This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.mft File: XEFCLE7PHfpomnDePAORsdR-Vew.mft (raw, json) Hash identifier: xOYyetG0Ky1/IrDrtxmnclI8HT8gXyVtDWUiha6AdRw= Subject key identifier: 6F:F6:0B:61:87:AD:C0:C4:C0:2B:A2:16:9C:A1:B8:58:FA:56:A9:BE Authority key identifier: 5C:41:42:2C:4E:CF:1D:FA:68:9A:70:DE:3C:03:91:B1:D4:7E:55:EC Certificate issuer: /CN=A916B19D/serialNumber=5C41422C4ECF1DFA689A70DE3C0391B1D47E55EC Certificate serial: 02E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEFCLE7PHfpomnDePAORsdR-Vew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.mft Manifest number: 02DA Signing time: Tue 23 Dec 2025 00:21:18 +0000 Manifest this update: Tue 23 Dec 2025 00:21:17 +0000 Manifest next update: Tue 30 Dec 2025 00:21:17 +0000 Files and hashes: 1: XEFCLE7PHfpomnDePAORsdR-Vew.crl (hash: rN+mi4lixhXwSaqqKql8VjPvglsNYV0fvYIpD6ppw4U=) 2: D11B9044112011EDAC1D3B15C4F9AE02.roa (hash: 61pm0oZ7VjxdVmZL23S60F3P/HQj2IC3SS8pznvYZ9k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.crl rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEFCLE7PHfpomnDePAORsdR-Vew.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:21:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 736 (0x2e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B19D, serialNumber=5C41422C4ECF1DFA689A70DE3C0391B1D47E55EC Validity Not Before: Dec 23 00:21:17 2025 GMT Not After : Dec 30 00:21:17 2025 GMT Subject: CN=6949e07d-25ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:98:69:37:39:cc:5f:9f:88:ea:e3:3a:fc:f3: 54:4b:38:d0:a9:e3:73:14:4d:0f:03:0d:5a:0f:f2: c7:d5:9d:f6:f7:01:b2:8f:c5:01:5b:de:0e:10:97: a9:cf:da:b3:6e:53:18:b3:f3:da:59:db:c2:66:57: 0e:4c:9f:3b:11:91:d6:66:2f:e7:66:2a:f0:08:8f: d9:fb:af:8c:c4:95:2a:6b:41:90:5b:f3:a0:76:87: 8f:a4:4e:46:7b:72:40:27:ba:d6:26:e2:5f:1a:e2: db:28:dc:8b:a6:a8:ed:24:6c:c8:5d:32:44:dc:a9: 01:ba:3b:92:81:ca:ea:97:94:1f:bb:f3:df:dc:a0: dc:1e:f6:b8:8f:68:82:a8:5e:72:da:e5:5c:23:3e: 20:13:06:74:c4:8e:60:72:d7:a6:c7:11:79:5e:6b: b6:2a:42:15:2b:b3:3c:9b:8c:db:6f:84:32:86:6d: dd:c4:7d:51:60:4e:dd:24:ff:7e:ef:4b:f9:d1:ea: 5b:80:22:23:6c:83:aa:7e:f8:94:71:e6:83:5b:ec: fb:03:17:23:ab:67:0d:23:95:09:6f:e4:5c:d3:a3: 28:9b:19:28:5b:04:b1:65:7e:a6:8d:c5:80:03:c1: 8d:17:3e:6a:c0:d5:52:d3:97:a2:62:1a:26:99:bd: c3:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:F6:0B:61:87:AD:C0:C4:C0:2B:A2:16:9C:A1:B8:58:FA:56:A9:BE X509v3 Authority Key Identifier: keyid:5C:41:42:2C:4E:CF:1D:FA:68:9A:70:DE:3C:03:91:B1:D4:7E:55:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEFCLE7PHfpomnDePAORsdR-Vew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:e3:01:98:22:5f:da:e9:4c:f6:6d:26:f4:c4:32:45:21:39: 77:92:34:b7:42:21:9d:ee:ff:e3:90:6c:5a:cf:18:ee:8f:0d: 80:60:a9:ef:ca:aa:d5:ec:e4:5c:ac:de:99:80:de:47:b6:13: 9f:48:93:94:0b:3d:d3:e2:1b:a4:fb:cf:ee:82:fd:5a:0f:eb: 0d:7b:d7:0a:02:dd:fb:6c:e0:cd:b2:04:5c:12:6c:ce:cf:a1: f0:cf:90:b4:f3:23:f9:43:36:77:a9:81:6a:6f:53:0f:76:3e: 3a:c0:13:1e:30:18:3c:58:1a:c0:fa:53:b3:47:96:e5:05:4d: 47:df:96:b8:fa:1d:de:15:a3:af:cb:ee:3d:5f:72:d2:b7:11: 56:fe:ac:f0:57:12:28:76:3f:56:37:f7:6f:5d:98:60:68:52: aa:90:2f:f2:dc:7a:56:09:a0:d1:e6:bf:5f:69:fc:a0:65:23: be:a4:57:45:39:f3:e7:24:a6:a1:b0:85:66:59:47:23:ab:3e: 9f:63:db:67:02:83:30:67:c8:4d:c6:0b:62:15:a1:ae:41:eb: 31:ae:30:bb:8b:31:73:1f:ae:a0:59:0a:55:88:6a:2c:5b:f2: aa:b8:ad:12:15:66:f0:c2:82:31:12:d7:05:cf:7a:43:69:ec: ac:0b:fd:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIxOUQxMTAvBgNVBAUTKDVDNDE0MjJDNEVDRjFERkE2ODlBNzBERTNDMDM5MUIx RDQ3RTU1RUMwHhcNMjUxMjIzMDAyMTE3WhcNMjUxMjMwMDAyMTE3WjAYMRYwFAYD VQQDDA02OTQ5ZTA3ZC0yNWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5hpNznMX5+I6uM6/PNUSzjQqeNzFE0PAw1aD/LH1Z329wGyj8UBW94OEJep z9qzblMYs/PaWdvCZlcOTJ87EZHWZi/nZirwCI/Z+6+MxJUqa0GQW/OgdoePpE5G e3JAJ7rWJuJfGuLbKNyLpqjtJGzIXTJE3KkBujuSgcrql5Qfu/Pf3KDcHva4j2iC qF5y2uVcIz4gEwZ0xI5gctemxxF5Xmu2KkIVK7M8m4zbb4Qyhm3dxH1RYE7dJP9+ 70v50epbgCIjbIOqfviUceaDW+z7Axcjq2cNI5UJb+Rc06MomxkoWwSxZX6mjcWA A8GNFz5qwNVS05eiYhommb3DFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG/2C2GH rcDEwCuiFpyhuFj6Vqm+MB8GA1UdIwQYMBaAFFxBQixOzx36aJpw3jwDkbHUflXs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjE5RC9EMjY5NURERTEx MUUxMUVEOUI1OEZEMTRDNEY5QUUwMi9YRUZDTEU3UEhmcG9tbkRlUEFPUnNkUi1W ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hFRkNMRTdQSGZwb21uRGVQQU9Sc2RSLVZldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjE5RC9EMjY5NURERTExMUUxMUVEOUI1OEZEMTRDNEY5QUUwMi9YRUZDTEU3UEhm cG9tbkRlUEFPUnNkUi1WZXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAs4wGYIl/a6Uz2bSb0xDJFITl3kjS3QiGd7v/jkGxazxjujw2AYKnv yqrV7ORcrN6ZgN5HthOfSJOUCz3T4huk+8/ugv1aD+sNe9cKAt37bODNsgRcEmzO z6Hwz5C08yP5QzZ3qYFqb1MPdj46wBMeMBg8WBrA+lOzR5blBU1H35a4+h3eFaOv y+49X3LStxFW/qzwVxIodj9WN/dvXZhgaFKqkC/y3HpWCaDR5r9fafygZSO+pFdF OfPnJKahsIVmWUcjqz6fY9tnAoMwZ8hNxgtiFaGuQesxrjC7izFzH66gWQpViGos W/KquK0SFWbwwoIxEtcFz3pDaeysC/1j -----END CERTIFICATE-----Generated at Wed Dec 24 15:42:56 2025 by rpki-client