This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft File: X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft (raw, json) Hash identifier: 7ykETZX4KtbxEaPuxM+Fsihrvvn4wNibQQUd7Ko7Now= Subject key identifier: FD:8A:74:BD:61:7A:A7:D5:92:30:08:79:56:61:69:8C:BE:42:88:2B Authority key identifier: 5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 Certificate issuer: /CN=A91CE285/serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Certificate serial: 0A22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft Manifest number: 0A1B Signing time: Thu 18 Dec 2025 19:23:04 +0000 Manifest this update: Thu 18 Dec 2025 19:23:03 +0000 Manifest next update: Thu 25 Dec 2025 19:23:03 +0000 Files and hashes: 1: X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl (hash: przh8PkcCop0Iol5+q/XFZ9RERBolYr4MU26f1sVsCs=) 2: E5C4974689CF11EAA39AF441C4F9AE02.roa (hash: S/+GQ9LaNR6oJzl2BIn9qWcVDZWjqUHkpie5l4NiGuc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:23:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2594 (0xa22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE285, serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Validity Not Before: Dec 18 19:23:03 2025 GMT Not After : Dec 25 19:23:03 2025 GMT Subject: CN=69445498-3391 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d9:00:f3:18:a7:ac:a1:2f:5b:b9:d5:16:50: 9b:97:ab:c5:aa:8e:b1:50:54:17:71:22:f4:1e:40: a3:c2:2e:ec:7e:64:c7:76:d0:e5:e0:3b:57:d4:72: ba:61:d1:1f:a6:e6:f6:0a:3d:ee:5e:1e:3c:cf:35: 80:fe:fc:51:07:13:15:74:a0:97:5d:64:74:e8:08: cb:d5:ca:c9:b5:b7:2a:b3:dc:0c:8d:55:63:ae:fb: 67:5e:e4:96:90:8a:97:32:1c:3e:15:7f:a1:4f:8a: 17:dc:93:d3:26:e3:02:d5:c9:7f:1c:a6:c8:b9:f5: f8:2c:bf:1a:79:dc:2c:8b:46:ff:eb:2a:88:0f:a4: 06:2d:c3:b8:81:0c:2e:7d:c3:97:f0:75:fe:31:17: 17:f1:56:fd:2f:ca:94:82:ab:7c:c0:ad:ed:96:04: 16:c9:99:de:bd:49:10:8e:d9:56:30:71:1e:15:db: 01:02:1d:60:a8:51:f9:3b:44:26:b5:d7:23:c2:10: 47:5a:a0:dd:ae:51:4e:5a:3f:76:bb:0f:d9:cd:37: a3:80:e3:84:e9:a9:e8:ad:e0:b5:f8:cd:d8:ce:27: 0b:a2:f9:af:8f:01:c6:b2:19:81:4b:e2:87:a4:1c: 74:c3:e7:89:59:83:40:66:17:64:b5:07:05:f1:48: a8:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:8A:74:BD:61:7A:A7:D5:92:30:08:79:56:61:69:8C:BE:42:88:2B X509v3 Authority Key Identifier: keyid:5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:da:e2:32:eb:40:89:42:87:0e:6e:40:d3:b5:4e:ce:5b:85: b9:2d:26:a4:67:7e:a5:f7:7d:65:30:1b:d9:4d:d9:60:7b:ea: c5:7e:b0:54:f1:a9:d6:3f:de:af:81:e2:2b:23:c5:a5:17:55: 3e:cb:f3:33:c2:ea:9a:bb:0b:31:dc:aa:6c:9b:97:f3:ef:6b: 5b:91:59:7a:7b:dc:a9:e2:5f:2f:8b:a2:33:20:24:3e:08:80: a4:f2:03:b8:0d:65:fc:61:1d:85:ca:65:fd:fa:88:20:00:90: 4d:08:80:a2:99:24:b4:f8:a4:9f:d0:c9:60:b2:b0:5c:cd:8d: d3:cd:f2:59:c9:5d:0b:60:61:ea:ac:b3:ba:68:a4:dd:63:8b: 72:ed:23:e1:fd:15:96:7c:be:87:19:f0:d7:12:6d:c5:5a:ca: 69:f4:42:3d:84:59:04:39:52:09:ab:b0:c1:01:49:37:78:0f: 6a:cc:a4:95:75:3d:ea:f2:a9:5d:fe:d8:12:e9:94:a2:ea:0b: 92:c5:47:d1:ab:67:10:fc:ed:ee:bf:13:e1:3e:e6:a5:5b:ee: 68:d9:46:d2:40:32:e8:54:aa:26:1c:f0:11:af:2a:e5:16:9c: 41:c4:d0:66:72:1d:5c:0a:6a:06:29:d5:d9:17:b8:92:9e:c7: e6:b7:d6:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyODUxMTAvBgNVBAUTKDVGOEFGMzU5NzNGRDRGQTU2M0YzM0I3Mzc2NTM0Njgy MTA3QkM4RjkwHhcNMjUxMjE4MTkyMzAzWhcNMjUxMjI1MTkyMzAzWjAYMRYwFAYD VQQDDA02OTQ0NTQ5OC0zMzkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz9kA8xinrKEvW7nVFlCbl6vFqo6xUFQXcSL0HkCjwi7sfmTHdtDl4DtX1HK6 YdEfpub2Cj3uXh48zzWA/vxRBxMVdKCXXWR06AjL1crJtbcqs9wMjVVjrvtnXuSW kIqXMhw+FX+hT4oX3JPTJuMC1cl/HKbIufX4LL8aedwsi0b/6yqID6QGLcO4gQwu fcOX8HX+MRcX8Vb9L8qUgqt8wK3tlgQWyZnevUkQjtlWMHEeFdsBAh1gqFH5O0Qm tdcjwhBHWqDdrlFOWj92uw/ZzTejgOOE6anoreC1+M3YzicLovmvjwHGshmBS+KH pBx0w+eJWYNAZhdktQcF8UioXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP2KdL1h eqfVkjAIeVZhaYy+QogrMB8GA1UdIwQYMBaAFF+K81lz/U+lY/M7c3ZTRoIQe8j5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTI4NS81RTE2NDhCNjg0 QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2Vmo4enR6ZGxOR2doQjd5 UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0cnpXWFA5VDZWajh6dHpkbE5HZ2hCN3lQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTI4NS81RTE2NDhCNjg0QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2 Vmo4enR6ZGxOR2doQjd5UGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBL2uIy60CJQocObkDTtU7OW4W5LSakZ36l931lMBvZTdlge+rFfrBU 8anWP96vgeIrI8WlF1U+y/Mzwuqauwsx3Kpsm5fz72tbkVl6e9yp4l8vi6IzICQ+ CICk8gO4DWX8YR2FymX9+oggAJBNCICimSS0+KSf0MlgsrBczY3TzfJZyV0LYGHq rLO6aKTdY4ty7SPh/RWWfL6HGfDXEm3FWspp9EI9hFkEOVIJq7DBAUk3eA9qzKSV dT3q8qld/tgS6ZSi6guSxUfRq2cQ/O3uvxPhPualW+5o2UbSQDLoVKomHPARryrl FpxBxNBmch1cCmoGKdXZF7iSnsfmt9Yn -----END CERTIFICATE-----Generated at Fri Dec 19 11:23:14 2025 by rpki-client