This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft File: X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft (raw, json) Hash identifier: Y/MU97h9SFIWP4p/dBh5WJEMoXA3DXqydLI18eluyyE= Subject key identifier: 78:E5:07:8B:94:07:FC:A5:F3:2E:77:91:0E:42:E3:B2:D6:6F:24:50 Authority key identifier: 5F:C2:79:2C:F4:40:B8:57:83:9D:68:8A:70:B6:0F:07:62:AB:AB:35 Certificate issuer: /CN=A9170304/serialNumber=5FC2792CF440B857839D688A70B60F0762ABAB35 Certificate serial: 3500 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft Manifest number: 34F7 Signing time: Mon 22 Dec 2025 14:36:59 +0000 Manifest this update: Mon 22 Dec 2025 14:36:59 +0000 Manifest next update: Mon 29 Dec 2025 14:36:59 +0000 Files and hashes: 1: X8J5LPRAuFeDnWiKcLYPB2KrqzU.crl (hash: 3bDVPhcLsTaAkgkSR1xQCDERNlrWSj7fH7PaYSAz5JM=) 2: 6D106CEE3AA011EB963B4842C4F9AE02.roa (hash: m1Ja+K+BQF88h58Y18w9A7vu3WiRuOsB65pKsql8BvI=) 3: 3A304DB4F54411EE8FF34627C4F9AE02.roa (hash: Zl4gUZhHt66LNUFLaLmernm+th1hHU0/5O3LszjxBds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.crl rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 14:36:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13568 (0x3500) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170304, serialNumber=5FC2792CF440B857839D688A70B60F0762ABAB35 Validity Not Before: Dec 22 14:36:59 2025 GMT Not After : Dec 29 14:36:59 2025 GMT Subject: CN=6949578b-625b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:27:ca:55:6e:83:dc:ed:41:64:4b:d4:32:e9: 79:5d:3f:50:0d:81:a2:9f:24:25:e6:84:18:d7:db: 82:58:f3:50:8d:63:c0:e2:25:d4:77:11:7e:31:09: 29:55:64:5a:4a:b4:9f:c9:26:e3:01:c6:97:d3:19: 21:38:a8:cc:a2:fd:33:d7:56:0c:41:f0:60:62:ab: 00:7a:3e:79:be:12:bb:0a:94:a9:5c:f3:cf:11:c2: de:75:3d:66:97:ff:86:f1:3a:70:28:50:33:9e:33: 58:39:da:6a:41:69:ea:c2:a4:f9:d4:bd:b3:d2:3e: bb:f2:71:eb:9e:1b:c8:4a:17:5d:f8:31:ef:e9:92: 84:6c:11:42:14:9d:4d:71:1c:94:a6:76:31:8d:cd: 09:13:d4:6f:bb:ac:6e:3b:b2:d7:3a:75:27:16:dd: 43:fe:3e:f6:11:50:ed:bf:15:8a:83:e8:5c:0f:a8: a6:23:a2:e9:90:67:66:7b:c0:9b:1b:9c:c2:3d:b4: f1:c4:e4:4d:3d:35:03:bd:fa:e6:11:95:36:5b:e0: 47:bf:46:e6:12:3d:4e:38:64:41:25:c8:84:ee:e3: 14:ce:26:07:80:fb:79:12:bd:37:7a:77:bf:9c:78: a5:cd:07:4c:40:79:14:33:9f:7d:39:a7:27:63:71: 2e:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:E5:07:8B:94:07:FC:A5:F3:2E:77:91:0E:42:E3:B2:D6:6F:24:50 X509v3 Authority Key Identifier: keyid:5F:C2:79:2C:F4:40:B8:57:83:9D:68:8A:70:B6:0F:07:62:AB:AB:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:4d:f5:04:7f:de:b3:6e:62:6a:2c:ee:d8:85:19:f2:05:d0: 14:03:33:d7:c9:f3:3b:31:da:c8:76:fc:23:96:1b:bc:0c:a6: 04:8f:85:b6:e6:e9:54:5d:24:5f:4c:ad:b3:6e:2d:4f:e6:06: 5b:82:67:b4:cc:73:fa:ad:2a:b5:5f:55:58:ac:b8:ea:d6:98: e7:a4:eb:4a:0c:b9:b6:c1:94:94:fc:d1:13:3e:35:05:09:5f: 02:50:d2:82:05:b7:ec:38:b1:60:1c:6d:4f:96:4a:43:03:95: 58:dc:da:a1:01:05:f6:1e:7a:1a:85:f1:0b:a9:d4:ca:bc:dc: 1e:35:e9:6a:44:85:55:71:51:4b:22:8a:43:7f:8c:79:26:6f: d7:61:0a:2f:90:24:19:12:0e:96:a7:d4:e7:c3:f9:1c:28:69: 6b:48:ec:92:e9:25:bc:5e:9e:19:5d:cd:a4:1a:0e:f5:d8:c9: c8:80:b0:a3:e1:fd:8b:10:ee:95:4d:e4:7b:7f:d0:71:a7:43: f9:53:12:f5:06:8d:7f:6d:6a:f5:13:14:93:03:4f:50:fd:30: 6f:36:ad:e4:69:e1:f5:79:66:87:80:76:90:71:ea:d8:96:29: 9b:dd:a0:12:8d:c6:96:d8:3f:c0:40:4e:51:85:99:75:ef:37: 94:53:69:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAzMDQxMTAvBgNVBAUTKDVGQzI3OTJDRjQ0MEI4NTc4MzlENjg4QTcwQjYwRjA3 NjJBQkFCMzUwHhcNMjUxMjIyMTQzNjU5WhcNMjUxMjI5MTQzNjU5WjAYMRYwFAYD VQQDDA02OTQ5NTc4Yi02MjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyfKVW6D3O1BZEvUMul5XT9QDYGinyQl5oQY19uCWPNQjWPA4iXUdxF+MQkp VWRaSrSfySbjAcaX0xkhOKjMov0z11YMQfBgYqsAej55vhK7CpSpXPPPEcLedT1m l/+G8TpwKFAznjNYOdpqQWnqwqT51L2z0j678nHrnhvIShdd+DHv6ZKEbBFCFJ1N cRyUpnYxjc0JE9Rvu6xuO7LXOnUnFt1D/j72EVDtvxWKg+hcD6imI6LpkGdme8Cb G5zCPbTxxORNPTUDvfrmEZU2W+BHv0bmEj1OOGRBJciE7uMUziYHgPt5Er03ene/ nHilzQdMQHkUM599OacnY3EuKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHjlB4uU B/yl8y53kQ5C47LWbyRQMB8GA1UdIwQYMBaAFF/CeSz0QLhXg51oinC2Dwdiq6s1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDMwNC9BQjgyNDlCMjFE OEUxMUUyQjE4MjI2RUQwOEIwMkNEMi9YOEo1TFBSQXVGZURuV2lLY0xZUEIyS3Jx elUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g4SjVMUFJBdUZlRG5XaUtjTFlQQjJLcnF6VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDMwNC9BQjgyNDlCMjFEOEUxMUUyQjE4MjI2RUQwOEIwMkNEMi9YOEo1TFBSQXVG ZURuV2lLY0xZUEIyS3JxelUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkTfUEf96zbmJqLO7YhRnyBdAUAzPXyfM7MdrIdvwjlhu8DKYEj4W2 5ulUXSRfTK2zbi1P5gZbgme0zHP6rSq1X1VYrLjq1pjnpOtKDLm2wZSU/NETPjUF CV8CUNKCBbfsOLFgHG1PlkpDA5VY3NqhAQX2HnoahfELqdTKvNweNelqRIVVcVFL IopDf4x5Jm/XYQovkCQZEg6Wp9Tnw/kcKGlrSOyS6SW8Xp4ZXc2kGg712MnIgLCj 4f2LEO6VTeR7f9Bxp0P5UxL1Bo1/bWr1ExSTA09Q/TBvNq3kaeH1eWaHgHaQcerY limb3aASjcaW2D/AQE5RhZl17zeUU2mT -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:39 2025 by rpki-client