This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft File: XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft (raw, json) Hash identifier: GdElX8DfQDHJpcUD8pbD/XqsVJvg5CAWC+5SGKeBv54= Subject key identifier: 80:B5:89:02:48:AD:9B:D0:70:54:7C:8D:54:1F:98:07:33:5E:34:3B Authority key identifier: 5F:02:24:8C:9C:5C:94:F1:53:C5:9F:56:77:2C:5F:DA:7F:8D:71:E7 Certificate issuer: /CN=A91E3C76/serialNumber=5F02248C9C5C94F153C59F56772C5FDA7F8D71E7 Certificate serial: 011F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft Manifest number: 0119 Signing time: Tue 23 Dec 2025 03:49:39 +0000 Manifest this update: Tue 23 Dec 2025 03:49:39 +0000 Manifest next update: Tue 30 Dec 2025 03:49:39 +0000 Files and hashes: 1: XwIkjJxclPFTxZ9Wdyxf2n-Ncec.crl (hash: QJKaqs8nE+fPJoL7indwinWYbBQOI3DSVGWh8OfiE58=) 2: 51BBEE10B2BE11EFA108946DC4F9AE02.roa (hash: syHq3DbE7eogaPpFVFVsQfYoWLCn9NostuRXmVIHm9Y=) 3: 50F0AF8EB2BE11EFA108946DC4F9AE02.roa (hash: MWqHxm4EUBLTsZ0EUDg6aYtdnfWY5OwTTnXPxS3oZHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.crl rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:49:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 287 (0x11f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3C76, serialNumber=5F02248C9C5C94F153C59F56772C5FDA7F8D71E7 Validity Not Before: Dec 23 03:49:39 2025 GMT Not After : Dec 30 03:49:39 2025 GMT Subject: CN=694a1153-92b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b9:a5:20:62:54:6f:28:4a:e0:dc:6d:70:40: 24:79:5a:0b:20:c2:c7:6f:33:17:af:ff:59:c4:63: 19:61:8c:86:14:71:b8:68:c9:9f:41:04:56:d8:e1: 88:c9:dd:89:e8:0a:a0:e4:ae:f5:e8:93:c1:9c:6e: 2a:a8:f7:6e:3c:53:05:c5:0d:b9:39:dc:7a:de:f4: 85:c1:45:82:6b:6e:0e:b5:0e:f8:c4:89:7c:41:40: 61:cc:40:d4:17:ae:3a:3c:da:94:f7:5d:7e:9d:3b: c4:40:8c:dd:44:3e:6f:f0:86:2d:cd:01:3f:1a:e1: a4:4d:5b:00:33:60:76:15:d4:01:93:ba:65:d3:3a: 51:73:a0:79:af:6e:ad:c2:dc:17:eb:e2:a8:df:5f: 03:e3:e5:64:72:f9:81:64:c0:a1:9f:29:62:ed:fd: ef:4c:15:a6:d6:29:da:3a:8a:23:b9:7f:db:28:89: 48:9f:4d:c2:2a:e6:98:e1:a9:e0:ae:b7:9d:6d:da: 15:70:c4:0e:80:77:ba:9d:e0:18:4b:3c:f7:91:19: f7:12:e5:6a:9c:06:52:33:95:2c:ef:6b:10:44:4c: 5b:05:e9:3e:59:46:a1:19:5d:d1:fa:38:c9:29:1c: 04:06:db:5a:fb:29:36:c6:7e:69:5c:d1:e3:85:3b: 27:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:B5:89:02:48:AD:9B:D0:70:54:7C:8D:54:1F:98:07:33:5E:34:3B X509v3 Authority Key Identifier: keyid:5F:02:24:8C:9C:5C:94:F1:53:C5:9F:56:77:2C:5F:DA:7F:8D:71:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:f7:1a:3b:a7:02:9e:7e:09:d1:75:21:6f:2d:55:c4:f4:1b: 99:35:d7:64:5e:bf:9a:8e:e8:1b:d1:2c:9a:4e:c5:9d:1f:0c: d1:62:3f:4b:8d:ee:cf:d8:ea:be:d6:65:cd:2c:28:61:09:6d: 88:08:5f:ba:3e:fe:4f:9e:50:21:3a:54:f3:78:7c:f5:53:09: 9f:c9:3b:6b:21:98:9c:c3:e8:74:06:8d:73:78:d4:d5:5b:a9: a7:0f:fe:44:d7:70:cd:da:0f:18:7f:93:e5:ba:0d:8d:c6:95: 3f:19:f4:87:91:83:9a:44:97:45:a7:f1:b9:04:45:66:78:51: 9e:e1:34:a3:f5:8b:1e:de:af:0f:0f:c5:36:eb:c7:44:b6:be: e0:fb:5a:02:b9:51:cd:4a:63:2a:cc:66:d6:5d:11:b2:c4:b1: 91:43:b7:ae:37:c6:75:71:38:ff:bf:5c:7a:f6:92:e7:48:3a: cf:cf:5e:6f:9f:05:23:4d:5d:8f:7f:c8:a8:03:94:7d:db:ad: 81:89:40:45:f9:48:06:d9:ed:18:45:73:05:af:0b:ce:03:58: 25:0d:58:65:21:d1:4e:56:0e:b6:59:77:ec:cd:da:bd:27:99: 7d:b9:34:e7:52:4d:71:fc:2f:68:37:4b:3d:46:10:d1:31:0d: 56:db:ba:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNDNzYxMTAvBgNVBAUTKDVGMDIyNDhDOUM1Qzk0RjE1M0M1OUY1Njc3MkM1RkRB N0Y4RDcxRTcwHhcNMjUxMjIzMDM0OTM5WhcNMjUxMjMwMDM0OTM5WjAYMRYwFAYD VQQDDA02OTRhMTE1My05MmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLmlIGJUbyhK4NxtcEAkeVoLIMLHbzMXr/9ZxGMZYYyGFHG4aMmfQQRW2OGI yd2J6Aqg5K716JPBnG4qqPduPFMFxQ25Odx63vSFwUWCa24OtQ74xIl8QUBhzEDU F646PNqU911+nTvEQIzdRD5v8IYtzQE/GuGkTVsAM2B2FdQBk7pl0zpRc6B5r26t wtwX6+Ko318D4+VkcvmBZMChnyli7f3vTBWm1inaOoojuX/bKIlIn03CKuaY4ang rredbdoVcMQOgHe6neAYSzz3kRn3EuVqnAZSM5Us72sQRExbBek+WUahGV3R+jjJ KRwEBtta+yk2xn5pXNHjhTsnawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIC1iQJI rZvQcFR8jVQfmAczXjQ7MB8GA1UdIwQYMBaAFF8CJIycXJTxU8WfVncsX9p/jXHn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0M3Ni9CNDk5MkQ1MjM0 NTgxMUVGQjQyRjlEMzdDNEY5QUUwMi9Yd0lrakp4Y2xQRlR4WjlXZHl4ZjJuLU5j ZWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h3SWtqSnhjbFBGVHhaOVdkeXhmMm4tTmNlYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0M3Ni9CNDk5MkQ1MjM0NTgxMUVGQjQyRjlEMzdDNEY5QUUwMi9Yd0lrakp4Y2xQ RlR4WjlXZHl4ZjJuLU5jZWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCO9xo7pwKefgnRdSFvLVXE9BuZNddkXr+ajugb0SyaTsWdHwzRYj9L je7P2Oq+1mXNLChhCW2ICF+6Pv5PnlAhOlTzeHz1UwmfyTtrIZicw+h0Bo1zeNTV W6mnD/5E13DN2g8Yf5Plug2NxpU/GfSHkYOaRJdFp/G5BEVmeFGe4TSj9Yse3q8P D8U268dEtr7g+1oCuVHNSmMqzGbWXRGyxLGRQ7euN8Z1cTj/v1x69pLnSDrPz15v nwUjTV2Pf8ioA5R9262BiUBF+UgG2e0YRXMFrwvOA1glDVhlIdFOVg62WXfszdq9 J5l9uTTnUk1x/C9oN0s9RhDRMQ1W27oy -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:34 2025 by rpki-client