This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft File: XHIqJhQciPfNQPObN0raf7wfmx8.mft (raw, json) Hash identifier: LJXDoq6PfX7jk3jP9aC9ds7uYEJckN/eVKYPGbPQ7Jo= Subject key identifier: A3:48:AB:47:DE:45:26:34:F1:D3:B3:51:D0:02:01:6D:39:70:46:A1 Authority key identifier: 5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F Certificate issuer: /CN=A91D824A/serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Certificate serial: 010E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft Manifest number: 0105 Signing time: Fri 19 Dec 2025 04:16:25 +0000 Manifest this update: Fri 19 Dec 2025 04:16:24 +0000 Manifest next update: Fri 26 Dec 2025 04:16:24 +0000 Files and hashes: 1: XHIqJhQciPfNQPObN0raf7wfmx8.crl (hash: 1tIoWMjiGf4ZOYqozaChBvDJryIhsVz1ATh+YgPMLO8=) 2: F0FCC9ECABF411F0B9E4F837C4F9AE02.roa (hash: pm0hO1J76gHUpFtZLRftHGLMinnMePQpbTLnXHjj3KU=) 3: D956F03AAB0211F083CD7E11C4F9AE02.roa (hash: InhzX7iIGzcMe6Kho+3PqVBZEDr5gXLOQBoPpmS3pUQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:16:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D824A, serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Validity Not Before: Dec 19 04:16:24 2025 GMT Not After : Dec 26 04:16:24 2025 GMT Subject: CN=6944d199-fb64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:62:af:58:e1:55:fe:91:b8:98:32:81:9e:df: e3:2c:ee:b5:c5:a0:ed:f3:db:c2:1e:3e:47:c8:29: 2c:21:87:2f:26:03:59:c7:92:90:08:18:4f:be:70: 85:80:29:e6:a5:9e:e6:14:1b:ab:db:f8:dd:cc:6e: fc:3b:21:1d:a8:bd:37:2a:c6:5e:89:53:d5:17:09: 42:74:fc:23:f8:5f:0b:2b:00:ca:ff:e2:7a:fb:f0: c7:69:39:a8:f9:e7:bd:38:d6:2f:9a:a6:9a:e1:ef: 3c:37:22:da:3f:80:a9:f4:a8:c8:1d:69:fa:a6:78: 15:e2:4f:09:99:fc:f4:5e:3d:c8:4f:98:b2:e2:9a: 63:51:8d:9e:6e:9b:09:1b:77:4b:00:a1:c6:1c:de: 3b:45:bc:ee:8c:29:ee:bf:93:54:c1:91:bb:a2:32: 6b:16:0c:c0:ac:17:33:a3:a2:9f:84:41:6f:1b:3e: 46:6f:87:7e:d2:4c:32:e8:88:e1:76:12:22:17:99: d2:f3:2d:67:32:f0:0d:b9:af:1f:50:ef:73:58:d2: c1:f3:ca:13:2e:85:78:04:5a:da:f5:63:9b:8d:80: 55:0b:4c:e0:76:4e:b6:7e:c1:1a:35:75:c8:6d:b3: 24:7a:fa:4f:56:fa:29:65:e1:f4:55:2d:c8:de:5d: f2:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:48:AB:47:DE:45:26:34:F1:D3:B3:51:D0:02:01:6D:39:70:46:A1 X509v3 Authority Key Identifier: keyid:5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:a4:1e:9f:99:ed:f8:32:2c:ad:32:d3:4e:44:4e:eb:81:f5: 48:8c:99:b9:d8:e1:5b:56:cf:81:45:dc:c8:45:0d:95:a1:08: 2c:d2:a2:62:b4:23:69:08:15:fc:98:d9:e3:1d:03:2e:a5:f4: a5:da:71:fd:3a:2d:df:c5:78:2b:d1:f6:f0:28:d5:a8:47:da: 7c:ac:6b:ff:65:85:bf:88:02:47:3a:b5:92:8f:6a:78:38:0a: fe:0a:5a:f5:41:92:49:4d:c1:c7:00:f3:ca:ef:99:07:22:9c: 53:74:17:cc:2e:86:a8:0e:a6:be:e8:15:ac:90:04:a0:5e:50: 2a:09:85:1f:38:17:ff:58:8a:22:bb:3c:12:bf:a6:f9:33:32: 5d:c5:34:44:0d:b2:a0:95:1b:0d:66:3b:b2:d6:c5:33:54:7f: e3:e6:76:d5:aa:2c:7c:d7:39:8d:63:88:91:50:bf:60:c4:fb: 7f:f3:6f:aa:dc:a4:b3:21:a4:0e:d1:f4:cb:74:90:cd:00:c0: c1:02:bd:67:2a:d3:4a:8f:7e:80:9a:43:79:e4:fe:ad:c4:c9: 84:54:08:af:4a:47:6c:19:72:d6:c9:af:d7:18:34:e0:21:27: b3:28:8a:4b:c0:9c:93:29:c2:62:0c:1f:46:98:99:3a:d5:d0: bf:e6:8b:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgyNEExMTAvBgNVBAUTKDVDNzIyQTI2MTQxQzg4RjdDRDQwRjM5QjM3NEFEQTdG QkMxRjlCMUYwHhcNMjUxMjE5MDQxNjI0WhcNMjUxMjI2MDQxNjI0WjAYMRYwFAYD VQQDDA02OTQ0ZDE5OS1mYjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt2KvWOFV/pG4mDKBnt/jLO61xaDt89vCHj5HyCksIYcvJgNZx5KQCBhPvnCF gCnmpZ7mFBur2/jdzG78OyEdqL03KsZeiVPVFwlCdPwj+F8LKwDK/+J6+/DHaTmo +ee9ONYvmqaa4e88NyLaP4Cp9KjIHWn6pngV4k8Jmfz0Xj3IT5iy4ppjUY2ebpsJ G3dLAKHGHN47RbzujCnuv5NUwZG7ojJrFgzArBczo6KfhEFvGz5Gb4d+0kwy6Ijh dhIiF5nS8y1nMvANua8fUO9zWNLB88oTLoV4BFra9WObjYBVC0zgdk62fsEaNXXI bbMkevpPVvopZeH0VS3I3l3y3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKNIq0fe RSY08dOzUdACAW05cEahMB8GA1UdIwQYMBaAFFxyKiYUHIj3zUDzmzdK2n+8H5sf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODI0QS80QURGMzNGQzVC OUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQZk5RUE9iTjByYWY3d2Zt eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hISXFKaFFjaVBmTlFQT2JOMHJhZjd3Zm14OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODI0QS80QURGMzNGQzVCOUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQ Zk5RUE9iTjByYWY3d2ZteDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLpB6fme34MiytMtNORE7rgfVIjJm52OFbVs+BRdzIRQ2VoQgs0qJi tCNpCBX8mNnjHQMupfSl2nH9Oi3fxXgr0fbwKNWoR9p8rGv/ZYW/iAJHOrWSj2p4 OAr+Clr1QZJJTcHHAPPK75kHIpxTdBfMLoaoDqa+6BWskASgXlAqCYUfOBf/WIoi uzwSv6b5MzJdxTREDbKglRsNZjuy1sUzVH/j5nbVqix81zmNY4iRUL9gxPt/82+q 3KSzIaQO0fTLdJDNAMDBAr1nKtNKj36AmkN55P6txMmEVAivSkdsGXLWya/XGDTg ISezKIpLwJyTKcJiDB9GmJk61dC/5ovf -----END CERTIFICATE-----Generated at Fri Dec 19 21:13:55 2025 by rpki-client