This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft File: XcAwMzGJiu_bheTZFABriTdr7-E.mft (raw, json) Hash identifier: 405K3cjrnVLxAuwD2cLet+mMglxO8oi9YbQTj+ji9ho= Subject key identifier: 60:82:2E:82:ED:C3:E0:A6:F3:5C:9E:93:A6:1B:73:2C:EA:E3:E4:3F Authority key identifier: 5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1 Certificate issuer: /CN=A91E7BD4/serialNumber=5DC0303331898AEFDB85E4D914006B89376BEFE1 Certificate serial: 06CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft Manifest number: 06C5 Signing time: Mon 22 Dec 2025 21:26:39 +0000 Manifest this update: Mon 22 Dec 2025 21:26:38 +0000 Manifest next update: Mon 29 Dec 2025 21:26:38 +0000 Files and hashes: 1: XcAwMzGJiu_bheTZFABriTdr7-E.crl (hash: BYWx3PNEsOSYXoEJwDwZMtDTS/tPEo0ptrKk5zuGusE=) 2: 81E3F4ACBBDA11ED8FDB4E45C4F9AE02.roa (hash: 7yUDpuvZHp5QBz3hhy/vTUHq3B8un1JwIKUsswRBXgQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.crl rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:26:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1743 (0x6cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BD4, serialNumber=5DC0303331898AEFDB85E4D914006B89376BEFE1 Validity Not Before: Dec 22 21:26:38 2025 GMT Not After : Dec 29 21:26:38 2025 GMT Subject: CN=6949b78f-d9ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ad:79:b7:49:f7:b8:11:19:2d:7d:9d:d3:69: 3e:c2:59:f8:27:87:07:e7:1b:e6:8d:61:2c:bb:e4: 9d:a2:f0:85:15:98:b6:f2:df:c5:c6:fe:ee:c1:1e: 17:17:b6:cc:b7:46:bf:41:5f:a5:69:b3:81:d2:39: 6d:74:ac:0c:c0:41:ca:15:f7:66:12:7c:f8:8e:58: 0c:6a:96:0b:62:ee:06:a9:b6:66:53:ab:ee:92:df: 11:44:f1:f2:a5:1a:57:ca:0b:e5:7a:5b:f8:2b:eb: 51:06:eb:f5:c0:cc:b2:4c:08:15:03:98:f5:52:a4: de:68:77:c8:25:18:21:ff:6c:1f:f4:b6:86:06:55: 0a:72:2e:cc:3d:24:7c:f8:34:7d:3a:a7:c4:14:6c: d8:65:b0:26:a3:e8:b2:ae:f5:96:63:0e:46:1e:5f: ae:71:c9:d9:56:e3:17:93:18:a8:06:51:74:bf:61: 2b:c2:9e:a7:70:fc:a1:b5:9a:2d:d3:0e:0a:ae:4c: 28:65:e1:22:df:38:d9:53:9e:18:9b:f8:76:89:2b: 6d:19:11:51:d3:04:45:d1:b1:32:fd:aa:f9:e0:87: 4c:47:e9:c7:f1:f8:89:15:b3:97:de:08:a3:b6:98: 7e:7e:bf:4a:60:83:1a:14:85:c5:79:94:9a:be:8f: 10:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:82:2E:82:ED:C3:E0:A6:F3:5C:9E:93:A6:1B:73:2C:EA:E3:E4:3F X509v3 Authority Key Identifier: keyid:5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:5d:01:ca:4f:75:ae:e0:e5:4f:cf:32:aa:3e:b9:bc:ce:ee: ad:ac:6d:14:2f:28:58:2b:6d:8d:fe:60:33:24:6b:17:99:99: 0c:55:a7:2a:28:3a:83:93:c4:5a:e6:58:d6:a3:b9:87:89:5a: a3:1f:42:3d:e3:19:1e:5e:b2:b5:d2:49:80:ae:0f:82:33:70: db:99:3e:ac:e3:6a:45:11:07:e5:94:3f:ec:a8:6c:cb:3a:1b: 06:3e:0d:5f:e6:11:f7:b7:98:ce:f9:27:c2:c7:0e:3d:20:69: 13:7c:c7:6a:14:bb:3c:88:b5:76:5d:45:ac:38:65:f6:be:a2: 52:e4:57:26:58:28:66:19:dc:aa:16:b6:89:f4:76:7a:9c:87: 9e:75:b7:34:ae:b8:a4:42:e1:6c:94:de:48:b4:62:ae:c8:e6: 1a:bb:ed:6a:df:34:cd:51:21:ab:e1:71:55:e6:5d:28:83:b4: 61:2f:18:2a:9d:c2:fe:59:5d:2b:8b:9d:8c:08:6a:e6:50:5c: 65:52:9a:27:b5:1f:a6:f3:66:9a:37:68:fb:bb:be:0d:f7:5e: ce:e6:00:9f:9d:18:ef:3d:21:d8:9a:2b:02:63:24:5e:eb:0d: 44:41:82:f9:94:dd:b7:0f:27:f3:be:28:14:26:ec:37:b8:9a: 2c:2a:fd:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCRDQxMTAvBgNVBAUTKDVEQzAzMDMzMzE4OThBRUZEQjg1RTREOTE0MDA2Qjg5 Mzc2QkVGRTEwHhcNMjUxMjIyMjEyNjM4WhcNMjUxMjI5MjEyNjM4WjAYMRYwFAYD VQQDDA02OTQ5Yjc4Zi1kOWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsq15t0n3uBEZLX2d02k+wln4J4cH5xvmjWEsu+SdovCFFZi28t/Fxv7uwR4X F7bMt0a/QV+labOB0jltdKwMwEHKFfdmEnz4jlgMapYLYu4GqbZmU6vukt8RRPHy pRpXygvlelv4K+tRBuv1wMyyTAgVA5j1UqTeaHfIJRgh/2wf9LaGBlUKci7MPSR8 +DR9OqfEFGzYZbAmo+iyrvWWYw5GHl+uccnZVuMXkxioBlF0v2Erwp6ncPyhtZot 0w4KrkwoZeEi3zjZU54Ym/h2iSttGRFR0wRF0bEy/ar54IdMR+nH8fiJFbOX3gij tph+fr9KYIMaFIXFeZSavo8QUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGCCLoLt w+Cm81yek6Ybcyzq4+Q/MB8GA1UdIwQYMBaAFF3AMDMxiYrv24Xk2RQAa4k3a+/h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JENC80RTg3QTQ2QTg2 QjExMUVCQjhCRTIxN0NDNEY5QUUwMi9YY0F3TXpHSml1X2JoZVRaRkFCcmlUZHI3 LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjQXdNekdKaXVfYmhlVFpGQUJyaVRkcjctRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JENC80RTg3QTQ2QTg2QjExMUVCQjhCRTIxN0NDNEY5QUUwMi9YY0F3TXpHSml1 X2JoZVRaRkFCcmlUZHI3LUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKXQHKT3Wu4OVPzzKqPrm8zu6trG0ULyhYK22N/mAzJGsXmZkMVacq KDqDk8Ra5ljWo7mHiVqjH0I94xkeXrK10kmArg+CM3DbmT6s42pFEQfllD/sqGzL OhsGPg1f5hH3t5jO+SfCxw49IGkTfMdqFLs8iLV2XUWsOGX2vqJS5FcmWChmGdyq FraJ9HZ6nIeedbc0rrikQuFslN5ItGKuyOYau+1q3zTNUSGr4XFV5l0og7RhLxgq ncL+WV0ri52MCGrmUFxlUpontR+m82aaN2j7u74N917O5gCfnRjvPSHYmisCYyRe 6w1EQYL5lN23DyfzvigUJuw3uJosKv3Y -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:27 2025 by rpki-client