This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft File: xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft (raw, json) Hash identifier: mSV050MhLZJ13vP2JIumV8C3r065E9Xno2elqpHUQXE= Subject key identifier: F3:AF:4E:3F:73:D7:DB:65:02:65:8A:14:BC:FC:3B:D4:60:C8:53:B7 Authority key identifier: C4:8D:44:F1:11:D9:F4:DC:8E:3E:64:AD:7F:96:48:64:61:CB:9F:BD Certificate issuer: /CN=A9181CA2/serialNumber=C48D44F111D9F4DC8E3E64AD7F96486461CB9FBD Certificate serial: 0428 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft Manifest number: 0423 Signing time: Mon 22 Dec 2025 23:24:07 +0000 Manifest this update: Mon 22 Dec 2025 23:24:07 +0000 Manifest next update: Mon 29 Dec 2025 23:24:07 +0000 Files and hashes: 1: xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl (hash: LVJEPC7Ih7BKtpL3AxCAQsTWBDrHu2CWnblWhhJuiEw=) 2: 76391AA6995311EC8EAA8C59C4F9AE02.roa (hash: W7ot2zpw7zenj0ixyvV0R84xsbmbGiyY0szYoIQxijc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:24:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1064 (0x428) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181CA2, serialNumber=C48D44F111D9F4DC8E3E64AD7F96486461CB9FBD Validity Not Before: Dec 22 23:24:07 2025 GMT Not After : Dec 29 23:24:07 2025 GMT Subject: CN=6949d317-1245 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:55:32:ec:1e:fa:78:bb:fc:e7:cd:b0:8f:1f: ca:7e:fb:10:40:c6:de:a2:49:bd:76:37:a7:06:09: bc:36:e9:36:a2:11:3a:50:f8:6b:4e:b3:4d:5b:46: 23:a7:ff:54:61:04:24:b1:bc:7b:90:d5:4f:5d:75: 0d:3c:da:85:12:6f:98:96:99:78:85:18:2a:fc:2a: 0b:3a:de:6e:b5:b4:57:b2:eb:bf:a8:06:c7:7e:92: 4d:72:e6:2a:b8:c3:92:78:c7:d7:1c:a7:fc:69:0c: 59:21:fc:12:28:34:ef:f5:d2:c3:0e:7e:41:32:71: 86:3d:02:b9:f6:af:42:a0:f7:d5:b1:1d:ba:62:81: e6:5f:43:31:99:63:14:f1:4a:d4:2d:ed:fd:35:db: f4:a5:21:9e:18:71:2b:f0:f4:f7:e6:0f:9e:65:0e: b2:37:2c:b5:bf:1c:58:61:17:9e:5e:ba:cd:41:80: c5:9b:91:b5:02:9f:74:c1:92:6c:ef:92:0b:e2:7a: cc:e1:7b:3a:ac:0f:65:fb:ca:ff:97:e2:be:19:c0: 83:a9:bc:1a:ab:36:d0:2f:db:c4:81:10:5c:55:a9: d5:df:1a:fe:04:68:e9:11:0c:7d:cf:a8:6f:ac:3b: 29:4f:30:82:c3:d2:a4:87:54:73:0c:1b:0a:5c:34: 8b:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:AF:4E:3F:73:D7:DB:65:02:65:8A:14:BC:FC:3B:D4:60:C8:53:B7 X509v3 Authority Key Identifier: keyid:C4:8D:44:F1:11:D9:F4:DC:8E:3E:64:AD:7F:96:48:64:61:CB:9F:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:54:ea:23:e9:fd:75:58:f1:27:a6:53:b0:cc:50:2a:1f:95: 8e:70:d3:6b:91:e8:b6:5e:eb:87:4f:71:9f:76:78:cd:c9:7d: 08:34:df:e9:bd:53:a5:7a:1f:70:fa:1a:6a:96:9b:3a:46:f1: 39:c3:25:51:e8:eb:5f:37:bd:9c:06:49:62:38:bb:5a:63:32: 14:da:b3:28:b4:ae:ea:4c:31:2b:29:5a:ad:c3:c1:67:5a:da: 9f:da:b4:78:40:6d:63:11:88:f2:c0:a5:ce:52:4e:53:a5:95: 3c:67:90:ca:1f:3d:09:7d:2c:27:e9:3d:97:ba:14:46:30:4e: 94:10:13:8b:20:44:d6:24:b4:02:ca:ec:d1:15:b9:0f:fd:16: 2e:08:67:8a:5a:64:fd:fc:99:ad:cc:17:99:6e:31:12:c5:37: af:83:48:80:21:b5:4b:dd:e9:9b:1a:f8:63:12:35:03:c1:6e: 9e:a6:e5:90:01:66:c7:2e:9c:48:62:9c:a2:b2:97:81:6e:45: 90:10:16:38:29:c2:45:35:d9:9f:65:7b:e0:f0:97:90:d2:df: 69:fd:ba:ce:12:23:4f:e3:ab:89:ef:1a:d8:67:1d:4c:72:3c: 0b:ec:07:a6:97:91:52:95:b3:9b:15:6f:2e:2c:d2:5a:04:4b: 00:4a:75:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODFDQTIxMTAvBgNVBAUTKEM0OEQ0NEYxMTFEOUY0REM4RTNFNjRBRDdGOTY0ODY0 NjFDQjlGQkQwHhcNMjUxMjIyMjMyNDA3WhcNMjUxMjI5MjMyNDA3WjAYMRYwFAYD VQQDDA02OTQ5ZDMxNy0xMjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1VUy7B76eLv8582wjx/KfvsQQMbeokm9djenBgm8Nuk2ohE6UPhrTrNNW0Yj p/9UYQQksbx7kNVPXXUNPNqFEm+Ylpl4hRgq/CoLOt5utbRXsuu/qAbHfpJNcuYq uMOSeMfXHKf8aQxZIfwSKDTv9dLDDn5BMnGGPQK59q9CoPfVsR26YoHmX0MxmWMU 8UrULe39Ndv0pSGeGHEr8PT35g+eZQ6yNyy1vxxYYReeXrrNQYDFm5G1Ap90wZJs 75IL4nrM4Xs6rA9l+8r/l+K+GcCDqbwaqzbQL9vEgRBcVanV3xr+BGjpEQx9z6hv rDspTzCCw9Kkh1RzDBsKXDSLJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPOvTj9z 19tlAmWKFLz8O9RgyFO3MB8GA1UdIwQYMBaAFMSNRPER2fTcjj5krX+WSGRhy5+9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MUNBMi83OTM2NUI4RThG MDcxMUVDOUVCMjMxNzBDNEY5QUUwMi94STFFOFJIWjlOeU9QbVN0ZjVaSVpHSExu NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJMUU4UkhaOU55T1BtU3RmNVpJWkdITG43MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MUNBMi83OTM2NUI4RThGMDcxMUVDOUVCMjMxNzBDNEY5QUUwMi94STFFOFJIWjlO eU9QbVN0ZjVaSVpHSExuNzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2VOoj6f11WPEnplOwzFAqH5WOcNNrkei2XuuHT3GfdnjNyX0INN/p vVOleh9w+hpqlps6RvE5wyVR6OtfN72cBkliOLtaYzIU2rMotK7qTDErKVqtw8Fn Wtqf2rR4QG1jEYjywKXOUk5TpZU8Z5DKHz0JfSwn6T2XuhRGME6UEBOLIETWJLQC yuzRFbkP/RYuCGeKWmT9/JmtzBeZbjESxTevg0iAIbVL3embGvhjEjUDwW6epuWQ AWbHLpxIYpyispeBbkWQEBY4KcJFNdmfZXvg8JeQ0t9p/brOEiNP46uJ7xrYZx1M cjwL7Aeml5FSlbObFW8uLNJaBEsASnVf -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:25 2025 by rpki-client