This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft File: XiM50eqvU0mhOKR5fagtDrTfqew.mft (raw, json) Hash identifier: QZoAZF8Dn4ZQovxss54FcFvtvGuJddq/fu3NAnGv6YQ= Subject key identifier: 23:30:02:1B:59:24:05:B6:CE:BA:F1:61:CD:D0:F2:B9:32:CE:F7:4B Authority key identifier: 5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC Certificate issuer: /CN=A918CFAD/serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC Certificate serial: 0146 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft Manifest number: 0144 Signing time: Tue 23 Dec 2025 03:20:24 +0000 Manifest this update: Tue 23 Dec 2025 03:20:24 +0000 Manifest next update: Tue 30 Dec 2025 03:20:24 +0000 Files and hashes: 1: XiM50eqvU0mhOKR5fagtDrTfqew.crl (hash: mySpXr1mCWNKR2Tq2BGEiZAVyqSeSWCbvQsPySqPk3o=) 2: D161B1F0EA0411EE98A86A13C4F9AE02.roa (hash: +NOhwE6m6lpwH5XuFy8HqU1ULWBp+YrGh21v4UoRt+M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 326 (0x146) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CFAD, serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC Validity Not Before: Dec 23 03:20:24 2025 GMT Not After : Dec 30 03:20:24 2025 GMT Subject: CN=694a0a78-222b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3c:91:ac:fe:4a:ab:e5:a7:51:46:26:12:7e: ed:da:01:74:31:6a:36:03:ef:a3:71:e9:5a:a6:85: 3a:ba:ab:bb:0b:c8:75:96:0f:0f:b6:76:6c:ea:fd: 47:30:ea:1a:54:e9:a3:08:77:eb:27:6f:80:dc:82: 5d:8b:39:87:d2:ce:78:1d:b4:ff:53:df:cb:db:a4: fb:73:07:a0:12:f7:2e:8e:78:fe:80:45:17:f7:f0: 86:f4:be:93:55:3d:9d:8e:44:7c:4d:18:b1:a5:0a: 9d:04:fb:2c:08:c4:63:83:54:3f:e2:4d:8b:5e:8d: 13:2b:81:57:59:0a:84:98:bd:af:27:8a:ad:3a:88: 03:fe:45:96:23:4e:39:a9:be:2f:cc:c8:6e:3f:16: 89:56:77:31:c1:5f:29:1e:7c:ed:b0:0f:b6:62:7a: b4:7a:27:94:fb:32:2d:3d:89:57:3d:74:11:c9:48: 83:3f:7c:4c:e6:63:94:8a:5a:f4:85:cd:fd:17:42: 06:3e:a0:fc:47:1c:35:26:96:0e:b8:14:60:f5:6e: 2d:6d:f8:6e:65:4d:76:83:d4:fc:13:15:e9:37:fe: 8d:e2:7d:f5:28:d5:e6:c3:5c:9a:4b:f2:05:f7:f5: 7d:1f:5c:80:68:2d:d3:02:78:f2:cb:b9:c8:80:70: 6f:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:30:02:1B:59:24:05:B6:CE:BA:F1:61:CD:D0:F2:B9:32:CE:F7:4B X509v3 Authority Key Identifier: keyid:5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:f2:72:dd:f7:eb:7f:c4:dc:24:45:67:d3:61:8b:ab:5d:17: 4b:48:a8:0a:1d:8e:98:2c:cd:8b:21:ea:61:f6:7d:39:7f:4e: 9e:61:43:a6:2e:88:26:9d:8b:2b:7b:39:e9:3f:05:78:2b:21: e3:a4:ba:5c:02:3c:be:40:ba:53:09:19:84:90:7b:6e:f3:30: 82:45:92:24:7e:34:c6:28:d9:00:14:04:32:64:59:5b:96:67: 47:b3:91:90:53:9d:d9:c3:db:87:08:46:06:0f:1d:a8:c6:f1: ec:ed:29:60:8f:bd:a0:fc:06:c0:b7:f4:a7:97:f4:58:85:6e: e7:00:1a:19:39:42:c5:7e:11:33:35:62:ca:20:08:09:8f:cd: be:11:58:3e:c6:50:4a:b8:d4:3a:f0:e2:77:91:85:a9:ca:f0: 91:73:e3:6c:db:91:d7:3f:9c:51:2d:27:9c:6c:6b:9f:ad:8b: e9:36:ea:20:1f:bb:7a:57:d7:0e:d9:db:9b:ce:5c:36:d2:e4: 84:32:b5:fa:bc:dd:95:92:1e:c7:94:fc:c9:58:b8:0a:b0:d1: 09:7e:7e:53:8d:dd:21:98:42:e2:75:f2:bb:77:ae:eb:13:5b: db:8c:88:f2:9a:d5:ed:66:2b:28:14:64:ba:e3:4a:fe:20:5f: 12:f9:09:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENGQUQxMTAvBgNVBAUTKDVFMjMzOUQxRUFBRjUzNDlBMTM4QTQ3OTdEQTgyRDBF QjRERkE5RUMwHhcNMjUxMjIzMDMyMDI0WhcNMjUxMjMwMDMyMDI0WjAYMRYwFAYD VQQDDA02OTRhMGE3OC0yMjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjyRrP5Kq+WnUUYmEn7t2gF0MWo2A++jcelapoU6uqu7C8h1lg8PtnZs6v1H MOoaVOmjCHfrJ2+A3IJdizmH0s54HbT/U9/L26T7cwegEvcujnj+gEUX9/CG9L6T VT2djkR8TRixpQqdBPssCMRjg1Q/4k2LXo0TK4FXWQqEmL2vJ4qtOogD/kWWI045 qb4vzMhuPxaJVncxwV8pHnztsA+2Ynq0eieU+zItPYlXPXQRyUiDP3xM5mOUilr0 hc39F0IGPqD8Rxw1JpYOuBRg9W4tbfhuZU12g9T8ExXpN/6N4n31KNXmw1yaS/IF 9/V9H1yAaC3TAnjyy7nIgHBvwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCMwAhtZ JAW2zrrxYc3Q8rkyzvdLMB8GA1UdIwQYMBaAFF4jOdHqr1NJoTikeX2oLQ6036ns MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0ZBRC80QzkwMEYxQ0VB MDQxMUVFOTJEMTA2MTFDNEY5QUUwMi9YaU01MGVxdlUwbWhPS1I1ZmFndERyVGZx ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hpTTUwZXF2VTBtaE9LUjVmYWd0RHJUZnFldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0ZBRC80QzkwMEYxQ0VBMDQxMUVFOTJEMTA2MTFDNEY5QUUwMi9YaU01MGVxdlUw bWhPS1I1ZmFndERyVGZxZXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBj8nLd9+t/xNwkRWfTYYurXRdLSKgKHY6YLM2LIeph9n05f06eYUOm LogmnYsreznpPwV4KyHjpLpcAjy+QLpTCRmEkHtu8zCCRZIkfjTGKNkAFAQyZFlb lmdHs5GQU53Zw9uHCEYGDx2oxvHs7Slgj72g/AbAt/Snl/RYhW7nABoZOULFfhEz NWLKIAgJj82+EVg+xlBKuNQ68OJ3kYWpyvCRc+Ns25HXP5xRLSecbGufrYvpNuog H7t6V9cO2dubzlw20uSEMrX6vN2Vkh7HlPzJWLgKsNEJfn5Tjd0hmELidfK7d67r E1vbjIjymtXtZisoFGS640r+IF8S+Qmo -----END CERTIFICATE-----Generated at Tue Dec 23 20:40:39 2025 by rpki-client