This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft File: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft (raw, json) Hash identifier: d6IJEidkQg0v6zt8AbegTIo9yu2Te436zb+FbwwpyeI= Subject key identifier: 82:B9:B4:F7:52:32:88:E4:1B:D7:2F:39:7A:73:42:6C:CE:96:BC:71 Authority key identifier: C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 Certificate issuer: /CN=A91E3BF2/serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Certificate serial: 031E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft Manifest number: 0318 Signing time: Tue 23 Dec 2025 00:06:18 +0000 Manifest this update: Tue 23 Dec 2025 00:06:17 +0000 Manifest next update: Tue 30 Dec 2025 00:06:17 +0000 Files and hashes: 1: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl (hash: zxoO02xK+b+JITiQGIsVMTbq2Drx76w53vKf80aePnY=) 2: 6B7C33C8F6C811ECBDF7DD40C4F9AE02.roa (hash: iVRqxqRDbn6K8sleGw8ykyX5wSW8dSg7Li1MPpVmJsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:06:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 798 (0x31e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BF2, serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Validity Not Before: Dec 23 00:06:17 2025 GMT Not After : Dec 30 00:06:17 2025 GMT Subject: CN=6949dcfa-4f12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:33:09:31:4e:90:7a:60:d6:d6:23:1d:57:db: 58:55:cb:d6:cc:05:25:60:fc:e8:64:c6:fb:0c:1e: 19:92:20:26:88:c5:93:69:3d:fe:ec:0b:c7:3e:cd: 11:d9:dc:33:cb:17:c4:cb:a4:bc:65:ce:0d:eb:a4: 1c:68:21:aa:96:6c:4a:89:49:38:19:40:d3:f3:39: 7e:df:6c:15:49:d5:c7:4c:6c:c3:30:27:d4:cc:b2: 38:fe:d0:9b:9c:25:f7:8b:2d:57:3b:8d:1c:bf:37: 2b:5e:ac:6c:3e:19:cc:33:13:56:33:28:80:93:b8: 79:6d:cf:08:f9:bf:fa:fb:02:22:9e:8e:08:2c:ca: 87:fb:2c:6e:e4:64:75:65:cd:05:76:cc:a1:91:0c: 37:39:84:c3:16:2a:1b:26:7c:fd:af:71:26:45:c3: 53:26:6e:35:83:1f:ba:bb:7d:aa:12:f8:5e:af:56: 28:4c:55:23:37:ad:01:2c:14:8e:53:e7:68:e7:31: 62:fc:e1:e4:9a:c5:f3:20:17:cd:52:69:c4:62:a9: b8:60:06:05:50:ff:e7:7f:14:48:88:08:ac:8e:e1: b5:52:ca:5c:fa:90:37:1f:8d:00:d1:60:81:5f:4b: e4:b4:a9:39:c3:5e:60:95:d1:08:1a:e7:e7:4d:90: 6b:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:B9:B4:F7:52:32:88:E4:1B:D7:2F:39:7A:73:42:6C:CE:96:BC:71 X509v3 Authority Key Identifier: keyid:C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:e6:56:a9:bf:85:1d:5d:b2:7b:09:cb:82:80:fd:99:0b:dc: 88:80:c9:e4:2b:df:b0:92:e4:95:42:85:54:73:71:40:7a:ed: b0:c6:6f:cc:f4:be:4f:d7:eb:a3:ab:7b:c2:ea:75:45:c0:74: ef:c0:6b:cb:91:9a:ca:24:ec:51:2f:64:65:a2:01:56:57:8b: 73:92:e1:d3:f0:2d:da:a3:38:b1:bf:02:6b:4f:6e:67:bd:4a: 46:a6:30:21:9d:02:e8:be:d2:ca:08:33:71:2b:75:d1:28:a1: a3:52:e6:f7:8b:3b:28:6f:ef:99:67:ae:e9:a7:07:28:57:7f: f1:70:7e:ab:b1:2d:91:43:2b:42:fc:0d:cf:97:d2:cc:60:ca: 8f:d6:5f:c1:b2:ce:6e:94:02:b6:4e:e6:da:00:45:ff:71:9d: 2e:73:d4:96:15:7d:fa:c3:27:d5:b7:68:d9:c1:ed:5d:e8:9f: eb:3d:04:80:e4:98:e3:6e:15:c9:77:20:af:d3:4a:e3:9a:3b: 1c:54:93:6d:68:6e:f9:87:40:e4:37:b4:85:12:3d:1f:f8:e2: 56:10:e2:4d:7c:fb:a7:00:03:a1:20:a9:0f:65:b4:ce:da:40: 3f:f7:72:af:64:f8:77:94:29:0e:3e:1f:a0:77:73:a3:63:3b: 80:79:fd:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCRjIxMTAvBgNVBAUTKEM0NzFBNTZFRTk0RjA1QjQzN0MwOUVFRTBGNDQyMDNG QTQ1OTI3MzYwHhcNMjUxMjIzMDAwNjE3WhcNMjUxMjMwMDAwNjE3WjAYMRYwFAYD VQQDDA02OTQ5ZGNmYS00ZjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsTMJMU6QemDW1iMdV9tYVcvWzAUlYPzoZMb7DB4ZkiAmiMWTaT3+7AvHPs0R 2dwzyxfEy6S8Zc4N66QcaCGqlmxKiUk4GUDT8zl+32wVSdXHTGzDMCfUzLI4/tCb nCX3iy1XO40cvzcrXqxsPhnMMxNWMyiAk7h5bc8I+b/6+wIino4ILMqH+yxu5GR1 Zc0FdsyhkQw3OYTDFiobJnz9r3EmRcNTJm41gx+6u32qEvher1YoTFUjN60BLBSO U+do5zFi/OHkmsXzIBfNUmnEYqm4YAYFUP/nfxRIiAisjuG1Uspc+pA3H40A0WCB X0vktKk5w15gldEIGufnTZBrnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIK5tPdS MojkG9cvOXpzQmzOlrxxMB8GA1UdIwQYMBaAFMRxpW7pTwW0N8Ce7g9EID+kWSc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JGMi81MDkwOTZBOEY2 QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJiUTN3Sjd1RDBRZ1A2UlpK elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hIR2xidWxQQmJRM3dKN3VEMFFnUDZSWkp6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JGMi81MDkwOTZBOEY2QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJi UTN3Sjd1RDBRZ1A2UlpKelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBV5lapv4UdXbJ7CcuCgP2ZC9yIgMnkK9+wkuSVQoVUc3FAeu2wxm/M 9L5P1+ujq3vC6nVFwHTvwGvLkZrKJOxRL2RlogFWV4tzkuHT8C3aozixvwJrT25n vUpGpjAhnQLovtLKCDNxK3XRKKGjUub3izsob++ZZ67ppwcoV3/xcH6rsS2RQytC /A3Pl9LMYMqP1l/Bss5ulAK2TubaAEX/cZ0uc9SWFX36wyfVt2jZwe1d6J/rPQSA 5JjjbhXJdyCv00rjmjscVJNtaG75h0DkN7SFEj0f+OJWEOJNfPunAAOhIKkPZbTO 2kA/93KvZPh3lCkOPh+gd3OjYzuAef37 -----END CERTIFICATE-----Generated at Wed Dec 24 19:32:22 2025 by rpki-client