This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft File: XiM50eqvU0mhOKR5fagtDrTfqew.mft (raw, json) Hash identifier: 90dx3s9/FusQriZUwZOdKbo2Ay9k3sZPdBvsRXVFLUw= Subject key identifier: 5A:48:0B:04:97:AD:34:E9:BA:B6:CF:F4:03:BF:40:46:80:7B:EF:C9 Authority key identifier: 5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC Certificate issuer: /CN=A918CFAD/serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC Certificate serial: 013C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft Manifest number: 013A Signing time: Wed 03 Dec 2025 02:54:11 +0000 Manifest this update: Wed 03 Dec 2025 02:54:10 +0000 Manifest next update: Wed 10 Dec 2025 02:54:10 +0000 Files and hashes: 1: XiM50eqvU0mhOKR5fagtDrTfqew.crl (hash: nmZ2LRps31qDoCxXBAPJOEBIsVmoMcISEktc6jcouxQ=) 2: D161B1F0EA0411EE98A86A13C4F9AE02.roa (hash: +NOhwE6m6lpwH5XuFy8HqU1ULWBp+YrGh21v4UoRt+M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 02:54:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 316 (0x13c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CFAD, serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC Validity Not Before: Dec 3 02:54:10 2025 GMT Not After : Dec 10 02:54:10 2025 GMT Subject: CN=692fa652-e120 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:03:32:16:db:25:11:68:a1:5a:e6:0e:fc:91: e1:1e:8b:bf:1c:80:38:92:71:ea:db:44:32:b1:81: 3f:64:50:7f:93:ad:7d:af:a9:e5:b0:79:15:04:1d: 47:0c:61:b6:d2:05:3c:aa:6c:1e:87:92:bf:32:cf: 00:4b:ae:52:ed:5f:fc:ba:ed:4d:c1:dc:51:2a:e8: 25:8c:46:a0:40:70:78:54:c7:8b:28:78:94:4b:7b: 21:e1:0f:ef:d9:1b:45:b8:d9:56:32:5a:75:81:82: c8:49:32:ac:94:79:d1:75:fd:fd:c9:f8:fe:65:8c: ee:b7:d9:7a:c3:63:b7:eb:fd:85:89:d2:c8:a3:6e: de:b7:fe:c1:dc:e7:dd:b5:68:91:93:bb:e8:8e:bc: df:0d:06:39:aa:33:8e:5d:fd:4c:4d:9f:a8:30:ea: fe:b4:b7:cf:bd:51:67:bc:f4:09:e2:aa:88:c6:cf: 98:4a:e7:47:04:17:68:9b:a5:81:7a:c6:0b:ed:5b: a0:0c:48:a1:d4:2a:8e:11:45:26:ff:21:32:a9:f9: 2a:e1:29:c7:97:bc:86:52:50:7d:6a:98:4f:68:19: 9a:f1:f3:44:7a:08:97:dd:0d:8c:9c:10:c4:c2:19: 3f:f1:67:ee:22:a7:68:d3:b5:80:84:73:f1:bc:bd: fe:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:48:0B:04:97:AD:34:E9:BA:B6:CF:F4:03:BF:40:46:80:7B:EF:C9 X509v3 Authority Key Identifier: keyid:5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d8:a4:ae:49:21:1e:ab:5e:fd:6f:db:2b:c9:c3:b0:b8:03:f1: 72:3e:2d:2a:bd:24:27:be:f0:23:4b:8d:ed:9f:8a:63:db:38: ab:1c:1f:4f:08:45:f2:d6:36:dc:0f:07:e9:84:a5:22:44:05: 4e:b0:6e:dc:c0:bd:84:c0:46:31:90:d1:4c:52:17:c3:bd:34: ad:96:87:1c:93:71:77:61:50:41:6e:bb:ff:d9:4e:0a:2a:e5: 38:8b:8d:41:5a:00:37:ad:d4:7b:03:c5:98:82:25:0e:19:5a: 30:78:9f:80:53:08:14:93:bd:c7:ae:80:93:5d:a0:0d:68:e6: b6:bd:30:74:6a:ef:f4:47:59:02:c3:ae:c8:bf:d1:fc:1c:0d: c6:86:c6:76:ff:c6:f3:b8:9b:31:2f:6b:34:5d:49:78:9d:ae: 34:89:be:97:39:75:2f:cf:b4:54:fb:a7:f1:6d:ab:b1:89:b3: bd:d9:6d:22:5a:65:11:58:bd:c5:b2:02:b8:09:37:f3:5b:c9: b4:a6:ed:1b:6d:7c:0c:3c:37:00:0c:15:81:48:13:60:3c:8e: f3:a2:10:c3:c0:19:14:04:c2:f2:c8:8a:51:69:1f:24:75:0c: 17:82:85:f4:1a:6c:08:3a:a9:02:fb:7c:83:a8:9a:a0:3d:6f: 75:80:dd:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENGQUQxMTAvBgNVBAUTKDVFMjMzOUQxRUFBRjUzNDlBMTM4QTQ3OTdEQTgyRDBF QjRERkE5RUMwHhcNMjUxMjAzMDI1NDEwWhcNMjUxMjEwMDI1NDEwWjAYMRYwFAYD VQQDEw02OTJmYTY1Mi1lMTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0wMyFtslEWihWuYO/JHhHou/HIA4knHq20QysYE/ZFB/k619r6nlsHkVBB1H DGG20gU8qmweh5K/Ms8AS65S7V/8uu1NwdxRKugljEagQHB4VMeLKHiUS3sh4Q/v 2RtFuNlWMlp1gYLISTKslHnRdf39yfj+ZYzut9l6w2O36/2FidLIo27et/7B3Ofd tWiRk7vojrzfDQY5qjOOXf1MTZ+oMOr+tLfPvVFnvPQJ4qqIxs+YSudHBBdom6WB esYL7VugDEih1CqOEUUm/yEyqfkq4SnHl7yGUlB9aphPaBma8fNEegiX3Q2MnBDE whk/8WfuIqdo07WAhHPxvL3+xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFpICwSX rTTpurbP9AO/QEaAe+/JMB8GA1UdIwQYMBaAFF4jOdHqr1NJoTikeX2oLQ6036ns MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0ZBRC80QzkwMEYxQ0VB MDQxMUVFOTJEMTA2MTFDNEY5QUUwMi9YaU01MGVxdlUwbWhPS1I1ZmFndERyVGZx ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hpTTUwZXF2VTBtaE9LUjVmYWd0RHJUZnFldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0ZBRC80QzkwMEYxQ0VBMDQxMUVFOTJEMTA2MTFDNEY5QUUwMi9YaU01MGVxdlUw bWhPS1I1ZmFndERyVGZxZXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDYpK5JIR6rXv1v2yvJw7C4A/FyPi0qvSQnvvAjS43tn4pj2zirHB9P CEXy1jbcDwfphKUiRAVOsG7cwL2EwEYxkNFMUhfDvTStlocck3F3YVBBbrv/2U4K KuU4i41BWgA3rdR7A8WYgiUOGVoweJ+AUwgUk73HroCTXaANaOa2vTB0au/0R1kC w67Iv9H8HA3GhsZ2/8bzuJsxL2s0XUl4na40ib6XOXUvz7RU+6fxbauxibO92W0i WmURWL3FsgK4CTfzW8m0pu0bbXwMPDcADBWBSBNgPI7zohDDwBkUBMLyyIpRaR8k dQwXgoX0GmwIOqkC+3yDqJqgPW91gN0M -----END CERTIFICATE-----Generated at Wed Dec 3 13:58:20 2025 by rpki-client