This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft File: XLKYvBpwUBeAXFYfCQoNR5UOar0.mft (raw, json) Hash identifier: JV6DB5uCWai84wl0XtjvMP88OwfBTahV0yqvjzVrXaQ= Subject key identifier: A7:28:60:A2:86:1D:00:D6:BC:2F:BD:8E:74:CE:58:4F:12:A9:8E:82 Authority key identifier: 5C:B2:98:BC:1A:70:50:17:80:5C:56:1F:09:0A:0D:47:95:0E:6A:BD Certificate issuer: /CN=A912BFC5/serialNumber=5CB298BC1A705017805C561F090A0D47950E6ABD Certificate serial: 2564 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft Manifest number: 2564 Signing time: Sat 06 Dec 2025 14:16:19 +0000 Manifest this update: Sat 06 Dec 2025 14:16:18 +0000 Manifest next update: Sat 13 Dec 2025 14:16:18 +0000 Files and hashes: 1: XLKYvBpwUBeAXFYfCQoNR5UOar0.crl (hash: +Kf4mrpL3Uoh6Ja2Os7EGLihZ/K09wCTp9Zj9igxtoU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.crl rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:16:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9572 (0x2564) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BFC5, serialNumber=5CB298BC1A705017805C561F090A0D47950E6ABD Validity Not Before: Dec 6 14:16:18 2025 GMT Not After : Dec 13 14:16:18 2025 GMT Subject: CN=69343ab2-ffe4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:35:ad:9e:40:8d:c2:94:69:ec:36:88:e6:19: 37:a3:90:93:6c:8f:11:2d:ef:34:e7:29:58:b3:7d: 9d:52:06:8f:42:2c:21:91:60:c4:78:5d:44:fe:6d: ad:96:d7:7a:10:ba:c2:26:5e:4d:0c:16:9f:4a:9b: ee:3a:d4:c2:0c:c4:e7:4d:f8:df:8e:35:6f:76:47: bd:02:d0:72:b6:75:a3:b2:7d:03:e6:5b:3a:d6:39: e4:ba:58:83:ee:10:fb:65:79:d0:42:83:23:b7:26: 0a:11:96:37:ea:42:b9:ae:6b:48:77:87:c0:fa:d4: 36:fc:e1:dc:25:f8:5a:64:54:36:7d:bd:03:f7:db: 63:17:26:38:e9:a9:57:14:21:37:c4:78:a9:01:0b: 42:f8:86:1e:0c:65:c1:26:7c:2b:bf:16:e6:f5:06: be:03:bb:6f:56:4f:ed:56:e2:78:7b:fd:4a:89:d9: b8:6f:04:90:b6:7d:b0:ab:2b:a2:f5:e9:d8:e5:b8: 40:39:49:b2:21:19:f3:d3:4e:07:cd:ae:6e:8f:dd: 5b:42:d1:c7:35:d3:ff:f4:53:94:d8:8b:27:de:39: d2:e7:99:89:55:97:1d:d4:ff:87:27:6b:2f:37:0e: 4f:44:9b:02:2b:94:30:24:50:80:59:d1:b4:e4:bc: 8f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:28:60:A2:86:1D:00:D6:BC:2F:BD:8E:74:CE:58:4F:12:A9:8E:82 X509v3 Authority Key Identifier: keyid:5C:B2:98:BC:1A:70:50:17:80:5C:56:1F:09:0A:0D:47:95:0E:6A:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:02:fd:52:2d:99:92:9d:4a:7e:db:a7:e5:8d:b8:d4:51:75: 71:16:a6:67:f2:07:28:77:c9:af:f1:2e:d0:08:58:f7:17:c8: 88:57:b5:7e:4d:68:7d:07:85:f1:c9:b3:19:68:81:5c:51:fb: 65:ce:de:2e:fb:b8:55:97:df:e9:8c:f2:5b:be:d4:f8:13:b4: 55:9d:0c:1e:4f:61:51:40:d2:a1:a8:02:bb:35:94:a1:b9:e1: 0b:e7:32:fe:99:87:97:68:7d:07:85:b4:75:5b:99:33:30:d1: 08:7c:66:0b:37:dd:fd:2e:19:5f:69:72:0c:c3:99:a3:7a:cd: 29:98:b0:9e:69:d2:ee:8a:f5:bb:e3:84:95:cd:e8:4b:47:30: 0a:51:09:b0:73:38:e3:56:18:42:d3:02:7f:78:76:f6:32:11: d3:92:75:4c:de:dd:84:53:87:dc:44:ad:74:e2:06:db:a0:32: ad:8f:8a:e4:a1:4a:03:27:7f:77:b6:a6:bc:0c:34:8b:bf:13: b7:11:f2:c8:b2:4b:3b:fd:0e:7e:57:29:c3:f5:30:a2:ac:4b: 64:a5:de:4a:eb:af:66:24:2a:9b:e9:0d:32:41:01:43:b8:55: c0:b3:1a:76:05:1d:b1:6e:38:ac:ad:9e:14:79:1a:1e:0a:6c: 70:70:b2:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJGQzUxMTAvBgNVBAUTKDVDQjI5OEJDMUE3MDUwMTc4MDVDNTYxRjA5MEEwRDQ3 OTUwRTZBQkQwHhcNMjUxMjA2MTQxNjE4WhcNMjUxMjEzMTQxNjE4WjAYMRYwFAYD VQQDEw02OTM0M2FiMi1mZmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0zWtnkCNwpRp7DaI5hk3o5CTbI8RLe805ylYs32dUgaPQiwhkWDEeF1E/m2t ltd6ELrCJl5NDBafSpvuOtTCDMTnTfjfjjVvdke9AtBytnWjsn0D5ls61jnkuliD 7hD7ZXnQQoMjtyYKEZY36kK5rmtId4fA+tQ2/OHcJfhaZFQ2fb0D99tjFyY46alX FCE3xHipAQtC+IYeDGXBJnwrvxbm9Qa+A7tvVk/tVuJ4e/1Kidm4bwSQtn2wqyui 9enY5bhAOUmyIRnz004Hza5uj91bQtHHNdP/9FOU2Isn3jnS55mJVZcd1P+HJ2sv Nw5PRJsCK5QwJFCAWdG05LyPUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKcoYKKG HQDWvC+9jnTOWE8SqY6CMB8GA1UdIwQYMBaAFFyymLwacFAXgFxWHwkKDUeVDmq9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkZDNS8zRjM0MjAzRTI5 MDUxMUU1OTNCRkM2MjZDNEY5QUUwMi9YTEtZdkJwd1VCZUFYRllmQ1FvTlI1VU9h cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hMS1l2QnB3VUJlQVhGWWZDUW9OUjVVT2FyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkZDNS8zRjM0MjAzRTI5MDUxMUU1OTNCRkM2MjZDNEY5QUUwMi9YTEtZdkJwd1VC ZUFYRllmQ1FvTlI1VU9hcjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2Av1SLZmSnUp+26fljbjUUXVxFqZn8gcod8mv8S7QCFj3F8iIV7V+ TWh9B4XxybMZaIFcUftlzt4u+7hVl9/pjPJbvtT4E7RVnQweT2FRQNKhqAK7NZSh ueEL5zL+mYeXaH0HhbR1W5kzMNEIfGYLN939LhlfaXIMw5mjes0pmLCeadLuivW7 44SVzehLRzAKUQmwczjjVhhC0wJ/eHb2MhHTknVM3t2EU4fcRK104gbboDKtj4rk oUoDJ393tqa8DDSLvxO3EfLIsks7/Q5+VynD9TCirEtkpd5K669mJCqb6Q0yQQFD uFXAsxp2BR2xbjisrZ4UeRoeCmxwcLI2 -----END CERTIFICATE-----Generated at Sat Dec 6 17:30:03 2025 by rpki-client