This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft File: xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft (raw, json) Hash identifier: stwbhWfkTSKkRFgu9m+b+i8lHT1l8PbCIXAp52FTEUI= Subject key identifier: 8C:BF:BE:52:E5:BE:E2:09:D0:14:2B:B2:FB:26:CE:38:BE:39:AD:51 Authority key identifier: C7:0B:F3:DF:F4:50:23:D4:1A:F4:C4:DF:5D:76:50:40:B9:24:1A:C7 Certificate issuer: /CN=A91243FE/serialNumber=C70BF3DFF45023D41AF4C4DF5D765040B9241AC7 Certificate serial: 040E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft Manifest number: 040A Signing time: Sat 06 Dec 2025 23:04:27 +0000 Manifest this update: Sat 06 Dec 2025 23:04:27 +0000 Manifest next update: Sat 13 Dec 2025 23:04:27 +0000 Files and hashes: 1: xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl (hash: m9Rs3kJ3zcKvcGqZ8m0oUy579U06cgv/j7DHFngPPaM=) 2: 5ADF4C92956811EC9028F155C4F9AE02.roa (hash: 6C9pOBCK4sWDlaS78t/pprsEcl/8A0s9Wlk6KVMoAhE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:31:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1038 (0x40e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91243FE, serialNumber=C70BF3DFF45023D41AF4C4DF5D765040B9241AC7 Validity Not Before: Dec 6 23:04:27 2025 GMT Not After : Dec 13 23:04:27 2025 GMT Subject: CN=6934b67b-56df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d1:31:e2:11:15:67:5a:07:f6:f9:fb:fe:70: 9b:71:4b:f9:bd:e8:64:3f:44:b6:15:df:ce:e2:3e: 6f:ef:40:a9:97:9a:5c:7b:47:e0:fe:af:c9:32:f7: 93:9d:41:1c:d1:3e:66:37:db:08:d4:52:d8:75:6d: 8e:c3:83:43:85:23:59:ce:e2:53:6d:62:f6:d8:c8: b6:ef:05:e3:3e:6e:f9:d5:dd:62:20:d4:8f:65:cf: 0d:ef:1c:3a:3a:7b:ed:43:7a:39:9a:87:8d:75:cc: be:9a:2e:01:86:19:aa:ed:6d:7d:b7:9c:e1:22:f9: f4:52:e3:77:f5:7f:c6:7e:ff:b1:f7:9a:fe:de:57: d2:0c:86:2c:60:e3:b6:0c:b9:9f:82:97:1d:dd:fe: b5:11:85:2f:75:a0:0b:e1:55:b6:e8:9f:d5:80:32: d7:08:c5:0b:36:f8:40:2e:77:73:da:84:77:24:d8: 56:32:9f:71:71:9b:09:ef:cf:1c:97:83:70:56:57: e5:db:42:cd:27:b1:5d:01:00:8d:ff:34:3b:1e:88: e6:ae:33:22:75:39:67:90:28:c4:c2:c6:04:9a:b5: 41:41:0e:6e:46:26:83:e6:64:be:4f:a3:bb:92:70: 46:28:bc:6b:01:aa:4c:a5:db:5e:3a:c5:01:7e:33: 67:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:BF:BE:52:E5:BE:E2:09:D0:14:2B:B2:FB:26:CE:38:BE:39:AD:51 X509v3 Authority Key Identifier: keyid:C7:0B:F3:DF:F4:50:23:D4:1A:F4:C4:DF:5D:76:50:40:B9:24:1A:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:42:64:66:81:23:99:68:76:17:40:21:1c:9f:af:d8:1a:db: bf:93:d2:6e:32:af:f9:18:58:69:c0:d1:49:90:69:b3:db:f3: 19:6f:67:b8:96:f2:05:5d:98:45:de:9a:46:59:0a:40:14:86: e9:63:5f:e3:3d:de:a6:8f:43:bf:6c:1a:2b:24:99:9b:70:0d: 1f:00:52:cc:63:0c:a3:d7:a9:d0:15:cd:57:0e:bd:ec:1d:60: 8f:f2:54:3a:7e:2c:59:0f:2a:9b:98:85:9f:03:c2:21:08:e0: 15:e8:7e:c6:ee:06:f5:fd:2e:f7:46:9c:fc:24:9c:31:fa:e5: 45:5d:b7:c6:04:78:4f:d1:b2:8d:25:9a:d6:4e:b5:7d:68:3a: db:fe:7c:0d:11:7d:5d:1e:fd:0b:75:8a:2c:50:b4:01:bc:67: 18:e2:34:0d:02:55:ef:21:b2:fc:cd:a5:b3:a1:12:fc:91:eb: cf:77:85:b4:19:20:aa:ec:f7:80:af:a1:99:e5:b5:df:cb:e2: 55:cf:61:87:e5:4c:53:f4:fd:3a:af:0c:6b:a2:1b:b4:13:5c: 27:3e:f4:fa:25:01:0f:3c:ac:4e:6b:79:74:35:ef:ab:a8:e8: 5b:ba:e0:b3:a7:08:ae:7b:1a:d7:51:91:e8:6e:5c:04:ab:1b: a1:30:1d:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBA4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQzRkUxMTAvBgNVBAUTKEM3MEJGM0RGRjQ1MDIzRDQxQUY0QzRERjVENzY1MDQw QjkyNDFBQzcwHhcNMjUxMjA2MjMwNDI3WhcNMjUxMjEzMjMwNDI3WjAYMRYwFAYD VQQDEw02OTM0YjY3Yi01NmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9Ex4hEVZ1oH9vn7/nCbcUv5vehkP0S2Fd/O4j5v70Cpl5pce0fg/q/JMveT nUEc0T5mN9sI1FLYdW2Ow4NDhSNZzuJTbWL22Mi27wXjPm751d1iINSPZc8N7xw6 OnvtQ3o5moeNdcy+mi4Bhhmq7W19t5zhIvn0UuN39X/Gfv+x95r+3lfSDIYsYOO2 DLmfgpcd3f61EYUvdaAL4VW26J/VgDLXCMULNvhALndz2oR3JNhWMp9xcZsJ788c l4NwVlfl20LNJ7FdAQCN/zQ7HojmrjMidTlnkCjEwsYEmrVBQQ5uRiaD5mS+T6O7 knBGKLxrAapMpdteOsUBfjNn2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIy/vlLl vuIJ0BQrsvsmzji+Oa1RMB8GA1UdIwQYMBaAFMcL89/0UCPUGvTE3112UEC5JBrH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDNGRS85ODE0ODA2Mjk1 NjUxMUVDOTE4M0JFNTNDNEY5QUUwMi94d3Z6M19SUUk5UWE5TVRmWFhaUVFMa2tH c2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h3dnozX1JRSTlRYTlNVGZYWFpRUUxra0dzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDNGRS85ODE0ODA2Mjk1NjUxMUVDOTE4M0JFNTNDNEY5QUUwMi94d3Z6M19SUUk5 UWE5TVRmWFhaUVFMa2tHc2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKQmRmgSOZaHYXQCEcn6/YGtu/k9JuMq/5GFhpwNFJkGmz2/MZb2e4 lvIFXZhF3ppGWQpAFIbpY1/jPd6mj0O/bBorJJmbcA0fAFLMYwyj16nQFc1XDr3s HWCP8lQ6fixZDyqbmIWfA8IhCOAV6H7G7gb1/S73Rpz8JJwx+uVFXbfGBHhP0bKN JZrWTrV9aDrb/nwNEX1dHv0LdYosULQBvGcY4jQNAlXvIbL8zaWzoRL8kevPd4W0 GSCq7PeAr6GZ5bXfy+JVz2GH5UxT9P06rwxrohu0E1wnPvT6JQEPPKxOa3l0Ne+r qOhbuuCzpwiuexrXUZHoblwEqxuhMB3U -----END CERTIFICATE-----Generated at Sun Dec 7 01:59:22 2025 by rpki-client