This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.mft File: XOvYaFsXSV2z4edFmXn-hPBDg_I.mft (raw, json) Hash identifier: eWMGY1Rsec54bHwmAYZaSvKQwz9LMKlHWJpT2Z8Ucj4= Subject key identifier: FB:B7:07:F0:9B:8D:8F:95:86:B5:BA:BD:F5:70:2D:45:3D:3F:2B:10 Authority key identifier: 5C:EB:D8:68:5B:17:49:5D:B3:E1:E7:45:99:79:FE:84:F0:43:83:F2 Certificate issuer: /CN=A917C716/serialNumber=5CEBD8685B17495DB3E1E7459979FE84F04383F2 Certificate serial: 0130 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOvYaFsXSV2z4edFmXn-hPBDg_I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.mft Manifest number: 0464 Signing time: Tue 23 Dec 2025 00:22:34 +0000 Manifest this update: Tue 23 Dec 2025 00:22:34 +0000 Manifest next update: Tue 30 Dec 2025 00:22:34 +0000 Files and hashes: 1: XOvYaFsXSV2z4edFmXn-hPBDg_I.crl (hash: 8e0SDkBKEkmrjpXvy/s3NbPdIac9hI4wvruSW+gIVgk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.crl rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOvYaFsXSV2z4edFmXn-hPBDg_I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:22:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C716, serialNumber=5CEBD8685B17495DB3E1E7459979FE84F04383F2 Validity Not Before: Dec 23 00:22:34 2025 GMT Not After : Dec 30 00:22:34 2025 GMT Subject: CN=6949e0ca-ab27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e1:74:84:e4:06:31:3d:a0:54:00:94:52:50: 0f:31:01:49:02:e0:b5:25:40:8b:00:f6:0c:73:b9: 09:e5:27:fc:31:3b:fc:0b:22:03:69:49:99:1c:76: 4a:b4:cb:44:8a:0c:6d:51:c3:fc:6a:a0:04:4d:54: 36:27:a6:5b:87:7f:36:f4:cb:8b:d4:1e:69:aa:8d: 50:f4:0e:1f:d8:fe:5f:61:c3:c5:3f:75:ae:bb:90: 67:61:2f:a9:72:9b:13:21:f5:c4:7a:2e:2e:f1:37: 4c:5e:4d:8a:35:7c:dd:d7:58:26:fd:d2:eb:5d:98: b7:7d:ae:7f:3d:a1:1d:0f:a4:27:c7:69:2d:ba:62: 4f:04:8a:88:86:99:91:e2:32:78:86:6b:dd:70:90: 26:9f:cd:be:83:d5:a8:f3:cd:08:3b:04:7c:a9:71: 85:27:84:38:f9:cc:93:e1:b4:3a:86:8b:6d:fa:d4: 64:47:17:aa:b5:6f:cb:42:09:26:76:0e:98:ef:37: c2:bf:56:ec:c8:24:fe:69:ed:dd:46:a4:5c:6c:e3: 45:b0:e3:b0:08:15:c2:94:ad:b0:61:29:cd:42:49: 46:52:7c:fe:ba:b2:75:cb:95:43:f5:ec:f9:53:7d: e8:3d:7d:83:3d:df:53:62:dc:f1:28:30:f7:0d:2e: 00:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:B7:07:F0:9B:8D:8F:95:86:B5:BA:BD:F5:70:2D:45:3D:3F:2B:10 X509v3 Authority Key Identifier: keyid:5C:EB:D8:68:5B:17:49:5D:B3:E1:E7:45:99:79:FE:84:F0:43:83:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOvYaFsXSV2z4edFmXn-hPBDg_I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:e8:25:1b:b2:7d:d3:70:c9:9f:29:e8:cf:d6:88:0c:aa:ed: b9:86:b2:d4:c7:6e:43:39:0a:fa:60:b5:84:d0:41:d4:a9:0d: ef:ed:a4:ec:0e:f7:00:c8:47:dd:99:81:6e:27:fa:22:fd:a3: d9:31:31:24:99:9d:77:66:7e:5e:96:a6:a6:eb:b2:34:e3:38: 31:f9:9c:d2:3e:85:57:08:8e:34:08:e4:00:06:3e:e8:a2:dd: 48:64:51:44:c5:49:67:cc:f1:98:ab:26:b7:78:b7:ef:0f:ce: 7c:fe:05:3c:b3:3a:42:c7:86:ef:7d:d9:64:7e:22:4a:3c:c3: b2:06:73:d0:98:23:9d:b2:01:51:a5:29:4c:ab:36:36:ee:73: 57:65:af:6e:00:12:3e:9d:1d:3e:55:be:f9:85:96:7f:99:75: 1b:dc:7a:57:da:07:40:1f:b0:3c:b0:81:13:bb:5e:6f:f8:60: 71:8d:bb:d5:3a:1c:1e:c3:65:9f:27:c1:d3:cf:83:8a:cd:bd: bc:6a:92:23:a9:49:d4:ef:6f:ea:4b:95:37:b1:54:fb:64:05: d9:6e:4a:c9:3a:8b:db:f2:c9:b3:79:6f:d4:94:b1:9a:e0:8b: a6:88:27:0e:94:82:ba:46:26:45:1b:36:46:09:b4:30:a9:de: c9:98:2e:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M3MTYxMTAvBgNVBAUTKDVDRUJEODY4NUIxNzQ5NURCM0UxRTc0NTk5NzlGRTg0 RjA0MzgzRjIwHhcNMjUxMjIzMDAyMjM0WhcNMjUxMjMwMDAyMjM0WjAYMRYwFAYD VQQDDA02OTQ5ZTBjYS1hYjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1OF0hOQGMT2gVACUUlAPMQFJAuC1JUCLAPYMc7kJ5Sf8MTv8CyIDaUmZHHZK tMtEigxtUcP8aqAETVQ2J6Zbh3829MuL1B5pqo1Q9A4f2P5fYcPFP3Wuu5BnYS+p cpsTIfXEei4u8TdMXk2KNXzd11gm/dLrXZi3fa5/PaEdD6Qnx2ktumJPBIqIhpmR 4jJ4hmvdcJAmn82+g9Wo880IOwR8qXGFJ4Q4+cyT4bQ6hott+tRkRxeqtW/LQgkm dg6Y7zfCv1bsyCT+ae3dRqRcbONFsOOwCBXClK2wYSnNQklGUnz+urJ1y5VD9ez5 U33oPX2DPd9TYtzxKDD3DS4AhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPu3B/Cb jY+VhrW6vfVwLUU9PysQMB8GA1UdIwQYMBaAFFzr2GhbF0lds+HnRZl5/oTwQ4Py MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzcxNi80REI5Q0FDNDE0 MDIxMUVEQjk2NjM0MTVDNEY5QUUwMi9YT3ZZYUZzWFNWMno0ZWRGbVhuLWhQQkRn X0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hPdllhRnNYU1YyejRlZEZtWG4taFBCRGdfSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzcxNi80REI5Q0FDNDE0MDIxMUVEQjk2NjM0MTVDNEY5QUUwMi9YT3ZZYUZzWFNW Mno0ZWRGbVhuLWhQQkRnX0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAp6CUbsn3TcMmfKejP1ogMqu25hrLUx25DOQr6YLWE0EHUqQ3v7aTs DvcAyEfdmYFuJ/oi/aPZMTEkmZ13Zn5elqam67I04zgx+ZzSPoVXCI40COQABj7o ot1IZFFExUlnzPGYqya3eLfvD858/gU8szpCx4bvfdlkfiJKPMOyBnPQmCOdsgFR pSlMqzY27nNXZa9uABI+nR0+Vb75hZZ/mXUb3HpX2gdAH7A8sIETu15v+GBxjbvV Ohwew2WfJ8HTz4OKzb28apIjqUnU72/qS5U3sVT7ZAXZbkrJOovb8smzeW/UlLGa 4IumiCcOlIK6RiZFGzZGCbQwqd7JmC7g -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:40 2025 by rpki-client