This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft File: XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft (raw, json) Hash identifier: SOds+k2TDJZfX25adH3OGf9g5JykVF18V8tl5TVlbj8= Subject key identifier: 22:47:78:2E:C3:5B:02:48:E5:82:74:14:A3:8D:E1:F7:16:A5:98:2E Authority key identifier: 5D:B7:5B:2D:F9:4D:04:47:4A:6E:5E:2D:4B:78:CC:08:4B:FC:2A:6C Certificate issuer: /CN=A912698E/serialNumber=5DB75B2DF94D04474A6E5E2D4B78CC084BFC2A6C Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XbdbLflNBEdKbl4tS3jMCEv8Kmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft Manifest number: 71 Signing time: Sat 06 Dec 2025 17:06:45 +0000 Manifest this update: Sat 06 Dec 2025 17:06:45 +0000 Manifest next update: Sat 13 Dec 2025 17:06:45 +0000 Files and hashes: 1: XbdbLflNBEdKbl4tS3jMCEv8Kmw.crl (hash: xIgKYJQGy0mzEQyOwDRZ9Ze6+Ktgn7UTr8z6TBuR7S0=) 2: D5271A183ADB11F0BC52A042C4F9AE02.roa (hash: Je+up3kY6qu1B3So3Vnq/xOYjMIPNymqMCzCxvb8aL4=) 3: 87087F00267E11F09183092AC4F9AE02.roa (hash: vPD3MBlV+VYxtTk5npGCIsRmwvlSAFp0uTh8dXUbHV8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.crl rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XbdbLflNBEdKbl4tS3jMCEv8Kmw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912698E, serialNumber=5DB75B2DF94D04474A6E5E2D4B78CC084BFC2A6C Validity Not Before: Dec 6 17:06:45 2025 GMT Not After : Dec 13 17:06:45 2025 GMT Subject: CN=693462a5-defc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:84:e0:de:43:df:7f:b0:87:14:da:97:6c:0c: 5d:6a:96:55:17:0e:5a:c3:c0:b7:1b:8f:37:80:5e: 14:f3:28:0b:cf:bb:fe:36:2e:f4:3c:9e:bd:8a:9a: 3e:26:52:79:67:ac:f6:40:4f:e4:bb:3a:15:56:a2: 36:c7:6a:48:64:de:a9:cc:0e:7c:db:f3:2f:11:5c: e4:00:34:7c:57:ca:03:cc:44:8c:ef:c3:74:8d:fd: 2a:e3:df:35:fb:ef:19:b8:16:dd:b9:03:03:d3:10: 0d:1d:39:40:7c:90:57:9c:9f:99:f4:2d:bb:dc:cf: a4:5a:73:1d:ff:cc:ad:af:f3:da:f2:2e:fc:0a:cd: 60:ba:17:9b:54:eb:14:aa:c4:81:b8:58:bf:44:39: 19:0f:af:dc:2d:ac:5e:01:81:f4:09:ee:34:be:20: 24:36:be:6b:45:0e:b2:0a:b5:dd:94:67:75:a6:2d: 4a:b4:92:c1:8d:48:65:0a:2f:c3:3a:44:55:50:ed: 31:c5:dc:56:22:3f:a2:3a:34:d3:d3:06:4d:e5:49: b9:e9:a7:db:90:ca:b9:a5:20:f3:4a:b4:5c:df:4d: 87:10:7b:cd:22:e1:9d:d7:34:a5:2f:c7:50:d3:c5: 66:9f:97:4c:6f:3f:15:96:6b:bd:41:2e:59:45:5a: b5:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:47:78:2E:C3:5B:02:48:E5:82:74:14:A3:8D:E1:F7:16:A5:98:2E X509v3 Authority Key Identifier: keyid:5D:B7:5B:2D:F9:4D:04:47:4A:6E:5E:2D:4B:78:CC:08:4B:FC:2A:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XbdbLflNBEdKbl4tS3jMCEv8Kmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:60:cc:a2:d2:72:7a:41:bb:ef:c2:9c:0a:8b:f4:26:ca:6d: 26:25:df:65:04:e4:c0:3b:93:f7:98:bd:19:e5:31:a5:f2:a4: 03:a9:82:3a:1a:0f:20:95:3f:78:05:4a:27:f9:2b:78:37:0b: e0:4c:e3:46:e7:5f:fa:53:8b:85:03:3c:17:f0:43:c6:2b:03: 57:8e:4a:98:b1:64:d4:7c:c4:19:d8:c8:9e:f5:08:70:a4:2e: 32:52:ff:fd:ec:ee:2d:a1:b7:13:2d:bb:b0:04:0d:20:dc:be: 4b:de:07:dc:9e:fd:17:77:4a:86:5b:93:41:b6:f5:bc:5d:8f: 53:d5:a3:12:4e:34:62:cb:d9:18:99:2b:b0:d9:71:a3:95:2d: 13:ed:03:cf:e7:c0:99:74:fe:1d:1a:c7:13:25:9c:df:87:d3: 81:1b:a3:fa:ff:82:b5:60:d4:2f:e4:d1:52:04:1a:34:25:ef: c9:94:35:b2:34:45:53:ce:a3:db:85:32:cc:26:f1:8b:1f:6d: e4:a4:1c:3e:e7:aa:9c:53:6e:26:14:c4:68:c9:9a:3b:00:5f: 05:ae:17:62:c2:0a:47:04:65:50:61:2c:1e:f1:c4:75:89:9a: b8:4d:b8:de:d0:f7:87:b8:73:0e:c4:cb:2b:fe:0c:54:4e:24: 75:0b:b3:bb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy Njk4RTExMC8GA1UEBRMoNURCNzVCMkRGOTREMDQ0NzRBNkU1RTJENEI3OENDMDg0 QkZDMkE2QzAeFw0yNTEyMDYxNzA2NDVaFw0yNTEyMTMxNzA2NDVaMBgxFjAUBgNV BAMTDTY5MzQ2MmE1LWRlZmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCthODeQ99/sIcU2pdsDF1qllUXDlrDwLcbjzeAXhTzKAvPu/42LvQ8nr2Kmj4m UnlnrPZAT+S7OhVWojbHakhk3qnMDnzb8y8RXOQANHxXygPMRIzvw3SN/Srj3zX7 7xm4Ft25AwPTEA0dOUB8kFecn5n0Lbvcz6Racx3/zK2v89ryLvwKzWC6F5tU6xSq xIG4WL9EORkPr9wtrF4BgfQJ7jS+ICQ2vmtFDrIKtd2UZ3WmLUq0ksGNSGUKL8M6 RFVQ7THF3FYiP6I6NNPTBk3lSbnpp9uQyrmlIPNKtFzfTYcQe80i4Z3XNKUvx1DT xWafl0xvPxWWa71BLllFWrWRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIkd4LsNb AkjlgnQUo43h9xalmC4wHwYDVR0jBBgwFoAUXbdbLflNBEdKbl4tS3jMCEv8Kmww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI2OThFLzA5NUY2QzhDMjY3 QzExRjA5Njc3RjgwQkM0RjlBRTAyL1hiZGJMZmxOQkVkS2JsNHRTM2pNQ0V2OEtt dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWGJkYkxmbE5CRWRLYmw0dFMzak1DRXY4S213LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI2 OThFLzA5NUY2QzhDMjY3QzExRjA5Njc3RjgwQkM0RjlBRTAyL1hiZGJMZmxOQkVk S2JsNHRTM2pNQ0V2OEttdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFRgzKLScnpBu+/CnAqL9CbKbSYl32UE5MA7k/eYvRnlMaXypAOpgjoa DyCVP3gFSif5K3g3C+BM40bnX/pTi4UDPBfwQ8YrA1eOSpixZNR8xBnYyJ71CHCk LjJS//3s7i2htxMtu7AEDSDcvkveB9ye/Rd3SoZbk0G29bxdj1PVoxJONGLL2RiZ K7DZcaOVLRPtA8/nwJl0/h0axxMlnN+H04Ebo/r/grVg1C/k0VIEGjQl78mUNbI0 RVPOo9uFMswm8YsfbeSkHD7nqpxTbiYUxGjJmjsAXwWuF2LCCkcEZVBhLB7xxHWJ mrhNuN7Q94e4cw7Eyyv+DFROJHULs7s= -----END CERTIFICATE-----Generated at Sat Dec 6 22:18:12 2025 by rpki-client