This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft File: XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft (raw, json) Hash identifier: oed33g5kd1wPfcgXvbus3N6S6RV2k46XvjunJwhk1II= Subject key identifier: 02:E9:5D:55:E8:66:48:A4:77:E6:F6:B2:85:F2:76:B5:91:2C:CC:15 Authority key identifier: 5F:30:7E:62:74:AC:39:E5:4E:99:86:6D:AB:B8:5C:2C:9E:FD:16:B1 Certificate issuer: /CN=A91E9F89/serialNumber=5F307E6274AC39E54E99866DABB85C2C9EFD16B1 Certificate serial: 08D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft Manifest number: 08CC Signing time: Mon 22 Dec 2025 19:48:25 +0000 Manifest this update: Mon 22 Dec 2025 19:48:25 +0000 Manifest next update: Mon 29 Dec 2025 19:48:25 +0000 Files and hashes: 1: XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl (hash: ITjmDoYev7yV8E93rOxzzM7AzYyKhhMhwNB/p2dIHGI=) 2: 05B67AF8C6A011EAA70D183FC4F9AE02.roa (hash: uyDMO7ckw/0z5jl/cntcgb/65TbIdBVdA1r68qbPTT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:48:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2259 (0x8d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9F89, serialNumber=5F307E6274AC39E54E99866DABB85C2C9EFD16B1 Validity Not Before: Dec 22 19:48:25 2025 GMT Not After : Dec 29 19:48:25 2025 GMT Subject: CN=6949a089-56bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:97:d1:81:47:6e:ea:b9:a8:52:5f:9f:6b:5c: 86:b5:42:e2:a5:4c:cf:4c:ff:5a:2e:6f:d0:84:8e: 59:ed:cf:cf:8e:0e:e2:84:76:96:26:01:be:3b:1b: dd:29:6a:11:23:90:39:98:c2:f0:52:ba:8b:95:69: e1:91:8b:9d:4d:70:34:a3:c8:ce:e3:c1:c1:44:d8: 76:a7:c0:0b:e3:d8:63:65:9a:98:5c:21:57:fe:2c: d7:90:be:48:c2:1d:93:47:20:b9:55:29:c3:85:b2: 1e:6b:30:51:24:b0:5f:8b:51:9b:ad:ba:8c:36:6c: d2:09:c0:e7:bb:aa:d6:62:70:b9:61:a1:1f:39:dd: 6a:35:3b:92:13:9c:03:da:55:0e:da:64:f9:29:c2: 66:4b:7c:d5:a9:4f:b6:86:09:66:7c:12:e4:7e:b5: d1:4d:fc:dc:3f:cf:24:39:71:6e:7a:26:e9:63:c4: 72:49:3f:eb:3a:0c:9b:af:2d:0d:54:df:8a:d4:a4: c1:6b:bf:85:c7:ad:aa:44:d9:28:28:14:a6:7b:60: ff:8f:28:c6:88:cc:94:b4:24:13:32:92:77:c4:70: a2:5f:29:f7:6f:8c:5d:6b:8a:d1:2f:a6:b2:1e:30: ca:e9:f2:3f:56:92:9d:57:04:f5:f6:c1:a1:27:f0: 87:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:E9:5D:55:E8:66:48:A4:77:E6:F6:B2:85:F2:76:B5:91:2C:CC:15 X509v3 Authority Key Identifier: keyid:5F:30:7E:62:74:AC:39:E5:4E:99:86:6D:AB:B8:5C:2C:9E:FD:16:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:8a:0c:e2:fd:8b:d7:21:ab:b3:b1:1d:ad:5b:32:16:88:1f: b0:76:21:4c:0d:67:fb:13:52:9e:29:0c:2a:68:f0:38:2e:0f: 95:57:ce:ef:95:fb:3f:99:cc:2f:b2:9f:6f:63:31:36:49:a0: 28:40:7f:81:01:3d:60:fb:b6:b5:8b:14:a9:2f:f9:61:6c:56: fd:b9:ec:19:9b:85:75:af:8d:69:94:44:13:2e:d8:35:ca:28: b6:cd:02:d4:a0:3d:b4:19:df:58:21:54:26:10:d6:90:cf:dd: df:07:33:ce:86:9e:3b:a5:50:a7:77:e0:97:e6:f6:db:57:e7: 00:45:f7:b1:87:0a:60:4b:1a:a2:03:2d:22:e5:90:c1:5a:dc: 29:32:d2:06:36:38:a0:b2:12:d3:5b:47:16:4e:e4:a7:ef:3c: da:df:55:a7:a6:88:be:e3:e2:89:7e:59:52:9c:46:cb:b8:ec: 07:eb:ef:71:78:a0:e5:c1:02:a7:ce:cf:cb:46:4b:2f:3a:de: 0d:62:86:02:7c:92:10:32:dd:3a:a4:25:13:7a:c5:56:d0:4d: 7b:d5:44:f5:fd:d0:02:be:01:cf:06:37:66:24:ab:95:f7:b0: 37:24:c2:7d:be:f3:72:76:85:fd:6c:96:28:3d:86:ac:e2:0e: a4:b8:fc:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlGODkxMTAvBgNVBAUTKDVGMzA3RTYyNzRBQzM5RTU0RTk5ODY2REFCQjg1QzJD OUVGRDE2QjEwHhcNMjUxMjIyMTk0ODI1WhcNMjUxMjI5MTk0ODI1WjAYMRYwFAYD VQQDDA02OTQ5YTA4OS01NmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJfRgUdu6rmoUl+fa1yGtULipUzPTP9aLm/QhI5Z7c/Pjg7ihHaWJgG+Oxvd KWoRI5A5mMLwUrqLlWnhkYudTXA0o8jO48HBRNh2p8AL49hjZZqYXCFX/izXkL5I wh2TRyC5VSnDhbIeazBRJLBfi1GbrbqMNmzSCcDnu6rWYnC5YaEfOd1qNTuSE5wD 2lUO2mT5KcJmS3zVqU+2hglmfBLkfrXRTfzcP88kOXFueibpY8RyST/rOgybry0N VN+K1KTBa7+Fx62qRNkoKBSme2D/jyjGiMyUtCQTMpJ3xHCiXyn3b4xda4rRL6ay HjDK6fI/VpKdVwT19sGhJ/CHgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFALpXVXo Zkikd+b2soXydrWRLMwVMB8GA1UdIwQYMBaAFF8wfmJ0rDnlTpmGbau4XCye/Rax MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUY4OS81QkU3NDg3OEM2 OUUxMUVBOUJGOEEzM0NDNEY5QUUwMi9YekItWW5Tc09lVk9tWVp0cTdoY0xKNzlG ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h6Qi1ZblNzT2VWT21ZWnRxN2hjTEo3OUZyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUY4OS81QkU3NDg3OEM2OUUxMUVBOUJGOEEzM0NDNEY5QUUwMi9YekItWW5Tc09l Vk9tWVp0cTdoY0xKNzlGckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQigzi/YvXIauzsR2tWzIWiB+wdiFMDWf7E1KeKQwqaPA4Lg+VV87v lfs/mcwvsp9vYzE2SaAoQH+BAT1g+7a1ixSpL/lhbFb9uewZm4V1r41plEQTLtg1 yii2zQLUoD20Gd9YIVQmENaQz93fBzPOhp47pVCnd+CX5vbbV+cARfexhwpgSxqi Ay0i5ZDBWtwpMtIGNjigshLTW0cWTuSn7zza31Wnpoi+4+KJfllSnEbLuOwH6+9x eKDlwQKnzs/LRksvOt4NYoYCfJIQMt06pCUTesVW0E171UT1/dACvgHPBjdmJKuV 97A3JMJ9vvNydoX9bJYoPYas4g6kuPw9 -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:13 2025 by rpki-client