This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft File: XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft (raw, json) Hash identifier: qSKj3DlLhK8ghQe9HryPljVApNwpnhNonYSjDkzR9TE= Subject key identifier: 32:57:94:8B:F1:9E:BE:AD:95:76:0F:A7:9E:4A:C5:7B:26:70:46:25 Authority key identifier: 5D:5F:61:90:21:5D:FF:0A:C3:54:32:BC:3A:52:A0:8B:D3:41:B7:00 Certificate issuer: /CN=A91D28E1/serialNumber=5D5F6190215DFF0AC35432BC3A52A08BD341B700 Certificate serial: 017E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XV9hkCFd_wrDVDK8OlKgi9NBtwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft Manifest number: 017B Signing time: Tue 23 Dec 2025 02:47:29 +0000 Manifest this update: Tue 23 Dec 2025 02:47:29 +0000 Manifest next update: Tue 30 Dec 2025 02:47:29 +0000 Files and hashes: 1: XV9hkCFd_wrDVDK8OlKgi9NBtwA.crl (hash: 2YuCddXyzCjMkWZba175UMZjP5WfPMUBtRDEfu9Wkek=) 2: 0A576F089A4C11EEBD557E12C4F9AE02.roa (hash: W3PBLvmUcdE3zAX7FZy5vyT9kW67f//Ujbv+JZHmvZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.crl rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XV9hkCFd_wrDVDK8OlKgi9NBtwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:47:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 382 (0x17e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D28E1, serialNumber=5D5F6190215DFF0AC35432BC3A52A08BD341B700 Validity Not Before: Dec 23 02:47:29 2025 GMT Not After : Dec 30 02:47:29 2025 GMT Subject: CN=694a02c1-8e03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:3b:42:a8:09:99:38:5d:be:94:f2:5b:39:f3: 30:a1:53:fc:9b:b9:ba:90:ed:4b:b4:d1:9e:aa:c5: 53:ba:14:b4:83:50:a8:29:04:07:90:89:d8:81:6f: 33:ed:98:2e:9f:21:05:a4:d9:b0:00:69:85:5d:e7: 88:68:b6:35:3e:8c:24:5c:35:1e:25:fe:a6:cc:97: 49:32:6a:b3:e5:47:79:99:6c:d4:5f:eb:94:76:9a: 93:8c:5e:2f:6b:2f:98:5e:ad:d9:be:97:a1:d2:2b: 86:08:76:65:e6:70:15:6e:99:79:04:a9:7d:44:32: 56:7a:60:f3:93:e5:de:42:2f:17:1f:65:ad:84:34: 94:e1:cc:f3:1f:f8:c3:7c:7f:c5:0c:c0:b8:58:3a: c6:03:ba:b3:78:e8:19:b1:e8:44:73:71:10:05:cd: 85:7d:a4:e5:c8:b6:c3:55:a2:52:11:53:47:9b:74: 27:8e:85:ef:9b:7e:e1:0d:0a:cf:84:3f:41:d7:57: 87:e0:a3:ec:67:27:bf:ed:fe:0a:3e:f0:9a:7c:0b: ef:1f:be:d4:0e:c0:82:94:47:e5:66:32:6a:94:64: 1e:7d:d1:2a:6e:c5:8a:24:ac:51:38:15:b2:19:aa: 21:96:6f:86:b9:4a:da:ac:d5:e9:9b:a0:09:34:88: dd:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:57:94:8B:F1:9E:BE:AD:95:76:0F:A7:9E:4A:C5:7B:26:70:46:25 X509v3 Authority Key Identifier: keyid:5D:5F:61:90:21:5D:FF:0A:C3:54:32:BC:3A:52:A0:8B:D3:41:B7:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XV9hkCFd_wrDVDK8OlKgi9NBtwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:b4:79:2c:d9:13:94:c8:df:3a:d7:0a:38:35:91:d8:9f:a0: 05:9e:37:1c:10:d0:80:e6:6c:9f:67:a6:64:7f:0c:f9:35:5b: dc:c9:31:f9:97:51:d5:28:1b:28:5a:b9:25:2b:5e:9f:00:c8: f4:2b:b5:83:11:a4:88:bd:22:79:af:0f:f2:c9:25:1e:95:df: 6e:b2:76:c1:0d:82:03:ad:c3:91:1d:10:5f:b2:0b:d4:ff:81: c9:11:16:9d:0f:3d:3e:5a:1f:ab:50:46:67:ae:70:0b:00:cc: f2:5b:f4:fe:b3:62:9d:72:f4:d3:fd:1a:03:56:66:80:cf:0c: 6f:c4:0d:e2:ba:ad:72:b5:3b:d5:fa:e4:9b:12:f0:7d:b7:50: 7a:87:c4:a4:fd:a0:38:6c:a6:c4:8e:ef:73:60:44:91:b2:71: ec:4e:09:25:79:e0:8b:8c:d1:98:0c:ff:a7:7d:08:65:73:e8: e2:c1:9a:ca:c9:77:09:cb:42:87:b5:d3:31:f6:42:5a:40:e9: 2d:52:ff:91:de:f0:ce:b0:82:5b:5d:7c:0a:8d:1a:63:ad:52: 60:ba:69:e0:8e:13:d0:e0:4c:26:8b:6c:23:f9:7e:12:99:5a: 75:d4:2e:69:31:a7:82:12:22:f6:f2:26:d7:fe:52:4c:d9:ee: c5:46:01:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI4RTExMTAvBgNVBAUTKDVENUY2MTkwMjE1REZGMEFDMzU0MzJCQzNBNTJBMDhC RDM0MUI3MDAwHhcNMjUxMjIzMDI0NzI5WhcNMjUxMjMwMDI0NzI5WjAYMRYwFAYD VQQDDA02OTRhMDJjMS04ZTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoztCqAmZOF2+lPJbOfMwoVP8m7m6kO1LtNGeqsVTuhS0g1CoKQQHkInYgW8z 7ZgunyEFpNmwAGmFXeeIaLY1PowkXDUeJf6mzJdJMmqz5Ud5mWzUX+uUdpqTjF4v ay+YXq3Zvpeh0iuGCHZl5nAVbpl5BKl9RDJWemDzk+XeQi8XH2WthDSU4czzH/jD fH/FDMC4WDrGA7qzeOgZsehEc3EQBc2FfaTlyLbDVaJSEVNHm3QnjoXvm37hDQrP hD9B11eH4KPsZye/7f4KPvCafAvvH77UDsCClEflZjJqlGQefdEqbsWKJKxROBWy Gaohlm+GuUrarNXpm6AJNIjdRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDJXlIvx nr6tlXYPp55KxXsmcEYlMB8GA1UdIwQYMBaAFF1fYZAhXf8Kw1QyvDpSoIvTQbcA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjhFMS9CQkUzRDQzQTlB NDkxMUVFOTA5MkUwNzBDNEY5QUUwMi9YVjloa0NGZF93ckRWREs4T2xLZ2k5TkJ0 d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hWOWhrQ0ZkX3dyRFZESzhPbEtnaTlOQnR3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjhFMS9CQkUzRDQzQTlBNDkxMUVFOTA5MkUwNzBDNEY5QUUwMi9YVjloa0NGZF93 ckRWREs4T2xLZ2k5TkJ0d0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAStHks2ROUyN861wo4NZHYn6AFnjccENCA5myfZ6Zkfwz5NVvcyTH5 l1HVKBsoWrklK16fAMj0K7WDEaSIvSJ5rw/yySUeld9usnbBDYIDrcORHRBfsgvU /4HJERadDz0+Wh+rUEZnrnALAMzyW/T+s2KdcvTT/RoDVmaAzwxvxA3iuq1ytTvV +uSbEvB9t1B6h8Sk/aA4bKbEju9zYESRsnHsTgkleeCLjNGYDP+nfQhlc+jiwZrK yXcJy0KHtdMx9kJaQOktUv+R3vDOsIJbXXwKjRpjrVJgumngjhPQ4Ewmi2wj+X4S mVp11C5pMaeCEiL28ibX/lJM2e7FRgG1 -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:59 2025 by rpki-client