This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft File: XlEJvjS4HAy74OQ1mneBpGJLn80.mft (raw, json) Hash identifier: S5F5TKLTBWYsWrMwuqaWJtIJ9bUlq1tur+WuQ+8euMI= Subject key identifier: 70:04:7C:B1:23:15:08:DB:F2:F1:8E:4E:54:CC:E8:F6:BA:37:20:65 Authority key identifier: 5E:51:09:BE:34:B8:1C:0C:BB:E0:E4:35:9A:77:81:A4:62:4B:9F:CD Certificate issuer: /CN=A91E5D61/serialNumber=5E5109BE34B81C0CBBE0E4359A7781A4624B9FCD Certificate serial: 133F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft Manifest number: 487A Signing time: Mon 22 Dec 2025 14:20:31 +0000 Manifest this update: Mon 22 Dec 2025 14:20:30 +0000 Manifest next update: Mon 29 Dec 2025 14:20:30 +0000 Files and hashes: 1: XlEJvjS4HAy74OQ1mneBpGJLn80.crl (hash: LnBMOZkv/X9PLriZK5D3YBSmkRwoCHajvlUAo9QF0MA=) 2: 792023A8E0DD11EE86DB926AC4F9AE02.roa (hash: GOy9OboZpKQbKQnVi7OFhab7NMhnYhuV2h2uNtdNUpY=) 3: 12300E80ECD911EEB21F7B7FC4F9AE02.roa (hash: hei/cgFAUZIGCHaatDAW34u7WoWx8+SizsC0TsbKAW0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.crl rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 14:20:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4927 (0x133f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D61, serialNumber=5E5109BE34B81C0CBBE0E4359A7781A4624B9FCD Validity Not Before: Dec 22 14:20:30 2025 GMT Not After : Dec 29 14:20:30 2025 GMT Subject: CN=694953af-86fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:8a:5e:c7:41:5b:a4:1c:27:4a:24:e6:04:75: 0e:ae:ce:3a:22:36:61:41:3d:da:1e:6f:90:0c:1f: 23:1a:be:bf:53:41:af:a4:b3:77:15:c7:7c:a5:0c: ef:f8:8c:c3:99:b2:f0:38:08:61:fa:df:0b:ae:b6: 5e:c2:c1:eb:e2:6f:ed:b5:1a:86:6c:ee:21:20:d2: 99:28:e2:50:d9:b9:10:04:84:c6:a8:9b:16:05:48: 26:6b:5a:96:cb:9e:9c:6f:59:66:dd:60:d9:a3:14: 15:e9:fc:4b:e9:9b:e3:75:04:af:5a:e3:9a:bb:3f: 1a:4b:bf:b7:77:3f:a2:d2:98:47:9c:dd:d2:20:bb: cc:d6:7c:27:42:64:46:c1:68:35:96:25:81:72:da: 55:15:ec:69:55:8f:9a:36:60:18:a1:4e:0f:88:65: 53:9c:98:73:40:62:3a:b7:4d:1d:9f:43:e1:6b:d1: 08:dd:7f:b5:8d:ad:6d:40:1d:2b:8c:bd:25:46:d2: 4a:3e:a4:1c:3c:74:a1:ec:49:85:5a:af:c7:3c:5d: 0e:a6:78:5d:2e:76:78:80:ce:f3:e6:b3:9a:8d:82: 0d:75:b2:ab:c5:24:0e:5e:81:2e:f4:39:71:a5:36: 5b:e6:95:15:77:da:f4:eb:5e:d1:39:2f:66:2f:a8: 9e:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:04:7C:B1:23:15:08:DB:F2:F1:8E:4E:54:CC:E8:F6:BA:37:20:65 X509v3 Authority Key Identifier: keyid:5E:51:09:BE:34:B8:1C:0C:BB:E0:E4:35:9A:77:81:A4:62:4B:9F:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:13:11:38:b8:bf:9a:a4:18:08:7e:54:f8:1b:8b:ac:5a:d1: 88:27:15:f8:6c:84:b9:7a:40:4c:25:df:a4:0b:68:7c:70:55: 7d:a5:22:e8:8c:9d:80:89:40:77:94:34:47:86:f2:5d:f8:48: 69:67:ee:f0:1b:df:ee:02:88:a3:9c:37:df:8d:a3:d4:ea:2e: 39:ab:8d:6d:2c:47:51:f7:22:7f:7b:d5:35:e8:cb:96:70:6a: 7d:d0:b0:26:8d:ad:ec:e3:76:65:fd:38:d3:d3:8d:cf:de:c3: 92:27:6a:c7:a2:a9:44:2b:4a:41:61:f3:4a:23:b4:73:7e:1f: de:b4:a9:b1:b4:9d:32:8b:af:d7:e8:e3:62:17:58:10:fa:c0: cd:68:c8:67:21:44:95:36:4e:65:2b:ee:d3:7d:fd:b3:9d:6d: 20:fd:ba:34:b0:01:27:95:95:de:84:3f:cd:76:49:4e:45:fc: eb:33:14:02:3a:59:66:21:99:50:7f:8d:f7:39:2e:f2:d7:c1: d2:04:a2:c5:fa:e2:c9:8c:ff:e9:7e:96:da:39:f6:4b:10:45: b7:dd:a3:66:60:82:31:2b:d0:c0:a1:39:75:9d:5c:b8:1d:4d: f0:94:12:e3:ab:1a:9c:e2:09:ff:10:4f:5b:4f:41:29:33:7d: 71:4b:79:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVENjExMTAvBgNVBAUTKDVFNTEwOUJFMzRCODFDMENCQkUwRTQzNTlBNzc4MUE0 NjI0QjlGQ0QwHhcNMjUxMjIyMTQyMDMwWhcNMjUxMjI5MTQyMDMwWjAYMRYwFAYD VQQDDA02OTQ5NTNhZi04NmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp4pex0FbpBwnSiTmBHUOrs46IjZhQT3aHm+QDB8jGr6/U0GvpLN3Fcd8pQzv +IzDmbLwOAhh+t8LrrZewsHr4m/ttRqGbO4hINKZKOJQ2bkQBITGqJsWBUgma1qW y56cb1lm3WDZoxQV6fxL6ZvjdQSvWuOauz8aS7+3dz+i0phHnN3SILvM1nwnQmRG wWg1liWBctpVFexpVY+aNmAYoU4PiGVTnJhzQGI6t00dn0Pha9EI3X+1ja1tQB0r jL0lRtJKPqQcPHSh7EmFWq/HPF0OpnhdLnZ4gM7z5rOajYINdbKrxSQOXoEu9Dlx pTZb5pUVd9r0617ROS9mL6ieTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHAEfLEj FQjb8vGOTlTM6Pa6NyBlMB8GA1UdIwQYMBaAFF5RCb40uBwMu+DkNZp3gaRiS5/N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQ2MS8wQzZBMEM5RTFE NzkxMUUyODc5RTM4QzUwOEIwMkNEMi9YbEVKdmpTNEhBeTc0T1ExbW5lQnBHSkxu ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hsRUp2alM0SEF5NzRPUTFtbmVCcEdKTG44MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQ2MS8wQzZBMEM5RTFENzkxMUUyODc5RTM4QzUwOEIwMkNEMi9YbEVKdmpTNEhB eTc0T1ExbW5lQnBHSkxuODAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPExE4uL+apBgIflT4G4usWtGIJxX4bIS5ekBMJd+kC2h8cFV9pSLo jJ2AiUB3lDRHhvJd+EhpZ+7wG9/uAoijnDffjaPU6i45q41tLEdR9yJ/e9U16MuW cGp90LAmja3s43Zl/TjT043P3sOSJ2rHoqlEK0pBYfNKI7Rzfh/etKmxtJ0yi6/X 6ONiF1gQ+sDNaMhnIUSVNk5lK+7Tff2znW0g/bo0sAEnlZXehD/NdklORfzrMxQC OllmIZlQf433OS7y18HSBKLF+uLJjP/pfpbaOfZLEEW33aNmYIIxK9DAoTl1nVy4 HU3wlBLjqxqc4gn/EE9bT0EpM31xS3n4 -----END CERTIFICATE-----Generated at Tue Dec 23 20:40:51 2025 by rpki-client