This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft File: XZRtT0edN7zhcAywut1RosPfYg8.mft (raw, json) Hash identifier: Pr7fizvYQ7eYPuoNSchg+4eAVI+O7sC3UVyYWw1rwcE= Subject key identifier: 1D:AF:5F:5A:23:EA:AC:0C:4F:B0:2E:1F:E8:A5:33:A7:ED:C0:82:0D Authority key identifier: 5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F Certificate issuer: /CN=A9152787/serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Certificate serial: E2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft Manifest number: DF Signing time: Thu 25 Dec 2025 04:35:10 +0000 Manifest this update: Thu 25 Dec 2025 04:35:09 +0000 Manifest next update: Thu 01 Jan 2026 04:35:09 +0000 Files and hashes: 1: XZRtT0edN7zhcAywut1RosPfYg8.crl (hash: I7rAULZnibJ5C72J5fDKKv0PYDgc/jiWrXWe7e9Mq8E=) 2: CB24F37C033711F0B76A8520C4F9AE02.roa (hash: 98s3ds+kGQSvl0ncwBjphBprg+/d5JhkpC63UpEc2Nk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 Jan 2026 04:35:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787, serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Validity Not Before: Dec 25 04:35:09 2025 GMT Not After : Jan 1 04:35:09 2026 GMT Subject: CN=694cbefe-7073 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:79:1b:f5:f2:2d:a0:f0:ac:e2:b5:57:e7:73: 50:dc:57:9b:93:54:eb:7e:10:37:18:11:70:b5:22: f5:1c:16:37:a4:7e:fa:63:e3:70:61:b1:93:f4:f2: 43:c5:2b:12:f3:3f:4a:86:42:91:85:da:c1:f6:5f: c7:40:aa:9b:0f:ff:d9:34:3c:fd:d5:46:1d:1c:7c: da:70:6d:9e:bb:05:08:fd:d7:77:2d:cb:9b:2c:75: 50:fa:f1:28:3e:24:4e:84:18:a3:d1:cb:f3:70:8c: 7b:85:f5:b5:ed:a3:b7:8f:e4:05:67:b2:f7:aa:00: 29:05:00:dc:6b:86:6a:91:d4:8c:76:84:69:41:e3: ce:e4:7e:72:8e:59:3b:c5:ab:7b:67:9c:9e:b0:88: e8:0d:ea:f5:2a:55:1a:e7:40:f7:38:cf:f6:fa:fd: 56:3f:2b:44:3c:02:e7:f3:bb:65:23:da:66:4e:fa: 90:3f:d1:fc:36:d0:52:8e:bb:d0:72:81:9b:80:d4: 75:18:fe:27:c4:67:b1:c5:ff:d2:b0:fa:82:11:68: 88:d1:99:62:08:50:50:98:4e:b4:9a:13:13:2c:6c: e6:cc:34:5a:e5:91:f0:23:63:bb:11:63:b0:59:bb: 23:14:35:60:0a:72:e3:66:d0:8e:07:d7:69:d0:31: 46:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:AF:5F:5A:23:EA:AC:0C:4F:B0:2E:1F:E8:A5:33:A7:ED:C0:82:0D X509v3 Authority Key Identifier: keyid:5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:bf:7b:0f:29:fa:43:e1:e1:23:dc:a1:ae:db:77:a7:19:28: 38:6c:71:3c:81:35:93:fc:e3:77:eb:53:d0:4d:2a:72:c5:ec: 62:27:fc:da:b6:fc:37:96:fd:5e:7f:18:42:bd:59:d1:e4:a2: 93:1e:7e:e7:ac:e4:ce:7f:12:b6:a3:f8:c7:a2:f1:5b:53:69: 8b:68:b0:9a:25:48:32:30:df:bb:8d:d2:1e:c2:30:f3:d8:fc: 07:62:9a:7a:bb:eb:40:31:b2:72:57:33:96:c7:be:97:1c:a8: 0f:22:12:3d:9a:c4:f8:39:35:84:5b:ec:4a:f9:0d:0d:ce:83: 85:e2:48:3b:74:8d:c2:8b:75:7d:5b:d0:7c:b3:10:5f:6c:54: d2:15:4b:4f:bb:23:91:b6:55:f0:60:64:81:71:70:86:ee:fa: 94:13:33:62:94:be:14:e1:2e:d5:78:73:18:54:5b:e8:1f:c5: e0:f1:7f:7d:92:d9:26:10:9a:28:01:a3:04:31:05:af:9e:75: 22:80:e8:6c:e5:34:c1:e1:e5:44:c7:48:97:26:3d:bc:c2:1b: 9f:f0:51:b4:2c:81:23:69:16:2c:fb:28:ea:ea:df:8d:37:e0: ac:0a:ae:75:40:2a:d5:d9:da:8e:00:af:df:2b:16:8a:3d:a9: 9b:47:d1:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI3ODcxMTAvBgNVBAUTKDVEOTQ2RDRGNDc5RDM3QkNFMTcwMENCMEJBREQ1MUEy QzNERjYyMEYwHhcNMjUxMjI1MDQzNTA5WhcNMjYwMTAxMDQzNTA5WjAYMRYwFAYD VQQDDA02OTRjYmVmZS03MDczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArHkb9fItoPCs4rVX53NQ3Febk1TrfhA3GBFwtSL1HBY3pH76Y+NwYbGT9PJD xSsS8z9KhkKRhdrB9l/HQKqbD//ZNDz91UYdHHzacG2euwUI/dd3LcubLHVQ+vEo PiROhBij0cvzcIx7hfW17aO3j+QFZ7L3qgApBQDca4ZqkdSMdoRpQePO5H5yjlk7 xat7Z5yesIjoDer1KlUa50D3OM/2+v1WPytEPALn87tlI9pmTvqQP9H8NtBSjrvQ coGbgNR1GP4nxGexxf/SsPqCEWiI0ZliCFBQmE60mhMTLGzmzDRa5ZHwI2O7EWOw WbsjFDVgCnLjZtCOB9dp0DFGhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB2vX1oj 6qwMT7AuH+ilM6ftwIINMB8GA1UdIwQYMBaAFF2UbU9HnTe84XAMsLrdUaLD32IP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mjc4Ny8yMjg2NTYyQThG NzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43emhjQXl3dXQxUm9zUGZZ ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1haUnRUMGVkTjd6aGNBeXd1dDFSb3NQZllnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Mjc4Ny8yMjg2NTYyQThGNzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43 emhjQXl3dXQxUm9zUGZZZzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCov3sPKfpD4eEj3KGu23enGSg4bHE8gTWT/ON361PQTSpyxexiJ/za tvw3lv1efxhCvVnR5KKTHn7nrOTOfxK2o/jHovFbU2mLaLCaJUgyMN+7jdIewjDz 2PwHYpp6u+tAMbJyVzOWx76XHKgPIhI9msT4OTWEW+xK+Q0NzoOF4kg7dI3Ci3V9 W9B8sxBfbFTSFUtPuyORtlXwYGSBcXCG7vqUEzNilL4U4S7VeHMYVFvoH8Xg8X99 ktkmEJooAaMEMQWvnnUigOhs5TTB4eVEx0iXJj28whuf8FG0LIEjaRYs+yjq6t+N N+CsCq51QCrV2dqOAK/fKxaKPambR9H0 -----END CERTIFICATE-----Generated at Thu Dec 25 07:12:15 2025 by rpki-client