This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft File: XDZbFzHKfOfbgd1XEwvU1kMBm14.mft (raw, json) Hash identifier: Qv66TOPLn4LFH4ou9OOgtBpkzHQGNhMGIbHRZ3jb5Bg= Subject key identifier: 72:52:E1:69:44:43:85:94:F8:AD:8E:66:A0:DA:3D:16:DE:B1:E9:80 Authority key identifier: 5C:36:5B:17:31:CA:7C:E7:DB:81:DD:57:13:0B:D4:D6:43:01:9B:5E Certificate issuer: /CN=A91D28EB/serialNumber=5C365B1731CA7CE7DB81DD57130BD4D643019B5E Certificate serial: 05CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft Manifest number: 05C4 Signing time: Mon 22 Dec 2025 22:13:28 +0000 Manifest this update: Mon 22 Dec 2025 22:13:28 +0000 Manifest next update: Mon 29 Dec 2025 22:13:28 +0000 Files and hashes: 1: XDZbFzHKfOfbgd1XEwvU1kMBm14.crl (hash: 9dNGhNRu0ez/wbLDxXHS0BOymzJ4vEi2NGfpS70HWQ0=) 2: 8E90AA02EB0B11EBA0B6DD84C4F9AE02.roa (hash: WoeJPfBlNid7RydzbYK1jVf1zbozvuQMQ+6wRuDKrQE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.crl rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 22:13:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1484 (0x5cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D28EB, serialNumber=5C365B1731CA7CE7DB81DD57130BD4D643019B5E Validity Not Before: Dec 22 22:13:28 2025 GMT Not After : Dec 29 22:13:28 2025 GMT Subject: CN=6949c288-9eb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3c:2e:f7:31:d8:34:a4:c8:53:f8:b8:3c:5f: 69:68:67:3f:ea:b5:5e:dd:d3:13:4b:73:e5:e6:01: 42:bf:87:79:8a:76:b1:e2:76:ef:01:cb:75:bd:8e: cd:db:e7:3b:73:3d:44:eb:49:fc:da:08:62:71:cc: 7a:44:3f:4f:b4:8b:1f:3d:be:04:49:9a:7a:bb:43: 1b:70:fb:e5:56:23:6e:bb:28:a6:56:96:3a:14:42: fa:02:44:ec:9b:ec:e4:09:ff:c8:7a:0e:ff:6b:14: b8:c5:7b:a1:92:a8:cf:b8:11:3e:21:56:7a:4b:ce: 8c:99:ee:c3:e5:d7:a8:71:40:11:24:a2:3f:c2:8e: 84:c6:48:f1:f9:88:5a:a8:ef:8e:ec:8a:97:6a:38: 41:a8:77:59:92:40:40:d6:de:4d:34:4f:f3:b1:4d: 0c:67:56:5d:df:59:d7:45:38:17:96:2d:6d:3d:78: b4:87:95:e0:b5:d5:75:8c:0a:6f:0e:fc:a1:94:75: af:13:2e:c6:d6:64:8a:61:a9:76:7f:84:1b:57:f1: 34:5e:f4:e9:30:79:27:f1:58:46:28:80:0b:b6:e0: 25:cc:ca:e1:22:1a:c4:4e:53:f2:c4:12:48:bb:67: e1:23:4a:55:ed:88:97:33:9c:2e:ef:88:d6:3f:b4: 5b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:52:E1:69:44:43:85:94:F8:AD:8E:66:A0:DA:3D:16:DE:B1:E9:80 X509v3 Authority Key Identifier: keyid:5C:36:5B:17:31:CA:7C:E7:DB:81:DD:57:13:0B:D4:D6:43:01:9B:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:30:b4:16:5a:62:7b:6c:6c:d3:c7:4d:7a:b5:38:34:27:b4: 3f:37:d9:91:0c:c3:57:e3:b6:d7:ac:82:7e:4d:f4:12:f8:66: d5:a5:f1:73:9b:65:20:12:eb:05:b6:1d:ae:b8:e4:83:2b:8d: f5:31:27:c2:70:2b:61:08:c9:1c:13:4b:c4:29:17:05:ad:04: 23:52:8b:04:52:a3:5c:30:4b:80:18:8b:a4:e7:0c:b5:49:af: bd:b7:c3:a3:82:b7:3f:c7:fc:4b:cd:69:0b:e5:99:9a:50:f2: 7e:c6:38:e4:78:a4:cd:c2:91:5a:49:a5:ab:87:5e:a6:6c:f5: 65:a0:99:15:e2:b8:d5:4f:1e:72:b4:07:c2:56:f7:a4:5e:63: 3e:bd:fc:1d:a2:d6:5f:95:44:61:f5:63:9c:2b:55:f9:4f:a9: e3:ac:98:87:64:12:26:37:cc:e6:bf:a8:98:5b:81:96:56:fe: 6f:a2:db:eb:5a:b5:74:19:2d:72:a6:59:63:73:02:96:ae:f6: 2b:df:50:ac:20:06:88:8c:53:74:2f:6d:6a:12:86:e7:94:c9: 9d:0b:9d:50:e6:91:ca:c4:3d:93:c8:30:18:e0:d8:5b:24:a8: f9:b2:b0:49:7b:2a:75:62:8e:c3:31:2a:73:57:9d:55:98:77: d0:a5:44:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI4RUIxMTAvBgNVBAUTKDVDMzY1QjE3MzFDQTdDRTdEQjgxREQ1NzEzMEJENEQ2 NDMwMTlCNUUwHhcNMjUxMjIyMjIxMzI4WhcNMjUxMjI5MjIxMzI4WjAYMRYwFAYD VQQDDA02OTQ5YzI4OC05ZWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujwu9zHYNKTIU/i4PF9paGc/6rVe3dMTS3Pl5gFCv4d5inax4nbvAct1vY7N 2+c7cz1E60n82ghiccx6RD9PtIsfPb4ESZp6u0MbcPvlViNuuyimVpY6FEL6AkTs m+zkCf/Ieg7/axS4xXuhkqjPuBE+IVZ6S86Mme7D5deocUARJKI/wo6Exkjx+Yha qO+O7IqXajhBqHdZkkBA1t5NNE/zsU0MZ1Zd31nXRTgXli1tPXi0h5XgtdV1jApv DvyhlHWvEy7G1mSKYal2f4QbV/E0XvTpMHkn8VhGKIALtuAlzMrhIhrETlPyxBJI u2fhI0pV7YiXM5wu74jWP7RbhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHJS4WlE Q4WU+K2OZqDaPRbesemAMB8GA1UdIwQYMBaAFFw2Wxcxynzn24HdVxML1NZDAZte MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjhFQi83NzE0OEFDNkVC MDkxMUVCOUM3NTkxODBDNEY5QUUwMi9YRFpiRnpIS2ZPZmJnZDFYRXd2VTFrTUJt MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEWmJGekhLZk9mYmdkMVhFd3ZVMWtNQm0xNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjhFQi83NzE0OEFDNkVCMDkxMUVCOUM3NTkxODBDNEY5QUUwMi9YRFpiRnpIS2ZP ZmJnZDFYRXd2VTFrTUJtMTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/MLQWWmJ7bGzTx016tTg0J7Q/N9mRDMNX47bXrIJ+TfQS+GbVpfFz m2UgEusFth2uuOSDK431MSfCcCthCMkcE0vEKRcFrQQjUosEUqNcMEuAGIuk5wy1 Sa+9t8Ojgrc/x/xLzWkL5ZmaUPJ+xjjkeKTNwpFaSaWrh16mbPVloJkV4rjVTx5y tAfCVvekXmM+vfwdotZflURh9WOcK1X5T6njrJiHZBImN8zmv6iYW4GWVv5votvr WrV0GS1yplljcwKWrvYr31CsIAaIjFN0L21qEobnlMmdC51Q5pHKxD2TyDAY4Nhb JKj5srBJeyp1Yo7DMSpzV51VmHfQpUSB -----END CERTIFICATE-----Generated at Wed Dec 24 15:44:54 2025 by rpki-client