This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.mft File: XCJQF8zJYrDnOQswzwpWIvfN-u0.mft (raw, json) Hash identifier: SQw+jA+CArrnFHdL9z0rHLaoOqgVlzaY1pN3poDhUF0= Subject key identifier: 92:F4:B8:B4:AA:DF:AD:57:2B:61:3C:5B:03:A6:FA:04:0D:8D:31:5A Authority key identifier: 5C:22:50:17:CC:C9:62:B0:E7:39:0B:30:CF:0A:56:22:F7:CD:FA:ED Certificate issuer: /CN=A9154330/serialNumber=5C225017CCC962B0E7390B30CF0A5622F7CDFAED Certificate serial: 131D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCJQF8zJYrDnOQswzwpWIvfN-u0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.mft Manifest number: 131B Signing time: Mon 22 Dec 2025 16:43:55 +0000 Manifest this update: Mon 22 Dec 2025 16:43:54 +0000 Manifest next update: Mon 29 Dec 2025 16:43:54 +0000 Files and hashes: 1: XCJQF8zJYrDnOQswzwpWIvfN-u0.crl (hash: DyuRGjbGCguK5DVsL0/XKk4N9YMNGrRFFJ9Z3TJIAx4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.crl rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCJQF8zJYrDnOQswzwpWIvfN-u0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:43:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4893 (0x131d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154330, serialNumber=5C225017CCC962B0E7390B30CF0A5622F7CDFAED Validity Not Before: Dec 22 16:43:54 2025 GMT Not After : Dec 29 16:43:54 2025 GMT Subject: CN=6949754a-ec43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:d8:00:79:ac:95:4b:76:2f:0d:e7:84:f6:45: c6:81:cc:98:da:52:87:4f:84:6a:f2:1f:67:a7:2a: c7:b0:7a:39:ab:aa:f1:cb:f0:db:39:74:d4:48:b9: 53:84:fc:41:a8:b6:0e:99:c9:20:a9:85:72:91:98: 9a:10:b4:de:60:2c:d3:f8:d2:58:9a:ec:3e:02:b9: 29:27:e8:32:77:bb:54:8b:d1:b2:b6:52:51:5c:f4: 8e:5c:23:06:da:cd:42:7c:51:ea:59:5c:ea:c9:7c: 9e:5d:30:5d:2d:12:2d:71:e3:20:21:51:e2:00:8b: c8:65:f0:93:0d:2a:fe:c1:a0:04:bc:9b:9c:34:b4: 56:c9:0d:59:86:81:62:c0:12:91:8f:ac:66:b0:14: 57:d3:ab:3a:63:b5:c4:61:2d:f6:37:33:dc:cb:89: fc:2b:92:b1:ac:2a:ba:f7:bf:e8:a2:cc:f5:31:27: 69:02:8c:d4:71:d6:c8:3d:a1:36:48:64:37:05:8e: c1:29:23:ac:c0:2e:93:0c:41:21:5e:3f:8c:3e:72: 0d:b4:b9:b1:b1:46:46:f9:e3:d2:d3:48:d6:fb:25: 2f:a1:a1:c8:4f:e9:62:2b:22:f5:ef:56:f2:35:30: 43:76:b7:a3:bc:59:d8:1f:88:7d:70:b1:c1:08:93: 69:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:F4:B8:B4:AA:DF:AD:57:2B:61:3C:5B:03:A6:FA:04:0D:8D:31:5A X509v3 Authority Key Identifier: keyid:5C:22:50:17:CC:C9:62:B0:E7:39:0B:30:CF:0A:56:22:F7:CD:FA:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCJQF8zJYrDnOQswzwpWIvfN-u0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:62:95:09:e9:41:03:ec:8d:94:60:37:ea:07:cd:5c:5f:e3: 2b:dc:d5:8d:6e:c5:93:8c:d3:48:4b:f4:27:12:82:19:08:f2: a5:15:94:1d:b8:5c:1a:7e:2e:dc:7b:a0:05:0c:b4:f7:fd:ea: 8f:df:52:26:da:c2:03:54:97:2d:db:22:7e:96:28:7b:07:bb: 96:ef:88:80:ed:07:d2:85:b1:31:d1:d4:e8:31:34:bc:9a:26: 21:f8:39:64:bd:cb:1c:5f:f8:2c:98:cd:4b:48:c6:67:4a:22: 3c:c8:a6:1f:32:98:ac:1c:da:c9:d1:96:dd:3a:43:79:25:c9: 7f:ad:f8:22:da:75:09:6f:8c:64:f1:9b:60:f9:fa:d8:f0:11: 9e:63:f1:6b:03:d1:ae:c5:23:b5:00:d2:84:a2:04:2f:e4:00: b4:07:e0:8e:61:a4:f9:00:60:b0:5a:9f:a8:8a:aa:93:fe:15: 06:fe:07:5c:f0:cc:99:b9:f5:4a:80:c7:e6:a2:e3:81:44:02: ce:9b:f1:64:af:ae:2f:06:89:fb:a2:b1:11:43:4d:80:55:e8: 52:8d:af:43:d6:a2:4f:fa:9c:57:87:1c:d6:cf:e5:ee:40:9a: 43:96:88:34:de:60:56:2c:2d:04:7d:45:e7:7f:fe:9e:5c:e1: 12:29:37:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQzMzAxMTAvBgNVBAUTKDVDMjI1MDE3Q0NDOTYyQjBFNzM5MEIzMENGMEE1NjIy RjdDREZBRUQwHhcNMjUxMjIyMTY0MzU0WhcNMjUxMjI5MTY0MzU0WjAYMRYwFAYD VQQDDA02OTQ5NzU0YS1lYzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4dgAeayVS3YvDeeE9kXGgcyY2lKHT4Rq8h9npyrHsHo5q6rxy/DbOXTUSLlT hPxBqLYOmckgqYVykZiaELTeYCzT+NJYmuw+ArkpJ+gyd7tUi9GytlJRXPSOXCMG 2s1CfFHqWVzqyXyeXTBdLRItceMgIVHiAIvIZfCTDSr+waAEvJucNLRWyQ1ZhoFi wBKRj6xmsBRX06s6Y7XEYS32NzPcy4n8K5KxrCq697/oosz1MSdpAozUcdbIPaE2 SGQ3BY7BKSOswC6TDEEhXj+MPnINtLmxsUZG+ePS00jW+yUvoaHIT+liKyL171by NTBDdrejvFnYH4h9cLHBCJNpFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJL0uLSq 361XK2E8WwOm+gQNjTFaMB8GA1UdIwQYMBaAFFwiUBfMyWKw5zkLMM8KViL3zfrt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDMzMC9FQUQ4NzYzQ0Mw OTMxMUU4ODBFNTJEMjNDNEY5QUUwMi9YQ0pRRjh6SllyRG5PUXN3endwV0l2Zk4t dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hDSlFGOHpKWXJEbk9Rc3d6d3BXSXZmTi11MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDMzMC9FQUQ4NzYzQ0MwOTMxMUU4ODBFNTJEMjNDNEY5QUUwMi9YQ0pRRjh6Slly RG5PUXN3endwV0l2Zk4tdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALYpUJ6UED7I2UYDfqB81cX+Mr3NWNbsWTjNNIS/QnEoIZCPKlFZQd uFwafi7ce6AFDLT3/eqP31Im2sIDVJct2yJ+lih7B7uW74iA7QfShbEx0dToMTS8 miYh+DlkvcscX/gsmM1LSMZnSiI8yKYfMpisHNrJ0ZbdOkN5Jcl/rfgi2nUJb4xk 8Ztg+frY8BGeY/FrA9GuxSO1ANKEogQv5AC0B+COYaT5AGCwWp+oiqqT/hUG/gdc 8MyZufVKgMfmouOBRALOm/Fkr64vBon7orERQ02AVehSja9D1qJP+pxXhxzWz+Xu QJpDlog03mBWLC0EfUXnf/6eXOESKTfm -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:26 2025 by rpki-client