This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft File: xbajYOSK75Kf3CcpbR1S9b9umRY.mft (raw, json) Hash identifier: vkAwWXjlgyS3BtSVrsLkpeUaFaQjpS+vIDBGRXMLsYQ= Subject key identifier: 92:5F:5A:44:56:EA:DA:1D:D8:AE:A7:67:B1:C3:36:95:45:A1:28:90 Authority key identifier: C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16 Certificate issuer: /CN=A91FD088/serialNumber=C5B6A360E48AEF929FDC27296D1D52F5BF6E9916 Certificate serial: 0823 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft Manifest number: 081C Signing time: Mon 22 Dec 2025 20:14:24 +0000 Manifest this update: Mon 22 Dec 2025 20:14:24 +0000 Manifest next update: Mon 29 Dec 2025 20:14:24 +0000 Files and hashes: 1: xbajYOSK75Kf3CcpbR1S9b9umRY.crl (hash: D71T74EtDjTh66vNgP/QtyPw2q2vEAg70riNV3ej2qg=) 2: 423EA4CC039B11EBB3C1465CC4F9AE02.roa (hash: LsVQKkTp9V5mDiVUJekj0bvUgPf5aQfKDpRqhhkjvWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.crl rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:14:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2083 (0x823) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD088, serialNumber=C5B6A360E48AEF929FDC27296D1D52F5BF6E9916 Validity Not Before: Dec 22 20:14:24 2025 GMT Not After : Dec 29 20:14:24 2025 GMT Subject: CN=6949a6a0-e113 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:fa:a3:ab:67:2f:3e:18:0e:3a:21:6f:94:5d: 47:e7:87:d0:2e:d1:e3:81:4a:fe:bc:38:89:87:ea: 26:80:bc:19:46:15:1a:08:1d:2b:51:31:4b:7d:fb: 60:cc:42:ca:4c:ba:7a:8d:7d:85:ee:bb:6d:15:7e: 73:45:9f:65:98:0a:af:db:cc:d1:c2:8f:21:dd:84: 24:f7:78:f0:e0:c0:59:fb:93:6a:51:f1:9b:8f:8f: e4:f7:61:57:63:db:38:06:92:fb:6f:5e:b8:5e:4d: 99:aa:5d:e1:4d:da:40:d0:92:f7:29:ef:8a:19:20: 9a:2f:80:a2:e9:02:2e:c9:b0:0e:14:af:7d:1d:63: 2e:c5:18:13:05:09:d6:f0:76:bf:4d:70:22:32:ca: 7a:ad:1a:92:61:96:4f:62:f2:e8:97:bc:bd:78:8c: 92:27:de:21:44:ba:bd:42:7f:d3:89:96:19:35:f8: 46:3e:aa:83:17:5c:e9:7e:57:f3:cf:0d:fb:08:89: 36:9a:20:2c:49:c1:e1:63:8e:55:9b:e2:47:17:5f: df:30:df:d8:a7:e0:af:9f:b0:94:5f:b5:de:22:e3: 8c:90:e5:bb:9d:b8:a7:4b:b7:a2:23:0b:1a:48:12: e4:5c:f1:c8:d1:ed:92:83:b6:de:82:67:93:72:e0: 4d:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:5F:5A:44:56:EA:DA:1D:D8:AE:A7:67:B1:C3:36:95:45:A1:28:90 X509v3 Authority Key Identifier: keyid:C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:ef:50:91:b1:df:75:1f:32:7e:39:82:69:5a:89:db:a5:16: 7e:82:cd:8c:62:ba:9a:12:98:17:db:b8:7a:35:8b:95:1f:36: 37:97:b4:b9:77:52:59:a0:a9:4a:0c:77:e2:8a:7a:5b:3d:a3: 6e:66:ac:7f:cb:08:c3:a7:04:e4:67:28:8d:7d:ab:ec:ae:17: 66:a6:5b:cf:93:27:5d:81:60:52:94:37:22:f8:a6:dc:48:fc: 48:4b:d2:4a:12:bf:49:39:b0:ec:0f:19:f7:6f:17:73:b2:8d: 19:b1:d9:10:3c:ec:c8:25:2a:1b:9d:57:0b:f8:26:b3:c5:a8: 4e:a3:60:99:12:9c:8f:76:6b:cb:f0:f1:4c:b8:c3:69:de:70: 35:45:93:2f:55:9d:38:c5:86:fe:61:63:c0:25:25:7c:7f:e5: 50:07:71:22:71:62:62:e5:3d:cb:ec:ad:3b:fb:b6:7a:a3:8c: 49:9a:f5:2d:89:7a:d0:96:22:df:22:fe:8a:a0:42:26:e1:ba: eb:43:e9:78:2c:fe:05:6d:25:d6:3c:6a:cc:71:40:dc:b3:89: ba:60:0b:34:19:c4:1c:60:46:50:5f:9e:5f:70:ac:30:ad:2e: 2d:e1:26:f2:74:2a:1a:a0:07:2d:96:f0:7f:ca:c8:eb:6d:80: 57:f9:a1:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQwODgxMTAvBgNVBAUTKEM1QjZBMzYwRTQ4QUVGOTI5RkRDMjcyOTZEMUQ1MkY1 QkY2RTk5MTYwHhcNMjUxMjIyMjAxNDI0WhcNMjUxMjI5MjAxNDI0WjAYMRYwFAYD VQQDDA02OTQ5YTZhMC1lMTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsPqjq2cvPhgOOiFvlF1H54fQLtHjgUr+vDiJh+omgLwZRhUaCB0rUTFLfftg zELKTLp6jX2F7rttFX5zRZ9lmAqv28zRwo8h3YQk93jw4MBZ+5NqUfGbj4/k92FX Y9s4BpL7b164Xk2Zql3hTdpA0JL3Ke+KGSCaL4Ci6QIuybAOFK99HWMuxRgTBQnW 8Ha/TXAiMsp6rRqSYZZPYvLol7y9eIySJ94hRLq9Qn/TiZYZNfhGPqqDF1zpflfz zw37CIk2miAsScHhY45Vm+JHF1/fMN/Yp+Cvn7CUX7XeIuOMkOW7nbinS7eiIwsa SBLkXPHI0e2Sg7begmeTcuBNeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJJfWkRW 6tod2K6nZ7HDNpVFoSiQMB8GA1UdIwQYMBaAFMW2o2Dkiu+Sn9wnKW0dUvW/bpkW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDA4OC80NEJBN0NBMkZE OUQxMUVBQTA0RUI4N0RDNEY5QUUwMi94YmFqWU9TSzc1S2YzQ2NwYlIxUzliOXVt UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hiYWpZT1NLNzVLZjNDY3BiUjFTOWI5dW1SWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDA4OC80NEJBN0NBMkZEOUQxMUVBQTA0RUI4N0RDNEY5QUUwMi94YmFqWU9TSzc1 S2YzQ2NwYlIxUzliOXVtUlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAq71CRsd91HzJ+OYJpWonbpRZ+gs2MYrqaEpgX27h6NYuVHzY3l7S5 d1JZoKlKDHfiinpbPaNuZqx/ywjDpwTkZyiNfavsrhdmplvPkyddgWBSlDci+Kbc SPxIS9JKEr9JObDsDxn3bxdzso0ZsdkQPOzIJSobnVcL+CazxahOo2CZEpyPdmvL 8PFMuMNp3nA1RZMvVZ04xYb+YWPAJSV8f+VQB3EicWJi5T3L7K07+7Z6o4xJmvUt iXrQliLfIv6KoEIm4brrQ+l4LP4FbSXWPGrMcUDcs4m6YAs0GcQcYEZQX55fcKww rS4t4SbydCoaoActlvB/ysjrbYBX+aGK -----END CERTIFICATE-----Generated at Tue Dec 23 05:48:23 2025 by rpki-client