This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912E791/19C68D063A0511ECA944051BC4F9AE02/xNe5S537ZPXBiScjMNvcrSp9AW4.mft File: xNe5S537ZPXBiScjMNvcrSp9AW4.mft (raw, json) Hash identifier: TLDth2g+oi+Fr5l1AO/VOKPeAvWFKWesajH/5irNask= Subject key identifier: D6:66:56:67:C6:B1:9D:C8:82:8F:2A:13:3B:16:F4:CC:D8:37:11:94 Authority key identifier: C4:D7:B9:4B:9D:FB:64:F5:C1:89:27:23:30:DB:DC:AD:2A:7D:01:6E Certificate issuer: /CN=A912E791/serialNumber=C4D7B94B9DFB64F5C189272330DBDCAD2A7D016E Certificate serial: 0526 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNe5S537ZPXBiScjMNvcrSp9AW4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E791/19C68D063A0511ECA944051BC4F9AE02/xNe5S537ZPXBiScjMNvcrSp9AW4.mft Manifest number: 0510 Signing time: Thu 04 Dec 2025 22:16:52 +0000 Manifest this update: Thu 04 Dec 2025 22:16:52 +0000 Manifest next update: Thu 11 Dec 2025 22:16:52 +0000 Files and hashes: 1: xNe5S537ZPXBiScjMNvcrSp9AW4.crl (hash: MNDqO9PuKr+5W39s4wMXPbxQUddI+ueL/pSN84bX4cQ=) 2: 9E9D5C66157C11F0B4CD801EC4F9AE02.roa (hash: 91lchPpa042FpgG6srtZePU2M6YFFk53ibQ4Z1+SlLE=) 3: 83595478B65E11EF8DB85B32C4F9AE02.roa (hash: NqCe6ivtot+2EiDBeB5rI+v3Md3AvU9IqI8GrM7MqMs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E791/19C68D063A0511ECA944051BC4F9AE02/xNe5S537ZPXBiScjMNvcrSp9AW4.crl rsync://rpki.apnic.net/member_repository/A912E791/19C68D063A0511ECA944051BC4F9AE02/xNe5S537ZPXBiScjMNvcrSp9AW4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNe5S537ZPXBiScjMNvcrSp9AW4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:16:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1318 (0x526) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E791, serialNumber=C4D7B94B9DFB64F5C189272330DBDCAD2A7D016E Validity Not Before: Dec 4 22:16:52 2025 GMT Not After : Dec 11 22:16:52 2025 GMT Subject: CN=69320854-8215 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:57:20:46:83:61:4e:12:d0:58:c0:3b:bc:37: fe:c2:56:54:d4:cf:24:04:cc:c0:72:53:28:54:2d: b9:25:e3:84:b0:08:bf:ee:fc:0d:b3:40:1b:0c:6e: 30:33:0a:d4:62:47:00:31:b8:10:50:2f:09:e0:ff: 28:29:e2:52:a6:74:a8:67:7b:d4:ed:5b:83:f8:66: 2b:f5:b4:c0:4c:83:16:fb:1a:c5:f6:b6:fc:4a:a4: 7c:71:31:a4:c7:a4:07:e1:8b:b4:50:c2:ed:4c:63: ad:27:9e:a4:be:de:d3:cc:d6:87:96:44:24:86:fc: e0:05:ec:90:75:94:c1:d9:ce:35:04:e8:c9:d8:43: 48:c2:65:27:f5:8d:93:72:37:32:ab:1e:2a:55:2b: 85:f0:ad:55:ab:65:a8:48:47:51:64:d2:f4:17:68: de:a1:1d:b5:fd:3d:12:76:cd:22:51:4f:c9:3a:b0: 7c:04:b2:f2:a0:d2:fe:26:8f:19:f1:33:bf:07:74: 2a:7d:04:c8:c5:a4:57:98:79:57:40:9f:30:ab:05: b4:df:fa:a3:e7:63:80:a9:9d:15:ac:9b:02:95:02: f8:cf:14:a8:e3:9f:c0:d7:17:dc:ed:b5:ac:52:49: f9:71:e3:59:f4:fc:31:01:d1:a9:d8:d3:ad:6a:2f: bb:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:66:56:67:C6:B1:9D:C8:82:8F:2A:13:3B:16:F4:CC:D8:37:11:94 X509v3 Authority Key Identifier: keyid:C4:D7:B9:4B:9D:FB:64:F5:C1:89:27:23:30:DB:DC:AD:2A:7D:01:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E791/19C68D063A0511ECA944051BC4F9AE02/xNe5S537ZPXBiScjMNvcrSp9AW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNe5S537ZPXBiScjMNvcrSp9AW4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E791/19C68D063A0511ECA944051BC4F9AE02/xNe5S537ZPXBiScjMNvcrSp9AW4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:a2:d0:d2:96:fa:53:2a:0d:87:7f:fa:c8:7f:5c:6d:20:12: f1:c4:fc:ec:58:0c:d0:87:5c:85:fe:94:15:33:0e:6f:31:1d: 36:10:d5:c0:ec:12:7c:cd:62:55:16:d0:a0:4b:b2:8b:92:bd: 25:b8:b7:20:ea:66:45:3e:5c:44:a7:71:df:64:28:b2:7b:50: b9:30:cb:af:24:4a:2b:78:16:05:18:4a:d3:08:d6:b8:69:31: 3a:d1:6e:3d:f2:9e:74:cf:0b:af:05:12:a7:97:3c:58:6d:24: 28:a8:dc:a1:09:15:95:97:8c:a9:c8:18:d2:28:23:87:87:e7: f6:c7:de:9d:c4:8f:81:e0:53:00:92:3c:d4:b7:09:43:f3:4c: 97:25:8a:17:e0:03:a1:1b:6a:a1:4e:ef:52:47:42:29:d4:d1: 55:88:93:13:7f:fa:73:0b:3a:1f:b3:72:09:58:e3:78:ae:ab: 89:bd:45:bc:7a:83:3a:77:c2:06:3c:22:e4:ec:5a:f0:0b:21: ad:6f:15:8e:ce:db:c5:e2:7f:91:aa:05:47:65:ce:7a:14:62: 82:89:91:91:f2:7d:5d:bd:4f:cd:70:82:57:0b:28:ad:67:4f: de:f5:69:2a:4c:6b:90:98:4d:fb:ee:40:fb:45:1b:28:bf:70: 25:42:b7:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU3OTExMTAvBgNVBAUTKEM0RDdCOTRCOURGQjY0RjVDMTg5MjcyMzMwREJEQ0FE MkE3RDAxNkUwHhcNMjUxMjA0MjIxNjUyWhcNMjUxMjExMjIxNjUyWjAYMRYwFAYD VQQDEw02OTMyMDg1NC04MjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFcgRoNhThLQWMA7vDf+wlZU1M8kBMzAclMoVC25JeOEsAi/7vwNs0AbDG4w MwrUYkcAMbgQUC8J4P8oKeJSpnSoZ3vU7VuD+GYr9bTATIMW+xrF9rb8SqR8cTGk x6QH4Yu0UMLtTGOtJ56kvt7TzNaHlkQkhvzgBeyQdZTB2c41BOjJ2ENIwmUn9Y2T cjcyqx4qVSuF8K1Vq2WoSEdRZNL0F2jeoR21/T0Sds0iUU/JOrB8BLLyoNL+Jo8Z 8TO/B3QqfQTIxaRXmHlXQJ8wqwW03/qj52OAqZ0VrJsClQL4zxSo45/A1xfc7bWs Ukn5ceNZ9PwxAdGp2NOtai+7TwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNZmVmfG sZ3Igo8qEzsW9MzYNxGUMB8GA1UdIwQYMBaAFMTXuUud+2T1wYknIzDb3K0qfQFu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTc5MS8xOUM2OEQwNjNB MDUxMUVDQTk0NDA1MUJDNEY5QUUwMi94TmU1UzUzN1pQWEJpU2NqTU52Y3JTcDlB VzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hOZTVTNTM3WlBYQmlTY2pNTnZjclNwOUFXNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTc5MS8xOUM2OEQwNjNBMDUxMUVDQTk0NDA1MUJDNEY5QUUwMi94TmU1UzUzN1pQ WEJpU2NqTU52Y3JTcDlBVzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2otDSlvpTKg2Hf/rIf1xtIBLxxPzsWAzQh1yF/pQVMw5vMR02ENXA 7BJ8zWJVFtCgS7KLkr0luLcg6mZFPlxEp3HfZCiye1C5MMuvJEoreBYFGErTCNa4 aTE60W498p50zwuvBRKnlzxYbSQoqNyhCRWVl4ypyBjSKCOHh+f2x96dxI+B4FMA kjzUtwlD80yXJYoX4AOhG2qhTu9SR0Ip1NFViJMTf/pzCzofs3IJWON4rquJvUW8 eoM6d8IGPCLk7FrwCyGtbxWOztvF4n+RqgVHZc56FGKCiZGR8n1dvU/NcIJXCyit Z0/e9WkqTGuQmE377kD7RRsov3AlQreY -----END CERTIFICATE-----Generated at Sat Dec 6 13:28:22 2025 by rpki-client