This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft File: XctT6r5qkI7KhlLekkgHxQnFLTA.mft (raw, json) Hash identifier: mRswdiEUiU5OhONO2Y1OWcfaGzSZwLRUej7eGOgaanU= Subject key identifier: D3:D5:0F:6A:38:9E:97:9D:8B:3B:DA:3C:47:EC:1C:E0:A1:6E:DC:AF Authority key identifier: 5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 Certificate issuer: /CN=A918560D/serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Certificate serial: 0D57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft Manifest number: 0D4D Signing time: Mon 22 Dec 2025 17:38:17 +0000 Manifest this update: Mon 22 Dec 2025 17:38:17 +0000 Manifest next update: Mon 29 Dec 2025 17:38:17 +0000 Files and hashes: 1: XctT6r5qkI7KhlLekkgHxQnFLTA.crl (hash: tK5baGf5Nb+i8TFdUq2LnoBK008+ROV0QCVmvdBd5rE=) 2: 41A8E738045111EA9C7DF516C4F9AE02.roa (hash: t9j99ouqyAO1DSlTWOraKVE9DSXzBdaScfcUdlzhboc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:38:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3415 (0xd57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918560D, serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Validity Not Before: Dec 22 17:38:17 2025 GMT Not After : Dec 29 17:38:17 2025 GMT Subject: CN=69498209-52ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:58:fe:f9:64:0b:85:01:1c:e5:2e:16:b2:a0: 23:96:b9:5f:a8:e3:04:2b:9f:e7:80:10:7f:bd:79: 8c:12:d5:1d:80:a4:c4:bb:36:58:9e:fe:83:20:92: b9:21:7b:cc:3d:09:dd:bb:8d:93:e4:a4:67:ae:3a: e5:52:71:ae:7a:54:48:fd:d4:26:85:d4:9b:66:f6: c6:1c:80:0b:68:50:27:a1:00:ad:a8:ac:8c:42:1a: 24:d2:80:dd:14:db:1a:eb:e6:b3:56:a7:1a:51:64: b3:59:e2:cd:14:26:ec:07:e6:90:37:a4:f6:ff:bb: 7e:13:04:05:e9:c9:78:2c:e5:89:3c:00:18:be:1e: a2:6f:f3:04:c8:a8:c8:21:56:da:d5:6d:0f:72:1b: 40:2d:4c:57:37:8a:47:18:ea:80:47:b7:44:75:c3: c7:3e:07:0e:ec:32:b0:9c:8e:78:30:2f:14:8c:ba: 47:fe:82:af:66:54:c7:be:c4:16:75:08:19:a4:f5: 9b:ec:94:6f:1d:c9:d3:17:16:46:fe:1b:5c:7e:af: 64:a8:af:6b:c2:2a:ed:e9:fb:4e:bd:e7:13:0d:68: 64:31:e0:36:75:ba:82:e8:d1:42:2f:16:b9:27:76: 1f:d3:ed:59:de:82:4a:84:48:1b:f3:25:e0:a0:5f: 0d:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:D5:0F:6A:38:9E:97:9D:8B:3B:DA:3C:47:EC:1C:E0:A1:6E:DC:AF X509v3 Authority Key Identifier: keyid:5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:19:9f:36:50:6f:f7:5b:cb:45:51:ce:a9:aa:68:e8:8a:3e: db:9a:c6:fc:9e:97:f4:70:18:b6:87:e5:7f:80:25:be:d0:41: a6:10:31:88:4b:36:38:93:a9:32:3a:13:f0:a8:3c:ec:53:09: 7a:26:27:de:ba:8a:b3:fc:93:ba:68:03:8d:b9:5d:5b:79:f0: 0e:3a:10:16:b0:9f:99:45:16:9b:af:43:ea:4e:4a:6b:37:52: 9d:52:33:48:f5:fb:cb:bc:f0:80:ad:6b:bb:b2:93:dc:64:75: 17:b6:7a:18:a1:b2:40:bd:c1:08:e6:bd:23:a2:61:b8:76:00: d5:f2:7b:e6:9a:9a:40:ae:fe:ca:d4:bc:89:b7:3c:3f:34:57: 5c:48:05:6d:94:0c:29:bb:a6:cc:5f:52:d8:e1:b2:7e:fc:3f: b7:61:9e:c7:cf:79:10:ab:da:0f:b1:b7:bc:bd:b4:47:aa:74: 97:a7:c6:7c:21:d4:f0:85:a2:87:e9:8e:c1:83:73:82:d4:9b: 9a:54:70:06:99:ad:12:a0:e2:1e:5f:0e:a8:38:64:f1:c6:96: 75:d0:da:a6:35:37:92:2d:eb:56:e2:3d:c0:16:86:a5:71:9c: 55:f5:d0:78:27:e3:6c:15:af:1f:9c:01:3d:82:e8:fe:33:58: 60:fc:e2:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU2MEQxMTAvBgNVBAUTKDVEQ0I1M0VBQkU2QTkwOEVDQTg2NTJERTkyNDgwN0M1 MDlDNTJEMzAwHhcNMjUxMjIyMTczODE3WhcNMjUxMjI5MTczODE3WjAYMRYwFAYD VQQDDA02OTQ5ODIwOS01MmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAklj++WQLhQEc5S4WsqAjlrlfqOMEK5/ngBB/vXmMEtUdgKTEuzZYnv6DIJK5 IXvMPQndu42T5KRnrjrlUnGuelRI/dQmhdSbZvbGHIALaFAnoQCtqKyMQhok0oDd FNsa6+azVqcaUWSzWeLNFCbsB+aQN6T2/7t+EwQF6cl4LOWJPAAYvh6ib/MEyKjI IVba1W0PchtALUxXN4pHGOqAR7dEdcPHPgcO7DKwnI54MC8UjLpH/oKvZlTHvsQW dQgZpPWb7JRvHcnTFxZG/htcfq9kqK9rwirt6ftOvecTDWhkMeA2dbqC6NFCLxa5 J3Yf0+1Z3oJKhEgb8yXgoF8NpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNPVD2o4 npedizvaPEfsHOChbtyvMB8GA1UdIwQYMBaAFF3LU+q+apCOyoZS3pJIB8UJxS0w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTYwRC9GNURDQTZENEU1 QjgxMUU5OEE3NjEyMEVDNEY5QUUwMi9YY3RUNnI1cWtJN0tobExla2tnSHhRbkZM VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjdFQ2cjVxa0k3S2hsTGVra2dIeFFuRkxUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTYwRC9GNURDQTZENEU1QjgxMUU5OEE3NjEyMEVDNEY5QUUwMi9YY3RUNnI1cWtJ N0tobExla2tnSHhRbkZMVEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsGZ82UG/3W8tFUc6pqmjoij7bmsb8npf0cBi2h+V/gCW+0EGmEDGI SzY4k6kyOhPwqDzsUwl6Jifeuoqz/JO6aAONuV1befAOOhAWsJ+ZRRabr0PqTkpr N1KdUjNI9fvLvPCArWu7spPcZHUXtnoYobJAvcEI5r0jomG4dgDV8nvmmppArv7K 1LyJtzw/NFdcSAVtlAwpu6bMX1LY4bJ+/D+3YZ7Hz3kQq9oPsbe8vbRHqnSXp8Z8 IdTwhaKH6Y7Bg3OC1JuaVHAGma0SoOIeXw6oOGTxxpZ10NqmNTeSLetW4j3AFoal cZxV9dB4J+NsFa8fnAE9guj+M1hg/OLy -----END CERTIFICATE-----Generated at Tue Dec 23 14:35:05 2025 by rpki-client