This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft File: xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft (raw, json) Hash identifier: /oaHBXag6Z2B37rkgDfvhnhgzvnGqZqWoem2H0leBCk= Subject key identifier: B8:2C:A4:6C:28:43:6F:75:FF:03:C6:AD:A5:B8:CD:A7:C7:A2:4B:DA Authority key identifier: C7:15:31:D2:5F:80:54:8F:5B:65:1F:86:49:32:5F:3C:8F:D8:59:39 Certificate issuer: /CN=A915786A/serialNumber=C71531D25F80548F5B651F8649325F3C8FD85939 Certificate serial: 0C51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xxUx0l-AVI9bZR-GSTJfPI_YWTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft Manifest number: 0C46 Signing time: Mon 22 Dec 2025 18:11:51 +0000 Manifest this update: Mon 22 Dec 2025 18:11:50 +0000 Manifest next update: Mon 29 Dec 2025 18:11:50 +0000 Files and hashes: 1: xxUx0l-AVI9bZR-GSTJfPI_YWTk.crl (hash: vr7LJe+uszS+oYkQyjbyKu7utJkFqgBcpaJcAsq5k8U=) 2: FBFF89FC3AC611EEB790D485C4F9AE02.roa (hash: DQuIcDvil4xhDWRcyNWiHmLcTyjG0SYLvwiCuCDmI90=) 3: 7A7B776A1F0E11EA92AA6824C4F9AE02.roa (hash: vuAfqS+oupAqLtbWHhdz3OsiJgWg5sczosdrHd8kXwo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.crl rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xxUx0l-AVI9bZR-GSTJfPI_YWTk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:11:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3153 (0xc51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915786A, serialNumber=C71531D25F80548F5B651F8649325F3C8FD85939 Validity Not Before: Dec 22 18:11:50 2025 GMT Not After : Dec 29 18:11:50 2025 GMT Subject: CN=694989e6-43a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b6:f3:68:6c:c8:8e:a6:2e:b9:f7:64:d0:bf: 32:22:b9:bd:67:2c:1a:05:4b:a1:c8:c2:b8:2e:64: ed:e2:93:f7:a8:54:61:f6:d7:74:0e:eb:a9:61:e9: a1:49:dd:8d:95:07:5f:ca:d1:e0:03:df:64:0b:28: e8:b0:c6:72:d4:de:2c:9a:39:0e:90:92:f8:fa:14: 90:63:89:7c:91:5b:1e:7b:74:e7:28:b2:e4:db:33: ae:f0:ce:dd:00:6a:c8:62:b2:92:0b:32:58:94:74: 87:bd:ce:72:27:e5:08:9f:60:62:f2:68:4d:54:0d: 9c:3a:21:c5:13:d2:24:cf:6c:77:05:78:b7:a5:2c: 6f:dc:ad:cd:a8:30:5f:42:69:d2:21:86:7e:cd:03: 08:a2:86:0d:28:01:02:c1:27:80:2e:e3:55:fc:ef: 0c:87:b0:2c:3f:06:ab:c7:b0:4c:8c:10:36:c6:e9: 0d:f5:75:b9:13:80:8d:4e:c9:41:a3:e0:12:ce:ec: f6:40:bb:5f:2b:57:02:78:33:16:68:10:21:b3:ca: 90:d9:c4:02:d3:8e:be:ba:45:b1:a7:b0:92:45:63: bc:bc:8a:b5:fb:d3:c3:df:6f:c9:e7:f0:ed:15:96: 14:94:6a:d4:e3:1f:7c:50:74:17:02:61:01:f5:17: 77:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:2C:A4:6C:28:43:6F:75:FF:03:C6:AD:A5:B8:CD:A7:C7:A2:4B:DA X509v3 Authority Key Identifier: keyid:C7:15:31:D2:5F:80:54:8F:5B:65:1F:86:49:32:5F:3C:8F:D8:59:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xxUx0l-AVI9bZR-GSTJfPI_YWTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:ab:48:d0:2f:4d:fd:54:1b:fd:aa:72:b8:7c:85:9d:64:c2: c9:60:b8:85:b0:fd:10:ce:73:48:c4:6d:00:03:d4:d5:6c:99: 3d:3b:4a:a3:a4:34:e1:2c:29:3d:17:bb:6f:a3:ae:33:41:3b: 6e:2d:48:21:7c:d9:ac:9c:34:25:29:1e:88:4f:44:36:a8:6c: c3:a0:04:f4:4a:3a:bb:6e:f1:06:48:07:9a:8b:dd:50:d2:0a: f0:c0:21:94:aa:d6:73:6b:7a:5a:47:86:49:d1:0f:2d:62:82: e4:d3:69:44:28:cf:3d:52:56:b4:18:98:cf:d3:1b:ed:62:0f: d3:44:21:62:15:a6:6a:15:6d:71:5c:27:ea:c6:ac:0a:0f:8b: 65:65:e3:86:a2:af:15:47:7e:de:62:57:67:91:53:ac:d9:41: 77:25:69:07:6c:da:f0:7e:bc:2a:44:21:79:e2:32:26:be:89: af:47:11:2d:98:cb:2c:c6:8a:40:be:37:38:73:50:73:29:77: 5b:cb:cc:a8:5a:b5:ea:92:46:d3:23:e1:bc:c4:e9:e6:a5:6a: f8:63:00:89:b0:37:b6:4e:ed:e7:f5:5d:81:ce:59:d2:a2:1c: 17:27:2b:75:f1:88:db:8b:02:41:f8:b6:48:28:59:47:fc:73: 19:00:00:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc4NkExMTAvBgNVBAUTKEM3MTUzMUQyNUY4MDU0OEY1QjY1MUY4NjQ5MzI1RjND OEZEODU5MzkwHhcNMjUxMjIyMTgxMTUwWhcNMjUxMjI5MTgxMTUwWjAYMRYwFAYD VQQDDA02OTQ5ODllNi00M2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrbzaGzIjqYuufdk0L8yIrm9ZywaBUuhyMK4LmTt4pP3qFRh9td0DuupYemh Sd2NlQdfytHgA99kCyjosMZy1N4smjkOkJL4+hSQY4l8kVsee3TnKLLk2zOu8M7d AGrIYrKSCzJYlHSHvc5yJ+UIn2Bi8mhNVA2cOiHFE9Ikz2x3BXi3pSxv3K3NqDBf QmnSIYZ+zQMIooYNKAECwSeALuNV/O8Mh7AsPwarx7BMjBA2xukN9XW5E4CNTslB o+ASzuz2QLtfK1cCeDMWaBAhs8qQ2cQC046+ukWxp7CSRWO8vIq1+9PD32/J5/Dt FZYUlGrU4x98UHQXAmEB9Rd3JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLgspGwo Q291/wPGraW4zafHokvaMB8GA1UdIwQYMBaAFMcVMdJfgFSPW2UfhkkyXzyP2Fk5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Nzg2QS8xMjZERkM5NjFB NTUxMUVBODgwNDIyMTFDNEY5QUUwMi94eFV4MGwtQVZJOWJaUi1HU1RKZlBJX1lX VGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h4VXgwbC1BVkk5YlpSLUdTVEpmUElfWVdUay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Nzg2QS8xMjZERkM5NjFBNTUxMUVBODgwNDIyMTFDNEY5QUUwMi94eFV4MGwtQVZJ OWJaUi1HU1RKZlBJX1lXVGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMq0jQL039VBv9qnK4fIWdZMLJYLiFsP0QznNIxG0AA9TVbJk9O0qj pDThLCk9F7tvo64zQTtuLUghfNmsnDQlKR6IT0Q2qGzDoAT0Sjq7bvEGSAeai91Q 0grwwCGUqtZza3paR4ZJ0Q8tYoLk02lEKM89Ula0GJjP0xvtYg/TRCFiFaZqFW1x XCfqxqwKD4tlZeOGoq8VR37eYldnkVOs2UF3JWkHbNrwfrwqRCF54jImvomvRxEt mMssxopAvjc4c1BzKXdby8yoWrXqkkbTI+G8xOnmpWr4YwCJsDe2Tu3n9V2BzlnS ohwXJyt18YjbiwJB+LZIKFlH/HMZAADS -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:49 2025 by rpki-client