This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft File: X1zijATRbpUODrzVlVVCSD05VtA.mft (raw, json) Hash identifier: qSKwyYkws0jhYTDT9bGMHfKfeUWTlKgN/LVmMf06yOY= Subject key identifier: 0D:4E:7C:F3:F2:62:97:8D:87:89:62:24:57:28:DB:5F:02:1D:91:86 Authority key identifier: 5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0 Certificate issuer: /CN=A91F0D86/serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0 Certificate serial: 01A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft Manifest number: 019C Signing time: Fri 19 Dec 2025 02:36:11 +0000 Manifest this update: Fri 19 Dec 2025 02:36:11 +0000 Manifest next update: Fri 26 Dec 2025 02:36:11 +0000 Files and hashes: 1: X1zijATRbpUODrzVlVVCSD05VtA.crl (hash: HotV8rRr+XwD8TmGf6zZGb6EAJ3pdTVyrMiAYWPiQuk=) 2: 85BF2BE4710111F093C54468C4F9AE02.roa (hash: 0DjY0BlkVRPwB3NWf9zy3shKm/xu/h/zeurHbCub9hQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.crl rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:36:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 418 (0x1a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0D86, serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0 Validity Not Before: Dec 19 02:36:11 2025 GMT Not After : Dec 26 02:36:11 2025 GMT Subject: CN=6944ba1b-ba13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:be:b2:40:36:69:ce:52:a9:75:dc:c1:33:e5: 64:8f:c6:93:ae:fe:2c:c8:c6:b1:a9:b5:06:6d:61: 77:9b:e9:c4:0b:10:f6:b8:b2:4c:f0:8c:89:6d:3e: 48:3e:65:b8:61:07:06:ce:63:42:5a:08:9d:0d:51: 27:29:f3:b3:d6:17:c8:6a:ba:ad:1c:eb:37:4b:96: 0f:3e:7a:a2:18:d7:e9:b6:6d:c3:5f:39:95:34:4c: 03:7b:64:33:c6:ad:12:7c:61:98:d7:c2:ea:8c:90: 70:f4:1b:09:39:32:d5:a4:cd:d6:75:55:61:43:82: 88:60:3c:3d:1f:96:81:a7:47:13:a8:94:36:dc:3e: cb:79:c5:f5:55:77:f4:3c:a6:68:29:4a:03:bd:1a: df:cd:18:76:b4:d7:b4:55:27:fc:d1:0a:dd:31:08: 42:65:86:56:a7:84:91:36:53:9c:b1:d8:47:2c:ea: a7:17:16:ce:e5:24:b0:15:2b:e0:02:64:0e:48:3b: 08:7b:90:58:61:82:19:d7:e3:72:01:e2:bd:e3:52: 3b:51:82:f7:fb:6b:c3:a7:33:43:3b:e9:8c:d6:df: 13:11:b5:14:78:55:d7:bd:44:0a:4b:d3:79:02:43: 90:fe:7e:f0:57:af:96:ab:a9:e0:79:6f:78:d7:da: cc:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:4E:7C:F3:F2:62:97:8D:87:89:62:24:57:28:DB:5F:02:1D:91:86 X509v3 Authority Key Identifier: keyid:5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:4f:6f:19:9e:05:f2:f9:6d:74:70:62:89:a8:3c:39:14:05: c3:16:40:89:a3:21:19:69:ca:10:fa:f9:b8:46:3a:37:d8:b3: 1a:7a:ca:12:d6:ef:fa:16:a3:2d:c2:17:fc:35:37:bc:1b:de: 78:97:64:a5:30:25:4e:4d:3c:15:f1:cc:d8:3c:27:5d:42:ae: 37:62:35:1a:ad:e6:a5:da:24:0e:ba:1c:ea:8f:1a:c0:f7:d1: 65:ed:ca:56:cd:81:50:ab:e1:d1:d3:a1:ad:c6:94:a6:3a:77: 3e:ff:7d:f6:5a:b4:be:0e:d3:08:f6:02:5a:04:6a:51:3f:ce: 5b:04:6f:76:4d:c6:c7:d6:3b:96:44:52:3f:e5:0d:04:f6:fb: ee:a4:2e:9e:03:25:7f:9f:f7:19:27:99:5b:09:25:36:36:11: f3:4d:84:29:8d:e1:10:15:c9:28:8d:1c:40:58:c1:29:6d:c3: 90:a9:b2:68:dc:90:36:ce:ef:0c:b1:3e:de:ab:63:3c:58:13: d2:c5:4d:7c:4c:55:55:bc:aa:da:5b:dc:6f:29:59:98:b2:73: 24:21:34:88:02:8d:c8:03:6a:25:33:ec:d5:ab:f8:3c:3f:94: 4d:7c:6d:6c:04:eb:6b:d4:1c:9f:2e:a5:6d:f7:ff:32:a8:62: 54:26:63:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBEODYxMTAvBgNVBAUTKDVGNUNFMjhDMDREMTZFOTUwRTBFQkNENTk1NTU0MjQ4 M0QzOTU2RDAwHhcNMjUxMjE5MDIzNjExWhcNMjUxMjI2MDIzNjExWjAYMRYwFAYD VQQDDA02OTQ0YmExYi1iYTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmb6yQDZpzlKpddzBM+Vkj8aTrv4syMaxqbUGbWF3m+nECxD2uLJM8IyJbT5I PmW4YQcGzmNCWgidDVEnKfOz1hfIarqtHOs3S5YPPnqiGNfptm3DXzmVNEwDe2Qz xq0SfGGY18LqjJBw9BsJOTLVpM3WdVVhQ4KIYDw9H5aBp0cTqJQ23D7LecX1VXf0 PKZoKUoDvRrfzRh2tNe0VSf80QrdMQhCZYZWp4SRNlOcsdhHLOqnFxbO5SSwFSvg AmQOSDsIe5BYYYIZ1+NyAeK941I7UYL3+2vDpzNDO+mM1t8TEbUUeFXXvUQKS9N5 AkOQ/n7wV6+Wq6ngeW9419rMGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA1OfPPy YpeNh4liJFco218CHZGGMB8GA1UdIwQYMBaAFF9c4owE0W6VDg681ZVVQkg9OVbQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEQ4Ni82OEU3OTc4QTZD QkQxMUVFQjg0NkYzNzlDNEY5QUUwMi9YMXppakFUUmJwVU9EcnpWbFZWQ1NEMDVW dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gxemlqQVRSYnBVT0RyelZsVlZDU0QwNVZ0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEQ4Ni82OEU3OTc4QTZDQkQxMUVFQjg0NkYzNzlDNEY5QUUwMi9YMXppakFUUmJw VU9EcnpWbFZWQ1NEMDVWdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkT28ZngXy+W10cGKJqDw5FAXDFkCJoyEZacoQ+vm4Rjo32LMaesoS 1u/6FqMtwhf8NTe8G954l2SlMCVOTTwV8czYPCddQq43YjUareal2iQOuhzqjxrA 99Fl7cpWzYFQq+HR06GtxpSmOnc+/332WrS+DtMI9gJaBGpRP85bBG92TcbH1juW RFI/5Q0E9vvupC6eAyV/n/cZJ5lbCSU2NhHzTYQpjeEQFckojRxAWMEpbcOQqbJo 3JA2zu8MsT7eq2M8WBPSxU18TFVVvKraW9xvKVmYsnMkITSIAo3IA2olM+zVq/g8 P5RNfG1sBOtr1ByfLqVt9/8yqGJUJmMx -----END CERTIFICATE-----Generated at Fri Dec 19 22:32:02 2025 by rpki-client