This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft File: xiGEgVH3l79yMQfxTWLGeiE6U-M.mft (raw, json) Hash identifier: ro0y/DSM4ZBc/QlS8fhDhSYDDnERiYQkrRozC3vRXoM= Subject key identifier: FC:69:DA:7B:F5:BE:B6:8D:86:D4:46:4C:75:38:8A:2E:D0:FC:E6:8F Authority key identifier: C6:21:84:81:51:F7:97:BF:72:31:07:F1:4D:62:C6:7A:21:3A:53:E3 Certificate issuer: /CN=A915EBC8/serialNumber=C621848151F797BF723107F14D62C67A213A53E3 Certificate serial: 0231 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft Manifest number: 020C Signing time: Fri 19 Dec 2025 01:48:30 +0000 Manifest this update: Fri 19 Dec 2025 01:48:30 +0000 Manifest next update: Fri 26 Dec 2025 01:48:30 +0000 Files and hashes: 1: xiGEgVH3l79yMQfxTWLGeiE6U-M.crl (hash: 3vWUhfxg/qJjdNTbmjymhCvpRmMjSaqKokGOf7H+QsQ=) 2: 7755D5B2FADD11EE880BF37DC4F9AE02.roa (hash: 7c9RXUhll7RjmfKdCACTxBkSEfUtF0muR2dkJbiSbMQ=) 3: 9BB3FAB6CCB511EE8612FB18C4F9AE02.roa (hash: AeF6+orX99LwnbHGZiB851tFWKGqrAIMqoROhOgxFpw=) 4: 781637A8FADD11EE880BF37DC4F9AE02.roa (hash: NHs0+oLxPl8uuJffLMiSnsDVJyHvtsfXj9mt3FT2mqU=) 5: AC61350A4E3C11EF9286040CC4F9AE02.roa (hash: TUo7uv4rXTA0iRyimVV1a57fjFNt5Gy9xOb0XovcHoI=) 6: 1DAE236CC9D411F0A61E0021C4F9AE02.roa (hash: vFnHMZDmaAEJX6sDkXcevocgA5u3JoklJPdgGoC+BEI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.crl rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:48:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 561 (0x231) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EBC8, serialNumber=C621848151F797BF723107F14D62C67A213A53E3 Validity Not Before: Dec 19 01:48:30 2025 GMT Not After : Dec 26 01:48:30 2025 GMT Subject: CN=6944aeee-b884 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:b4:47:aa:db:54:3b:95:ea:6b:79:28:2e:a0: 5c:b4:cd:d6:37:f7:fc:59:e1:49:c9:d8:9f:63:f7: 30:e3:b7:b6:a6:a3:6f:05:01:78:dc:da:77:04:fc: be:5e:e6:2a:8d:2b:ff:bc:d2:de:bd:e4:b8:80:77: a8:f0:f5:ad:22:4b:ea:e9:d7:5a:8c:f7:cd:76:5b: 44:33:ea:8c:35:15:40:90:1c:9a:ed:01:40:46:64: 58:c2:e3:18:f0:96:af:c1:53:f2:6e:d9:74:fd:f7: ed:2a:42:ab:14:67:1d:47:14:e9:3b:41:76:c2:e3: 66:0b:ae:53:65:9c:bf:ed:0d:6a:0a:4b:66:a6:8a: e8:56:42:7f:1c:8a:b1:42:ed:eb:8b:3a:d1:b8:9a: 21:38:52:74:e8:32:fa:f5:2e:38:86:cb:20:73:3f: 87:51:89:40:a2:66:7c:dd:66:9f:60:6b:0d:d3:9f: fc:ca:8e:50:f4:38:eb:01:30:f3:84:a3:4c:97:01: 0f:c7:95:89:4b:c6:7d:86:18:72:7c:42:56:00:38: f2:d4:14:4b:e8:10:ff:a5:bf:f6:47:d5:77:07:0d: a5:0f:92:7a:4b:35:8a:49:dc:8c:62:0f:e0:8b:60: 01:74:13:27:2c:44:9d:e0:e2:cc:31:99:3b:f4:76: 4b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:69:DA:7B:F5:BE:B6:8D:86:D4:46:4C:75:38:8A:2E:D0:FC:E6:8F X509v3 Authority Key Identifier: keyid:C6:21:84:81:51:F7:97:BF:72:31:07:F1:4D:62:C6:7A:21:3A:53:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:5e:5d:b9:52:8c:5c:66:7d:b4:25:cc:e4:04:8c:f3:dc:3d: c5:18:b6:fe:cb:be:0d:8c:47:10:59:9b:63:98:3d:d9:2c:4f: 1a:77:d5:eb:8d:40:7d:41:25:93:16:e3:e2:3e:d2:ce:04:2b: a0:2e:42:e7:fc:30:14:98:e9:aa:4b:97:43:c8:93:55:34:05: 21:77:11:8a:ff:30:9d:95:c5:d1:41:27:2c:71:7f:33:3f:5c: 30:bd:ab:cb:d6:d1:42:4c:7d:42:65:63:d0:bf:50:0e:b6:ad: fb:f3:94:a9:19:8e:70:90:85:7d:ba:1c:da:35:08:d7:46:20: 7c:54:08:26:e8:43:61:d9:af:35:74:c1:dc:12:6c:17:fa:c7: 40:db:47:39:d1:96:3c:b6:bc:82:94:c4:3b:d9:45:53:8d:d8: 99:88:16:b0:23:7f:15:5a:b7:2f:28:24:a6:52:5b:42:67:e6: 78:2b:b0:5f:e7:ec:69:8d:dd:9b:36:af:a6:b2:41:b5:4c:4f: b6:4d:06:71:f0:18:0f:74:b8:82:e5:bc:bb:93:f1:15:16:f9: f0:5f:79:06:5a:3d:28:1f:0b:8c:71:8a:3c:38:78:8d:50:10: e3:65:50:48:6c:47:60:c4:2a:02:36:df:ae:9c:7f:c3:0a:ed: ac:7c:fb:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVCQzgxMTAvBgNVBAUTKEM2MjE4NDgxNTFGNzk3QkY3MjMxMDdGMTRENjJDNjdB MjEzQTUzRTMwHhcNMjUxMjE5MDE0ODMwWhcNMjUxMjI2MDE0ODMwWjAYMRYwFAYD VQQDDA02OTQ0YWVlZS1iODg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8rRHqttUO5Xqa3koLqBctM3WN/f8WeFJydifY/cw47e2pqNvBQF43Np3BPy+ XuYqjSv/vNLeveS4gHeo8PWtIkvq6ddajPfNdltEM+qMNRVAkBya7QFARmRYwuMY 8JavwVPybtl0/fftKkKrFGcdRxTpO0F2wuNmC65TZZy/7Q1qCktmporoVkJ/HIqx Qu3rizrRuJohOFJ06DL69S44hssgcz+HUYlAomZ83WafYGsN05/8yo5Q9DjrATDz hKNMlwEPx5WJS8Z9hhhyfEJWADjy1BRL6BD/pb/2R9V3Bw2lD5J6SzWKSdyMYg/g i2ABdBMnLESd4OLMMZk79HZLrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPxp2nv1 vraNhtRGTHU4ii7Q/OaPMB8GA1UdIwQYMBaAFMYhhIFR95e/cjEH8U1ixnohOlPj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUJDOC81ODk4MjBDMkVG MDIxMUVEOEMyREQ5MUZDNEY5QUUwMi94aUdFZ1ZIM2w3OXlNUWZ4VFdMR2VpRTZV LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hpR0VnVkgzbDc5eU1RZnhUV0xHZWlFNlUtTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RUJDOC81ODk4MjBDMkVGMDIxMUVEOEMyREQ5MUZDNEY5QUUwMi94aUdFZ1ZIM2w3 OXlNUWZ4VFdMR2VpRTZVLU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfXl25UoxcZn20JczkBIzz3D3FGLb+y74NjEcQWZtjmD3ZLE8ad9Xr jUB9QSWTFuPiPtLOBCugLkLn/DAUmOmqS5dDyJNVNAUhdxGK/zCdlcXRQScscX8z P1wwvavL1tFCTH1CZWPQv1AOtq3785SpGY5wkIV9uhzaNQjXRiB8VAgm6ENh2a81 dMHcEmwX+sdA20c50ZY8tryClMQ72UVTjdiZiBawI38VWrcvKCSmUltCZ+Z4K7Bf 5+xpjd2bNq+mskG1TE+2TQZx8BgPdLiC5by7k/EVFvnwX3kGWj0oHwuMcYo8OHiN UBDjZVBIbEdgxCoCNt+unH/DCu2sfPvm -----END CERTIFICATE-----Generated at Sat Dec 20 10:47:45 2025 by rpki-client