This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft File: XrCY701WVcxmtq-Bw83kBi2ALzs.mft (raw, json) Hash identifier: FxApG3/UzHIFfphWwK0EJbJu/QTE7pZDhpTmwx+b6zk= Subject key identifier: 51:00:C7:5C:B6:3B:DF:29:01:4A:10:C6:60:2A:C2:E0:18:3E:26:09 Authority key identifier: 5E:B0:98:EF:4D:56:55:CC:66:B6:AF:81:C3:CD:E4:06:2D:80:2F:3B Certificate issuer: /CN=A919E3FB/serialNumber=5EB098EF4D5655CC66B6AF81C3CDE4062D802F3B Certificate serial: 0535 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft Manifest number: 052F Signing time: Mon 22 Dec 2025 22:37:24 +0000 Manifest this update: Mon 22 Dec 2025 22:37:23 +0000 Manifest next update: Mon 29 Dec 2025 22:37:23 +0000 Files and hashes: 1: XrCY701WVcxmtq-Bw83kBi2ALzs.crl (hash: s4g8A0XObZA5KXQSbiuhIUbmhhuu778RIu6Z55H8EiA=) 2: B4D8E692267111ECA0546981C4F9AE02.roa (hash: 5Q4guNeQaB31WqKdHmdzuqJlgTxkvhYKs90qMoibdec=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.crl rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 22:37:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1333 (0x535) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E3FB, serialNumber=5EB098EF4D5655CC66B6AF81C3CDE4062D802F3B Validity Not Before: Dec 22 22:37:23 2025 GMT Not After : Dec 29 22:37:23 2025 GMT Subject: CN=6949c824-2e07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:be:cb:96:95:55:ff:68:2d:73:52:36:1c:cf: 33:07:7b:9d:8b:af:bf:5a:57:a3:ea:1e:43:2d:77: 3d:d6:e8:fc:56:af:57:a7:ef:2a:c5:f0:8e:4e:ca: 79:c8:2f:e4:2e:6c:fe:2e:6e:be:10:5a:28:73:8b: e4:ea:54:f1:47:1b:4b:17:29:24:f3:45:e7:ea:97: fc:1f:20:6c:0f:9c:8b:3c:42:ef:59:b6:85:12:c9: f3:77:ef:18:74:29:36:b7:c7:23:95:32:09:3f:8d: 7d:20:dc:e4:93:95:b3:a8:2a:3e:6f:38:82:62:ab: 5d:4f:87:0c:78:1b:55:f3:76:0e:6a:77:e0:ee:6a: a5:d5:1f:58:8e:23:92:66:6a:c5:22:8f:73:87:b0: 93:44:6d:4e:3d:96:6f:17:6f:7f:b6:66:a8:0d:37: 29:65:bc:cf:e3:db:bc:b5:35:a7:b4:58:0b:37:bc: 4c:6b:82:1c:60:96:aa:0d:21:52:78:4c:2e:60:19: 93:f1:48:a2:97:ad:ad:0a:8d:58:9b:a8:9a:18:94: fb:b8:95:b3:e1:f1:00:0d:30:35:d7:77:ef:b0:85: 57:8e:2c:dc:d9:7a:19:79:4f:9c:fc:8d:7c:3f:4f: 61:82:67:88:69:22:fb:d7:d0:25:8b:d2:d9:dd:5d: 91:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:00:C7:5C:B6:3B:DF:29:01:4A:10:C6:60:2A:C2:E0:18:3E:26:09 X509v3 Authority Key Identifier: keyid:5E:B0:98:EF:4D:56:55:CC:66:B6:AF:81:C3:CD:E4:06:2D:80:2F:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:3b:c5:12:a7:15:c2:6b:c7:8b:1d:92:5c:7a:0d:fe:4d:04: f8:81:84:12:5c:b4:67:a6:56:0b:12:fe:14:f5:54:22:5c:ff: a5:ee:15:25:1d:83:2c:aa:54:dd:e6:91:bd:22:5d:93:49:b3: 09:c4:17:15:f3:55:69:af:90:53:30:37:84:17:5e:55:b7:9e: bf:0b:71:a3:69:4e:cf:64:c0:5f:50:de:58:60:35:bf:88:9d: 7e:a2:7a:a5:54:15:f8:2c:6e:ee:18:ae:8b:04:09:47:1b:c7: a7:30:4f:e3:bd:10:72:f8:55:e3:82:88:b8:5e:67:60:a0:83: 74:f5:60:d3:d8:66:ce:72:83:d0:41:c5:e2:63:a5:f3:2c:8a: e1:32:64:4d:b2:15:9a:64:b5:80:1c:4b:cc:91:8b:a8:3e:eb: 3f:36:4a:f5:4a:2b:7a:40:e5:5b:c5:35:8a:f2:e7:58:74:c1: a9:6e:ff:a7:3b:12:12:09:67:95:b4:67:53:5a:ce:71:3e:fb: 5a:e1:49:87:6a:09:3d:66:98:d9:87:1a:1a:1c:d8:aa:d0:f9: 9d:8c:48:fc:82:23:14:5a:e0:54:42:30:59:c3:08:b9:65:83: 27:b6:56:fd:d4:a0:54:fc:10:7f:5b:89:de:dd:33:00:27:4b: 6a:d5:43:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUzRkIxMTAvBgNVBAUTKDVFQjA5OEVGNEQ1NjU1Q0M2NkI2QUY4MUMzQ0RFNDA2 MkQ4MDJGM0IwHhcNMjUxMjIyMjIzNzIzWhcNMjUxMjI5MjIzNzIzWjAYMRYwFAYD VQQDDA02OTQ5YzgyNC0yZTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq77LlpVV/2gtc1I2HM8zB3udi6+/Wlej6h5DLXc91uj8Vq9Xp+8qxfCOTsp5 yC/kLmz+Lm6+EFooc4vk6lTxRxtLFykk80Xn6pf8HyBsD5yLPELvWbaFEsnzd+8Y dCk2t8cjlTIJP419INzkk5WzqCo+bziCYqtdT4cMeBtV83YOanfg7mql1R9YjiOS ZmrFIo9zh7CTRG1OPZZvF29/tmaoDTcpZbzP49u8tTWntFgLN7xMa4IcYJaqDSFS eEwuYBmT8Uiil62tCo1Ym6iaGJT7uJWz4fEADTA113fvsIVXjizc2XoZeU+c/I18 P09hgmeIaSL719Ali9LZ3V2RAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFEAx1y2 O98pAUoQxmAqwuAYPiYJMB8GA1UdIwQYMBaAFF6wmO9NVlXMZravgcPN5AYtgC87 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTNGQi9GREQ0NEMyMjI2 NkUxMUVDQUMwOTdDN0JDNEY5QUUwMi9YckNZNzAxV1ZjeG10cS1Cdzgza0JpMkFM enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hyQ1k3MDFXVmN4bXRxLUJ3ODNrQmkyQUx6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTNGQi9GREQ0NEMyMjI2NkUxMUVDQUMwOTdDN0JDNEY5QUUwMi9YckNZNzAxV1Zj eG10cS1Cdzgza0JpMkFMenMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeO8USpxXCa8eLHZJceg3+TQT4gYQSXLRnplYLEv4U9VQiXP+l7hUl HYMsqlTd5pG9Il2TSbMJxBcV81Vpr5BTMDeEF15Vt56/C3GjaU7PZMBfUN5YYDW/ iJ1+onqlVBX4LG7uGK6LBAlHG8enME/jvRBy+FXjgoi4XmdgoIN09WDT2GbOcoPQ QcXiY6XzLIrhMmRNshWaZLWAHEvMkYuoPus/Nkr1Sit6QOVbxTWK8udYdMGpbv+n OxISCWeVtGdTWs5xPvta4UmHagk9ZpjZhxoaHNiq0PmdjEj8giMUWuBUQjBZwwi5 ZYMntlb91KBU/BB/W4ne3TMAJ0tq1UPc -----END CERTIFICATE-----Generated at Wed Dec 24 15:59:06 2025 by rpki-client