This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft File: Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft (raw, json) Hash identifier: 1be/py+vY7uRNlWRtmjY2LZMk3FHyeQqnXH9RM3zwGs= Subject key identifier: 55:4B:B4:31:53:62:3B:F7:91:F8:44:72:DD:DC:76:01:5C:AC:5A:8B Authority key identifier: 5E:BD:A7:FA:A8:01:C5:A2:74:DC:23:D1:71:F8:8B:46:A1:1E:41:54 Certificate issuer: /CN=A91B4F01/serialNumber=5EBDA7FAA801C5A274DC23D171F88B46A11E4154 Certificate serial: 04D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft Manifest number: 04D0 Signing time: Mon 22 Dec 2025 22:54:08 +0000 Manifest this update: Mon 22 Dec 2025 22:54:08 +0000 Manifest next update: Mon 29 Dec 2025 22:54:08 +0000 Files and hashes: 1: Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl (hash: thbjUfQgvqBxEJ64u7YsskiyFNA/5x0SXTLkemepFCM=) 2: BD115AB24B7C11ECA63C0038C4F9AE02.roa (hash: iNguqikYlo9COHrXlTgVi6du45F1xLlvF3vppgdvlzs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 22:54:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1237 (0x4d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4F01, serialNumber=5EBDA7FAA801C5A274DC23D171F88B46A11E4154 Validity Not Before: Dec 22 22:54:08 2025 GMT Not After : Dec 29 22:54:08 2025 GMT Subject: CN=6949cc10-8095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:fc:55:fd:f0:51:68:8e:58:9b:f8:fa:05:5f: aa:b3:c1:7b:4e:6e:ed:1d:6b:50:d2:72:7d:ea:e5: 91:2b:a7:e3:88:e2:7a:21:8b:8d:af:55:3b:4c:f2: 72:43:99:8a:03:be:36:26:07:7a:8c:b8:8e:a5:0b: 1f:4c:b3:02:ac:57:1a:1c:c5:62:51:14:89:67:5a: 78:83:3f:dd:62:33:1f:a6:2a:16:c5:e2:e9:f3:7d: 2e:92:fd:fe:34:75:c8:61:b6:4c:dc:af:c9:a9:e4: a4:bc:15:81:22:aa:47:ae:97:28:15:fe:78:07:05: 6b:87:ba:3a:52:f7:dd:47:ba:86:c8:e6:f7:25:ab: 5c:28:81:09:bd:7e:53:1b:97:e3:46:f6:5a:7c:c3: 88:88:1b:67:16:64:e8:19:18:78:e8:94:0e:e7:64: 13:52:25:24:80:1d:e9:c5:d1:51:24:b5:64:0c:08: ab:c3:24:af:51:15:18:0d:07:70:36:01:63:15:1a: eb:43:3b:78:31:51:46:c4:a7:a5:c2:ae:2c:75:69: 18:4d:95:75:64:63:5a:33:f6:a5:97:b3:3b:09:2f: 46:e2:7d:47:b3:ce:1f:b6:bc:5d:41:6a:81:be:57: d9:25:ab:b5:a7:13:ce:c5:4d:a0:52:fe:48:25:62: 4a:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:4B:B4:31:53:62:3B:F7:91:F8:44:72:DD:DC:76:01:5C:AC:5A:8B X509v3 Authority Key Identifier: keyid:5E:BD:A7:FA:A8:01:C5:A2:74:DC:23:D1:71:F8:8B:46:A1:1E:41:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:db:ee:8c:7c:bf:a9:5c:31:3b:01:ea:15:3f:dd:40:70:57: 70:60:3e:31:17:4e:47:84:45:51:73:96:fb:c5:79:49:f1:55: 30:04:bb:81:7e:12:ff:0b:be:6e:96:56:f7:89:81:43:d6:d2: df:b4:f9:10:63:58:26:4d:10:89:8c:46:09:e6:d3:45:57:96: 33:fb:3e:1c:48:b0:48:24:90:82:f9:70:13:8f:96:7f:7c:37: b6:fa:29:fb:d1:dd:0e:6e:1c:dc:5b:3b:84:27:df:2f:c5:ea: e4:7d:dd:fe:5f:fc:c1:23:fa:60:45:2c:2f:c8:c9:6a:78:95: 85:db:a4:d7:7d:dc:d4:7e:c5:87:65:58:93:c2:38:1f:c5:21: a5:ce:99:4d:ba:5f:66:6c:66:68:23:10:bc:2e:f1:46:30:4e: 6d:82:cc:ad:42:ea:0a:82:6e:1e:45:76:0d:af:47:3f:8f:84: 4a:e2:1a:0a:e9:ca:42:06:e6:0a:1c:79:30:8b:cf:9f:d4:11: a7:e7:fd:08:de:c0:e5:7a:01:19:ad:ee:2f:6c:8c:76:56:79: 19:b3:99:51:41:31:4f:44:a8:81:85:3b:0b:31:43:41:2b:7d: c0:ad:bc:c5:9b:30:92:ea:82:74:2a:a4:26:81:7b:a3:ed:67: 8b:65:70:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRGMDExMTAvBgNVBAUTKDVFQkRBN0ZBQTgwMUM1QTI3NERDMjNEMTcxRjg4QjQ2 QTExRTQxNTQwHhcNMjUxMjIyMjI1NDA4WhcNMjUxMjI5MjI1NDA4WjAYMRYwFAYD VQQDDA02OTQ5Y2MxMC04MDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/xV/fBRaI5Ym/j6BV+qs8F7Tm7tHWtQ0nJ96uWRK6fjiOJ6IYuNr1U7TPJy Q5mKA742Jgd6jLiOpQsfTLMCrFcaHMViURSJZ1p4gz/dYjMfpioWxeLp830ukv3+ NHXIYbZM3K/JqeSkvBWBIqpHrpcoFf54BwVrh7o6UvfdR7qGyOb3JatcKIEJvX5T G5fjRvZafMOIiBtnFmToGRh46JQO52QTUiUkgB3pxdFRJLVkDAirwySvURUYDQdw NgFjFRrrQzt4MVFGxKelwq4sdWkYTZV1ZGNaM/all7M7CS9G4n1Hs84ftrxdQWqB vlfZJau1pxPOxU2gUv5IJWJK0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFVLtDFT Yjv3kfhEct3cdgFcrFqLMB8GA1UdIwQYMBaAFF69p/qoAcWidNwj0XH4i0ahHkFU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEYwMS9BNzAwQTg0NDRC NzgxMUVDODZFNTBBMzBDNEY5QUUwMi9YcjJuLXFnQnhhSjAzQ1BSY2ZpTFJxRWVR VlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hyMm4tcWdCeGFKMDNDUFJjZmlMUnFFZVFWUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEYwMS9BNzAwQTg0NDRCNzgxMUVDODZFNTBBMzBDNEY5QUUwMi9YcjJuLXFnQnhh SjAzQ1BSY2ZpTFJxRWVRVlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAg2+6MfL+pXDE7AeoVP91AcFdwYD4xF05HhEVRc5b7xXlJ8VUwBLuB fhL/C75ullb3iYFD1tLftPkQY1gmTRCJjEYJ5tNFV5Yz+z4cSLBIJJCC+XATj5Z/ fDe2+in70d0ObhzcWzuEJ98vxerkfd3+X/zBI/pgRSwvyMlqeJWF26TXfdzUfsWH ZViTwjgfxSGlzplNul9mbGZoIxC8LvFGME5tgsytQuoKgm4eRXYNr0c/j4RK4hoK 6cpCBuYKHHkwi8+f1BGn5/0I3sDlegEZre4vbIx2VnkZs5lRQTFPRKiBhTsLMUNB K33ArbzFmzCS6oJ0KqQmgXuj7WeLZXBJ -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:44 2025 by rpki-client