This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft File: cxfXd72qYzPNlqgQS5TeD6R1IRM.mft (raw, json) Hash identifier: KG5wz7MbPiQFLjSS3fLr8xJ0QWX+PKXWQC7bRduFdBU= Subject key identifier: 67:52:4D:AC:F7:9A:35:3A:AB:94:4A:D0:E8:22:E3:2C:72:59:58:C3 Authority key identifier: 73:17:D7:77:BD:AA:63:33:CD:96:A8:10:4B:94:DE:0F:A4:75:21:13 Certificate issuer: /CN=A91BA941/serialNumber=7317D777BDAA6333CD96A8104B94DE0FA4752113 Certificate serial: D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft Manifest number: D3 Signing time: Tue 23 Dec 2025 04:39:55 +0000 Manifest this update: Tue 23 Dec 2025 04:39:55 +0000 Manifest next update: Tue 30 Dec 2025 04:39:55 +0000 Files and hashes: 1: cxfXd72qYzPNlqgQS5TeD6R1IRM.crl (hash: KPagEWjiO8K0ar532ZHAt5Vd7j6I3ysfUV6Gf62LlXs=) 2: 48A5FCA4A0A211EF81FA6876C4F9AE02.roa (hash: hQ884t+I5StX9TWBv4SYubO1nFPYJpeoarqEYGTcC7s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.crl rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:39:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA941, serialNumber=7317D777BDAA6333CD96A8104B94DE0FA4752113 Validity Not Before: Dec 23 04:39:55 2025 GMT Not After : Dec 30 04:39:55 2025 GMT Subject: CN=694a1d1b-8874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5d:d3:35:68:24:c8:13:48:39:76:dd:5e:3f: a1:30:fa:59:76:5b:d0:09:ac:55:2b:dd:94:bd:c6: 12:96:d6:b6:c2:44:f9:01:dd:5c:75:67:1d:1f:3c: e0:60:fa:61:d0:40:81:53:8e:77:7a:31:9a:71:7d: 83:da:bd:7c:be:10:41:38:3f:27:5d:31:cb:9e:dd: 1c:15:5f:6f:a3:04:33:44:48:5c:ad:c8:d8:c5:f5: 2c:fa:bb:6d:93:d8:be:97:40:c1:03:e1:95:83:48: aa:a8:e0:f9:23:f0:6a:6f:e6:2b:b6:47:63:8a:d2: 44:1a:87:de:65:84:06:f6:24:9e:b7:22:c9:6c:dd: d6:99:98:27:93:84:57:5a:3c:b8:f7:b6:4e:9b:ee: f8:16:40:fe:03:1e:d4:6d:00:c8:d1:f2:6a:e4:ce: 2d:48:98:53:38:10:c7:bd:7e:01:20:d5:14:7e:c1: 94:dc:77:1d:45:a3:50:16:fb:7f:87:8f:37:92:11: 05:98:f9:f7:90:26:41:42:57:43:02:d6:f7:54:2e: 2c:fd:ca:96:75:63:34:cf:73:27:9a:bc:03:32:f7: 30:d5:cc:d4:d3:2c:48:80:f8:16:21:62:b3:29:d7: f2:32:36:2b:ae:90:43:e0:61:3e:22:4f:6d:e4:9b: cd:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:52:4D:AC:F7:9A:35:3A:AB:94:4A:D0:E8:22:E3:2C:72:59:58:C3 X509v3 Authority Key Identifier: keyid:73:17:D7:77:BD:AA:63:33:CD:96:A8:10:4B:94:DE:0F:A4:75:21:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:45:85:53:dd:b3:9c:75:82:3d:37:ee:a3:76:d4:1e:7e:cc: 20:10:50:71:9f:2f:8d:7b:73:ff:a6:82:50:af:1a:71:20:5d: c8:91:fc:eb:5c:51:37:f4:6b:94:fd:31:e0:ab:4b:f3:73:7a: 03:28:aa:19:d2:e9:69:53:38:00:b5:ef:b8:a2:8e:5a:6d:d4: 1b:45:53:f2:a6:40:66:57:d2:c2:bc:b4:ca:aa:30:cd:2d:85: 99:47:2d:30:cd:72:8f:8d:e9:39:17:ee:8d:44:fb:aa:86:b2: 9c:7d:2c:5c:ab:3a:38:d4:6b:91:5a:64:ee:44:ad:08:e0:bb: 2a:2e:74:60:32:70:b1:ca:60:53:91:09:bd:ee:b1:75:63:09: 95:73:55:56:e9:9b:71:db:b4:ce:08:93:06:ea:56:19:b7:5f: e5:0c:25:0d:cd:4c:3a:59:08:ae:b8:86:6f:37:9b:97:08:dd: 4c:0e:be:b9:e7:f1:8b:0b:78:f4:e6:78:aa:a3:e8:61:e1:10: 3c:64:b1:01:39:7a:24:c3:c2:44:65:3e:c6:32:0f:f0:16:c0: fe:06:60:cd:73:f4:de:25:92:8a:e9:97:88:24:9c:62:b2:8f: 7d:e6:d6:9c:62:ce:6e:8b:00:7b:ef:45:db:6f:9c:15:e5:10: fe:b9:de:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE5NDExMTAvBgNVBAUTKDczMTdENzc3QkRBQTYzMzNDRDk2QTgxMDRCOTRERTBG QTQ3NTIxMTMwHhcNMjUxMjIzMDQzOTU1WhcNMjUxMjMwMDQzOTU1WjAYMRYwFAYD VQQDDA02OTRhMWQxYi04ODc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvF3TNWgkyBNIOXbdXj+hMPpZdlvQCaxVK92UvcYSlta2wkT5Ad1cdWcdHzzg YPph0ECBU453ejGacX2D2r18vhBBOD8nXTHLnt0cFV9vowQzREhcrcjYxfUs+rtt k9i+l0DBA+GVg0iqqOD5I/Bqb+YrtkdjitJEGofeZYQG9iSetyLJbN3WmZgnk4RX Wjy497ZOm+74FkD+Ax7UbQDI0fJq5M4tSJhTOBDHvX4BINUUfsGU3HcdRaNQFvt/ h483khEFmPn3kCZBQldDAtb3VC4s/cqWdWM0z3MnmrwDMvcw1czU0yxIgPgWIWKz KdfyMjYrrpBD4GE+Ik9t5JvNDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGdSTaz3 mjU6q5RK0Ogi4yxyWVjDMB8GA1UdIwQYMBaAFHMX13e9qmMzzZaoEEuU3g+kdSET MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTk0MS85QjNEMjU0OEEw QTAxMUVGOTA1MjMyNUZDNEY5QUUwMi9jeGZYZDcycVl6UE5scWdRUzVUZUQ2UjFJ Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N4ZlhkNzJxWXpQTmxxZ1FTNVRlRDZSMUlSTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTk0MS85QjNEMjU0OEEwQTAxMUVGOTA1MjMyNUZDNEY5QUUwMi9jeGZYZDcycVl6 UE5scWdRUzVUZUQ2UjFJUk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGRYVT3bOcdYI9N+6jdtQefswgEFBxny+Ne3P/poJQrxpxIF3Ikfzr XFE39GuU/THgq0vzc3oDKKoZ0ulpUzgAte+4oo5abdQbRVPypkBmV9LCvLTKqjDN LYWZRy0wzXKPjek5F+6NRPuqhrKcfSxcqzo41GuRWmTuRK0I4LsqLnRgMnCxymBT kQm97rF1YwmVc1VW6Ztx27TOCJMG6lYZt1/lDCUNzUw6WQiuuIZvN5uXCN1MDr65 5/GLC3j05niqo+hh4RA8ZLEBOXokw8JEZT7GMg/wFsD+BmDNc/TeJZKK6ZeIJJxi so995tacYs5uiwB770Xbb5wV5RD+ud4u -----END CERTIFICATE-----Generated at Wed Dec 24 19:29:36 2025 by rpki-client