This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft File: Xtho2ocq-NaWpcGp-ngp9lJzynk.mft (raw, json) Hash identifier: HUIwFdDt1VAqY2dRkZpR86TBT0LrP/oqRC9KK8Dzbc8= Subject key identifier: 64:2F:0E:0A:AF:C7:97:20:FB:5C:15:9A:1A:90:E6:D3:D9:1D:B5:C5 Authority key identifier: 5E:D8:68:DA:87:2A:F8:D6:96:A5:C1:A9:FA:78:29:F6:52:73:CA:79 Certificate issuer: /CN=A9119B43/serialNumber=5ED868DA872AF8D696A5C1A9FA7829F65273CA79 Certificate serial: 04D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft Manifest number: 04CB Signing time: Thu 04 Dec 2025 22:22:56 +0000 Manifest this update: Thu 04 Dec 2025 22:22:55 +0000 Manifest next update: Thu 11 Dec 2025 22:22:55 +0000 Files and hashes: 1: Xtho2ocq-NaWpcGp-ngp9lJzynk.crl (hash: i6UyC/ckI/ryv74iCXGwgTt65FLRGSltamkBbF/9+sE=) 2: 6C27C19E4BFA11ECA6797F6DC4F9AE02.roa (hash: 9zlcNMp71CcrKhJ6RcgbQ3pW8nUmE/ShM6R3qPGEpIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.crl rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:22:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1235 (0x4d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119B43, serialNumber=5ED868DA872AF8D696A5C1A9FA7829F65273CA79 Validity Not Before: Dec 4 22:22:55 2025 GMT Not After : Dec 11 22:22:55 2025 GMT Subject: CN=693209c0-583c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c1:1c:82:98:ed:17:cd:65:09:39:18:34:f2: 1e:7f:a7:b0:33:e8:12:60:3e:82:3a:44:c1:18:89: 45:55:4e:60:59:4a:67:b2:af:ee:77:6f:65:50:5f: 1e:5e:5d:1a:f0:5e:cb:33:bd:6d:10:73:d1:6e:17: bc:91:3d:4a:69:65:95:5a:33:8a:f7:67:00:cf:dc: 93:54:93:f8:bb:fc:bf:fc:99:95:c1:b8:05:05:7a: 8b:63:f5:7e:8b:8b:d6:b2:87:17:ca:de:44:18:24: f6:a1:2d:45:5e:dc:f1:6d:34:29:3c:58:93:35:17: 04:6b:b5:08:71:ff:56:8a:76:1a:a2:be:fe:2c:70: 56:e6:36:9b:c6:37:09:8c:ac:6e:4c:2b:2e:8e:aa: 66:37:c7:29:c2:0c:41:33:73:c4:b4:9d:4a:b1:8c: 6b:b7:21:d8:6e:e7:90:36:01:70:b8:fe:a6:86:58: d9:78:4b:a6:07:21:8a:8f:2d:af:9b:8b:88:2a:67: ec:c4:01:8f:e8:ea:e3:b7:57:17:7c:7a:36:6c:01: db:9c:29:18:99:ec:97:89:2c:a7:61:40:bc:c2:71: 56:f3:7b:bc:6c:f8:c4:d1:12:99:47:f1:b8:a0:75: b5:bf:e9:e6:19:11:8a:28:a4:cb:8e:e2:8f:b3:c7: 2a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:2F:0E:0A:AF:C7:97:20:FB:5C:15:9A:1A:90:E6:D3:D9:1D:B5:C5 X509v3 Authority Key Identifier: keyid:5E:D8:68:DA:87:2A:F8:D6:96:A5:C1:A9:FA:78:29:F6:52:73:CA:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:b9:03:3d:e9:10:ee:06:83:f0:ef:b8:4d:50:74:81:ec:0a: 9a:bd:43:e5:cb:e8:b2:12:64:cc:99:2c:4a:31:84:18:2c:2a: c8:42:a2:00:aa:9d:ca:ea:70:70:50:20:3a:3b:81:a5:ce:a1: 7a:67:17:2a:9c:27:88:ed:bc:dd:2c:f1:36:24:c0:46:17:1f: 8b:aa:23:58:be:98:3d:2b:4a:8d:55:70:f9:01:b0:4b:44:10: 7d:0c:d6:bf:d9:e7:19:38:50:d6:45:db:ab:7f:51:b1:ea:de: 8f:7b:21:49:98:32:93:b2:2f:db:aa:1f:7e:e2:c0:34:35:12: 15:ac:98:8b:17:83:3c:ca:b6:fe:88:e2:bf:63:89:4a:6a:65: 16:17:d5:d6:cc:b6:f4:b7:62:9e:3c:44:a1:45:3e:69:ae:40: c0:86:8f:38:0c:6e:f2:fe:11:5f:bc:8a:77:96:5d:fe:e1:dd: 9d:48:55:ce:df:bc:62:2f:46:72:68:80:25:91:43:c6:2a:56: 24:0e:9e:1d:1b:d6:3d:95:55:85:e7:bb:8c:a1:a6:4a:b9:29: ff:2e:cb:e1:63:86:99:f0:72:06:a4:b9:43:02:c1:f1:d4:c6: 8b:57:1e:10:d5:70:44:e5:2a:bd:67:74:92:32:42:bd:56:38: 03:dc:bf:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlCNDMxMTAvBgNVBAUTKDVFRDg2OERBODcyQUY4RDY5NkE1QzFBOUZBNzgyOUY2 NTI3M0NBNzkwHhcNMjUxMjA0MjIyMjU1WhcNMjUxMjExMjIyMjU1WjAYMRYwFAYD VQQDEw02OTMyMDljMC01ODNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs8EcgpjtF81lCTkYNPIef6ewM+gSYD6COkTBGIlFVU5gWUpnsq/ud29lUF8e Xl0a8F7LM71tEHPRbhe8kT1KaWWVWjOK92cAz9yTVJP4u/y//JmVwbgFBXqLY/V+ i4vWsocXyt5EGCT2oS1FXtzxbTQpPFiTNRcEa7UIcf9WinYaor7+LHBW5jabxjcJ jKxuTCsujqpmN8cpwgxBM3PEtJ1KsYxrtyHYbueQNgFwuP6mhljZeEumByGKjy2v m4uIKmfsxAGP6Orjt1cXfHo2bAHbnCkYmeyXiSynYUC8wnFW83u8bPjE0RKZR/G4 oHW1v+nmGRGKKKTLjuKPs8cqFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGQvDgqv x5cg+1wVmhqQ5tPZHbXFMB8GA1UdIwQYMBaAFF7YaNqHKvjWlqXBqfp4KfZSc8p5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUI0My9FNUI4Mzk4MjRC M0ExMUVDOTkyRTgxNTBDNEY5QUUwMi9YdGhvMm9jcS1OYVdwY0dwLW5ncDlsSnp5 bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h0aG8yb2NxLU5hV3BjR3AtbmdwOWxKenluay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUI0My9FNUI4Mzk4MjRCM0ExMUVDOTkyRTgxNTBDNEY5QUUwMi9YdGhvMm9jcS1O YVdwY0dwLW5ncDlsSnp5bmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeuQM96RDuBoPw77hNUHSB7AqavUPly+iyEmTMmSxKMYQYLCrIQqIA qp3K6nBwUCA6O4GlzqF6ZxcqnCeI7bzdLPE2JMBGFx+LqiNYvpg9K0qNVXD5AbBL RBB9DNa/2ecZOFDWRdurf1Gx6t6PeyFJmDKTsi/bqh9+4sA0NRIVrJiLF4M8yrb+ iOK/Y4lKamUWF9XWzLb0t2KePEShRT5prkDAho84DG7y/hFfvIp3ll3+4d2dSFXO 37xiL0ZyaIAlkUPGKlYkDp4dG9Y9lVWF57uMoaZKuSn/LsvhY4aZ8HIGpLlDAsHx 1MaLVx4Q1XBE5Sq9Z3SSMkK9VjgD3L/m -----END CERTIFICATE-----Generated at Sat Dec 6 11:20:56 2025 by rpki-client