This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft File: XozcAfwJtFN0mgHuUjmzXt4kvmw.mft (raw, json) Hash identifier: AX4nLy3HVQHo7k23x34ssIISHzSofydOqkRKi9rswT8= Subject key identifier: 26:E7:14:FF:AC:A5:D7:F5:3F:47:A2:B7:DC:E6:1D:27:3E:8D:53:BA Authority key identifier: 5E:8C:DC:01:FC:09:B4:53:74:9A:01:EE:52:39:B3:5E:DE:24:BE:6C Certificate issuer: /CN=A91F4CFA/serialNumber=5E8CDC01FC09B453749A01EE5239B35EDE24BE6C Certificate serial: 07A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XozcAfwJtFN0mgHuUjmzXt4kvmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft Manifest number: 079B Signing time: Mon 22 Dec 2025 20:46:53 +0000 Manifest this update: Mon 22 Dec 2025 20:46:52 +0000 Manifest next update: Mon 29 Dec 2025 20:46:52 +0000 Files and hashes: 1: XozcAfwJtFN0mgHuUjmzXt4kvmw.crl (hash: L+YANGvQ13kpvRQg2VP9cNvhdIHzJ8UdyypbqnuhRns=) 2: A5D573E4305A11EB921D6332C4F9AE02.roa (hash: YBEc7X7y2zLa5OdEGOrRlwoEuxYs7fU2wrxzm81YklQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.crl rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XozcAfwJtFN0mgHuUjmzXt4kvmw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:46:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1953 (0x7a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4CFA, serialNumber=5E8CDC01FC09B453749A01EE5239B35EDE24BE6C Validity Not Before: Dec 22 20:46:52 2025 GMT Not After : Dec 29 20:46:52 2025 GMT Subject: CN=6949ae3d-1211 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:67:7f:e7:b7:01:40:14:ca:4a:20:31:bb:d9: fa:d7:06:99:dc:a0:f9:e5:bb:0e:0f:3a:98:b4:ac: 39:9b:d0:dd:a8:30:0c:ad:ea:36:fa:77:d9:59:6a: e3:ef:66:ba:78:81:37:e2:38:4a:5b:c1:d6:e3:9e: 31:fe:15:ff:63:64:90:ed:17:4e:e6:64:a3:5d:11: 01:64:c3:95:f1:03:6b:e0:38:1c:d7:44:86:b6:bf: 85:9f:01:78:7e:23:e3:b8:ef:5f:1a:c1:88:71:ad: 3b:1d:6e:79:a4:b4:ec:fd:b3:09:b0:75:28:82:91: 55:f9:04:d0:24:a4:31:bb:fc:27:20:fb:f8:7e:9e: 41:0b:4f:28:9c:10:d7:e0:6a:fb:38:2e:03:3f:95: 89:77:2d:2f:91:4c:1d:5d:cf:ce:96:fe:d6:6c:72: d1:50:b8:96:4f:a8:3b:70:88:99:b9:1a:73:0a:fe: 55:93:cf:40:40:bd:f5:47:de:f2:d4:35:f0:6e:24: 82:0b:4e:0b:bd:fa:f2:31:e8:9e:b8:e2:78:0b:60: 2a:a1:2c:02:7e:24:ac:34:52:07:92:06:41:f7:41: 4c:e4:26:ef:b5:ad:02:c4:02:b0:21:aa:47:38:d0: 8c:10:c9:f1:10:bc:9b:76:5f:93:02:3b:fd:77:15: 54:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:E7:14:FF:AC:A5:D7:F5:3F:47:A2:B7:DC:E6:1D:27:3E:8D:53:BA X509v3 Authority Key Identifier: keyid:5E:8C:DC:01:FC:09:B4:53:74:9A:01:EE:52:39:B3:5E:DE:24:BE:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XozcAfwJtFN0mgHuUjmzXt4kvmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:c4:5d:2f:db:80:5a:e8:a8:fb:e4:10:08:2d:0c:bf:cf:0e: f5:48:54:b2:3f:03:59:80:44:a0:9e:96:18:43:ba:55:04:8c: d3:0b:f2:01:c3:4a:e4:cd:d2:ee:fe:76:43:10:4e:c1:58:e8: 8c:08:76:bc:dc:eb:95:e5:49:b7:a2:bf:e9:1e:a3:44:f9:c3: 00:32:70:04:ac:41:dc:06:9a:10:19:16:55:54:ce:0a:ae:ad: c8:de:a1:16:62:11:af:3c:dd:47:8b:73:76:47:e6:a0:69:cc: 7a:2e:40:37:26:8b:92:a8:ec:3c:a1:0c:a7:66:16:84:df:3b: 0d:d3:cc:7d:64:77:9d:52:74:ad:cf:d3:81:b0:a8:dd:d2:5d: 95:ea:5a:33:23:40:dd:c2:b6:b2:77:5a:e4:c7:93:ec:f1:06: 7f:83:5b:74:5b:1e:fa:14:d2:c9:12:54:24:54:57:8f:71:b8: 6c:96:ba:d4:a6:dd:ad:44:ec:c7:fe:06:e8:c4:b3:d1:55:d9: c2:3a:82:04:1c:c1:d7:ca:ed:7c:f6:85:44:4e:25:64:b7:d2: a1:06:97:be:e3:03:84:96:62:8e:d8:19:42:19:41:ed:5c:91: d5:9e:2a:e9:9c:92:e9:86:85:e5:36:e7:7d:89:a1:e1:59:45: 8f:b2:70:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRDRkExMTAvBgNVBAUTKDVFOENEQzAxRkMwOUI0NTM3NDlBMDFFRTUyMzlCMzVF REUyNEJFNkMwHhcNMjUxMjIyMjA0NjUyWhcNMjUxMjI5MjA0NjUyWjAYMRYwFAYD VQQDDA02OTQ5YWUzZC0xMjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsGd/57cBQBTKSiAxu9n61waZ3KD55bsODzqYtKw5m9DdqDAMreo2+nfZWWrj 72a6eIE34jhKW8HW454x/hX/Y2SQ7RdO5mSjXREBZMOV8QNr4Dgc10SGtr+FnwF4 fiPjuO9fGsGIca07HW55pLTs/bMJsHUogpFV+QTQJKQxu/wnIPv4fp5BC08onBDX 4Gr7OC4DP5WJdy0vkUwdXc/Olv7WbHLRULiWT6g7cIiZuRpzCv5Vk89AQL31R97y 1DXwbiSCC04LvfryMeieuOJ4C2AqoSwCfiSsNFIHkgZB90FM5Cbvta0CxAKwIapH ONCMEMnxELybdl+TAjv9dxVU5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCbnFP+s pdf1P0eit9zmHSc+jVO6MB8GA1UdIwQYMBaAFF6M3AH8CbRTdJoB7lI5s17eJL5s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNENGQS8xQzJGQUIyRTMw NTkxMUVCQjgzNUMxMzBDNEY5QUUwMi9Yb3pjQWZ3SnRGTjBtZ0h1VWptelh0NGt2 bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hvemNBZndKdEZOMG1nSHVVam16WHQ0a3Ztdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NENGQS8xQzJGQUIyRTMwNTkxMUVCQjgzNUMxMzBDNEY5QUUwMi9Yb3pjQWZ3SnRG TjBtZ0h1VWptelh0NGt2bXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/xF0v24Ba6Kj75BAILQy/zw71SFSyPwNZgESgnpYYQ7pVBIzTC/IB w0rkzdLu/nZDEE7BWOiMCHa83OuV5Um3or/pHqNE+cMAMnAErEHcBpoQGRZVVM4K rq3I3qEWYhGvPN1Hi3N2R+agacx6LkA3JouSqOw8oQynZhaE3zsN08x9ZHedUnSt z9OBsKjd0l2V6lozI0Ddwrayd1rkx5Ps8QZ/g1t0Wx76FNLJElQkVFePcbhslrrU pt2tROzH/gboxLPRVdnCOoIEHMHXyu189oVETiVkt9KhBpe+4wOElmKO2BlCGUHt XJHVnirpnJLphoXlNud9iaHhWUWPsnAa -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:50 2025 by rpki-client