This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft File: X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft (raw, json) Hash identifier: PeueAbtQ/BciIQnX59r/6lNaQvStPVbY53eWP6TZ9AM= Subject key identifier: 92:A9:B5:C3:89:6D:7B:26:F7:72:61:05:87:7E:C2:E3:05:7E:66:11 Authority key identifier: 5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D Certificate issuer: /CN=A91DF856/serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Certificate serial: 7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft Manifest number: 79 Signing time: Sun 07 Dec 2025 04:54:43 +0000 Manifest this update: Sun 07 Dec 2025 04:54:42 +0000 Manifest next update: Sun 14 Dec 2025 04:54:42 +0000 Files and hashes: 1: X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl (hash: F0s0GpAcqGOksnD/TuY2tclmLjL9KrvuPq9PyMeZjaE=) 2: D522C16CBAEB11F09547BA51C4F9AE02.roa (hash: VPNk3Z2PRH6O6dcJtXC2yyJNWSfjiCAA+D4i9ZD7bxQ=) 3: B245BA601C4311F08254DE40C4F9AE02.roa (hash: cR1hA1Kx4PPiBeW49KPuxZm4E1WoNdgwAMLfYPZP980=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 04:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF856, serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Validity Not Before: Dec 7 04:54:42 2025 GMT Not After : Dec 14 04:54:42 2025 GMT Subject: CN=69350892-4b42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:cb:cb:f6:11:f4:7c:aa:df:9e:ad:08:ce:2a: 1e:82:3c:ae:19:6b:e0:73:7f:67:d3:23:0e:26:47: c4:86:e2:5a:5d:48:e2:de:67:d5:dd:e0:90:4f:7a: 97:83:f6:6c:f1:6a:58:71:31:39:8e:25:46:90:df: 65:27:44:da:3c:6b:b9:99:2b:f7:66:ca:ef:e1:00: 06:b2:88:77:af:2a:46:93:47:c5:47:72:0d:9c:a1: db:b3:61:e7:21:67:53:19:d8:26:78:0e:71:c2:fe: 39:27:f1:ea:de:b7:53:0d:f9:34:9b:64:12:e9:50: 34:a5:e5:46:06:42:e1:1c:9f:69:54:a4:24:e3:25: 3f:0f:d2:73:3c:c9:f1:d0:56:42:44:9a:0e:9f:8f: ff:70:2f:23:bb:50:96:0f:39:bd:17:36:d3:23:c5: d6:06:25:5d:b6:5b:a7:73:a0:73:6c:a0:2d:46:e4: 11:c7:4a:17:03:7d:4c:28:90:2f:12:67:49:32:2d: 57:15:7c:c8:d6:c6:91:b4:56:09:c3:eb:7d:6b:78: 89:5f:ce:e0:a3:33:37:1f:52:ed:25:d8:5f:43:b6: 95:c1:9e:88:d7:c7:7b:69:0f:48:f0:36:c4:b0:87: b1:d8:d0:4c:83:6d:a2:e5:07:79:84:89:af:20:7b: 96:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:A9:B5:C3:89:6D:7B:26:F7:72:61:05:87:7E:C2:E3:05:7E:66:11 X509v3 Authority Key Identifier: keyid:5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:ba:72:77:fd:6e:29:27:1a:3c:f3:f8:ed:32:f1:ba:82:bd: 13:34:be:95:f1:23:8e:0e:38:64:b8:de:35:bc:1c:7f:f3:9f: 3c:3f:3f:e6:fe:d4:d5:cd:23:20:3d:c1:a6:1a:5b:18:2c:86: fc:17:8b:f6:87:e7:1c:c5:5c:fb:6a:3c:52:29:7a:0f:5b:1d: c8:af:51:69:bb:6b:a9:59:7e:ca:2a:23:43:f6:ff:a2:97:62: 99:31:84:26:87:fd:75:99:fa:74:9b:e3:58:54:f3:f5:54:e9: 50:1c:e9:d3:32:7f:21:89:5c:c6:67:f6:cb:bd:79:67:72:70: 97:68:29:8c:9e:4a:a2:8a:9c:3f:70:2a:e6:fa:3d:c1:51:e6: 7c:6d:7c:88:e1:d5:06:7b:97:3a:3f:a1:7f:85:b2:8a:85:5c: ef:a6:f8:17:91:67:7b:84:b2:34:3d:69:2e:77:2f:4f:86:16: f8:5b:6a:f4:cd:fb:60:e2:77:de:fa:ae:9c:db:4e:6a:62:0d: 38:df:71:52:9b:f2:b0:09:d8:fa:24:aa:e0:19:83:c2:be:44: 55:b7:7a:aa:78:b5:a8:48:12:38:40:66:ae:1c:cd:99:e8:9c: b4:67:5f:67:1c:6a:8b:9d:e3:02:a3:a1:87:0f:71:12:45:22: bf:60:cb:85 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE Rjg1NjExMC8GA1UEBRMoNUY2OTkxODZBMkVCQ0Q0NUIxRkY2QTBBNEFGNjA2MDZG M0IzRDA4RDAeFw0yNTEyMDcwNDU0NDJaFw0yNTEyMTQwNDU0NDJaMBgxFjAUBgNV BAMTDTY5MzUwODkyLTRiNDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDby8v2EfR8qt+erQjOKh6CPK4Za+Bzf2fTIw4mR8SG4lpdSOLeZ9Xd4JBPepeD 9mzxalhxMTmOJUaQ32UnRNo8a7mZK/dmyu/hAAayiHevKkaTR8VHcg2coduzYech Z1MZ2CZ4DnHC/jkn8eret1MN+TSbZBLpUDSl5UYGQuEcn2lUpCTjJT8P0nM8yfHQ VkJEmg6fj/9wLyO7UJYPOb0XNtMjxdYGJV22W6dzoHNsoC1G5BHHShcDfUwokC8S Z0kyLVcVfMjWxpG0VgnD631reIlfzuCjMzcfUu0l2F9DtpXBnojXx3tpD0jwNsSw h7HY0EyDbaLlB3mEia8ge5Y1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkqm1w4lt eyb3cmEFh37C4wV+ZhEwHwYDVR0jBBgwFoAUX2mRhqLrzUWx/2oKSvYGBvOz0I0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGODU2L0VGRjJBMEEwMUM0 MTExRjBBOTgyMUYzRUM0RjlBRTAyL1gybVJocUxyelVXeF8yb0tTdllHQnZPejBJ MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWDJtUmhxTHJ6VVd4XzJvS1N2WUdCdk96MEkwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURG ODU2L0VGRjJBMEEwMUM0MTExRjBBOTgyMUYzRUM0RjlBRTAyL1gybVJocUxyelVX eF8yb0tTdllHQnZPejBJMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGW6cnf9biknGjzz+O0y8bqCvRM0vpXxI44OOGS43jW8HH/znzw/P+b+ 1NXNIyA9waYaWxgshvwXi/aH5xzFXPtqPFIpeg9bHcivUWm7a6lZfsoqI0P2/6KX YpkxhCaH/XWZ+nSb41hU8/VU6VAc6dMyfyGJXMZn9su9eWdycJdoKYyeSqKKnD9w Kub6PcFR5nxtfIjh1QZ7lzo/oX+FsoqFXO+m+BeRZ3uEsjQ9aS53L0+GFvhbavTN +2Did976rpzbTmpiDTjfcVKb8rAJ2PokquAZg8K+RFW3eqp4tahIEjhAZq4czZno nLRnX2ccaoud4wKjoYcPcRJFIr9gy4U= -----END CERTIFICATE-----Generated at Sun Dec 7 20:06:55 2025 by rpki-client