This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft File: XnKqfVsdVjLl0z_scvp0M_Sc4po.mft (raw, json) Hash identifier: lT8EvnKcSay1BPjOIw0ofj1sPlTAYydeOc/cpx39vTo= Subject key identifier: 66:68:F5:34:33:7E:D5:E2:0A:E2:9E:00:E1:64:A3:DC:CC:4C:85:84 Authority key identifier: 5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A Certificate issuer: /CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Certificate serial: 01DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft Manifest number: 01B9 Signing time: Sun 07 Dec 2025 01:52:22 +0000 Manifest this update: Sun 07 Dec 2025 01:52:22 +0000 Manifest next update: Sun 14 Dec 2025 01:52:22 +0000 Files and hashes: 1: XnKqfVsdVjLl0z_scvp0M_Sc4po.crl (hash: TvJANgwEWfKPEX8zsX3X0PYtPnIGwSfiS55aFs04JhQ=) 2: 36C31E00637111EEA51CA05EC4F9AE02.roa (hash: lY96nEi5CKYTXJTj1z2X+4msAEH0lgBh87K7FsjTVZ8=) 3: 00E626A4A57611EF98285E5FC4F9AE02.roa (hash: 08NPSGEr7+x4MzDThoj8ZzRXxZk450XlydgirrF3WE4=) 4: 98BE8828663D11EE8CBBAE7CC4F9AE02.roa (hash: OnFM4tWhowHbvjU4usSptKOpZeLKLT7QxFEJy+UEpYk=) 5: 99341DD6663D11EE8CBBAE7CC4F9AE02.roa (hash: Kt+JRZe4NSSBGcnDuKjJxIa0JojNpdBSE93Vqrzpq7E=) 6: 678C24C0663F11EEBD955D43C4F9AE02.roa (hash: Rlo1FH4ToBEybkPEC2r5mS4GIe86F2K5uAovVfJDrI8=) 7: 9830B6D8663D11EE8CBBAE7CC4F9AE02.roa (hash: RmkIIPTPM365rnHi3iyE65DKC/DdOKV16KKoUBGaAYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 01:52:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 479 (0x1df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9E82, serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Validity Not Before: Dec 7 01:52:22 2025 GMT Not After : Dec 14 01:52:22 2025 GMT Subject: CN=6934ddd6-0672 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4c:99:10:53:b0:70:96:3c:e5:23:bd:77:0f: 5e:4a:d9:25:85:f4:b8:8a:8a:6f:35:16:67:ee:28: b2:fb:21:c0:3f:d1:5f:b1:54:dd:43:cb:e7:6f:3d: e3:fd:27:83:86:4d:a1:2c:3d:cd:8a:3e:05:a8:e5: 96:11:90:da:a8:72:cc:65:83:9f:f2:a8:4e:55:f1: e8:74:97:b0:c5:89:c6:ac:83:06:46:ee:e7:28:ee: 88:6f:37:7f:b7:f0:54:17:09:f8:08:f2:d5:9d:24: 45:ea:a2:d7:c7:71:11:bc:63:55:0a:05:26:60:03: 00:47:c0:bc:ba:63:22:98:75:a1:bb:2d:d1:25:0c: 50:3a:db:4f:ff:24:29:70:ab:bf:fd:40:46:b1:47: e3:d1:6d:b2:d1:f6:54:27:ef:b1:78:f4:99:35:31: 47:30:4f:99:4a:b3:c5:a8:c6:5a:cb:20:9d:c7:3c: 17:85:9a:f6:5d:2d:6e:43:47:6f:32:ee:bf:39:fd: 0f:9b:7c:49:af:d4:3d:8c:99:02:10:67:cd:8f:e6: 85:85:ed:c2:f5:74:e2:c9:9e:2f:c2:7d:69:77:3e: c1:33:72:2f:67:5f:7a:7a:6a:59:08:d5:56:e7:22: 0c:3a:59:90:73:e8:a6:12:a2:27:b0:a8:07:41:bb: f6:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:68:F5:34:33:7E:D5:E2:0A:E2:9E:00:E1:64:A3:DC:CC:4C:85:84 X509v3 Authority Key Identifier: keyid:5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:fd:12:0d:c6:86:bd:b8:1b:1b:61:bd:fd:f1:b6:fe:31:13: 56:de:b4:84:e8:3f:bd:b7:fc:79:2d:71:3d:36:f6:08:75:90: 01:19:d1:35:41:af:53:fe:7f:1b:ea:81:4f:2c:49:73:06:de: cb:28:64:2b:1e:4c:a5:1a:e7:bb:c7:52:d1:43:81:74:08:c6: 39:48:81:1f:8e:25:e6:15:6c:d7:c7:34:55:0b:fd:b1:a7:fc: 69:fe:4a:e4:37:cc:c3:95:ce:ce:87:f8:21:73:26:a3:1a:c6: e6:29:96:51:0d:9d:bb:e9:4f:08:00:bd:bf:f2:e2:67:c5:d9: c1:4c:cd:49:b0:db:df:ad:88:bb:c3:b6:c5:fd:71:04:ba:59: c8:87:cf:a8:90:44:1e:cf:eb:6b:10:60:f0:57:01:8c:e8:c6: e1:38:b7:a4:f7:50:19:2a:b7:71:1b:87:69:fe:3b:d1:ee:f0: 29:ee:41:45:29:68:dd:3a:f7:e0:3e:bf:40:34:0d:aa:c9:20: 14:1b:f2:54:2e:08:32:1c:65:1f:ec:0d:43:d1:5f:e9:aa:a0: de:ef:8d:8f:dd:2a:ea:05:80:ff:9c:05:50:b8:74:3c:cf:3a: 15:3c:c3:cc:e1:08:a2:ca:52:ae:cb:c3:22:7d:17:1e:d6:0e: e1:74:70:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlFODIxMTAvBgNVBAUTKDVFNzJBQTdENUIxRDU2MzJFNUQzM0ZFQzcyRkE3NDMz RjQ5Q0UyOUEwHhcNMjUxMjA3MDE1MjIyWhcNMjUxMjE0MDE1MjIyWjAYMRYwFAYD VQQDEw02OTM0ZGRkNi0wNjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUyZEFOwcJY85SO9dw9eStklhfS4iopvNRZn7iiy+yHAP9FfsVTdQ8vnbz3j /SeDhk2hLD3Nij4FqOWWEZDaqHLMZYOf8qhOVfHodJewxYnGrIMGRu7nKO6Ibzd/ t/BUFwn4CPLVnSRF6qLXx3ERvGNVCgUmYAMAR8C8umMimHWhuy3RJQxQOttP/yQp cKu//UBGsUfj0W2y0fZUJ++xePSZNTFHME+ZSrPFqMZayyCdxzwXhZr2XS1uQ0dv Mu6/Of0Pm3xJr9Q9jJkCEGfNj+aFhe3C9XTiyZ4vwn1pdz7BM3IvZ196empZCNVW 5yIMOlmQc+imEqInsKgHQbv2mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGZo9TQz ftXiCuKeAOFko9zMTIWEMB8GA1UdIwQYMBaAFF5yqn1bHVYy5dM/7HL6dDP0nOKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUU4Mi9FQTdFNUZBNjYz NkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZqTGwwel9zY3ZwME1fU2M0 cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huS3FmVnNkVmpMbDB6X3NjdnAwTV9TYzRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUU4Mi9FQTdFNUZBNjYzNkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZq TGwwel9zY3ZwME1fU2M0cG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBM/RINxoa9uBsbYb398bb+MRNW3rSE6D+9t/x5LXE9NvYIdZABGdE1 Qa9T/n8b6oFPLElzBt7LKGQrHkylGue7x1LRQ4F0CMY5SIEfjiXmFWzXxzRVC/2x p/xp/krkN8zDlc7Oh/ghcyajGsbmKZZRDZ276U8IAL2/8uJnxdnBTM1JsNvfrYi7 w7bF/XEEulnIh8+okEQez+trEGDwVwGM6MbhOLek91AZKrdxG4dp/jvR7vAp7kFF KWjdOvfgPr9ANA2qySAUG/JULggyHGUf7A1D0V/pqqDe742P3SrqBYD/nAVQuHQ8 zzoVPMPM4QiiylKuy8MifRce1g7hdHAC -----END CERTIFICATE-----Generated at Mon Dec 8 00:54:50 2025 by rpki-client