This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft File: XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft (raw, json) Hash identifier: 4fJ83gW3U1SL1fknPb4zQvWeO9NJNXAj+vn6TZqoqG4= Subject key identifier: 0A:A4:62:A4:13:8D:DC:01:FE:06:A4:B3:24:18:37:DB:74:6B:5E:61 Authority key identifier: 5E:84:25:16:65:70:4C:DD:DF:2F:3F:9B:E8:2E:31:FF:B0:74:A5:8E Certificate issuer: /CN=A9127EAD/serialNumber=5E84251665704CDDDF2F3F9BE82E31FFB074A58E Certificate serial: 0851 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft Manifest number: 084A Signing time: Sat 06 Dec 2025 19:51:08 +0000 Manifest this update: Sat 06 Dec 2025 19:51:08 +0000 Manifest next update: Sat 13 Dec 2025 19:51:08 +0000 Files and hashes: 1: XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl (hash: wqyvv6POSIRsNCWGyiYJGoZ/muoX6wW7S0HFsptR6eg=) 2: 6CAC2064EA2211EA9C2F064AC4F9AE02.roa (hash: TEdKwP64TuQMUa2RFZqVEQD/HQzdAAlp9eIMPDVHh5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:51:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2129 (0x851) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127EAD, serialNumber=5E84251665704CDDDF2F3F9BE82E31FFB074A58E Validity Not Before: Dec 6 19:51:08 2025 GMT Not After : Dec 13 19:51:08 2025 GMT Subject: CN=6934892c-7c2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c4:5e:9d:ed:fe:47:ae:50:7a:40:54:56:da: 73:df:d0:fe:87:e1:6c:d9:1a:5c:b1:fd:58:f5:3b: 3e:9f:26:68:cb:50:83:ca:16:75:27:3b:d3:96:b8: 78:57:72:46:10:f3:8e:63:ec:99:34:7e:e5:a5:88: 95:45:7d:7f:44:dc:48:81:2b:17:2b:39:0e:4b:cd: a2:cf:4b:e1:0d:01:91:20:cd:ce:37:0f:27:89:d3: f2:dd:6a:da:b8:08:37:c2:7d:67:fc:61:25:4b:87: 13:8e:89:6c:f2:50:33:06:3b:ea:8d:44:c5:e6:ef: 1d:f4:aa:aa:54:f1:3b:83:8e:00:13:b8:0a:0f:78: 47:bb:96:d8:5b:47:26:2a:9a:45:b7:e7:e4:33:ba: e2:30:60:af:24:00:06:99:2c:c0:37:9a:4b:db:96: e7:c8:6d:eb:5a:cb:bd:0e:0c:83:98:21:50:5a:67: af:db:b3:9d:83:eb:72:b8:3c:54:03:77:c9:97:cc: c5:84:7d:3c:8e:df:0a:44:59:dc:92:f0:8d:28:01: fa:d4:3b:5e:a1:eb:81:5f:61:33:d8:fe:42:a3:1d: 32:ac:64:bf:12:6a:e9:a2:5d:a4:bc:47:3a:68:62: 46:49:2b:01:a6:e5:72:35:56:9f:aa:4a:7c:c7:bc: 99:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:A4:62:A4:13:8D:DC:01:FE:06:A4:B3:24:18:37:DB:74:6B:5E:61 X509v3 Authority Key Identifier: keyid:5E:84:25:16:65:70:4C:DD:DF:2F:3F:9B:E8:2E:31:FF:B0:74:A5:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:26:62:84:8b:81:4e:81:ec:5c:96:7b:a0:09:0f:e1:92:db: 3d:a1:21:d1:76:a3:e2:72:c9:d9:b2:91:88:7b:59:8a:f5:15: 54:9d:40:99:65:ad:31:de:22:2c:c7:4b:6b:88:48:d3:7d:3b: 4f:64:af:3b:37:11:41:3b:02:d3:a7:d2:51:95:7e:42:af:94: 01:7c:00:ac:1e:24:99:00:90:e4:dd:1d:b6:3d:3a:3f:25:aa: 5b:86:ab:3d:0d:5c:e6:15:62:e0:62:f1:c3:93:e6:02:39:f0: e5:e4:7e:d4:e7:4d:26:fd:a3:bb:0d:a3:72:f9:52:71:d4:f0: d0:5e:12:e9:87:c2:21:77:f4:6c:58:26:8f:e4:be:5b:0e:a7: e2:7f:d8:05:24:26:63:62:ba:fb:4b:48:ca:da:f4:df:70:d7: ac:c3:19:5f:b3:de:0f:89:6e:e5:ae:8f:c5:e6:e0:d3:fa:85: 4f:7e:25:8f:4b:bf:9b:69:07:24:ca:1d:ce:78:bc:64:1e:45: e8:d3:16:0d:42:9b:40:8c:c2:46:9f:3b:dd:85:8a:59:71:e4: c4:42:f2:a7:71:b1:a2:a3:f9:f6:af:62:24:5b:7d:c8:4a:c7: 9c:3d:8d:85:56:3f:02:f0:b8:ef:69:a2:59:c0:9b:f5:ee:06: a4:3f:31:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdFQUQxMTAvBgNVBAUTKDVFODQyNTE2NjU3MDRDRERERjJGM0Y5QkU4MkUzMUZG QjA3NEE1OEUwHhcNMjUxMjA2MTk1MTA4WhcNMjUxMjEzMTk1MTA4WjAYMRYwFAYD VQQDEw02OTM0ODkyYy03YzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMRene3+R65QekBUVtpz39D+h+Fs2Rpcsf1Y9Ts+nyZoy1CDyhZ1JzvTlrh4 V3JGEPOOY+yZNH7lpYiVRX1/RNxIgSsXKzkOS82iz0vhDQGRIM3ONw8nidPy3Wra uAg3wn1n/GElS4cTjols8lAzBjvqjUTF5u8d9KqqVPE7g44AE7gKD3hHu5bYW0cm KppFt+fkM7riMGCvJAAGmSzAN5pL25bnyG3rWsu9DgyDmCFQWmev27Odg+tyuDxU A3fJl8zFhH08jt8KRFnckvCNKAH61DteoeuBX2Ez2P5Cox0yrGS/Emrpol2kvEc6 aGJGSSsBpuVyNVafqkp8x7yZ0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAqkYqQT jdwB/gaksyQYN9t0a15hMB8GA1UdIwQYMBaAFF6EJRZlcEzd3y8/m+guMf+wdKWO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0VBRC9FOUI3MDY2NkVB MjAxMUVBOUNCRkFENDhDNEY5QUUwMi9Yb1FsRm1Wd1ROM2ZMei1iNkM0eF83QjBw WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hvUWxGbVZ3VE4zZkx6LWI2QzR4XzdCMHBZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0VBRC9FOUI3MDY2NkVBMjAxMUVBOUNCRkFENDhDNEY5QUUwMi9Yb1FsRm1Wd1RO M2ZMei1iNkM0eF83QjBwWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmJmKEi4FOgexclnugCQ/hkts9oSHRdqPicsnZspGIe1mK9RVUnUCZ Za0x3iIsx0triEjTfTtPZK87NxFBOwLTp9JRlX5Cr5QBfACsHiSZAJDk3R22PTo/ Japbhqs9DVzmFWLgYvHDk+YCOfDl5H7U500m/aO7DaNy+VJx1PDQXhLph8Ihd/Rs WCaP5L5bDqfif9gFJCZjYrr7S0jK2vTfcNeswxlfs94PiW7lro/F5uDT+oVPfiWP S7+baQckyh3OeLxkHkXo0xYNQptAjMJGnzvdhYpZceTEQvKncbGio/n2r2IkW33I SsecPY2FVj8C8LjvaaJZwJv17gakPzE5 -----END CERTIFICATE-----Generated at Sun Dec 7 02:59:05 2025 by rpki-client