This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft File: XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft (raw, json) Hash identifier: ioTUIySJhyTlmfrgwG+62PeQTsfWiDyfs9TFC+A9+7Q= Subject key identifier: F3:00:4A:66:3A:38:C1:A7:A4:58:04:44:6A:9A:2A:80:14:3E:4F:4F Authority key identifier: 5D:F1:02:E2:A5:E7:36:77:21:C1:18:DB:EC:DA:60:2A:80:29:EE:94 Certificate issuer: /CN=A91D0B34/serialNumber=5DF102E2A5E7367721C118DBECDA602A8029EE94 Certificate serial: 0A48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft Manifest number: 0A3A Signing time: Mon 22 Dec 2025 19:09:59 +0000 Manifest this update: Mon 22 Dec 2025 19:09:59 +0000 Manifest next update: Mon 29 Dec 2025 19:09:59 +0000 Files and hashes: 1: XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl (hash: dYmx6tFvxh1XlQswqKL/PjWhvEKGl4kzlVWR/uqIemM=) 2: 97E61FE46F2111EB85D19531C4F9AE02.roa (hash: fE6v1X9dI3K/+qxRJDUFWVWwmGPbKxLQXrNQBGm5pPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:09:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2632 (0xa48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B34, serialNumber=5DF102E2A5E7367721C118DBECDA602A8029EE94 Validity Not Before: Dec 22 19:09:59 2025 GMT Not After : Dec 29 19:09:59 2025 GMT Subject: CN=69499787-cc1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:dc:55:c5:cb:e9:65:7e:00:99:81:d7:6d:20: 94:37:6c:39:31:fc:13:68:0b:dc:07:50:09:ff:58: 17:75:d8:e9:37:36:91:14:a2:f9:f6:e2:b8:b5:05: 1f:70:9e:ee:48:3b:a2:d6:d0:cc:27:a8:fe:0a:52: 41:ee:53:49:af:67:21:80:a8:b8:34:d2:bc:82:bc: a4:d4:fd:52:db:25:d9:62:45:41:c2:6f:94:db:7f: 4e:2e:31:8c:a1:db:8a:22:c7:a2:56:31:a3:2e:f9: 4d:3d:4c:39:18:70:b2:29:b5:a0:34:46:83:a4:e9: dd:b8:01:d8:d6:41:d5:df:4f:a4:b2:0e:83:67:85: 5a:64:60:34:6c:95:d0:9b:7e:3d:cb:29:ec:de:5f: 29:bd:4b:ca:63:8f:1d:93:ab:b5:7d:e0:ed:a1:0b: 25:93:b5:6f:e1:2a:c5:7f:35:9c:ea:ee:ea:63:34: 32:d8:3b:7b:8d:ce:72:4e:d3:a6:ae:0c:1c:63:33: 32:13:c3:d3:bc:99:8d:c3:af:73:56:3f:28:83:a1: e6:62:40:68:6a:14:ec:9b:a4:6b:0d:b1:98:a7:7c: dc:4e:84:87:32:b3:61:88:00:6e:3b:6d:f9:ba:c8: 3e:de:23:d7:7c:2b:4c:52:f9:c2:cf:d7:a8:e0:1d: c2:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:00:4A:66:3A:38:C1:A7:A4:58:04:44:6A:9A:2A:80:14:3E:4F:4F X509v3 Authority Key Identifier: keyid:5D:F1:02:E2:A5:E7:36:77:21:C1:18:DB:EC:DA:60:2A:80:29:EE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:79:a8:02:d7:94:dc:91:53:62:1b:c6:57:4d:90:58:f4:57: 53:1c:e8:65:5f:5e:04:cb:13:38:08:5f:fe:69:da:73:b1:6b: 79:ad:76:86:f7:40:b2:fe:3f:9f:db:98:ce:81:b8:19:79:8b: 22:cd:de:62:41:da:1d:47:7b:bd:50:c1:e5:d4:5b:4c:c2:d5: 1a:28:b0:01:35:f4:f2:8c:e9:86:2c:8f:89:92:7b:61:7a:db: 68:c9:ca:b0:98:e3:5c:da:13:03:0c:a4:16:a8:bd:55:f3:62: dd:9f:18:ce:ad:58:1c:59:de:cf:6a:c2:6a:2f:4e:e6:4e:aa: 82:32:2c:19:b7:e9:62:6d:1d:56:a2:3c:a3:8f:9e:25:55:70: a4:08:09:ab:45:d1:82:d4:44:ec:2d:fe:ed:56:48:c9:1f:c1: a9:21:38:db:96:db:19:ad:c5:c4:7c:96:bf:29:0e:0d:01:77: 3d:05:a7:34:ed:2d:49:97:81:0e:b8:02:45:38:7f:13:11:56: ef:3f:e9:08:cf:c8:82:08:cb:5e:9a:68:27:81:47:4c:8a:2b: d3:59:0b:73:13:27:68:23:7a:ec:7d:2b:05:e2:f9:63:1b:dd: 7a:10:2f:91:bb:04:d5:72:fb:c6:e3:91:e4:bb:fe:3f:f7:37: fd:10:49:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCMzQxMTAvBgNVBAUTKDVERjEwMkUyQTVFNzM2NzcyMUMxMThEQkVDREE2MDJB ODAyOUVFOTQwHhcNMjUxMjIyMTkwOTU5WhcNMjUxMjI5MTkwOTU5WjAYMRYwFAYD VQQDDA02OTQ5OTc4Ny1jYzFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0dxVxcvpZX4AmYHXbSCUN2w5MfwTaAvcB1AJ/1gXddjpNzaRFKL59uK4tQUf cJ7uSDui1tDMJ6j+ClJB7lNJr2chgKi4NNK8gryk1P1S2yXZYkVBwm+U239OLjGM oduKIseiVjGjLvlNPUw5GHCyKbWgNEaDpOnduAHY1kHV30+ksg6DZ4VaZGA0bJXQ m349yyns3l8pvUvKY48dk6u1feDtoQslk7Vv4SrFfzWc6u7qYzQy2Dt7jc5yTtOm rgwcYzMyE8PTvJmNw69zVj8og6HmYkBoahTsm6RrDbGYp3zcToSHMrNhiABuO235 usg+3iPXfCtMUvnCz9eo4B3CBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPMASmY6 OMGnpFgERGqaKoAUPk9PMB8GA1UdIwQYMBaAFF3xAuKl5zZ3IcEY2+zaYCqAKe6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEIzNC82MDM3RDVEQzgy QTExMUVBOTM0MTNCNEFDNEY5QUUwMi9YZkVDNHFYbk5uY2h3UmpiN05wZ0tvQXA3 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hmRUM0cVhuTm5jaHdSamI3TnBnS29BcDdwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEIzNC82MDM3RDVEQzgyQTExMUVBOTM0MTNCNEFDNEY5QUUwMi9YZkVDNHFYbk5u Y2h3UmpiN05wZ0tvQXA3cFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9eagC15TckVNiG8ZXTZBY9FdTHOhlX14EyxM4CF/+adpzsWt5rXaG 90Cy/j+f25jOgbgZeYsizd5iQdodR3u9UMHl1FtMwtUaKLABNfTyjOmGLI+Jknth ettoycqwmONc2hMDDKQWqL1V82LdnxjOrVgcWd7PasJqL07mTqqCMiwZt+libR1W ojyjj54lVXCkCAmrRdGC1ETsLf7tVkjJH8GpITjbltsZrcXEfJa/KQ4NAXc9Bac0 7S1Jl4EOuAJFOH8TEVbvP+kIz8iCCMtemmgngUdMiivTWQtzEydoI3rsfSsF4vlj G916EC+RuwTVcvvG45Hku/4/9zf9EEkg -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:39 2025 by rpki-client