This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft File: x5XlnAMMfJKfy-R0Gfxexp4frP0.mft (raw, json) Hash identifier: WQTbcXbONTLuELlj84GV/NXQ0zUrb/47A3vGEVHmYfk= Subject key identifier: 03:5C:B2:4C:E0:D1:CD:E5:82:82:3A:4A:81:E1:16:F1:78:F2:29:03 Authority key identifier: C7:95:E5:9C:03:0C:7C:92:9F:CB:E4:74:19:FC:5E:C6:9E:1F:AC:FD Certificate issuer: /CN=A91A3FEB/serialNumber=C795E59C030C7C929FCBE47419FC5EC69E1FACFD Certificate serial: 07B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5XlnAMMfJKfy-R0Gfxexp4frP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft Manifest number: 07AA Signing time: Mon 08 Dec 2025 20:23:31 +0000 Manifest this update: Mon 08 Dec 2025 20:23:30 +0000 Manifest next update: Mon 15 Dec 2025 20:23:30 +0000 Files and hashes: 1: x5XlnAMMfJKfy-R0Gfxexp4frP0.crl (hash: iyMk37N86zUbepo4/JwYFLzXzJM9cT0mLlvKeKxznHA=) 2: B722FC542A0411EB992DD32EC4F9AE02.roa (hash: wsrS8Hj9tlKWrRYJKi3rNPfDpEOnN9QMK0e9qX0Cib4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.crl rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5XlnAMMfJKfy-R0Gfxexp4frP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Dec 2025 20:23:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1968 (0x7b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3FEB, serialNumber=C795E59C030C7C929FCBE47419FC5EC69E1FACFD Validity Not Before: Dec 8 20:23:30 2025 GMT Not After : Dec 15 20:23:30 2025 GMT Subject: CN=693733c3-600e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:33:ad:f5:cc:b4:19:cb:de:f1:68:ea:bd:f2: c7:ed:80:c3:6a:c8:83:81:84:ca:c5:a4:45:de:ab: e3:0e:03:bf:aa:e4:7a:a4:c4:e8:16:01:53:25:b1: 80:03:eb:bb:6d:de:38:00:f1:70:f3:7b:e6:69:74: eb:d5:0c:6e:a7:b7:94:1d:df:0a:4c:6d:ed:8d:65: 71:aa:38:06:0e:9b:cc:7f:0c:c6:2b:1f:c0:98:0e: 94:c8:8b:34:15:b9:a1:3d:41:f3:2b:d8:22:09:60: c8:62:b4:8d:fa:18:f0:d3:d2:69:3a:db:ac:32:ef: d0:7d:70:e3:7f:80:57:43:97:87:dd:cc:fb:ba:23: 74:0b:f1:b0:99:0c:29:a6:33:f1:cb:c2:de:df:f2: a5:d8:23:b9:13:69:96:fb:ba:13:67:0c:c9:bf:4f: 31:f7:87:86:1e:39:60:70:b0:a1:4b:84:87:1c:14: 2f:6f:ed:80:f0:9a:27:cf:aa:31:4e:a9:f2:e7:54: fa:35:ee:00:43:bb:ac:1b:b6:d7:d1:6f:05:fc:42: c7:98:94:cf:08:f3:40:45:7c:d0:bd:81:33:10:cb: 02:cd:20:e8:9d:f2:d6:b8:5c:be:f2:21:dc:3b:55: 17:03:de:98:46:c6:f2:e4:89:4a:b8:3b:18:35:e0: bb:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:5C:B2:4C:E0:D1:CD:E5:82:82:3A:4A:81:E1:16:F1:78:F2:29:03 X509v3 Authority Key Identifier: keyid:C7:95:E5:9C:03:0C:7C:92:9F:CB:E4:74:19:FC:5E:C6:9E:1F:AC:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5XlnAMMfJKfy-R0Gfxexp4frP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:3f:6d:0c:00:6e:96:94:de:96:a2:f9:da:c1:71:b4:68:b0: 82:b0:81:bf:3a:d3:70:dc:79:dd:f5:49:22:96:51:0c:45:b3: f7:15:dd:55:20:62:2d:3a:ee:93:49:57:92:75:b5:bd:29:32: d7:87:40:f7:be:37:1b:d9:5b:00:3b:5b:be:46:42:89:14:71: e6:4a:47:2a:38:63:6a:30:c4:f4:5c:62:16:80:8e:6b:9d:69: 7f:ba:f5:c1:9e:60:e6:68:4b:26:ea:52:55:d5:14:e9:52:85: 9f:df:d0:02:db:37:69:21:9f:de:7c:35:93:69:a1:dc:d1:89: 73:ea:01:9c:b1:22:ea:fb:71:e7:d1:80:98:4d:31:b9:1d:cf: a3:cf:af:e9:d2:37:2f:7e:b9:43:dc:48:18:80:a3:16:ad:0e: 88:3a:5d:48:9d:52:d9:e4:96:0d:b0:41:d5:70:c6:80:05:00: 13:ec:f4:05:17:7f:c6:3f:64:e9:85:da:ee:b0:09:91:55:c7: af:d4:e4:64:1c:7b:a9:cb:59:91:6a:39:44:2b:88:20:4b:68: 3c:37:a1:32:40:bd:a7:f7:59:92:22:ec:58:18:ac:5f:5d:4b: 93:ce:7a:e4:e4:87:90:2d:5c:71:2d:8d:86:96:f2:ad:7b:c5: a0:a8:36:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNGRUIxMTAvBgNVBAUTKEM3OTVFNTlDMDMwQzdDOTI5RkNCRTQ3NDE5RkM1RUM2 OUUxRkFDRkQwHhcNMjUxMjA4MjAyMzMwWhcNMjUxMjE1MjAyMzMwWjAYMRYwFAYD VQQDEw02OTM3MzNjMy02MDBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqTOt9cy0Gcve8WjqvfLH7YDDasiDgYTKxaRF3qvjDgO/quR6pMToFgFTJbGA A+u7bd44APFw83vmaXTr1Qxup7eUHd8KTG3tjWVxqjgGDpvMfwzGKx/AmA6UyIs0 FbmhPUHzK9giCWDIYrSN+hjw09JpOtusMu/QfXDjf4BXQ5eH3cz7uiN0C/GwmQwp pjPxy8Le3/Kl2CO5E2mW+7oTZwzJv08x94eGHjlgcLChS4SHHBQvb+2A8Jonz6ox Tqny51T6Ne4AQ7usG7bX0W8F/ELHmJTPCPNARXzQvYEzEMsCzSDonfLWuFy+8iHc O1UXA96YRsby5IlKuDsYNeC7ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFANcskzg 0c3lgoI6SoHhFvF48ikDMB8GA1UdIwQYMBaAFMeV5ZwDDHySn8vkdBn8XsaeH6z9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0ZFQi9CMDE4QUQ5NjI5 MTkxMUVCOTg1NDk4NUNDNEY5QUUwMi94NVhsbkFNTWZKS2Z5LVIwR2Z4ZXhwNGZy UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g1WGxuQU1NZkpLZnktUjBHZnhleHA0ZnJQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0ZFQi9CMDE4QUQ5NjI5MTkxMUVCOTg1NDk4NUNDNEY5QUUwMi94NVhsbkFNTWZK S2Z5LVIwR2Z4ZXhwNGZyUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbP20MAG6WlN6WovnawXG0aLCCsIG/OtNw3Hnd9UkillEMRbP3Fd1V IGItOu6TSVeSdbW9KTLXh0D3vjcb2VsAO1u+RkKJFHHmSkcqOGNqMMT0XGIWgI5r nWl/uvXBnmDmaEsm6lJV1RTpUoWf39AC2zdpIZ/efDWTaaHc0Ylz6gGcsSLq+3Hn 0YCYTTG5Hc+jz6/p0jcvfrlD3EgYgKMWrQ6IOl1InVLZ5JYNsEHVcMaABQAT7PQF F3/GP2TphdrusAmRVcev1ORkHHupy1mRajlEK4ggS2g8N6EyQL2n91mSIuxYGKxf XUuTznrk5IeQLVxxLY2GlvKte8WgqDb2 -----END CERTIFICATE-----Generated at Wed Dec 10 06:19:23 2025 by rpki-client