This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft File: xG1ZE_bCUMau4vMnRTXOhmKVufo.mft (raw, json) Hash identifier: QaE7MrVAhpZDnw5UpENbcXU0YN1tbbxmxkEaH+CsV0o= Subject key identifier: AF:9C:1B:06:E5:D7:E9:D9:8E:90:69:2B:DA:9F:7E:AA:5F:F5:4D:49 Authority key identifier: C4:6D:59:13:F6:C2:50:C6:AE:E2:F3:27:45:35:CE:86:62:95:B9:FA Certificate issuer: /CN=A9148B83/serialNumber=C46D5913F6C250C6AEE2F3274535CE866295B9FA Certificate serial: 06C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft Manifest number: 06B5 Signing time: Sat 06 Dec 2025 21:10:52 +0000 Manifest this update: Sat 06 Dec 2025 21:10:52 +0000 Manifest next update: Sat 13 Dec 2025 21:10:52 +0000 Files and hashes: 1: xG1ZE_bCUMau4vMnRTXOhmKVufo.crl (hash: GELsxGrYoMke84e2xxwp75ha1BvF17QTQT1eCnlPWxM=) 2: 65FE79B8885D11EB81454E41C4F9AE02.roa (hash: jIcmISVPA5DP2aVKanXlgtnTLpIc4xkMqPcAMV4fzi0=) 3: 009E969E885C11EB88A7723DC4F9AE02.roa (hash: K6g4QgChsxgzRfHFt3YwGm0Ei1HU3rEHfJ2P36tg9XM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.crl rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:10:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1730 (0x6c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148B83, serialNumber=C46D5913F6C250C6AEE2F3274535CE866295B9FA Validity Not Before: Dec 6 21:10:52 2025 GMT Not After : Dec 13 21:10:52 2025 GMT Subject: CN=69349bdc-c90b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:eb:0b:29:07:77:86:46:76:38:fe:b9:eb:80: aa:ee:77:5c:cc:e4:ce:12:05:cd:db:88:55:92:25: 37:37:5b:6c:09:5f:7e:bd:9d:9b:f5:e3:c5:85:ac: ba:3e:5d:45:76:dc:6e:a4:5c:f0:d7:c3:64:99:88: cb:89:cc:74:d5:11:ce:5a:c3:cd:cf:f3:a7:91:fc: a9:1c:ba:44:84:52:16:7b:9a:05:14:f6:06:24:5c: cc:7c:2d:e4:c3:8e:d3:11:6a:94:d6:01:80:88:6e: 17:47:0a:06:52:8f:9c:24:df:75:88:ab:21:6c:10: 8f:0e:9d:63:fa:23:38:4d:24:dd:32:02:72:50:14: 3e:d1:d0:64:b6:ca:08:ec:27:c4:0a:93:3c:c2:7b: 5a:48:45:50:7a:12:f1:f2:92:91:15:a5:32:79:3d: 96:89:5b:58:a6:59:5f:55:8b:57:59:13:16:ac:74: 97:ac:98:f6:87:17:00:d8:d2:8b:c6:7c:27:6d:8a: 74:b3:be:1a:d4:e2:7c:ed:b3:eb:e5:08:79:0f:30: 12:0c:7f:64:90:6e:07:f3:87:f3:98:d4:f0:4b:fe: 37:27:ef:41:be:12:6d:c8:71:09:f2:54:a2:03:1c: 27:04:39:8a:b5:98:2b:1f:e0:19:cc:25:d6:c3:41: dc:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:9C:1B:06:E5:D7:E9:D9:8E:90:69:2B:DA:9F:7E:AA:5F:F5:4D:49 X509v3 Authority Key Identifier: keyid:C4:6D:59:13:F6:C2:50:C6:AE:E2:F3:27:45:35:CE:86:62:95:B9:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:7f:b8:db:4e:79:05:2c:3f:79:1e:9d:93:14:53:c3:cd:13: 04:68:83:47:97:5d:22:bb:8d:77:83:eb:d3:8c:99:c5:09:cb: 82:1a:ea:26:49:09:41:3c:bc:45:74:06:b2:b8:f2:88:77:7a: 08:4e:47:25:42:73:47:60:2a:54:cb:ce:fc:d1:38:b6:7b:a8: f9:fb:28:1f:59:ce:a6:8e:bd:2e:6e:9d:4e:7a:44:b6:9c:e8: 80:f7:8d:58:db:a6:44:f8:5a:4c:c3:e8:b4:21:80:ed:15:a4: 6c:a9:28:72:70:7a:47:98:6a:7a:74:ae:56:7f:12:d0:0c:8f: dd:18:5c:8b:6c:5a:53:5b:77:b3:dc:38:d1:25:c5:b5:bd:10: 09:d4:e0:20:f8:fc:5e:4c:e8:f8:b7:31:99:6d:35:0b:dd:c4: 41:bb:95:3d:43:c4:96:04:9b:06:7d:e4:db:94:1b:0d:4b:50: be:75:31:24:cf:a5:79:2c:2a:26:16:bc:51:8a:7f:69:72:ca: dc:ea:6f:a1:76:1a:81:ee:6e:04:f7:14:9f:18:cf:bc:27:17: 51:65:22:5e:25:8f:8f:f3:7b:7e:99:9f:de:e1:86:5d:89:5b: 6e:90:a8:3e:97:74:62:f1:5e:eb:38:eb:fd:fc:46:39:d0:cf: c1:39:69:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCODMxMTAvBgNVBAUTKEM0NkQ1OTEzRjZDMjUwQzZBRUUyRjMyNzQ1MzVDRTg2 NjI5NUI5RkEwHhcNMjUxMjA2MjExMDUyWhcNMjUxMjEzMjExMDUyWjAYMRYwFAYD VQQDEw02OTM0OWJkYy1jOTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+sLKQd3hkZ2OP6564Cq7ndczOTOEgXN24hVkiU3N1tsCV9+vZ2b9ePFhay6 Pl1FdtxupFzw18NkmYjLicx01RHOWsPNz/OnkfypHLpEhFIWe5oFFPYGJFzMfC3k w47TEWqU1gGAiG4XRwoGUo+cJN91iKshbBCPDp1j+iM4TSTdMgJyUBQ+0dBktsoI 7CfECpM8wntaSEVQehLx8pKRFaUyeT2WiVtYpllfVYtXWRMWrHSXrJj2hxcA2NKL xnwnbYp0s74a1OJ87bPr5Qh5DzASDH9kkG4H84fzmNTwS/43J+9BvhJtyHEJ8lSi AxwnBDmKtZgrH+AZzCXWw0Hc3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK+cGwbl 1+nZjpBpK9qffqpf9U1JMB8GA1UdIwQYMBaAFMRtWRP2wlDGruLzJ0U1zoZilbn6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEI4My83N0FBNDE0Njg3 RTExMUVCQjUwMUNCMjVDNEY5QUUwMi94RzFaRV9iQ1VNYXU0dk1uUlRYT2htS1Z1 Zm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hHMVpFX2JDVU1hdTR2TW5SVFhPaG1LVnVmby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEI4My83N0FBNDE0Njg3RTExMUVCQjUwMUNCMjVDNEY5QUUwMi94RzFaRV9iQ1VN YXU0dk1uUlRYT2htS1Z1Zm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbf7jbTnkFLD95Hp2TFFPDzRMEaINHl10iu413g+vTjJnFCcuCGuom SQlBPLxFdAayuPKId3oITkclQnNHYCpUy8780Ti2e6j5+ygfWc6mjr0ubp1OekS2 nOiA941Y26ZE+FpMw+i0IYDtFaRsqShycHpHmGp6dK5WfxLQDI/dGFyLbFpTW3ez 3DjRJcW1vRAJ1OAg+PxeTOj4tzGZbTUL3cRBu5U9Q8SWBJsGfeTblBsNS1C+dTEk z6V5LComFrxRin9pcsrc6m+hdhqB7m4E9xSfGM+8JxdRZSJeJY+P83t+mZ/e4YZd iVtukKg+l3Ri8V7rOOv9/EY50M/BOWmB -----END CERTIFICATE-----Generated at Sun Dec 7 00:57:21 2025 by rpki-client