e6:2c:ae:56:05:88:f0:c6:17:62:ed:1e:98:b4:dc:75:9c: 2e:c8:59:b6:fa:98:17:a9:cf:8a:90:91:37:31:d8:8e:13:f1: a0:a2:5f:63:6b:0a:48:2b:e6:4e:83:6d:fb:39:3d:77:8a:eb: e6:65:c9:94:70:19:72:74:da:8b:39:df:33:63:da:35:35:e1: fd:fd:a4:29:9d:59:33:ee:b0:a2:a1:64:d4:a4:96:4b:1e:7b: a7:1f:40:be:d9:e4:40:e7:f4:62:10:cb:a3:8e:7d:40:38:fd: 56:51:cf:a9:0b:bd:3a:28:84:90:3b:11:ac:2b:23:d8:f0:17: 56:73:bb:19:10:ec:bd:10:5e:84:29:43:d6:42:08:34:4e:05: bd:41:0e:51:6a:d7:5a:67:45:e6:cb:16:3d:61:c0:33:86:56: 87:a5:38:33:f6:a4:e8:59:3a:5e:ef:12:a3:a8:7c:73:64:fd: 15:7d:ec:65:4a:d1:a6:ad:82:a5:ce:06:4b:be:5e:3c:8e:76: 97:e4:14:c5:6a:ec:4e:a2:bb:a4:2f:41:ca:5b:2c:74:a4:59: 21:c0:19:ee:4e:56:20:ec:f3:fc:d4:43:8f:6e:53:81:9a:39: 01:84:57:7b:38:cc:a2:44:a3:e8:42:71:07:86:c1:d8:cd:95: 9f:99:e0:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJFMUUxMTAvBgNVBAUTKDQ5MzVDOTA5OUQ1ODAyODExMkFERUNBMjg5MTQzNUZD QzU4RkJBMkMwHhcNMjUxMjIzMDQyNTA4WhcNMjUxMjMwMDQyNTA4WjAYMRYwFAYD VQQDDA02OTRhMTlhNC0wM2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnJPTGF87HQQo09utEsFMZ3qakgdBxCQSpXG2NUal1eeiPhIvnk0TqiWI8lm+ lzflfvXrAKQRkGexV49rEtAdI1Gpzsu7955ndznN06COOWeYxdPSw46mGvx+T7Op zVAfOGos5/p8sVFOJbH8NG8c09fYjDW98Hdf2GZgskDrSTPyl9NZGAya3RtX556k rI9ZqDhF0xof/psj3pPjXfQwASsDbrrXMFjCwnm/q7LxJMSin2aS3OnW4HBY3DE6 7tV/nE1l8g3NG+YiW+CaSolwy6j313s8Pnj18VEIWiJwRS2lRXhNpoDp0anSBZHU 2CzbOenp99erxTKCkwCdrPDmswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJJk4A0z qWS5I3/w/c5veXw84V8OMB8GA1UdIwQYMBaAFEk1yQmdWAKBEq3sookUNfzFj7os MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkUxRS8xQzdDREY2ODgy NDIxMUVGQUQzRDgxODFDNEY5QUUwMi9TVFhKQ1oxWUFvRVNyZXlpaVJRMV9NV1B1 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NUWEpDWjFZQW9FU3JleWlpUlExX01XUHVpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkUxRS8xQzdDREY2ODgyNDIxMUVGQUQzRDgxODFDNEY5QUUwMi9TVFhKQ1oxWUFv RVNyZXlpaVJRMV9NV1B1aXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAV5iyuVgWI8MYXYu0emLTcdZwuyFm2+pgXqc+KkJE3MdiOE/Ggol9j awpIK+ZOg237OT13iuvmZcmUcBlydNqLOd8zY9o1NeH9/aQpnVkz7rCioWTUpJZL HnunH0C+2eRA5/RiEMujjn1AOP1WUc+pC706KISQOxGsKyPY8BdWc7sZEOy9EF6E KUPWQgg0TgW9QQ5RatdaZ0XmyxY9YcAzhlaHpTgz9qToWTpe7xKjqHxzZP0Vfexl StGmrYKlzgZLvl48jnaX5BTFauxOorukL0HKWyx0pFkhwBnuTlYg7PP81EOPblOB mjkBhFd7OMyiRKPoQnEHhsHYzZWfmeDV -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:01 2025 by rpki-client