This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft File: XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft (raw, json) Hash identifier: D5Y8x6XTcAonc3FXQ0NL59vd2Lpe6dOvDa5ASDwgN9M= Subject key identifier: 17:E6:1E:F3:08:A7:96:97:4D:23:1C:73:44:A9:65:71:4B:C4:89:B2 Authority key identifier: 5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F Certificate issuer: /CN=A91F0C73/serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Certificate serial: 032B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft Manifest number: 0325 Signing time: Thu 04 Dec 2025 23:29:08 +0000 Manifest this update: Thu 04 Dec 2025 23:29:07 +0000 Manifest next update: Thu 11 Dec 2025 23:29:07 +0000 Files and hashes: 1: XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl (hash: 7nlizbMwBFd2WuEXbVtb6qJp1XSy7DWK3OWy5HL9KQo=) 2: FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa (hash: nZ6WbCIcnJ/FBBpCbBgjvy3HpKuHRhBq1WSGZ+ZBH8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:29:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 811 (0x32b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0C73, serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Validity Not Before: Dec 4 23:29:07 2025 GMT Not After : Dec 11 23:29:07 2025 GMT Subject: CN=69321944-2b86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:fa:06:64:2f:05:49:37:59:0c:17:d2:3f:96: 66:ee:d5:3f:95:e0:52:2a:a0:98:fe:c4:7c:9c:87: 04:d4:ec:68:51:5f:59:b6:71:08:52:42:97:b7:0b: f9:ce:96:ab:df:42:88:7e:64:3f:6c:31:ca:c7:80: 2e:e5:b6:d0:69:cf:60:32:42:3f:6b:8b:19:79:f3: 78:60:02:ae:e8:24:41:86:ce:36:84:ae:b3:1f:a2: aa:55:b4:84:39:3c:87:b6:7f:7a:31:12:c7:f0:89: df:93:72:45:3b:ea:e2:4d:cc:84:67:c1:e4:a7:34: ec:00:d8:e4:80:e7:03:a3:7a:69:54:78:88:c0:ef: 36:8b:e9:90:1e:f5:0c:4c:09:58:af:27:41:b2:f5: 5c:04:57:de:6f:a6:cb:9c:84:5a:2d:ce:f4:38:38: 41:fb:b6:26:c5:70:7f:cf:28:91:6a:37:cf:b1:c8: 07:ba:b5:58:f4:62:b5:d1:ba:a7:48:77:ad:d0:cd: 8a:8f:af:be:ee:15:66:39:87:89:17:c7:5c:81:ee: f5:41:5d:f8:e3:96:44:2c:66:ca:e5:d3:d6:03:a3: eb:30:db:6a:36:b7:23:a6:70:79:f5:b2:9b:8e:53: a3:ac:f6:f5:1a:59:bb:17:d2:4b:ab:96:db:2f:5a: fd:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:E6:1E:F3:08:A7:96:97:4D:23:1C:73:44:A9:65:71:4B:C4:89:B2 X509v3 Authority Key Identifier: keyid:5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:57:f7:d4:97:4c:e5:c5:fa:f9:fa:ce:4e:d6:68:73:4b:16: 56:2e:b7:3e:ea:28:3f:4d:67:5d:9d:d3:55:be:52:88:d5:b3: d9:b9:4b:b7:db:bf:d0:6f:76:11:58:71:08:1c:18:6a:27:65: b5:6d:71:fc:2a:72:b0:19:34:8b:d6:ba:37:31:b3:01:c5:82: 2e:c4:0e:dd:87:c9:6b:f1:62:84:3c:95:70:15:3d:4e:63:6b: a4:84:3e:c2:e4:b9:aa:e3:5e:b1:da:b5:87:8a:fa:23:21:26: 8d:7d:c0:2c:54:73:9f:90:ec:e1:42:d7:25:b1:1b:98:c1:ae: ae:29:f2:31:aa:4c:60:25:54:5e:96:3f:e6:e1:b1:f4:ae:ba: bf:0b:9f:41:9f:0b:34:a3:70:18:ab:06:f5:1a:be:96:29:0c: 1d:7b:e0:51:58:20:c8:c0:11:5f:57:7a:db:b7:00:4d:91:6b: 1a:b0:cb:dd:53:8b:71:f1:9a:15:89:4d:8c:8f:3c:3f:9f:e3: 78:fb:c8:a5:09:13:7f:e8:4c:3c:4c:0f:9e:f9:2d:b0:7a:af: 49:d7:0e:6a:fb:09:71:78:fc:0f:6a:30:2f:46:8b:95:95:43: c9:7f:6b:82:e6:05:30:8f:3b:a3:80:d3:f6:e2:d2:39:4d:a2: 30:29:68:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAyswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBDNzMxMTAvBgNVBAUTKDVFNzA5OTQ5QkFBNDBBN0Q0N0Q0NEQyMTE2OTBCMzc3 RTA1MUM0NUYwHhcNMjUxMjA0MjMyOTA3WhcNMjUxMjExMjMyOTA3WjAYMRYwFAYD VQQDEw02OTMyMTk0NC0yYjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5foGZC8FSTdZDBfSP5Zm7tU/leBSKqCY/sR8nIcE1OxoUV9ZtnEIUkKXtwv5 zpar30KIfmQ/bDHKx4Au5bbQac9gMkI/a4sZefN4YAKu6CRBhs42hK6zH6KqVbSE OTyHtn96MRLH8Infk3JFO+riTcyEZ8HkpzTsANjkgOcDo3ppVHiIwO82i+mQHvUM TAlYrydBsvVcBFfeb6bLnIRaLc70ODhB+7YmxXB/zyiRajfPscgHurVY9GK10bqn SHet0M2Kj6++7hVmOYeJF8dcge71QV3445ZELGbK5dPWA6PrMNtqNrcjpnB59bKb jlOjrPb1Glm7F9JLq5bbL1r9PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBfmHvMI p5aXTSMcc0SpZXFLxImyMB8GA1UdIwQYMBaAFF5wmUm6pAp9R9RNIRaQs3fgUcRf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEM3My84MjE0NTdEMkYx MzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0NuMUgxRTBoRnBDemQtQlJ4 RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huQ1pTYnFrQ24xSDFFMGhGcEN6ZC1CUnhGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEM3My84MjE0NTdEMkYxMzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0Nu MUgxRTBoRnBDemQtQlJ4RjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnV/fUl0zlxfr5+s5O1mhzSxZWLrc+6ig/TWddndNVvlKI1bPZuUu3 27/Qb3YRWHEIHBhqJ2W1bXH8KnKwGTSL1ro3MbMBxYIuxA7dh8lr8WKEPJVwFT1O Y2ukhD7C5Lmq416x2rWHivojISaNfcAsVHOfkOzhQtclsRuYwa6uKfIxqkxgJVRe lj/m4bH0rrq/C59Bnws0o3AYqwb1Gr6WKQwde+BRWCDIwBFfV3rbtwBNkWsasMvd U4tx8ZoViU2Mjzw/n+N4+8ilCRN/6Ew8TA+e+S2weq9J1w5q+wlxePwPajAvRouV lUPJf2uC5gUwjzujgNP24tI5TaIwKWg5 -----END CERTIFICATE-----Generated at Sat Dec 6 20:09:18 2025 by rpki-client