This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft File: XerjhTD4FfvwubP472N1B4bIrAo.mft (raw, json) Hash identifier: e5XtYH/U/cENlkVoN5MlhNi23LDB/QyhM6/xAMU3VwQ= Subject key identifier: C6:84:4A:EF:80:EB:2D:26:E6:06:90:8C:80:C5:EB:D1:74:71:FE:5C Authority key identifier: 5D:EA:E3:85:30:F8:15:FB:F0:B9:B3:F8:EF:63:75:07:86:C8:AC:0A Certificate issuer: /CN=A91A4481/serialNumber=5DEAE38530F815FBF0B9B3F8EF63750786C8AC0A Certificate serial: 0137 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft Manifest number: 0135 Signing time: Tue 23 Dec 2025 03:30:39 +0000 Manifest this update: Tue 23 Dec 2025 03:30:39 +0000 Manifest next update: Tue 30 Dec 2025 03:30:39 +0000 Files and hashes: 1: XerjhTD4FfvwubP472N1B4bIrAo.crl (hash: KSgjleQol5aEcR9jD7OMRulIaABwuzWcQi8eHEdg29s=) 2: 5B08B12602C211EF9A1E4567C4F9AE02.roa (hash: K+g6F2DggfqAEcFUFS+CObch7aX7JFtpiO+kkOJ8Xy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.crl rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:30:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4481, serialNumber=5DEAE38530F815FBF0B9B3F8EF63750786C8AC0A Validity Not Before: Dec 23 03:30:39 2025 GMT Not After : Dec 30 03:30:39 2025 GMT Subject: CN=694a0cdf-dc80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:2e:5e:81:54:b1:d5:61:52:02:5a:b8:a7:0c: 2e:3f:11:a7:b7:e5:4a:39:8b:4f:93:f6:a0:58:20: f3:31:9b:39:cd:81:06:da:05:fb:9f:56:4b:6c:ae: 81:8b:61:1c:73:3a:3f:c8:66:47:88:b9:4d:95:8f: 44:b6:bc:a4:3b:14:78:46:c5:f7:53:88:82:79:12: f2:1b:e0:15:b6:ee:56:f5:32:bc:4c:6c:44:e5:48: c7:97:bb:ca:28:d7:ae:b6:be:85:6a:77:20:8b:83: 8e:d4:0f:32:07:f7:cb:5a:13:11:df:df:4f:a9:de: fa:f5:64:54:a6:c8:0a:d4:52:ac:bc:d2:bd:a4:23: af:1c:b4:4d:14:5b:27:a2:8d:05:c2:c1:6d:d9:c0: db:10:1f:21:24:4f:31:2a:13:ad:58:56:80:c4:8a: dd:9a:97:7b:42:03:90:1a:fb:00:48:12:b8:a1:9b: 5d:98:f8:c6:24:4b:28:96:75:2e:84:27:89:10:19: dc:32:af:1f:5f:ce:af:94:7b:a6:b7:4e:15:fd:6f: 2d:5a:39:93:2b:82:8e:25:48:7b:43:4d:d5:8d:ee: 37:cb:08:58:7c:df:6d:06:7f:35:74:50:3d:7e:22: a6:01:57:f7:fd:e7:3f:44:e8:06:ab:f5:c6:7c:f2: 68:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:84:4A:EF:80:EB:2D:26:E6:06:90:8C:80:C5:EB:D1:74:71:FE:5C X509v3 Authority Key Identifier: keyid:5D:EA:E3:85:30:F8:15:FB:F0:B9:B3:F8:EF:63:75:07:86:C8:AC:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:0e:8f:4f:53:af:3e:3e:70:f3:a2:a9:f8:a3:30:ec:d5:76: 2e:60:bc:47:8b:4a:76:0a:42:74:42:7a:69:d7:a6:06:03:a5: 5b:a6:b5:84:35:b0:d3:8a:fd:44:65:c0:fd:1a:f4:d8:32:76: 0d:fa:ba:82:ed:dd:78:7d:b2:02:31:27:15:65:0e:ca:57:bd: e2:37:08:fc:81:8f:9e:b1:90:46:70:2f:95:92:2c:a0:12:70: b5:c2:76:7d:3d:25:01:90:81:c7:18:42:2d:c2:b2:6b:3b:a0: 1f:8a:11:23:f8:39:69:23:5f:a5:0f:ba:2b:10:1d:c1:84:72: 3c:e8:2c:6e:4f:3a:dd:fa:b8:4f:f9:f2:7c:32:94:a9:cf:18: 07:ad:4a:53:c5:45:2b:5c:e2:e2:9c:26:df:c6:ce:d9:ac:90: 1c:32:91:9c:ce:20:6d:8e:a1:c7:1a:a4:9b:24:74:64:a8:9a: fc:1e:f3:2e:70:78:ff:83:43:fb:31:ff:a3:3a:70:a7:79:76: 7b:34:e5:cb:8c:91:3a:b9:48:9a:b9:3f:00:60:3a:f7:96:66: b0:4b:b8:d2:49:e7:79:c6:48:6e:d3:7e:62:e1:5f:74:0c:cb: f3:da:b9:9f:05:c2:95:ba:c9:71:b2:1d:7e:02:1b:46:49:68: 23:60:da:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0ODExMTAvBgNVBAUTKDVERUFFMzg1MzBGODE1RkJGMEI5QjNGOEVGNjM3NTA3 ODZDOEFDMEEwHhcNMjUxMjIzMDMzMDM5WhcNMjUxMjMwMDMzMDM5WjAYMRYwFAYD VQQDDA02OTRhMGNkZi1kYzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2i5egVSx1WFSAlq4pwwuPxGnt+VKOYtPk/agWCDzMZs5zYEG2gX7n1ZLbK6B i2Ecczo/yGZHiLlNlY9EtrykOxR4RsX3U4iCeRLyG+AVtu5W9TK8TGxE5UjHl7vK KNeutr6Fancgi4OO1A8yB/fLWhMR399Pqd769WRUpsgK1FKsvNK9pCOvHLRNFFsn oo0FwsFt2cDbEB8hJE8xKhOtWFaAxIrdmpd7QgOQGvsASBK4oZtdmPjGJEsolnUu hCeJEBncMq8fX86vlHumt04V/W8tWjmTK4KOJUh7Q03Vje43ywhYfN9tBn81dFA9 fiKmAVf3/ec/ROgGq/XGfPJoRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMaESu+A 6y0m5gaQjIDF69F0cf5cMB8GA1UdIwQYMBaAFF3q44Uw+BX78Lmz+O9jdQeGyKwK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQ4MS9CQzg0MEY0NjAy QzExMUVGQUYzQ0I0NjVDNEY5QUUwMi9YZXJqaFRENEZmdnd1YlA0NzJOMUI0Ykly QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hlcmpoVEQ0RmZ2d3ViUDQ3Mk4xQjRiSXJBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDQ4MS9CQzg0MEY0NjAyQzExMUVGQUYzQ0I0NjVDNEY5QUUwMi9YZXJqaFRENEZm dnd1YlA0NzJOMUI0YklyQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpDo9PU68+PnDzoqn4ozDs1XYuYLxHi0p2CkJ0Qnpp16YGA6VbprWE NbDTiv1EZcD9GvTYMnYN+rqC7d14fbICMScVZQ7KV73iNwj8gY+esZBGcC+Vkiyg EnC1wnZ9PSUBkIHHGEItwrJrO6AfihEj+DlpI1+lD7orEB3BhHI86CxuTzrd+rhP +fJ8MpSpzxgHrUpTxUUrXOLinCbfxs7ZrJAcMpGcziBtjqHHGqSbJHRkqJr8HvMu cHj/g0P7Mf+jOnCneXZ7NOXLjJE6uUiauT8AYDr3lmawS7jSSed5xkhu035i4V90 DMvz2rmfBcKVuslxsh1+AhtGSWgjYNqy -----END CERTIFICATE-----Generated at Wed Dec 24 19:29:42 2025 by rpki-client