This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft File: XfVm12I2fCjH8_ElYbRxa4yhuWY.mft (raw, json) Hash identifier: IA7VTlReudIZggSZhuOmeC7Fmxa5/ZFTquXfv7Azg5A= Subject key identifier: 39:78:4C:60:7B:AF:55:7F:B6:7A:B4:70:F9:88:1C:F0:58:41:7B:E4 Authority key identifier: 5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 Certificate issuer: /CN=A9133B47/serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Certificate serial: 012A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft Manifest number: 0127 Signing time: Fri 05 Dec 2025 02:45:40 +0000 Manifest this update: Fri 05 Dec 2025 02:45:39 +0000 Manifest next update: Fri 12 Dec 2025 02:45:39 +0000 Files and hashes: 1: XfVm12I2fCjH8_ElYbRxa4yhuWY.crl (hash: lpOYEPolWoDis9u+84l/xchNctX9GCGiWMCA4ox9hKI=) 2: 23B1A0120FA511EFB28F5235C4F9AE02.roa (hash: 1j2rFTty2/H954Iwvk/ZWmtqptjhE7lYs+ZEPtYw42E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:45:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133B47, serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Validity Not Before: Dec 5 02:45:39 2025 GMT Not After : Dec 12 02:45:39 2025 GMT Subject: CN=69324753-08c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:75:cc:74:bf:3b:e0:a3:62:9c:aa:21:83:7c: 4d:a5:86:c1:39:23:81:f2:d8:d5:e0:c7:b7:bf:42: ab:e7:bd:c7:68:94:a8:cc:ec:85:45:c2:84:19:02: 5b:6a:3f:00:bf:cf:40:f7:ad:f2:5a:1d:78:99:1f: cd:9f:fc:33:69:9c:06:83:ea:66:45:b8:a4:1e:51: 01:16:04:14:69:20:20:a6:38:00:f8:b4:3a:a2:e2: d0:32:1f:38:f6:cf:88:31:84:86:75:08:39:e2:3a: 3c:6e:81:14:b3:f5:97:4c:69:56:4c:41:63:3f:55: b4:7b:a0:62:1b:38:2b:ab:3a:9e:35:55:5f:2d:c1: fe:ce:46:2a:a1:dc:6c:f8:36:8e:6c:97:3c:60:2a: 15:e8:14:52:96:36:4c:fc:94:0b:17:e9:46:ea:98: b0:2b:be:98:8d:50:cd:77:94:31:56:8c:02:76:d5: 8f:41:35:e8:8d:7b:42:40:2e:6e:9e:dc:47:fe:f2: 3f:6e:0d:ef:2c:d9:b1:42:22:6d:e5:b8:b2:74:f4: 83:7f:15:85:0f:89:04:a8:73:21:26:27:2c:08:1d: 3c:ac:64:7b:f7:fa:fa:e1:08:9a:9a:64:e6:3f:a7: e7:3e:9a:7b:b4:3d:fa:40:67:3f:b9:3d:e7:85:1a: f2:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:78:4C:60:7B:AF:55:7F:B6:7A:B4:70:F9:88:1C:F0:58:41:7B:E4 X509v3 Authority Key Identifier: keyid:5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:06:7d:10:44:23:6f:9c:4b:bd:d8:8f:41:c8:76:91:f0:4d: 20:0b:ee:1b:03:9c:11:1f:dd:72:d2:27:20:d5:ce:af:62:3b: 3f:02:ad:8e:aa:0d:17:1c:80:de:0a:5c:96:07:c6:97:82:4f: d4:89:bb:96:9f:8d:4d:db:7f:9f:01:bd:96:d6:27:45:a3:4e: 71:43:7d:19:71:66:3d:5a:25:dd:4c:c4:61:85:c5:70:1f:ce: da:59:99:5e:b6:48:cc:86:74:55:93:ab:87:0c:06:21:95:6f: 61:21:09:b2:dd:17:ce:4f:0a:cb:b5:f1:60:6e:47:fd:54:ec: 12:9e:94:7c:0c:58:31:e6:ab:3d:db:02:76:d6:f2:2b:a5:74: 5c:d2:f4:80:b6:0b:11:cb:21:ee:08:e5:9c:b2:0f:16:a1:4d: ab:2f:19:15:18:5f:90:36:3f:4e:f5:94:ce:2b:42:ec:e1:10: 4e:e8:75:b8:0d:10:28:1f:19:1e:3e:1e:92:60:38:f7:a3:1c: 72:48:dd:59:7b:be:a7:60:64:d8:08:0b:8f:8a:e0:70:55:44: 2c:8f:ef:47:cb:2c:a7:bc:94:12:f7:ee:43:c2:87:17:de:59: 8e:6f:17:84:d7:6b:f8:9b:d8:64:1f:9c:11:81:7a:3f:1e:a4: 40:91:f5:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNCNDcxMTAvBgNVBAUTKDVERjU2NkQ3NjIzNjdDMjhDN0YzRjEyNTYxQjQ3MTZC OENBMUI5NjYwHhcNMjUxMjA1MDI0NTM5WhcNMjUxMjEyMDI0NTM5WjAYMRYwFAYD VQQDEw02OTMyNDc1My0wOGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXXMdL874KNinKohg3xNpYbBOSOB8tjV4Me3v0Kr573HaJSozOyFRcKEGQJb aj8Av89A963yWh14mR/Nn/wzaZwGg+pmRbikHlEBFgQUaSAgpjgA+LQ6ouLQMh84 9s+IMYSGdQg54jo8boEUs/WXTGlWTEFjP1W0e6BiGzgrqzqeNVVfLcH+zkYqodxs +DaObJc8YCoV6BRSljZM/JQLF+lG6piwK76YjVDNd5QxVowCdtWPQTXojXtCQC5u ntxH/vI/bg3vLNmxQiJt5biydPSDfxWFD4kEqHMhJicsCB08rGR79/r64QiammTm P6fnPpp7tD36QGc/uT3nhRryJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDl4TGB7 r1V/tnq0cPmIHPBYQXvkMB8GA1UdIwQYMBaAFF31ZtdiNnwox/PxJWG0cWuMoblm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0I0Ny84NzFCOTI5NDBG QTQxMUVGQTFBMTY5MzRDNEY5QUUwMi9YZlZtMTJJMmZDakg4X0VsWWJSeGE0eWh1 V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hmVm0xMkkyZkNqSDhfRWxZYlJ4YTR5aHVXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0I0Ny84NzFCOTI5NDBGQTQxMUVGQTFBMTY5MzRDNEY5QUUwMi9YZlZtMTJJMmZD akg4X0VsWWJSeGE0eWh1V1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbBn0QRCNvnEu92I9ByHaR8E0gC+4bA5wRH91y0icg1c6vYjs/Aq2O qg0XHIDeClyWB8aXgk/UibuWn41N23+fAb2W1idFo05xQ30ZcWY9WiXdTMRhhcVw H87aWZletkjMhnRVk6uHDAYhlW9hIQmy3RfOTwrLtfFgbkf9VOwSnpR8DFgx5qs9 2wJ21vIrpXRc0vSAtgsRyyHuCOWcsg8WoU2rLxkVGF+QNj9O9ZTOK0Ls4RBO6HW4 DRAoHxkePh6SYDj3oxxySN1Ze76nYGTYCAuPiuBwVUQsj+9HyyynvJQS9+5DwocX 3lmObxeE12v4m9hkH5wRgXo/HqRAkfX2 -----END CERTIFICATE-----Generated at Sun Dec 7 00:01:59 2025 by rpki-client