This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft File: XmtaBob1a6DA93-zvzGzhWMiCCQ.mft (raw, json) Hash identifier: VVLZe3uqHCK97U7iw8SF4RQ9gkddC4sQSUEEcm89xh8= Subject key identifier: C1:FB:73:A4:CF:9D:89:28:01:F8:28:8C:6A:D7:3C:C2:B7:9E:6E:11 Authority key identifier: 5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 Certificate issuer: /CN=A91FE107/serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Certificate serial: 2348 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft Manifest number: 232E Signing time: Mon 08 Dec 2025 15:41:53 +0000 Manifest this update: Mon 08 Dec 2025 15:41:53 +0000 Manifest next update: Mon 15 Dec 2025 15:41:53 +0000 Files and hashes: 1: XmtaBob1a6DA93-zvzGzhWMiCCQ.crl (hash: yUgg7zxJXku6sdAwi8qb+yCa1zHhvdHvw0JjTwNl0yA=) 2: 44C007B0A0D611EDA2603C4EC4F9AE02.roa (hash: MAOIki/mm/t0sbRkALRqm8AR2/Jy8UBEI5Awsr4aYLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Dec 2025 15:41:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9032 (0x2348) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE107, serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Validity Not Before: Dec 8 15:41:53 2025 GMT Not After : Dec 15 15:41:53 2025 GMT Subject: CN=6936f1c1-e5df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ad:1d:4b:03:f5:1c:33:61:ce:13:50:71:77: 5c:da:cd:f3:95:b6:2b:72:8a:18:43:73:ae:7c:1b: 22:56:c5:aa:40:e8:ce:d8:4e:7f:c5:19:5f:18:93: 92:25:ac:c4:ad:93:94:07:76:7e:48:9d:60:e8:f6: a5:bf:8c:fd:a7:eb:0b:a1:23:49:37:96:47:84:03: 1c:ff:61:ed:3c:d6:f8:c6:28:68:c6:32:0b:1a:6a: ef:3e:66:5e:6f:32:27:23:14:a0:4a:c8:96:74:ce: ac:5b:5a:0a:ef:c2:b9:3d:b8:f1:ef:7e:ab:b3:20: 69:8a:27:18:93:fd:47:b9:d7:98:39:83:8a:e5:59: 7c:b1:0d:8a:27:1b:49:b6:33:e8:b9:5a:41:c9:74: 93:05:b1:32:d8:44:7c:e0:53:2f:17:8d:ee:6b:1e: 45:9d:54:0c:d3:ea:8b:ad:30:2d:8e:bd:3b:f6:09: e2:27:63:31:e5:f2:7a:51:17:2f:a5:a5:25:01:e5: be:34:80:d6:56:57:ba:9a:8d:80:c0:2b:b6:47:f2: d3:2b:f8:9d:7b:f8:44:7d:18:34:70:9c:2d:5f:fd: ed:4b:0a:17:b5:d7:23:74:49:70:f4:85:c2:2e:03: f4:9b:8b:de:fe:1c:e5:34:ec:8d:e1:30:5e:e0:ff: 94:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:FB:73:A4:CF:9D:89:28:01:F8:28:8C:6A:D7:3C:C2:B7:9E:6E:11 X509v3 Authority Key Identifier: keyid:5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:e1:e5:50:b2:e6:7b:1f:e6:f6:f7:3e:37:8c:40:d3:ed:07: bc:71:7b:69:90:7d:24:0f:02:9b:04:0e:14:96:b9:c6:ab:dd: 46:30:68:73:3f:c4:2e:93:72:df:89:32:e2:36:52:fd:2e:30: a1:12:21:fd:1d:4d:d8:32:0e:fa:e6:84:7d:d0:a5:c4:b6:11: 84:ef:c2:0f:87:12:74:32:8f:ab:c0:33:ba:e5:15:bd:1d:2a: e0:ad:25:ae:97:94:ba:c0:d5:fb:30:fe:40:9a:3a:23:28:05: 7a:09:4f:e9:c0:8a:da:10:f4:7d:c3:5d:2b:d5:1c:f8:07:52: 06:bd:5f:2d:8f:1e:b3:c4:01:59:cf:19:9b:8b:31:8d:98:f4: 3f:8a:ff:b3:13:8e:ca:e3:43:27:48:b3:90:e6:52:77:0e:5c: f1:08:34:38:b3:34:22:c3:c1:94:06:a4:31:c8:f8:21:1e:f6: 03:ed:f5:2c:47:04:12:78:95:17:49:62:ba:4d:fc:64:75:5c: 31:64:0c:10:51:81:eb:7a:6a:49:26:9e:51:6a:bc:bc:09:c4: 7f:6c:a0:2d:60:af:1d:ff:59:24:f6:6f:2b:53:0f:0e:1a:20: a0:83:e8:7f:d3:1e:e0:ac:46:82:8e:ea:a5:41:8b:85:e2:5f: 0f:46:ff:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI0gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUxMDcxMTAvBgNVBAUTKDVFNkI1QTA2ODZGNTZCQTBDMEY3N0ZCM0JGMzFCMzg1 NjMyMjA4MjQwHhcNMjUxMjA4MTU0MTUzWhcNMjUxMjE1MTU0MTUzWjAYMRYwFAYD VQQDEw02OTM2ZjFjMS1lNWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuq0dSwP1HDNhzhNQcXdc2s3zlbYrcooYQ3OufBsiVsWqQOjO2E5/xRlfGJOS JazErZOUB3Z+SJ1g6Palv4z9p+sLoSNJN5ZHhAMc/2HtPNb4xihoxjILGmrvPmZe bzInIxSgSsiWdM6sW1oK78K5Pbjx736rsyBpiicYk/1HudeYOYOK5Vl8sQ2KJxtJ tjPouVpByXSTBbEy2ER84FMvF43uax5FnVQM0+qLrTAtjr079gniJ2Mx5fJ6URcv paUlAeW+NIDWVle6mo2AwCu2R/LTK/ide/hEfRg0cJwtX/3tSwoXtdcjdElw9IXC LgP0m4ve/hzlNOyN4TBe4P+UeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMH7c6TP nYkoAfgojGrXPMK3nm4RMB8GA1UdIwQYMBaAFF5rWgaG9WugwPd/s78xs4VjIggk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTEwNy9FRTM1QzQ0NjlF NjQxMUU1OUQ0OEZCNjBDNEY5QUUwMi9YbXRhQm9iMWE2REE5My16dnpHemhXTWlD Q1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1htdGFCb2IxYTZEQTkzLXp2ekd6aFdNaUNDUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTEwNy9FRTM1QzQ0NjlFNjQxMUU1OUQ0OEZCNjBDNEY5QUUwMi9YbXRhQm9iMWE2 REE5My16dnpHemhXTWlDQ1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC04eVQsuZ7H+b29z43jEDT7Qe8cXtpkH0kDwKbBA4UlrnGq91GMGhz P8Quk3LfiTLiNlL9LjChEiH9HU3YMg765oR90KXEthGE78IPhxJ0Mo+rwDO65RW9 HSrgrSWul5S6wNX7MP5AmjojKAV6CU/pwIraEPR9w10r1Rz4B1IGvV8tjx6zxAFZ zxmbizGNmPQ/iv+zE47K40MnSLOQ5lJ3DlzxCDQ4szQiw8GUBqQxyPghHvYD7fUs RwQSeJUXSWK6TfxkdVwxZAwQUYHrempJJp5Rary8CcR/bKAtYK8d/1kk9m8rUw8O GiCgg+h/0x7grEaCjuqlQYuF4l8PRv8X -----END CERTIFICATE-----Generated at Wed Dec 10 05:07:05 2025 by rpki-client