This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft File: XsGmrXajq_3B4TKesmN8AYZLSAg.mft (raw, json) Hash identifier: 3iMUDIaCD2rcztbPvcT6/+sbROPIlz44RP5aB1u1dk0= Subject key identifier: B7:5E:BD:39:CD:93:FA:B6:FF:C5:11:C6:C3:DA:92:E5:D2:80:08:10 Authority key identifier: 5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08 Certificate issuer: /CN=A91AB20B/serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808 Certificate serial: 084C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft Manifest number: 080F Signing time: Sat 06 Dec 2025 20:13:58 +0000 Manifest this update: Sat 06 Dec 2025 20:13:58 +0000 Manifest next update: Sat 13 Dec 2025 20:13:58 +0000 Files and hashes: 1: XsGmrXajq_3B4TKesmN8AYZLSAg.crl (hash: ZZ1asusnQ9TVEdBoziKudoqdsNGw8UoQ5kyDa86HmSU=) 2: 46D6261876A511EB82E04A2FC4F9AE02.roa (hash: WVXeC6AWS7dfqRcacJcoXn1KRTzKsuhGFEjOvtdw4gQ=) 3: B512A570109211ECA693D74EC4F9AE02.roa (hash: x6M8DR+ao43yWMJcYfflaCD3HANg4LUaSOgGurV26Rc=) 4: 82BB885E4B9811EB85F74960C4F9AE02.roa (hash: 4+YaEU8/WKlhoShMZ2jQANGth6P34fJaow29AZ/vK1g=) 5: E3AAE94243B511EB8DA3F473C4F9AE02.roa (hash: TVq9O75Mk8dBtHdZIdf95FNbNlO+Xgr7jZqSFhUdSlc=) 6: 7CF84F084B9111EBBA09CA72C4F9AE02.roa (hash: HBup3egCFQ+j4w8tn/YgKXDolvmk1GZOCKm/FjBELHI=) 7: CF41132A1DE811EB9DE34963C4F9AE02.roa (hash: xo4YbqiE7X/F67UsXOYb5uFnpLPpFvm6ZJLr7VXM8NU=) 8: 046130D225FC11EC9D57EA7CC4F9AE02.roa (hash: KydrQv3Yet/a3HLO3h2lsIOeUoieRU/2J4jW34hxmG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.crl rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 20:13:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2124 (0x84c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB20B, serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808 Validity Not Before: Dec 6 20:13:58 2025 GMT Not After : Dec 13 20:13:58 2025 GMT Subject: CN=69348e86-138d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:50:0b:c3:4c:82:1a:98:03:b6:ab:bb:3d:ea: e8:59:8b:cb:97:50:6d:49:64:2e:a8:12:a8:28:45: 36:57:c9:20:8f:64:80:45:8c:ef:ae:79:cf:e9:c2: 76:90:e9:71:c8:ee:0e:c7:71:3f:c5:57:22:3a:4c: 73:bf:95:dd:8a:dc:a6:18:42:b3:71:38:97:70:9a: 63:02:11:1e:34:08:d7:db:36:f4:83:76:19:7e:40: 5a:8f:67:ab:cc:e6:4c:e2:37:44:0c:3c:f6:48:8b: 75:df:6a:f3:fb:6d:59:f9:49:6b:3e:46:03:e5:8f: c9:dd:38:bb:2b:51:40:27:e2:a5:e9:d0:8f:ea:85: f9:da:53:23:53:42:37:9b:4d:69:c8:83:50:91:a6: 8e:e0:04:d9:99:f2:d8:e5:9c:16:37:b6:af:80:75: ed:75:df:db:ea:9f:cd:99:62:49:13:aa:22:db:3b: 9d:5f:4b:51:64:b3:4d:f4:33:46:76:dd:1d:6b:f8: 71:ec:d2:19:a1:36:bb:2b:8a:33:bb:f4:98:81:8d: e6:2c:9b:51:c0:17:57:a4:e8:42:7b:79:11:18:f5: 8e:cf:5d:42:c6:24:a4:66:dd:28:bf:09:ce:6d:eb: 89:92:09:f1:6f:a6:d8:bb:2a:a8:64:fd:3d:4f:aa: 23:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:5E:BD:39:CD:93:FA:B6:FF:C5:11:C6:C3:DA:92:E5:D2:80:08:10 X509v3 Authority Key Identifier: keyid:5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:4a:53:2a:a1:e8:40:78:88:26:8a:6b:86:6c:5a:e4:f8:a9: ac:ef:2c:27:3f:d8:ae:98:21:5d:d7:0a:1f:ec:59:bf:bc:7a: 93:18:35:a3:03:af:ec:c2:77:30:ed:bf:20:65:1c:6d:85:c0: 6c:53:2c:ab:82:a3:c0:11:b6:03:28:1c:aa:9d:c5:49:5e:00: e3:bd:38:77:01:7f:18:18:ec:59:46:6e:06:fd:35:27:d1:3a: f8:5b:92:f8:a1:5b:87:6c:33:ae:6b:56:e2:9f:e1:d2:ec:2c: 60:37:00:9e:c7:27:6b:4d:8a:fa:4a:29:ba:b2:c9:34:3a:d7: d4:4b:ac:ef:e3:1f:7f:04:41:51:e4:c4:c3:ec:85:cb:76:d8: 46:05:10:b4:6f:3d:0f:46:46:df:b8:72:c4:76:9d:20:9a:8c: 89:59:a5:b2:52:20:d3:f6:5e:5e:20:68:b5:7c:49:38:d2:0c: c2:11:cd:70:d7:35:8f:1b:91:06:91:2c:27:2e:ad:13:e3:42: 1d:05:ca:47:63:23:02:cc:2c:92:0d:b1:3d:9d:ad:eb:3d:29: 5c:8c:14:1f:96:ba:07:e4:57:ac:9d:6e:2c:35:d5:15:e6:c7: 61:7e:db:ba:02:dc:36:22:f5:0f:57:c2:43:47:97:da:fe:8d: 59:0d:a5:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIyMEIxMTAvBgNVBAUTKDVFQzFBNkFENzZBM0FCRkRDMUUxMzI5RUIyNjM3QzAx ODY0QjQ4MDgwHhcNMjUxMjA2MjAxMzU4WhcNMjUxMjEzMjAxMzU4WjAYMRYwFAYD VQQDEw02OTM0OGU4Ni0xMzhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVALw0yCGpgDtqu7PeroWYvLl1BtSWQuqBKoKEU2V8kgj2SARYzvrnnP6cJ2 kOlxyO4Ox3E/xVciOkxzv5XditymGEKzcTiXcJpjAhEeNAjX2zb0g3YZfkBaj2er zOZM4jdEDDz2SIt132rz+21Z+UlrPkYD5Y/J3Ti7K1FAJ+Kl6dCP6oX52lMjU0I3 m01pyINQkaaO4ATZmfLY5ZwWN7avgHXtdd/b6p/NmWJJE6oi2zudX0tRZLNN9DNG dt0da/hx7NIZoTa7K4ozu/SYgY3mLJtRwBdXpOhCe3kRGPWOz11CxiSkZt0ovwnO beuJkgnxb6bYuyqoZP09T6ojZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLdevTnN k/q2/8URxsPakuXSgAgQMB8GA1UdIwQYMBaAFF7Bpq12o6v9weEynrJjfAGGS0gI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjIwQi9CQTcxQjY0ODEy MDMxMUVCQkFBMTk0MTRDNEY5QUUwMi9Yc0dtclhhanFfM0I0VEtlc21OOEFZWkxT QWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hzR21yWGFqcV8zQjRUS2VzbU44QVlaTFNBZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjIwQi9CQTcxQjY0ODEyMDMxMUVCQkFBMTk0MTRDNEY5QUUwMi9Yc0dtclhhanFf M0I0VEtlc21OOEFZWkxTQWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbSlMqoehAeIgmimuGbFrk+Kms7ywnP9iumCFd1wof7Fm/vHqTGDWj A6/swncw7b8gZRxthcBsUyyrgqPAEbYDKByqncVJXgDjvTh3AX8YGOxZRm4G/TUn 0Tr4W5L4oVuHbDOua1bin+HS7CxgNwCexydrTYr6Sim6ssk0OtfUS6zv4x9/BEFR 5MTD7IXLdthGBRC0bz0PRkbfuHLEdp0gmoyJWaWyUiDT9l5eIGi1fEk40gzCEc1w 1zWPG5EGkSwnLq0T40IdBcpHYyMCzCySDbE9na3rPSlcjBQflroH5FesnW4sNdUV 5sdhftu6Atw2IvUPV8JDR5fa/o1ZDaWU -----END CERTIFICATE-----Generated at Sun Dec 7 23:15:27 2025 by rpki-client