This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft File: XucUYNY3KKxeq5GKVB0NcFFXfU0.mft (raw, json) Hash identifier: JFV1rjiMJzOb3QdjGpae1WS8PEYR33sw7h9vcj7kAcc= Subject key identifier: 3F:57:4B:FA:32:8B:30:19:D1:A8:B8:BD:0E:C2:EC:9C:C2:C8:F6:E1 Authority key identifier: 5E:E7:14:60:D6:37:28:AC:5E:AB:91:8A:54:1D:0D:70:51:57:7D:4D Certificate issuer: /CN=A91B758E/serialNumber=5EE71460D63728AC5EAB918A541D0D7051577D4D Certificate serial: 0152 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft Manifest number: 0152 Signing time: Tue 23 Dec 2025 03:11:20 +0000 Manifest this update: Tue 23 Dec 2025 03:11:20 +0000 Manifest next update: Tue 30 Dec 2025 03:11:20 +0000 Files and hashes: 1: XucUYNY3KKxeq5GKVB0NcFFXfU0.crl (hash: qHVA3KF0V0ednJsl5ianiUGX7mRWnsEE0j+ikNgPFHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.crl rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:11:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B758E, serialNumber=5EE71460D63728AC5EAB918A541D0D7051577D4D Validity Not Before: Dec 23 03:11:20 2025 GMT Not After : Dec 30 03:11:20 2025 GMT Subject: CN=694a0858-e54c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:dd:7b:b5:5a:02:94:59:de:ba:32:30:d4:e0: 58:82:bd:ca:db:07:59:b3:74:75:8e:f5:80:24:50: cd:a0:d9:4a:29:89:57:a3:63:60:77:91:6f:49:73: 5d:f6:02:8b:b2:97:31:9f:6b:a4:3c:f8:f8:ff:a5: ed:bd:d2:59:73:c7:bf:57:b2:8e:08:c2:cf:d4:ef: 98:5d:00:97:26:12:4c:6d:3c:ad:96:19:ad:8c:9c: e0:27:6d:64:af:f4:41:0e:8f:4a:ce:ed:ad:6d:6f: 29:dd:0e:a4:6f:df:6a:bb:24:a8:66:94:9c:16:39: fd:fc:2e:12:e3:a7:51:da:1b:69:4e:62:03:33:a3: 69:f6:f6:2c:7c:f6:98:a4:64:6a:2c:f7:b7:58:52: 8b:e1:40:4b:cc:83:a4:70:6e:31:e2:c2:b1:b3:09: db:65:03:3f:94:05:90:0c:9a:7f:d1:9a:8f:1a:1d: f0:db:0c:1c:56:d7:5e:31:4d:17:62:13:36:45:f6: 32:ff:77:e9:5a:78:48:29:64:77:d0:4b:66:61:ab: e8:84:55:39:83:7b:20:8e:93:b6:46:8c:e7:ed:77: 2f:fb:71:a7:20:e7:0f:3e:d6:07:83:8f:cf:8d:97: 16:bd:b5:5b:b3:3a:b8:a8:e9:76:83:2d:c2:76:bd: 02:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:57:4B:FA:32:8B:30:19:D1:A8:B8:BD:0E:C2:EC:9C:C2:C8:F6:E1 X509v3 Authority Key Identifier: keyid:5E:E7:14:60:D6:37:28:AC:5E:AB:91:8A:54:1D:0D:70:51:57:7D:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:bc:51:d5:53:1d:98:72:4e:c7:2d:ef:e4:2f:48:d7:3a:a2: 4a:7f:d9:c4:c8:f6:6a:16:26:e0:07:31:99:34:00:b0:96:64: 05:7f:a4:a6:3b:1d:9d:b7:06:3a:0c:c0:66:f5:6d:2d:0a:90: c0:eb:c3:45:cc:81:94:68:61:1f:d5:96:a5:3c:60:fe:1c:0f: fa:67:3c:fa:4e:8a:df:18:4f:23:65:d1:81:7e:20:f5:ec:2d: c9:34:dc:f5:9f:4f:2f:06:e8:09:46:2a:c0:7f:bd:a1:a4:bd: 12:4e:cb:53:aa:47:84:a0:2c:a9:47:50:f8:0d:d1:ec:29:0c: f0:da:21:f6:65:a8:01:df:42:ab:e4:0f:fa:be:98:87:51:11: ba:87:43:1f:16:a2:28:6a:d1:e8:2f:c3:60:21:80:47:f4:8b: db:c3:01:91:c1:f2:8d:df:b8:6f:c3:8f:97:49:ab:3f:27:6d: 0b:a6:9c:27:f9:b5:73:4f:4d:80:64:5f:83:39:78:dd:40:43: 4a:cf:a5:bc:37:03:e7:6e:5f:a9:49:b9:e1:9d:ff:06:1f:45: d9:77:4b:17:2d:42:6f:e2:70:bb:d8:0e:39:75:20:7c:80:86: 4e:9a:0a:ae:21:e8:f8:ca:08:01:d1:56:b0:eb:4b:51:df:f4: 46:82:a4:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc1OEUxMTAvBgNVBAUTKDVFRTcxNDYwRDYzNzI4QUM1RUFCOTE4QTU0MUQwRDcw NTE1NzdENEQwHhcNMjUxMjIzMDMxMTIwWhcNMjUxMjMwMDMxMTIwWjAYMRYwFAYD VQQDDA02OTRhMDg1OC1lNTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9d17tVoClFneujIw1OBYgr3K2wdZs3R1jvWAJFDNoNlKKYlXo2Ngd5FvSXNd 9gKLspcxn2ukPPj4/6XtvdJZc8e/V7KOCMLP1O+YXQCXJhJMbTytlhmtjJzgJ21k r/RBDo9Kzu2tbW8p3Q6kb99quySoZpScFjn9/C4S46dR2htpTmIDM6Np9vYsfPaY pGRqLPe3WFKL4UBLzIOkcG4x4sKxswnbZQM/lAWQDJp/0ZqPGh3w2wwcVtdeMU0X YhM2RfYy/3fpWnhIKWR30EtmYavohFU5g3sgjpO2Rozn7Xcv+3GnIOcPPtYHg4/P jZcWvbVbszq4qOl2gy3Cdr0CewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD9XS/oy izAZ0ai4vQ7C7JzCyPbhMB8GA1UdIwQYMBaAFF7nFGDWNyisXquRilQdDXBRV31N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzU4RS9FNzk5RjkyMkQ1 M0QxMUVFOEYxRThBODVDNEY5QUUwMi9YdWNVWU5ZM0tLeGVxNUdLVkIwTmNGRlhm VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h1Y1VZTlkzS0t4ZXE1R0tWQjBOY0ZGWGZVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzU4RS9FNzk5RjkyMkQ1M0QxMUVFOEYxRThBODVDNEY5QUUwMi9YdWNVWU5ZM0tL eGVxNUdLVkIwTmNGRlhmVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDRvFHVUx2Yck7HLe/kL0jXOqJKf9nEyPZqFibgBzGZNACwlmQFf6Sm Ox2dtwY6DMBm9W0tCpDA68NFzIGUaGEf1ZalPGD+HA/6Zzz6TorfGE8jZdGBfiD1 7C3JNNz1n08vBugJRirAf72hpL0STstTqkeEoCypR1D4DdHsKQzw2iH2ZagB30Kr 5A/6vpiHURG6h0MfFqIoatHoL8NgIYBH9IvbwwGRwfKN37hvw4+XSas/J20Lppwn +bVzT02AZF+DOXjdQENKz6W8NwPnbl+pSbnhnf8GH0XZd0sXLUJv4nC72A45dSB8 gIZOmgquIej4yggB0Vaw60tR3/RGgqT8 -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:29 2025 by rpki-client