This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft File: X8G2OMzN_5nWRFZVKcgHCGhomzE.mft (raw, json) Hash identifier: WaIqhX2xudXsLNp3rlmC4jqgoN5XMxsYy1g9lMNGVOw= Subject key identifier: 91:DF:AC:32:05:E9:2D:8D:FE:B7:B8:C6:5C:2B:0B:0B:74:9B:22:B7 Authority key identifier: 5F:C1:B6:38:CC:CD:FF:99:D6:44:56:55:29:C8:07:08:68:68:9B:31 Certificate issuer: /CN=A918E28E/serialNumber=5FC1B638CCCDFF99D644565529C8070868689B31 Certificate serial: 9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft Manifest number: 9C Signing time: Tue 23 Dec 2025 05:19:53 +0000 Manifest this update: Tue 23 Dec 2025 05:19:53 +0000 Manifest next update: Tue 30 Dec 2025 05:19:53 +0000 Files and hashes: 1: X8G2OMzN_5nWRFZVKcgHCGhomzE.crl (hash: RiP8ZwONidoHc0JSG4fdMY7fj9swbahGWwBNIp3UpS4=) 2: AA456842107211F09A9E631FC4F9AE02.roa (hash: 6DJYRNtdCQtPDVdh/suSAFKdKgawzgUz82oOnswPp6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.crl rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:19:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E28E, serialNumber=5FC1B638CCCDFF99D644565529C8070868689B31 Validity Not Before: Dec 23 05:19:53 2025 GMT Not After : Dec 30 05:19:53 2025 GMT Subject: CN=694a2679-266a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7d:96:bc:9e:d6:9b:a1:60:9e:1b:a2:e8:b0: 22:1b:f7:0b:65:b7:50:e6:2c:0d:37:5c:52:af:c2: 6c:fd:96:e4:52:36:f2:89:05:6d:2f:56:98:00:a1: 18:4c:29:5d:c8:8c:1a:23:d9:a5:3b:de:a1:26:fb: 96:c1:cf:3c:56:c7:d7:5a:60:eb:ae:64:d6:a9:8e: 65:86:06:5d:e5:68:46:48:59:f0:59:e8:76:36:c5: eb:d4:7f:03:97:76:7b:51:4e:03:0f:4a:58:94:c4: 42:bb:91:e1:90:b8:0f:b9:7a:d9:13:30:02:3c:8e: 98:31:6d:09:da:ae:3b:bf:ed:ed:79:d6:14:d7:f9: c4:e9:e2:aa:9a:9c:f6:b3:5c:51:ab:c2:dd:ce:fb: a9:ca:bf:d4:7b:00:c3:15:ad:7a:b3:0b:92:24:07: 65:ce:d7:6e:2f:28:2e:9c:ee:70:04:f4:ba:0e:23: a3:98:2a:ef:e6:54:ff:83:ba:51:b3:64:be:cf:12: 10:d5:3d:66:b5:46:90:f6:74:75:0b:82:5b:94:2d: 82:d3:4a:0e:b0:71:ca:14:a4:ce:45:69:dc:d9:49: 2a:62:b1:62:cb:df:9b:e9:5f:84:c5:8e:4e:bf:b0: 62:ce:a6:35:ae:9a:f2:22:99:ad:22:68:cf:99:a5: 47:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:DF:AC:32:05:E9:2D:8D:FE:B7:B8:C6:5C:2B:0B:0B:74:9B:22:B7 X509v3 Authority Key Identifier: keyid:5F:C1:B6:38:CC:CD:FF:99:D6:44:56:55:29:C8:07:08:68:68:9B:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:13:65:d4:be:47:09:a5:2f:99:f0:e3:b1:f7:4d:11:9c:f4: 2d:8c:28:eb:02:c9:6c:5f:62:e9:c5:af:54:69:69:37:60:5a: ad:c0:f9:f0:fd:11:66:58:28:09:42:47:d5:22:f1:23:dd:4b: 53:5a:24:84:91:41:e4:b4:a2:c9:2b:9a:d7:1d:ad:7b:dc:f4: 55:78:fb:33:74:fd:a4:8b:7e:e3:1c:4a:94:c6:78:a9:01:a7: f8:ec:a6:95:df:60:95:f4:33:ce:1a:0f:e0:fd:4f:8d:38:7f: 2b:c0:32:49:ef:0a:37:db:f1:f9:ba:e2:0b:ff:ba:bb:e0:f2: 4d:6b:b7:53:b5:b2:52:ae:f4:71:10:4b:74:17:07:e3:b0:56: c1:9c:dd:47:a0:e8:fb:1c:35:fa:28:39:89:70:24:7d:cf:bf: 4c:f5:bd:1a:25:e0:b8:a1:54:08:bb:26:6c:e6:a6:f4:86:49: b8:3e:90:21:a7:75:4e:b9:3c:d7:8c:f5:3c:00:1a:e6:28:43: 14:8e:55:b4:56:fc:36:c1:27:83:a7:f7:3d:51:99:97:3a:f4: e3:94:95:7c:b3:14:29:e4:5b:5c:9c:91:51:25:2b:a8:ac:cd: b6:1a:ef:a7:50:be:c3:2e:56:fd:af:89:d2:ec:13:3d:f2:7d: b0:a2:3c:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyOEUxMTAvBgNVBAUTKDVGQzFCNjM4Q0NDREZGOTlENjQ0NTY1NTI5QzgwNzA4 Njg2ODlCMzEwHhcNMjUxMjIzMDUxOTUzWhcNMjUxMjMwMDUxOTUzWjAYMRYwFAYD VQQDDA02OTRhMjY3OS0yNjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtX2WvJ7Wm6Fgnhui6LAiG/cLZbdQ5iwNN1xSr8Js/ZbkUjbyiQVtL1aYAKEY TCldyIwaI9mlO96hJvuWwc88VsfXWmDrrmTWqY5lhgZd5WhGSFnwWeh2NsXr1H8D l3Z7UU4DD0pYlMRCu5HhkLgPuXrZEzACPI6YMW0J2q47v+3tedYU1/nE6eKqmpz2 s1xRq8Ldzvupyr/UewDDFa16swuSJAdlztduLygunO5wBPS6DiOjmCrv5lT/g7pR s2S+zxIQ1T1mtUaQ9nR1C4JblC2C00oOsHHKFKTORWnc2UkqYrFiy9+b6V+ExY5O v7BizqY1rpryIpmtImjPmaVHLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJHfrDIF 6S2N/re4xlwrCwt0myK3MB8GA1UdIwQYMBaAFF/BtjjMzf+Z1kRWVSnIBwhoaJsx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTI4RS9DREEzQTcxRUY1 OUIxMUVGQTRGNTcxMjhDNEY5QUUwMi9YOEcyT016Tl81bldSRlpWS2NnSENHaG9t ekUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g4RzJPTXpOXzVuV1JGWlZLY2dIQ0dob216RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTI4RS9DREEzQTcxRUY1OUIxMUVGQTRGNTcxMjhDNEY5QUUwMi9YOEcyT016Tl81 bldSRlpWS2NnSENHaG9tekUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKE2XUvkcJpS+Z8OOx900RnPQtjCjrAslsX2Lpxa9UaWk3YFqtwPnw /RFmWCgJQkfVIvEj3UtTWiSEkUHktKLJK5rXHa173PRVePszdP2ki37jHEqUxnip Aaf47KaV32CV9DPOGg/g/U+NOH8rwDJJ7wo32/H5uuIL/7q74PJNa7dTtbJSrvRx EEt0FwfjsFbBnN1HoOj7HDX6KDmJcCR9z79M9b0aJeC4oVQIuyZs5qb0hkm4PpAh p3VOuTzXjPU8ABrmKEMUjlW0Vvw2wSeDp/c9UZmXOvTjlJV8sxQp5FtcnJFRJSuo rM22Gu+nUL7DLlb9r4nS7BM98n2wojxZ -----END CERTIFICATE-----Generated at Wed Dec 24 19:32:26 2025 by rpki-client