This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft File: xPfznmL0ydeMXhL9wVGuTjK8mkI.mft (raw, json) Hash identifier: ejB3kwS+/vV+7wQH5FxtpNo/0eDNFbBEmpGRk3CgT98= Subject key identifier: 58:17:77:A0:8C:EC:17:02:34:83:1B:BE:F8:6E:8E:5C:EF:B0:9A:FF Authority key identifier: C4:F7:F3:9E:62:F4:C9:D7:8C:5E:12:FD:C1:51:AE:4E:32:BC:9A:42 Certificate issuer: /CN=A914B29B/serialNumber=C4F7F39E62F4C9D78C5E12FDC151AE4E32BC9A42 Certificate serial: 013B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft Manifest number: 0135 Signing time: Tue 23 Dec 2025 03:34:39 +0000 Manifest this update: Tue 23 Dec 2025 03:34:39 +0000 Manifest next update: Tue 30 Dec 2025 03:34:39 +0000 Files and hashes: 1: xPfznmL0ydeMXhL9wVGuTjK8mkI.crl (hash: OryFAEoPeVwTOY9xkTzJ/x8tG8U7Wuuvc3HsOtY0vuM=) 2: 127604E20F8B11EF87FC5918C4F9AE02.roa (hash: Ur2f+2mtS8rG+Wi5lYOAmNS8a2RYYseSRQgStkLqo/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.crl rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:34:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 315 (0x13b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B29B, serialNumber=C4F7F39E62F4C9D78C5E12FDC151AE4E32BC9A42 Validity Not Before: Dec 23 03:34:39 2025 GMT Not After : Dec 30 03:34:39 2025 GMT Subject: CN=694a0dcf-8204 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:c5:2d:e7:d9:e4:ed:ac:11:98:8a:3e:fc:32: 04:e0:82:80:58:96:0e:b0:bf:31:04:5d:ae:a5:52: 6b:29:be:d3:66:de:7e:c6:27:03:27:98:8a:b4:f7: 54:48:0a:b2:a3:cd:4a:c4:d8:cd:90:f2:2d:ea:81: 2e:6e:7d:6d:c4:d9:ec:1c:37:f9:66:5a:dc:28:e9: 17:55:c3:b8:53:11:9e:82:f5:ed:75:c8:bc:85:2c: 76:bc:c7:6b:24:7a:c9:92:35:93:f9:4a:16:ba:6e: c4:fa:1d:c1:9f:f1:18:c8:92:32:aa:93:47:9e:a8: 40:7f:43:de:71:b7:bd:dd:11:b9:d3:1d:be:8d:11: 50:d7:af:5e:b0:42:f5:ee:88:cb:8f:35:73:ef:6c: b1:9e:cd:fd:83:b1:64:38:65:65:33:e9:79:55:ff: ce:12:87:68:be:d2:6a:b2:a3:7f:ff:76:48:a0:b8: 57:0c:87:25:c3:46:0f:4b:13:c6:69:59:91:27:19: 24:8f:5b:90:07:f3:f0:61:37:ec:8a:98:75:59:e3: 70:9d:60:f1:88:4d:f8:1a:70:18:1e:2c:01:81:bd: de:8b:c1:f4:71:f5:55:36:70:8b:82:e4:c1:f7:ba: 93:c7:58:19:a5:fc:9e:c7:32:48:58:d8:35:5d:fb: a2:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:17:77:A0:8C:EC:17:02:34:83:1B:BE:F8:6E:8E:5C:EF:B0:9A:FF X509v3 Authority Key Identifier: keyid:C4:F7:F3:9E:62:F4:C9:D7:8C:5E:12:FD:C1:51:AE:4E:32:BC:9A:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:d6:88:65:d3:28:f7:cc:2d:67:b2:8b:70:1f:30:94:55:e7: ef:0e:61:bf:67:06:4d:44:a0:68:86:45:67:c4:d7:f7:36:c0: 2f:c6:f2:25:7f:c4:8b:3d:f1:37:7d:1e:9e:c3:69:31:dd:02: 36:b9:08:52:10:66:cd:b2:5d:cc:dc:b9:d8:c7:8b:de:cc:4f: b3:f3:62:68:af:89:b8:3c:4e:8a:a3:c9:af:05:7c:40:a0:e6: b3:87:5f:15:09:07:09:75:5c:82:4b:31:dd:dd:80:08:0c:3c: 38:aa:6f:e5:9b:b0:14:06:61:43:78:49:ad:0d:0f:4f:fe:e9: 30:89:c4:c4:20:5a:61:25:c2:d6:d1:83:e7:5b:6f:12:34:8b: ce:2e:d1:48:86:bb:bd:e6:30:72:60:e6:58:28:a2:e0:f6:4a: 32:fc:f9:ff:e0:03:34:d7:bb:81:6c:ec:e7:ea:6f:cb:18:d7: 87:70:4e:f4:51:42:8d:3f:24:76:8c:15:47:80:aa:1e:5a:d0: 4e:aa:bf:be:ec:fb:68:3d:7d:8c:b8:71:2d:b1:0f:a5:6e:29: 69:47:ee:5e:21:31:10:58:65:95:40:ae:1c:aa:aa:a9:1a:11: 6a:21:71:10:1b:64:73:13:01:eb:c7:67:71:7d:f0:a4:df:d9: a5:38:47:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIyOUIxMTAvBgNVBAUTKEM0RjdGMzlFNjJGNEM5RDc4QzVFMTJGREMxNTFBRTRF MzJCQzlBNDIwHhcNMjUxMjIzMDMzNDM5WhcNMjUxMjMwMDMzNDM5WjAYMRYwFAYD VQQDDA02OTRhMGRjZi04MjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4sUt59nk7awRmIo+/DIE4IKAWJYOsL8xBF2upVJrKb7TZt5+xicDJ5iKtPdU SAqyo81KxNjNkPIt6oEubn1txNnsHDf5ZlrcKOkXVcO4UxGegvXtdci8hSx2vMdr JHrJkjWT+UoWum7E+h3Bn/EYyJIyqpNHnqhAf0Pecbe93RG50x2+jRFQ169esEL1 7ojLjzVz72yxns39g7FkOGVlM+l5Vf/OEodovtJqsqN//3ZIoLhXDIclw0YPSxPG aVmRJxkkj1uQB/PwYTfsiph1WeNwnWDxiE34GnAYHiwBgb3ei8H0cfVVNnCLguTB 97qTx1gZpfyexzJIWNg1Xfui1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFgXd6CM 7BcCNIMbvvhujlzvsJr/MB8GA1UdIwQYMBaAFMT3855i9MnXjF4S/cFRrk4yvJpC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjI5Qi84QTNFMUQxQTBG ODIxMUVGODI2NkYwNUVDNEY5QUUwMi94UGZ6bm1MMHlkZU1YaEw5d1ZHdVRqSzht a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hQZnpubUwweWRlTVhoTDl3Vkd1VGpLOG1rSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjI5Qi84QTNFMUQxQTBGODIxMUVGODI2NkYwNUVDNEY5QUUwMi94UGZ6bm1MMHlk ZU1YaEw5d1ZHdVRqSzhta0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQ1ohl0yj3zC1nsotwHzCUVefvDmG/ZwZNRKBohkVnxNf3NsAvxvIl f8SLPfE3fR6ew2kx3QI2uQhSEGbNsl3M3LnYx4vezE+z82Jor4m4PE6Ko8mvBXxA oOazh18VCQcJdVyCSzHd3YAIDDw4qm/lm7AUBmFDeEmtDQ9P/ukwicTEIFphJcLW 0YPnW28SNIvOLtFIhru95jByYOZYKKLg9koy/Pn/4AM017uBbOzn6m/LGNeHcE70 UUKNPyR2jBVHgKoeWtBOqr++7PtoPX2MuHEtsQ+lbilpR+5eITEQWGWVQK4cqqqp GhFqIXEQG2RzEwHrx2dxffCk39mlOEfF -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:57 2025 by rpki-client