This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft File: XQ11AElW7cyrm4QnGnNA5jhV_4o.mft (raw, json) Hash identifier: UZcAzLAGAwK/3ltCSsxvIhht9SmZ7tgtCbYJYW75h3o= Subject key identifier: 88:2E:0B:E6:95:46:07:E7:BE:0D:76:9A:3A:E8:DB:0A:2C:D6:7B:FE Authority key identifier: 5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A Certificate issuer: /CN=A912BC39/serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Certificate serial: 077F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft Manifest number: 0771 Signing time: Sat 06 Dec 2025 20:37:57 +0000 Manifest this update: Sat 06 Dec 2025 20:37:56 +0000 Manifest next update: Sat 13 Dec 2025 20:37:56 +0000 Files and hashes: 1: XQ11AElW7cyrm4QnGnNA5jhV_4o.crl (hash: 9ytrYr5jhvJxll01bsecDmUN4/yHy6Q0KkaHzQFJU7A=) 2: 8EBA772E3F2B11EB87759716C4F9AE02.roa (hash: JhJ29hsZ9Nl8Kc5Vc5GMGK+cSOOJDZ3+fb8ZbDKNP/w=) 3: 688EAE1E8A1911EC94921D85C4F9AE02.roa (hash: +jUuW9+jw1JUgmOZj9N0BtBUU0s0p/K1kZNOedeoZQI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 20:37:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1919 (0x77f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BC39, serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Validity Not Before: Dec 6 20:37:56 2025 GMT Not After : Dec 13 20:37:56 2025 GMT Subject: CN=69349425-e2b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:2c:0e:b5:d1:42:23:bc:4c:c3:4b:78:c0:6e: 0c:59:cc:5a:c9:a4:50:e7:4f:11:67:75:41:12:b0: dc:e4:62:cf:27:6d:4c:25:2b:d1:81:72:b5:b2:be: f0:9f:8e:d7:6f:35:3c:e5:a6:9b:5a:a0:59:b8:aa: d6:83:10:d7:99:57:10:72:88:ee:b2:87:f4:8a:4d: 31:92:6c:24:6d:73:65:7d:c3:f4:85:96:ca:c1:51: 73:28:0d:2c:cd:d8:ed:e9:01:c3:1d:0d:37:21:36: 7a:75:35:4a:1d:1a:7e:5f:93:6a:b9:dc:7b:b7:35: 2c:72:0c:13:64:3d:2e:e8:35:b4:e1:5b:9c:06:14: c9:6e:96:7e:e4:a2:38:c6:f4:2d:74:eb:e2:d9:48: 93:dd:b4:b5:e4:30:2d:19:06:3b:90:e5:ca:4d:97: b9:98:f5:34:12:9c:53:75:6a:23:96:23:d8:df:7b: cd:b5:d3:dc:9e:0c:8a:51:61:cb:dc:9d:4c:df:c9: 56:83:5a:cc:19:8d:79:6f:60:71:20:ac:42:52:16: 2c:a3:c9:49:7c:80:9a:a5:58:a1:b0:9a:f2:1f:b3: 1f:99:74:42:65:82:7d:0f:27:e4:8c:66:d2:ef:8e: 74:67:94:e8:11:29:c4:af:fd:b5:7f:74:7b:b8:aa: de:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:2E:0B:E6:95:46:07:E7:BE:0D:76:9A:3A:E8:DB:0A:2C:D6:7B:FE X509v3 Authority Key Identifier: keyid:5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:e1:b0:9c:46:a0:e1:bc:1e:46:74:25:dc:44:6f:f1:03:fb: 80:a5:80:5e:dd:99:e5:4e:09:a9:33:09:d0:bc:68:51:70:02: ac:a3:36:57:f8:7b:b6:72:34:d0:d7:e2:fc:63:d7:96:d0:94: 1d:ae:c3:8d:5c:c3:83:3d:01:89:61:76:e0:db:3a:c6:d0:a9: 12:52:72:66:e1:1f:8e:4b:2c:3e:2e:59:34:b7:ff:0b:9d:d8: 93:18:96:b5:6b:35:d1:c1:5d:e3:69:84:cb:1e:b8:1a:a7:71: 7f:d3:6f:03:11:b8:1f:1a:91:e1:01:13:f3:1a:c5:3a:07:ed: 3d:d7:87:01:08:9a:eb:5f:26:de:39:d2:66:62:ad:4d:9e:20: a8:c5:27:63:24:b4:92:d9:db:a0:57:01:65:e6:3b:16:9a:40: 0a:fe:fd:1e:15:9c:e8:05:a6:34:56:cb:f6:52:e6:24:42:2e: 37:65:60:a2:94:53:ec:87:c0:ea:90:54:40:82:c1:d6:d6:85: cb:05:57:55:82:da:28:82:ef:b1:56:d7:d9:c9:80:ea:02:20: d0:72:54:3b:18:6d:8d:c2:82:5a:5e:24:3a:27:fb:62:35:8f: 45:7e:25:d8:9b:35:6a:92:d9:eb:ce:07:5d:47:b2:32:95:ed: e5:d0:2d:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJDMzkxMTAvBgNVBAUTKDVEMEQ3NTAwNDk1NkVEQ0NBQjlCODQyNzFBNzM0MEU2 Mzg1NUZGOEEwHhcNMjUxMjA2MjAzNzU2WhcNMjUxMjEzMjAzNzU2WjAYMRYwFAYD VQQDEw02OTM0OTQyNS1lMmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzCwOtdFCI7xMw0t4wG4MWcxayaRQ508RZ3VBErDc5GLPJ21MJSvRgXK1sr7w n47XbzU85aabWqBZuKrWgxDXmVcQcojusof0ik0xkmwkbXNlfcP0hZbKwVFzKA0s zdjt6QHDHQ03ITZ6dTVKHRp+X5Nqudx7tzUscgwTZD0u6DW04VucBhTJbpZ+5KI4 xvQtdOvi2UiT3bS15DAtGQY7kOXKTZe5mPU0EpxTdWojliPY33vNtdPcngyKUWHL 3J1M38lWg1rMGY15b2BxIKxCUhYso8lJfICapVihsJryH7MfmXRCZYJ9DyfkjGbS 7450Z5ToESnEr/21f3R7uKrePQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIguC+aV Rgfnvg12mjro2wos1nv+MB8GA1UdIwQYMBaAFF0NdQBJVu3Mq5uEJxpzQOY4Vf+K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkMzOS9CMzdCMTU4RTNG MjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdjeXJtNFFuR25OQTVqaFZf NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hRMTFBRWxXN2N5cm00UW5Hbk5BNWpoVl80by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkMzOS9CMzdCMTU4RTNGMjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdj eXJtNFFuR25OQTVqaFZfNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBd4bCcRqDhvB5GdCXcRG/xA/uApYBe3ZnlTgmpMwnQvGhRcAKsozZX +Hu2cjTQ1+L8Y9eW0JQdrsONXMODPQGJYXbg2zrG0KkSUnJm4R+OSyw+Llk0t/8L ndiTGJa1azXRwV3jaYTLHrgap3F/028DEbgfGpHhARPzGsU6B+0914cBCJrrXybe OdJmYq1NniCoxSdjJLSS2dugVwFl5jsWmkAK/v0eFZzoBaY0Vsv2UuYkQi43ZWCi lFPsh8DqkFRAgsHW1oXLBVdVgtoogu+xVtfZyYDqAiDQclQ7GG2NwoJaXiQ6J/ti NY9FfiXYmzVqktnrzgddR7Iyle3l0C36 -----END CERTIFICATE-----Generated at Sun Dec 7 00:04:01 2025 by rpki-client