This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft File: XUXapVj_ZfZmNblniAm4rPBAc9I.mft (raw, json) Hash identifier: B1uzMfZLqSeXWNH5/B7bU05z685uPmKMDoEndZ2WNeY= Subject key identifier: A0:EA:44:9A:A2:19:EF:94:35:E2:D6:8C:59:D0:E9:B8:40:BB:07:67 Authority key identifier: 5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2 Certificate issuer: /CN=A91F52FD/serialNumber=5D45DAA558FF65F66635B9678809B8ACF04073D2 Certificate serial: 0649 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft Manifest number: 0640 Signing time: Sat 20 Dec 2025 22:02:08 +0000 Manifest this update: Sat 20 Dec 2025 22:02:07 +0000 Manifest next update: Sat 27 Dec 2025 22:02:07 +0000 Files and hashes: 1: XUXapVj_ZfZmNblniAm4rPBAc9I.crl (hash: AoB33ONkmKX8IsM/FyV5qv0Rvs1WE08o8HIrCYd8WNc=) 2: 48459AB0BACF11EBAA321370C4F9AE02.roa (hash: pnHmUa0U0xz9JsAjeRh4Irw7X+bt9zrhkQQo7Oiu4oA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.crl rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 22:02:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1609 (0x649) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F52FD, serialNumber=5D45DAA558FF65F66635B9678809B8ACF04073D2 Validity Not Before: Dec 20 22:02:07 2025 GMT Not After : Dec 27 22:02:07 2025 GMT Subject: CN=69471cdf-faa2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:65:de:8f:24:3a:a0:a7:02:e3:c4:34:9e:10: bc:f0:fa:03:02:f6:cc:f4:6f:33:c9:44:15:1b:a4: 43:88:a0:c5:59:18:31:c1:f7:4e:36:b6:2d:50:ac: b0:2b:04:36:b8:f2:ab:5d:18:63:b1:c8:79:2e:94: 28:89:00:8c:9c:9a:87:31:61:8e:09:c6:84:8d:c7: 32:6d:f3:80:ef:2d:0a:31:f9:13:0e:17:dc:87:73: c8:2b:23:f2:1c:ef:46:21:9f:56:f2:fe:79:2d:79: a8:45:84:13:93:f2:47:7a:7d:dc:2b:74:38:ab:57: ab:63:d7:c8:c0:09:b8:d4:36:de:19:0d:91:29:68: 65:12:41:a4:d2:39:59:6a:40:51:46:ad:ce:7a:b8: 70:22:d1:bf:bd:f5:aa:57:19:f5:c6:03:c8:9c:29: 54:9a:a9:17:07:08:3e:ab:4b:96:f6:c5:33:d8:da: 0c:0c:12:e8:f2:c2:96:b0:81:be:9d:d2:5b:bd:30: 0f:3c:6b:06:d8:fe:17:94:59:53:68:df:fb:7f:be: 77:45:1c:31:be:15:ff:ff:b5:a9:59:76:a2:00:f1: 9a:07:15:f1:2a:90:a5:ef:06:70:a8:0e:bc:bf:8e: 80:dd:a6:ba:0e:28:f8:18:bc:56:bf:47:72:1b:ad: a0:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:EA:44:9A:A2:19:EF:94:35:E2:D6:8C:59:D0:E9:B8:40:BB:07:67 X509v3 Authority Key Identifier: keyid:5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:b2:d6:35:5f:e1:91:69:4e:e1:c1:77:20:9b:29:16:a3:c1: 49:82:11:29:5c:7a:3b:26:17:d1:04:c8:9f:00:42:c2:7a:46: 0d:b1:70:ef:42:1e:31:8e:e5:f9:5f:44:f2:25:99:7f:f0:23: 46:f9:cd:e6:95:21:3f:02:71:b7:04:6e:76:76:0f:be:55:52: be:6f:68:af:44:b7:eb:48:20:ea:80:1d:f1:86:88:61:ac:2e: 33:d1:e5:8b:78:ed:f2:53:b9:36:4f:e2:01:d2:51:ac:e0:82: ef:01:ef:b5:d4:93:20:33:04:63:bf:fd:a8:6a:37:45:9a:e4: 05:5f:1a:a7:f4:da:44:5c:50:b2:6e:6f:d8:73:01:1c:02:50: 71:23:0a:6f:59:c2:53:1f:14:4a:88:96:98:c7:5f:44:a0:4d: 24:aa:24:51:1d:44:77:a8:cb:bb:d2:31:b3:78:17:94:9f:02: 0c:35:77:c9:91:99:fe:9d:fc:86:d2:fd:2a:d5:d9:cc:7a:5f: 86:c6:cd:89:7b:07:dd:71:25:51:54:77:d7:e5:27:a4:90:c1: 75:a1:84:fd:35:1d:f8:de:9d:1f:cd:bd:9c:5c:d8:64:36:e8: c7:3f:dd:0c:08:ca:b3:ab:9a:40:a9:e2:11:e4:6e:52:a0:6a: be:9b:39:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyRkQxMTAvBgNVBAUTKDVENDVEQUE1NThGRjY1RjY2NjM1Qjk2Nzg4MDlCOEFD RjA0MDczRDIwHhcNMjUxMjIwMjIwMjA3WhcNMjUxMjI3MjIwMjA3WjAYMRYwFAYD VQQDDA02OTQ3MWNkZi1mYWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2XejyQ6oKcC48Q0nhC88PoDAvbM9G8zyUQVG6RDiKDFWRgxwfdONrYtUKyw KwQ2uPKrXRhjsch5LpQoiQCMnJqHMWGOCcaEjccybfOA7y0KMfkTDhfch3PIKyPy HO9GIZ9W8v55LXmoRYQTk/JHen3cK3Q4q1erY9fIwAm41DbeGQ2RKWhlEkGk0jlZ akBRRq3OerhwItG/vfWqVxn1xgPInClUmqkXBwg+q0uW9sUz2NoMDBLo8sKWsIG+ ndJbvTAPPGsG2P4XlFlTaN/7f753RRwxvhX//7WpWXaiAPGaBxXxKpCl7wZwqA68 v46A3aa6Dij4GLxWv0dyG62gSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKDqRJqi Ge+UNeLWjFnQ6bhAuwdnMB8GA1UdIwQYMBaAFF1F2qVY/2X2ZjW5Z4gJuKzwQHPS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTJGRC82MjVGMEYwQUJB Q0QxMUVCQUEyMzk3NkRDNEY5QUUwMi9YVVhhcFZqX1pmWm1OYmxuaUFtNHJQQkFj OUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hVWGFwVmpfWmZabU5ibG5pQW00clBCQWM5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTJGRC82MjVGMEYwQUJBQ0QxMUVCQUEyMzk3NkRDNEY5QUUwMi9YVVhhcFZqX1pm Wm1OYmxuaUFtNHJQQkFjOUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANstY1X+GRaU7hwXcgmykWo8FJghEpXHo7JhfRBMifAELCekYNsXDv Qh4xjuX5X0TyJZl/8CNG+c3mlSE/AnG3BG52dg++VVK+b2ivRLfrSCDqgB3xhohh rC4z0eWLeO3yU7k2T+IB0lGs4ILvAe+11JMgMwRjv/2oajdFmuQFXxqn9NpEXFCy bm/YcwEcAlBxIwpvWcJTHxRKiJaYx19EoE0kqiRRHUR3qMu70jGzeBeUnwIMNXfJ kZn+nfyG0v0q1dnMel+Gxs2JewfdcSVRVHfX5SekkMF1oYT9NR343p0fzb2cXNhk NujHP90MCMqzq5pAqeIR5G5SoGq+mznl -----END CERTIFICATE-----Generated at Sun Dec 21 00:05:52 2025 by rpki-client