This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft File: X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft (raw, json) Hash identifier: smHUTNaapm6uWjXURY+b5NrdpUARswilPhypqWFvRx4= Subject key identifier: 68:A4:7B:E9:5A:9F:91:7F:1D:D9:28:7A:B8:D3:1E:98:20:E0:41:4C Authority key identifier: 5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 Certificate issuer: /CN=A9156255/serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Certificate serial: 025B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft Manifest number: 0253 Signing time: Tue 23 Dec 2025 00:43:49 +0000 Manifest this update: Tue 23 Dec 2025 00:43:49 +0000 Manifest next update: Tue 30 Dec 2025 00:43:49 +0000 Files and hashes: 1: X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl (hash: fa41DOjcGNy2Ab+WGOMxu32YaYCOZHS5Ap9RBlCHjhE=) 2: D1FCB742514711ED92E3885EC4F9AE02.roa (hash: yEKEL/Vmgj/ap31DsnVmbLEDqgJ7Y6orXe7GIcH2R9A=) 3: 5637146C507611EDB59D9E2EC4F9AE02.roa (hash: IYazKEF9pFwcNLUhIv47rtL28xMCsqpjMCPhr8mxAvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:43:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 603 (0x25b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156255, serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Validity Not Before: Dec 23 00:43:49 2025 GMT Not After : Dec 30 00:43:49 2025 GMT Subject: CN=6949e5c5-8216 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e2:0d:d4:72:95:c7:72:54:f4:81:99:09:46: 6d:cb:c7:f1:8c:53:96:6a:36:91:ff:47:fe:50:42: 2e:42:d9:29:02:15:12:c7:71:07:4e:1a:a7:60:f6: b0:ca:07:b1:fd:54:61:cf:22:6b:db:03:34:c8:10: 5d:13:ec:57:1c:c1:41:09:dc:2b:59:f0:27:49:99: 2d:1e:b0:e2:24:fb:b3:b3:dc:21:e8:6a:16:c9:40: fd:26:11:5e:02:50:7e:ba:33:1a:b5:7b:5e:30:79: e7:43:e3:d3:23:48:8f:16:34:2d:e7:df:ba:66:e3: bf:54:e5:1a:4a:ad:15:64:9e:67:68:ba:6e:3a:89: 41:3a:d7:09:67:f5:16:ce:a4:24:02:b8:40:a3:51: 91:fb:18:69:d7:c4:34:0b:ba:cc:bc:69:ac:48:09: 2a:36:6d:ef:dc:9a:fa:e2:92:b8:7b:42:c9:fe:29: 6d:54:c0:4e:d8:20:4d:7b:05:b3:da:f8:a6:33:7b: 05:54:06:98:ff:93:b2:aa:3e:3f:55:3c:a4:bb:80: cb:ea:59:86:96:ea:67:8d:eb:45:11:62:b7:09:6f: cb:bb:f1:fd:dd:27:7e:26:09:37:2b:67:8e:83:f5: 03:96:2f:a7:59:26:f0:1d:f2:cf:e4:69:b3:b2:b5: 77:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:A4:7B:E9:5A:9F:91:7F:1D:D9:28:7A:B8:D3:1E:98:20:E0:41:4C X509v3 Authority Key Identifier: keyid:5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:b4:09:71:ce:d8:4e:f5:bb:4f:5a:06:d9:ba:66:8e:a7:a8: fd:00:e7:1b:15:50:f5:11:d1:78:ed:b1:d6:89:48:1a:a2:9c: 04:d4:38:e1:fb:b2:83:d5:01:45:5b:78:33:89:03:60:11:da: 6d:2e:95:39:05:b7:2a:dd:ab:c8:53:e4:c2:e9:33:4f:b6:d6: 6e:26:85:af:21:c9:58:d2:f5:d9:8b:74:20:45:c2:42:8b:56: 0a:b7:cc:06:3d:6d:a2:51:f9:3e:67:1e:ea:1c:a7:27:3e:ea: d9:7a:e9:39:04:2e:ce:70:9a:5a:62:b3:7e:da:09:0d:10:95: 44:55:01:96:2c:bb:62:04:10:28:25:66:ab:78:93:dd:ca:dd: 09:03:03:af:e1:4c:4a:f1:af:ea:6e:ae:6c:64:51:23:71:20: 38:96:b7:eb:08:64:c1:98:35:b7:3b:10:81:e0:cc:a6:d3:12: 47:40:fd:c8:16:9d:4e:ea:99:d2:0c:64:53:5b:ca:f3:cf:88: b2:c2:3b:99:33:07:36:42:83:4d:f2:6b:f9:2c:fe:68:44:0b: be:c8:a6:f7:4b:7c:16:37:00:79:37:7d:73:a6:50:0f:04:f8: 04:92:95:8e:22:e9:9a:08:fe:e5:ec:0f:72:5a:8a:e3:63:e8: 87:30:3f:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYyNTUxMTAvBgNVBAUTKDVGNkM4RkEzQTY1ODc0MDIzMUIyQzRCMTM0ODFCRTEx NTAwQURDNzYwHhcNMjUxMjIzMDA0MzQ5WhcNMjUxMjMwMDA0MzQ5WjAYMRYwFAYD VQQDDA02OTQ5ZTVjNS04MjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqOIN1HKVx3JU9IGZCUZty8fxjFOWajaR/0f+UEIuQtkpAhUSx3EHThqnYPaw ygex/VRhzyJr2wM0yBBdE+xXHMFBCdwrWfAnSZktHrDiJPuzs9wh6GoWyUD9JhFe AlB+ujMatXteMHnnQ+PTI0iPFjQt59+6ZuO/VOUaSq0VZJ5naLpuOolBOtcJZ/UW zqQkArhAo1GR+xhp18Q0C7rMvGmsSAkqNm3v3Jr64pK4e0LJ/iltVMBO2CBNewWz 2vimM3sFVAaY/5Oyqj4/VTyku4DL6lmGlupnjetFEWK3CW/Lu/H93Sd+Jgk3K2eO g/UDli+nWSbwHfLP5GmzsrV3AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGike+la n5F/HdkoerjTHpgg4EFMMB8GA1UdIwQYMBaAFF9sj6OmWHQCMbLEsTSBvhFQCtx2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjI1NS85MTYyMDg0QzUw NzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRBSXhzc1N4TklHLUVWQUsz SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gyeVBvNlpZZEFJeHNzU3hOSUctRVZBSzNIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjI1NS85MTYyMDg0QzUwNzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRB SXhzc1N4TklHLUVWQUszSFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbtAlxzthO9btPWgbZumaOp6j9AOcbFVD1EdF47bHWiUgaopwE1Djh +7KD1QFFW3gziQNgEdptLpU5Bbcq3avIU+TC6TNPttZuJoWvIclY0vXZi3QgRcJC i1YKt8wGPW2iUfk+Zx7qHKcnPurZeuk5BC7OcJpaYrN+2gkNEJVEVQGWLLtiBBAo JWareJPdyt0JAwOv4UxK8a/qbq5sZFEjcSA4lrfrCGTBmDW3OxCB4Mym0xJHQP3I Fp1O6pnSDGRTW8rzz4iywjuZMwc2QoNN8mv5LP5oRAu+yKb3S3wWNwB5N31zplAP BPgEkpWOIumaCP7l7A9yWorjY+iHMD81 -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:37 2025 by rpki-client