This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.mft File: XAVrgGGoYiwsBruFeG6dxhNhS8o.mft (raw, json) Hash identifier: NeL8zv083euBQbokAMxsE4zmElxcU1IWK7cg+NRYM/0= Subject key identifier: 23:CB:59:5A:BB:E8:EF:EB:0A:4C:2D:B7:4A:2A:2A:EA:DE:35:C6:70 Authority key identifier: 5C:05:6B:80:61:A8:62:2C:2C:06:BB:85:78:6E:9D:C6:13:61:4B:CA Certificate issuer: /CN=A914A814/serialNumber=5C056B8061A8622C2C06BB85786E9DC613614BCA Certificate serial: 0279 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAVrgGGoYiwsBruFeG6dxhNhS8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.mft Manifest number: 0256 Signing time: Sun 07 Dec 2025 00:31:12 +0000 Manifest this update: Sun 07 Dec 2025 00:31:11 +0000 Manifest next update: Sun 14 Dec 2025 00:31:11 +0000 Files and hashes: 1: XAVrgGGoYiwsBruFeG6dxhNhS8o.crl (hash: BU7op39vlWqZ/pTGh9Nfwqn0QGQ/mp2u0YUTMkjWTUA=) 2: 8C1315A8060611EFB7EFA66CC4F9AE02.roa (hash: D+g5jzuWcvphD1ps8jnw5QvvfxsQjGFWKglonqcWSi0=) 3: 710A095EB62A11EF9D01E53DC4F9AE02.roa (hash: Kuncg/OKHO6KINevgnEgm8twmyohuTIV8xS8NsrR5Yw=) 4: CD152404495B11EF93EA3757C4F9AE02.roa (hash: G7ZmL/GFUdvItC3mb/pIr2VOosfHx+vaBIP/nBv1gCo=) 5: 6121C23230AC11F08C150767C4F9AE02.roa (hash: fShyVa3rIna9iRvZNHAjyEZoQgutIuaEQEMpg+RXaTc=) 6: 71DFDF18890111EEB3F2581FC4F9AE02.roa (hash: 4uRsfI3UTikSBwFuE1LkYP4yx1HQPN2T4+sSHop7B54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.crl rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAVrgGGoYiwsBruFeG6dxhNhS8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:31:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 633 (0x279) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A814, serialNumber=5C056B8061A8622C2C06BB85786E9DC613614BCA Validity Not Before: Dec 7 00:31:11 2025 GMT Not After : Dec 14 00:31:11 2025 GMT Subject: CN=6934cacf-2243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:50:60:71:0c:2e:81:17:8c:5b:f9:27:bf:b3: e4:19:b6:2b:7f:5f:5d:fc:83:a3:89:85:c5:b5:cc: 4a:7b:a0:dc:86:1e:ac:25:f7:ba:ea:74:13:96:1a: a9:24:77:bf:25:17:0c:65:63:2a:61:4c:c5:69:e5: 6f:9a:d3:12:c1:89:cd:19:0b:40:36:81:9a:05:66: 07:f3:95:68:85:42:3b:79:94:a0:c3:e2:ba:64:51: 1a:a0:49:20:0c:0d:49:95:86:6b:a3:46:97:ad:17: e5:f8:61:db:67:64:be:90:43:be:55:fe:0b:34:62: 8f:8f:5a:71:35:0d:cc:b6:43:35:81:36:20:a6:9a: ed:0a:04:65:d6:53:8f:53:21:34:65:ca:9a:0c:c4: 53:32:8d:a2:3c:e5:15:f2:1b:67:84:c2:60:b7:9a: 7e:6a:5e:fc:32:a4:58:99:7b:1a:9f:5f:18:3a:de: 0d:58:de:75:7a:58:0d:d9:1d:65:81:eb:5e:19:cb: cf:1b:15:42:02:28:e0:2e:d8:05:29:78:f8:76:55: 8f:fe:4b:9d:08:43:83:42:37:04:18:41:4f:ee:c3: 6b:cd:e3:ef:44:f2:d4:e8:0e:d6:f0:ee:2d:26:e5: 24:fa:4e:86:97:d4:95:54:14:b8:2c:c7:9f:f9:aa: 36:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:CB:59:5A:BB:E8:EF:EB:0A:4C:2D:B7:4A:2A:2A:EA:DE:35:C6:70 X509v3 Authority Key Identifier: keyid:5C:05:6B:80:61:A8:62:2C:2C:06:BB:85:78:6E:9D:C6:13:61:4B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAVrgGGoYiwsBruFeG6dxhNhS8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:de:f4:f5:92:81:85:a6:9e:cc:58:60:3a:b0:70:69:72:1e: e5:d7:bd:91:9a:f2:99:e7:71:b9:0a:be:65:ea:95:8c:cc:5e: d2:b4:a0:22:d3:73:55:26:6a:8e:9a:ca:2b:70:eb:b0:79:42: 5e:84:1c:50:eb:c0:c0:b6:2d:ae:63:ef:45:bd:c8:ed:b1:75: e7:ee:08:69:6f:5b:29:96:1a:ee:da:cd:3e:b2:a1:13:a2:12: b1:1d:14:e1:97:fe:9b:a6:17:65:2c:6f:c5:d7:bb:56:2f:b8: 48:25:0c:c0:50:ff:2f:9b:af:5c:db:c3:44:e1:06:7a:91:b2: c9:be:4f:32:32:ed:08:6c:ec:f5:3e:e5:04:dc:32:ce:cd:90: 44:fb:53:11:cf:df:91:48:00:2e:5f:79:94:31:77:ec:9b:81: ae:c6:73:3b:a9:45:3a:33:4f:d9:bd:4d:a9:e2:e9:3c:fd:02: 83:02:3b:ff:4b:41:b7:08:0f:bc:88:cc:ae:de:1a:63:03:c3: 54:50:05:84:24:fc:90:f4:ec:33:cd:20:38:ea:22:7f:0e:08: 2e:d7:ba:0e:3c:a0:e1:2b:29:c6:4f:b6:90:cc:de:c5:dd:98: a4:74:d2:46:00:de:33:d1:5a:19:6a:6f:34:df:46:4c:e5:60: 51:da:29:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE4MTQxMTAvBgNVBAUTKDVDMDU2QjgwNjFBODYyMkMyQzA2QkI4NTc4NkU5REM2 MTM2MTRCQ0EwHhcNMjUxMjA3MDAzMTExWhcNMjUxMjE0MDAzMTExWjAYMRYwFAYD VQQDEw02OTM0Y2FjZi0yMjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwFBgcQwugReMW/knv7PkGbYrf19d/IOjiYXFtcxKe6Dchh6sJfe66nQTlhqp JHe/JRcMZWMqYUzFaeVvmtMSwYnNGQtANoGaBWYH85VohUI7eZSgw+K6ZFEaoEkg DA1JlYZro0aXrRfl+GHbZ2S+kEO+Vf4LNGKPj1pxNQ3MtkM1gTYgpprtCgRl1lOP UyE0ZcqaDMRTMo2iPOUV8htnhMJgt5p+al78MqRYmXsan18YOt4NWN51elgN2R1l geteGcvPGxVCAijgLtgFKXj4dlWP/kudCEODQjcEGEFP7sNrzePvRPLU6A7W8O4t JuUk+k6Gl9SVVBS4LMef+ao2tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCPLWVq7 6O/rCkwtt0oqKureNcZwMB8GA1UdIwQYMBaAFFwFa4BhqGIsLAa7hXhuncYTYUvK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTgxNC9EMzhBMTkxMjc0 NUUxMUVEQkE2ODg1MTRDNEY5QUUwMi9YQVZyZ0dHb1lpd3NCcnVGZUc2ZHhoTmhT OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBVnJnR0dvWWl3c0JydUZlRzZkeGhOaFM4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTgxNC9EMzhBMTkxMjc0NUUxMUVEQkE2ODg1MTRDNEY5QUUwMi9YQVZyZ0dHb1lp d3NCcnVGZUc2ZHhoTmhTOG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCS3vT1koGFpp7MWGA6sHBpch7l172RmvKZ53G5Cr5l6pWMzF7StKAi 03NVJmqOmsorcOuweUJehBxQ68DAti2uY+9FvcjtsXXn7ghpb1splhru2s0+sqET ohKxHRThl/6bphdlLG/F17tWL7hIJQzAUP8vm69c28NE4QZ6kbLJvk8yMu0IbOz1 PuUE3DLOzZBE+1MRz9+RSAAuX3mUMXfsm4GuxnM7qUU6M0/ZvU2p4uk8/QKDAjv/ S0G3CA+8iMyu3hpjA8NUUAWEJPyQ9OwzzSA46iJ/Dggu17oOPKDhKynGT7aQzN7F 3ZikdNJGAN4z0VoZam8030ZM5WBR2ikR -----END CERTIFICATE-----Generated at Mon Dec 8 06:10:41 2025 by rpki-client