This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft File: XSeFtU0WPtAepUGLz6NPG3RWtxM.mft (raw, json) Hash identifier: cjpOHGzwKe8R05pGCWQ7PE2fDYgY4qonOS1qLHd/OYg= Subject key identifier: 19:6E:98:24:20:26:B1:4B:E5:D3:39:3A:44:97:C1:73:98:35:2A:B7 Authority key identifier: 5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 Certificate issuer: /CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Certificate serial: 04F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft Manifest number: 04DE Signing time: Sat 06 Dec 2025 22:32:18 +0000 Manifest this update: Sat 06 Dec 2025 22:32:18 +0000 Manifest next update: Sat 13 Dec 2025 22:32:17 +0000 Files and hashes: 1: XSeFtU0WPtAepUGLz6NPG3RWtxM.crl (hash: T4MsOHq+wMus/aBruu3gJajcMPnsf0bLxNTK5G4u7x8=) 2: 6337963E4C3D11ECB5FF844FC4F9AE02.roa (hash: aTXEi1LzXTl0g2LyujQDHdlXFvir0+qlzsPxrUIKoNA=) 3: ACE844F047AA11ECA0F05026C4F9AE02.roa (hash: rDIISPx2Jw6kCtly/sr/saYDXZ1Vwq2i5nDputMMqM0=) 4: 1F77EFA44C4011EC952D5A23C4F9AE02.roa (hash: 8xg5MTXXpBnfX0/pQTijWkIRf1MFFgkaGBEoo218ZXc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 22:32:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1273 (0x4f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CC5, serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Validity Not Before: Dec 6 22:32:18 2025 GMT Not After : Dec 13 22:32:17 2025 GMT Subject: CN=6934aef2-17f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:55:f0:db:76:5d:cc:e8:48:81:80:a5:00:3c: 73:c5:29:cd:c6:76:10:cb:70:1f:18:0f:ec:68:a8: df:8c:55:e3:1f:5e:17:f3:92:3a:75:7b:63:88:b4: 63:14:ba:6e:e9:86:30:dc:03:57:70:bf:4a:53:99: ce:20:fd:22:b6:3b:37:f1:5e:b9:56:f5:56:e6:d2: a0:b0:df:7d:c8:59:90:0b:16:2e:16:dc:e5:89:17: 9a:e0:cf:22:0c:7d:bf:ac:40:08:d8:28:a5:ca:66: 73:d7:b8:75:a0:b2:70:2f:b7:fe:cb:b9:a7:8e:ae: b8:13:8a:14:59:6c:17:8f:bf:45:d8:ea:78:7c:b7: 25:c7:98:77:d2:f2:4c:09:2b:97:9e:a8:fe:07:69: 5a:b5:32:61:36:ae:06:5a:e4:87:d9:74:53:a4:95: 6b:14:ee:c3:69:58:98:24:f2:11:17:b9:ea:19:21: d2:4c:c9:30:b7:d3:3e:fa:12:4a:84:64:e6:42:70: 89:c3:63:e3:be:e7:18:b6:e7:b2:f1:9d:75:b2:5c: 92:ae:80:27:33:d1:f9:d0:8d:66:86:23:e4:6d:dc: 95:e8:25:3e:a2:bf:b9:d1:68:3f:25:99:19:82:9d: 8f:ef:cd:53:bb:7f:5f:26:d7:16:2a:be:6a:c2:6b: 05:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:6E:98:24:20:26:B1:4B:E5:D3:39:3A:44:97:C1:73:98:35:2A:B7 X509v3 Authority Key Identifier: keyid:5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:7c:ec:7b:dd:f7:9f:e8:13:de:82:12:5e:2b:d5:96:8f:a1: 42:a6:d3:b1:7b:1e:9f:4e:66:ee:bc:23:7b:64:3f:b8:07:30: 69:2f:b5:59:67:10:55:f5:23:a8:4d:d7:2d:68:cf:e9:48:2c: 29:37:b2:38:5a:fe:b6:90:13:3d:aa:31:3a:b1:cc:79:b0:52: 7d:cf:d0:e2:16:12:83:2e:90:14:f2:24:fd:18:3c:43:6d:59: b0:82:be:a7:7c:ee:21:af:5b:f3:6e:59:fb:b9:26:1c:87:40: 7f:36:e4:9c:7a:06:d7:76:15:d9:93:fd:a3:1f:ba:f3:a5:c1: a5:7e:94:0f:0e:2c:58:67:58:3e:99:53:46:ed:b0:4b:68:80: 9c:2e:d6:cb:8d:0b:72:7b:26:ce:a2:eb:b7:c4:ba:f8:55:50: bf:25:d2:ee:31:9c:90:e1:b6:f0:9d:d8:d9:8e:1d:ab:2e:ff: cb:e0:7f:d7:b5:ec:ba:cc:0c:39:93:0c:57:50:77:f4:e3:ec: 10:9f:28:ef:f0:55:78:5f:85:81:56:c4:fb:a1:81:f5:19:a5: 68:31:3c:cf:08:82:63:e2:14:3f:39:32:b0:22:f5:86:96:3f: 81:74:d6:69:8e:08:50:3a:91:21:b0:ac:4f:b6:3c:61:e5:99: ce:8b:3f:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQzUxMTAvBgNVBAUTKDVEMjc4NUI1NEQxNjNFRDAxRUE1NDE4QkNGQTM0RjFC NzQ1NkI3MTMwHhcNMjUxMjA2MjIzMjE4WhcNMjUxMjEzMjIzMjE3WjAYMRYwFAYD VQQDEw02OTM0YWVmMi0xN2Y0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1Xw23ZdzOhIgYClADxzxSnNxnYQy3AfGA/saKjfjFXjH14X85I6dXtjiLRj FLpu6YYw3ANXcL9KU5nOIP0itjs38V65VvVW5tKgsN99yFmQCxYuFtzliRea4M8i DH2/rEAI2CilymZz17h1oLJwL7f+y7mnjq64E4oUWWwXj79F2Op4fLclx5h30vJM CSuXnqj+B2latTJhNq4GWuSH2XRTpJVrFO7DaViYJPIRF7nqGSHSTMkwt9M++hJK hGTmQnCJw2PjvucYtuey8Z11slySroAnM9H50I1mhiPkbdyV6CU+or+50Wg/JZkZ gp2P781Tu39fJtcWKr5qwmsFfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBlumCQg JrFL5dM5OkSXwXOYNSq3MB8GA1UdIwQYMBaAFF0nhbVNFj7QHqVBi8+jTxt0VrcT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NDNS8yQUM0RDMzRTQ2 QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0QWVwVUdMejZOUEczUld0 eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTZUZ0VTBXUHRBZXBVR0x6Nk5QRzNSV3R4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NDNS8yQUM0RDMzRTQ2QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0 QWVwVUdMejZOUEczUld0eE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQfOx73fef6BPeghJeK9WWj6FCptOxex6fTmbuvCN7ZD+4BzBpL7VZ ZxBV9SOoTdctaM/pSCwpN7I4Wv62kBM9qjE6scx5sFJ9z9DiFhKDLpAU8iT9GDxD bVmwgr6nfO4hr1vzbln7uSYch0B/NuScegbXdhXZk/2jH7rzpcGlfpQPDixYZ1g+ mVNG7bBLaICcLtbLjQtyeybOouu3xLr4VVC/JdLuMZyQ4bbwndjZjh2rLv/L4H/X tey6zAw5kwxXUHf04+wQnyjv8FV4X4WBVsT7oYH1GaVoMTzPCIJj4hQ/OTKwIvWG lj+BdNZpjghQOpEhsKxPtjxh5ZnOiz/m -----END CERTIFICATE-----Generated at Sun Dec 7 04:42:20 2025 by rpki-client