This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft File: XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft (raw, json) Hash identifier: 7Ygp5bNX3VOTD1Y7OjOAp+9weu6WdDVfwiVErt6I60A= Subject key identifier: AE:3D:AE:73:89:E6:64:62:41:55:51:78:BA:3B:14:E7:F8:76:6B:44 Authority key identifier: 5D:4F:41:2A:E4:80:10:FE:54:87:F0:18:F1:71:A9:C6:46:9D:9A:C5 Certificate issuer: /CN=A91BCA5B/serialNumber=5D4F412AE48010FE5487F018F171A9C6469D9AC5 Certificate serial: 0F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XU9BKuSAEP5Uh_AY8XGpxkadmsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft Manifest number: 0D Signing time: Wed 03 Dec 2025 06:08:45 +0000 Manifest this update: Wed 03 Dec 2025 06:08:44 +0000 Manifest next update: Wed 10 Dec 2025 06:08:44 +0000 Files and hashes: 1: XU9BKuSAEP5Uh_AY8XGpxkadmsU.crl (hash: k4NOdZ9uYxhkKJaPwyMKNDbqwA9kIkAjv5JNbr3FnSk=) 2: AF2E6AE2C03B11F09EE7012FC4F9AE02.roa (hash: 7K3qRA/N7rz2jfT0m6Hcbsd9SkfThsmVfXsBZYNY3Xs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.crl rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XU9BKuSAEP5Uh_AY8XGpxkadmsU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 06:08:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCA5B, serialNumber=5D4F412AE48010FE5487F018F171A9C6469D9AC5 Validity Not Before: Dec 3 06:08:44 2025 GMT Not After : Dec 10 06:08:44 2025 GMT Subject: CN=692fd3ed-eef1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:1c:18:21:35:d8:03:df:8f:bc:08:b4:ed:9e: 20:18:6f:cb:c7:dc:70:42:c1:f5:26:dc:7f:64:f6: fa:c9:5b:8b:8a:71:c7:5b:49:9c:de:3b:cf:94:36: 4d:f9:c9:8c:cb:1a:8d:e4:38:33:63:1c:2e:32:80: 5c:36:13:dd:4f:a7:7f:4e:49:2b:1a:80:ee:87:55: c3:84:6c:42:70:2c:28:2d:16:95:41:28:05:0d:48: 53:c5:d0:7f:fd:81:8e:94:bb:01:5a:dd:c6:14:27: f8:fc:09:55:2a:aa:6e:ec:1b:de:9b:76:21:41:d3: fc:ae:02:2d:01:83:04:b0:a5:b3:46:e6:ce:d6:b0: 32:9d:74:e1:5a:9d:3d:2d:0c:54:3b:43:36:8c:15: 8f:3d:2d:41:93:a9:0b:02:df:8e:5c:d7:14:04:1e: 94:49:1f:97:83:d4:3a:ce:51:10:5c:04:3c:84:4a: 60:1f:c5:c6:32:97:48:8b:e9:65:b1:ca:e5:20:7e: b9:02:ee:90:53:5d:b3:44:ee:4f:41:21:22:67:1b: 65:19:0d:f9:0d:61:52:bc:f0:b4:3f:79:e4:e6:ac: de:f9:dd:a3:5d:29:c1:f0:18:66:c6:08:09:52:da: f5:c4:00:69:03:4c:9c:9a:87:d9:73:24:18:51:de: d2:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:3D:AE:73:89:E6:64:62:41:55:51:78:BA:3B:14:E7:F8:76:6B:44 X509v3 Authority Key Identifier: keyid:5D:4F:41:2A:E4:80:10:FE:54:87:F0:18:F1:71:A9:C6:46:9D:9A:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XU9BKuSAEP5Uh_AY8XGpxkadmsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:11:02:43:a8:2f:1e:8a:7c:0d:c1:96:cc:c8:8f:65:0a:9e: 6b:c3:03:96:29:d4:ba:85:79:4c:fe:b9:34:68:1d:65:86:82: 24:b2:2f:d4:01:77:8a:ab:58:18:9f:00:d2:52:bb:4f:a2:b7: 3d:89:7f:61:18:d9:72:c9:21:03:7f:64:0b:dc:63:7f:a6:4c: cf:93:b9:90:5c:65:42:2d:51:3e:37:c2:98:b0:06:e7:c5:6b: 3d:fc:e5:69:eb:88:c3:3b:a3:13:a8:44:69:30:09:6d:40:07: 1f:07:ac:8a:a1:36:b1:b7:4a:d8:5f:71:1a:a1:c1:83:28:63: 08:02:97:2c:50:84:3b:27:3d:61:e3:2c:f0:e6:23:48:cc:af: 76:bb:7e:8f:30:01:fc:64:ad:59:d1:f6:82:98:69:2b:7d:30: d7:30:32:8b:3d:7f:e4:57:14:b0:08:5f:69:aa:df:8d:8f:65: c3:fc:f9:92:8a:b5:5f:32:64:0d:b5:7b:92:85:c1:dc:b9:66: d1:30:e8:bd:90:26:20:bf:50:e9:b2:44:86:93:ef:1f:14:e0: 0d:bb:19:f3:a7:69:22:1a:6b:91:4f:5f:1a:11:39:a8:c3:27: 33:4c:0f:48:c6:36:09:52:a7:f3:2e:33:61:20:4a:f9:d3:5a: 0d:a7:1d:ff -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC Q0E1QjExMC8GA1UEBRMoNUQ0RjQxMkFFNDgwMTBGRTU0ODdGMDE4RjE3MUE5QzY0 NjlEOUFDNTAeFw0yNTEyMDMwNjA4NDRaFw0yNTEyMTAwNjA4NDRaMBgxFjAUBgNV BAMTDTY5MmZkM2VkLWVlZjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDHBghNdgD34+8CLTtniAYb8vH3HBCwfUm3H9k9vrJW4uKccdbSZzeO8+UNk35 yYzLGo3kODNjHC4ygFw2E91Pp39OSSsagO6HVcOEbEJwLCgtFpVBKAUNSFPF0H/9 gY6UuwFa3cYUJ/j8CVUqqm7sG96bdiFB0/yuAi0BgwSwpbNG5s7WsDKddOFanT0t DFQ7QzaMFY89LUGTqQsC345c1xQEHpRJH5eD1DrOURBcBDyESmAfxcYyl0iL6WWx yuUgfrkC7pBTXbNE7k9BISJnG2UZDfkNYVK88LQ/eeTmrN753aNdKcHwGGbGCAlS 2vXEAGkDTJyah9lzJBhR3tIxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrj2uc4nm ZGJBVVF4ujsU5/h2a0QwHwYDVR0jBBgwFoAUXU9BKuSAEP5Uh/AY8XGpxkadmsUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJDQTVCL0QyNUQ4NjhFQzAz QTExRjA4OEEzNDYyQ0M0RjlBRTAyL1hVOUJLdVNBRVA1VWhfQVk4WEdweGthZG1z VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWFU5Qkt1U0FFUDVVaF9BWThYR3B4a2FkbXNVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJD QTVCL0QyNUQ4NjhFQzAzQTExRjA4OEEzNDYyQ0M0RjlBRTAyL1hVOUJLdVNBRVA1 VWhfQVk4WEdweGthZG1zVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIMRAkOoLx6KfA3BlszIj2UKnmvDA5Yp1LqFeUz+uTRoHWWGgiSyL9QB d4qrWBifANJSu0+itz2Jf2EY2XLJIQN/ZAvcY3+mTM+TuZBcZUItUT43wpiwBufF az385WnriMM7oxOoRGkwCW1ABx8HrIqhNrG3SthfcRqhwYMoYwgClyxQhDsnPWHj LPDmI0jMr3a7fo8wAfxkrVnR9oKYaSt9MNcwMos9f+RXFLAIX2mq342PZcP8+ZKK tV8yZA21e5KFwdy5ZtEw6L2QJiC/UOmyRIaT7x8U4A27GfOnaSIaa5FPXxoROajD JzNMD0jGNglSp/MuM2EgSvnTWg2nHf8= -----END CERTIFICATE-----Generated at Wed Dec 3 14:00:14 2025 by rpki-client