This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft File: XqEcijop4GlzwfEhYR1aXCobBp0.mft (raw, json) Hash identifier: yIdS3EndG3rKppLxJt6S43g/HigKXSsmkb/vs8YT/uU= Subject key identifier: 29:C6:59:99:83:9C:A0:0A:C7:84:51:AA:5F:F0:72:21:E9:CB:87:FF Authority key identifier: 5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D Certificate issuer: /CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Certificate serial: 07B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft Manifest number: 0786 Signing time: Sat 06 Dec 2025 20:38:46 +0000 Manifest this update: Sat 06 Dec 2025 20:38:45 +0000 Manifest next update: Sat 13 Dec 2025 20:38:45 +0000 Files and hashes: 1: XqEcijop4GlzwfEhYR1aXCobBp0.crl (hash: lW5T+xgdipwCb850vNf1s8bUaPHAunQcdDmDcOc3PVo=) 2: 66FC64186D0711F0AC1BE951C4F9AE02.roa (hash: hWwF88GIP3tV+NyMDvSvQLm3VEbfDC65iFXo9VhwYUk=) 3: 5A51D464F5FA11EC9B35372AC4F9AE02.roa (hash: xKqf+n8kgniX6QnefZ1ax3dHrgOYPyD34X8HXDWa04o=) 4: 94A5320663A111F092E32646C4F9AE02.roa (hash: O5r2+wXt4zH6hxOJA3sUCrB8yg9bHS1XDEYPpgUx1XQ=) 5: 0940732E0E6311EDB98DEA0DC4F9AE02.roa (hash: LjX/y1bmr7lUb6+mhBpoHtfDQ+zCLBR7g1pGcdMOf00=) 6: 0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa (hash: SGNPZCwfC0xAo0xM/Ak76M8pbN3zzIxkj9O1xC+I8EU=) 7: 9507206A63A111F092E32646C4F9AE02.roa (hash: rAuvyeznobZzFQMS0Fgkc4tf80FkzwtmDY5jMNACHCg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 20:38:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1973 (0x7b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A654C, serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Validity Not Before: Dec 6 20:38:45 2025 GMT Not After : Dec 13 20:38:45 2025 GMT Subject: CN=69349456-9804 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:70:fd:58:5b:30:7e:02:48:35:3b:4a:43:7d: 20:d2:45:8e:a3:55:2f:91:aa:31:a6:af:b0:4a:2a: bc:47:95:88:7e:f4:cb:80:e7:0c:73:9d:33:c3:5a: 59:85:fe:5a:77:d8:84:19:d9:7b:c9:fa:86:32:df: e3:5a:49:68:01:fd:ab:52:14:64:3c:a4:ad:ac:c3: 8c:5f:9d:00:cc:2d:8e:8f:ac:4b:cf:eb:50:8b:86: bb:d5:51:51:d5:55:40:df:fe:68:76:68:7a:0c:29: 99:cb:3c:17:b2:4f:2a:a1:be:4c:05:dd:38:7f:73: 9a:e2:6f:99:91:43:0e:2e:2b:18:7c:14:7b:85:a6: 13:ce:7e:f8:c7:42:8f:cc:39:fa:ff:0c:67:e0:bf: 96:10:03:97:1b:e0:5b:70:ac:38:c4:a1:d9:29:6a: 05:67:d5:d4:a0:76:5c:46:01:ce:25:1d:a1:50:aa: 31:6f:ec:fe:8e:3a:df:82:ba:db:8d:2f:d3:28:2e: 6a:26:f8:c3:8a:ba:1c:fc:72:75:1b:b2:20:c0:7a: 0d:f9:32:f2:0d:ae:18:a7:e1:04:9b:91:58:e0:94: 1a:dd:d6:2e:3f:fe:55:47:11:17:67:f1:a3:ac:18: 84:86:66:0e:12:2e:61:bc:01:f5:23:f1:33:19:a7: 86:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:C6:59:99:83:9C:A0:0A:C7:84:51:AA:5F:F0:72:21:E9:CB:87:FF X509v3 Authority Key Identifier: keyid:5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:19:7a:25:29:d2:37:2d:39:e6:fa:d8:c4:42:ad:bb:8b:21: 7d:7d:5c:50:6e:81:43:0b:db:69:0b:08:3b:39:06:8a:3c:d2: 21:41:9f:8e:70:d6:ac:ea:ea:c8:e2:b6:95:1b:58:a4:4c:51: c2:4c:63:ae:51:4e:b5:29:93:cf:61:14:4c:19:0d:5b:0e:a7: 02:53:bf:c4:74:08:0c:9c:a5:3e:8a:ad:80:28:b5:2d:b6:00: 24:74:60:22:86:78:e5:44:d6:7b:14:af:be:f9:0d:58:56:6c: 7a:a4:39:e6:50:5e:0e:75:ed:d3:18:db:26:ca:bc:68:33:4b: d7:3c:7f:5b:ac:63:c2:eb:1a:b3:03:06:f3:f6:bb:22:aa:00: ce:7b:2d:db:a5:60:92:cc:68:c2:68:87:04:fe:3f:17:32:80: e0:4f:a4:cb:66:2e:2c:b5:81:f0:33:9d:fd:b4:47:58:e3:64: 18:2f:92:e2:c7:ea:3d:10:e8:9e:d6:58:cf:30:9b:fa:d8:16: 1f:1e:91:62:bf:17:9c:98:57:d2:d8:c6:da:ab:1e:28:01:e1: 31:aa:3e:2d:af:7b:52:64:c0:77:df:e9:a9:12:af:f6:da:c8: 63:0e:98:ba:7e:ec:a7:25:2b:b7:6d:bc:e9:d1:78:70:43:fd: b5:07:a2:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1NEMxMTAvBgNVBAUTKDVFQTExQzhBM0EyOUUwNjk3M0MxRjEyMTYxMUQ1QTVD MkExQjA2OUQwHhcNMjUxMjA2MjAzODQ1WhcNMjUxMjEzMjAzODQ1WjAYMRYwFAYD VQQDEw02OTM0OTQ1Ni05ODA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA43D9WFswfgJINTtKQ30g0kWOo1Uvkaoxpq+wSiq8R5WIfvTLgOcMc50zw1pZ hf5ad9iEGdl7yfqGMt/jWkloAf2rUhRkPKStrMOMX50AzC2Oj6xLz+tQi4a71VFR 1VVA3/5odmh6DCmZyzwXsk8qob5MBd04f3Oa4m+ZkUMOLisYfBR7haYTzn74x0KP zDn6/wxn4L+WEAOXG+BbcKw4xKHZKWoFZ9XUoHZcRgHOJR2hUKoxb+z+jjrfgrrb jS/TKC5qJvjDiroc/HJ1G7IgwHoN+TLyDa4Yp+EEm5FY4JQa3dYuP/5VRxEXZ/Gj rBiEhmYOEi5hvAH1I/EzGaeGUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCnGWZmD nKAKx4RRql/wciHpy4f/MB8GA1UdIwQYMBaAFF6hHIo6KeBpc8HxIWEdWlwqGwad MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjU0Qy81MUE5RUFDQzQx NjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRHbHp3ZkVoWVIxYVhDb2JC cDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxRWNpam9wNEdsendmRWhZUjFhWENvYkJwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjU0Qy81MUE5RUFDQzQxNjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRH bHp3ZkVoWVIxYVhDb2JCcDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVGXolKdI3LTnm+tjEQq27iyF9fVxQboFDC9tpCwg7OQaKPNIhQZ+O cNas6urI4raVG1ikTFHCTGOuUU61KZPPYRRMGQ1bDqcCU7/EdAgMnKU+iq2AKLUt tgAkdGAihnjlRNZ7FK+++Q1YVmx6pDnmUF4Ode3TGNsmyrxoM0vXPH9brGPC6xqz Awbz9rsiqgDOey3bpWCSzGjCaIcE/j8XMoDgT6TLZi4stYHwM539tEdY42QYL5Li x+o9EOie1ljPMJv62BYfHpFivxecmFfS2Mbaqx4oAeExqj4tr3tSZMB33+mpEq/2 2shjDpi6fuynJSu3bbzp0XhwQ/21B6Kg -----END CERTIFICATE-----Generated at Mon Dec 8 06:11:37 2025 by rpki-client