This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft File: xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft (raw, json) Hash identifier: TMiHLoBHg4iMC8oYl7ey9kcntlv9cuTcbAh1Dwpd7E4= Subject key identifier: 28:AE:F3:CB:F8:AA:FB:EB:B6:36:B0:BB:7B:1F:60:09:82:3A:01:BF Authority key identifier: C6:93:99:B1:32:E1:AE:6B:2E:A3:11:6E:14:B1:00:1C:08:19:DD:A9 Certificate issuer: /CN=A914D05C/serialNumber=C69399B132E1AE6B2EA3116E14B1001C0819DDA9 Certificate serial: 06D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft Manifest number: 06D0 Signing time: Thu 04 Dec 2025 20:54:42 +0000 Manifest this update: Thu 04 Dec 2025 20:54:42 +0000 Manifest next update: Thu 11 Dec 2025 20:54:42 +0000 Files and hashes: 1: xpOZsTLhrmsuoxFuFLEAHAgZ3ak.crl (hash: CbtESdnekz+EKkm8KeDhe5yx0UOUuRCtwM6iVGPuZjQ=) 2: 546C2E447BD711EB8DB97853C4F9AE02.roa (hash: LymCYpP9ODjDnMZgIvd8/QCM8E6rGc1JYF+pBCdV8o4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.crl rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 20:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1749 (0x6d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D05C, serialNumber=C69399B132E1AE6B2EA3116E14B1001C0819DDA9 Validity Not Before: Dec 4 20:54:42 2025 GMT Not After : Dec 11 20:54:42 2025 GMT Subject: CN=6931f512-0f92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:40:d2:45:de:c5:14:fb:4e:07:6f:f4:e7:c5: 0e:25:1a:93:cf:f8:bf:d0:06:a9:f5:e6:b0:b7:d8: 01:b5:63:3a:99:88:bf:bb:c0:78:9d:b5:8e:c5:8f: b9:e5:62:08:ff:b0:19:c8:96:6a:0e:0a:88:ab:c0: f8:66:1c:e7:22:95:2f:4b:e9:b5:50:64:0d:b9:29: fe:45:bd:53:2f:dd:31:6e:b0:95:eb:a3:39:2c:6f: 0c:7a:91:bb:9c:28:1a:27:70:3e:ce:b7:90:46:b7: 35:bb:21:b3:90:a5:f1:a6:0a:59:f5:b6:8a:ab:1e: a3:5a:db:ab:b4:b0:09:d1:ee:5d:60:47:1d:d6:5a: e1:96:99:f1:e0:7b:4d:93:13:8e:91:02:89:0e:7e: df:2c:86:78:0f:ad:2c:db:45:6d:44:a7:28:34:7d: 3c:74:94:4d:a0:76:3b:b2:d1:0c:9c:e8:c4:db:3e: da:c1:75:ce:52:7b:23:34:c0:be:aa:ae:8b:00:76: 9c:d5:8c:78:7a:40:22:78:35:24:4e:b4:07:44:e9: 0b:3b:1a:84:98:94:9c:63:2d:18:8e:62:8b:1b:28: 68:b7:6e:44:d1:b6:69:e9:82:e3:fb:d1:ee:15:d7: 9c:f4:b7:e1:33:47:bb:57:10:53:3d:fe:70:34:6e: 8d:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:AE:F3:CB:F8:AA:FB:EB:B6:36:B0:BB:7B:1F:60:09:82:3A:01:BF X509v3 Authority Key Identifier: keyid:C6:93:99:B1:32:E1:AE:6B:2E:A3:11:6E:14:B1:00:1C:08:19:DD:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:c7:2e:f2:31:aa:a5:95:d3:8f:35:d5:24:ab:57:cf:87:68: 1f:97:ec:db:09:57:77:3f:26:3f:bc:8a:09:3a:c2:44:ad:dc: a0:dc:f5:fa:d6:27:ba:01:33:d3:f2:e5:e4:e9:39:ed:69:f2: 93:1e:4e:82:f8:0d:d3:6e:7a:2e:11:c4:f5:0b:9f:9d:d5:ad: 1f:fe:19:45:bc:7b:a8:5c:45:28:61:f1:07:7a:72:8c:be:55: ad:39:a4:a8:aa:e0:b6:58:7f:bf:15:72:da:62:4b:67:bc:b1: 22:e7:6a:ed:cf:4c:16:2b:02:5b:f1:73:28:10:8d:e4:61:9a: 12:22:0b:97:19:a1:cc:54:c3:c0:35:b9:93:60:f3:08:29:96: 40:50:98:37:d4:d9:fd:ce:de:76:bb:a4:ea:f5:41:f3:f2:9a: d4:44:cf:9a:d0:43:4d:59:b0:0f:05:2b:1d:dc:7d:22:4d:dd: c1:f1:2e:ac:a0:c7:1c:fd:c1:8d:f1:50:0e:04:b7:ff:92:42: 2e:b4:76:91:d6:2e:13:80:a5:3e:07:de:5c:d0:cb:47:00:13: 15:95:2f:2c:ca:df:56:9d:ea:30:e4:1d:3b:db:d8:97:e4:e2: 82:d5:4d:ce:5c:b2:c0:67:91:d5:a8:9d:9e:54:ed:3f:22:77: 88:58:ef:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQwNUMxMTAvBgNVBAUTKEM2OTM5OUIxMzJFMUFFNkIyRUEzMTE2RTE0QjEwMDFD MDgxOUREQTkwHhcNMjUxMjA0MjA1NDQyWhcNMjUxMjExMjA1NDQyWjAYMRYwFAYD VQQDEw02OTMxZjUxMi0wZjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqkDSRd7FFPtOB2/058UOJRqTz/i/0Aap9eawt9gBtWM6mYi/u8B4nbWOxY+5 5WII/7AZyJZqDgqIq8D4ZhznIpUvS+m1UGQNuSn+Rb1TL90xbrCV66M5LG8MepG7 nCgaJ3A+zreQRrc1uyGzkKXxpgpZ9baKqx6jWturtLAJ0e5dYEcd1lrhlpnx4HtN kxOOkQKJDn7fLIZ4D60s20VtRKcoNH08dJRNoHY7stEMnOjE2z7awXXOUnsjNMC+ qq6LAHac1Yx4ekAieDUkTrQHROkLOxqEmJScYy0YjmKLGyhot25E0bZp6YLj+9Hu Fdec9LfhM0e7VxBTPf5wNG6N+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCiu88v4 qvvrtjawu3sfYAmCOgG/MB8GA1UdIwQYMBaAFMaTmbEy4a5rLqMRbhSxABwIGd2p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDA1Qy9ERUNFMEYwQTdC RDUxMUVCQjkxMjNENTJDNEY5QUUwMi94cE9ac1RMaHJtc3VveEZ1RkxFQUhBZ1oz YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hwT1pzVExocm1zdW94RnVGTEVBSEFnWjNhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDA1Qy9ERUNFMEYwQTdCRDUxMUVCQjkxMjNENTJDNEY5QUUwMi94cE9ac1RMaHJt c3VveEZ1RkxFQUhBZ1ozYWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFxy7yMaqlldOPNdUkq1fPh2gfl+zbCVd3PyY/vIoJOsJErdyg3PX6 1ie6ATPT8uXk6TntafKTHk6C+A3TbnouEcT1C5+d1a0f/hlFvHuoXEUoYfEHenKM vlWtOaSoquC2WH+/FXLaYktnvLEi52rtz0wWKwJb8XMoEI3kYZoSIguXGaHMVMPA NbmTYPMIKZZAUJg31Nn9zt52u6Tq9UHz8prURM+a0ENNWbAPBSsd3H0iTd3B8S6s oMcc/cGN8VAOBLf/kkIutHaR1i4TgKU+B95c0MtHABMVlS8syt9Wneow5B0729iX 5OKC1U3OXLLAZ5HVqJ2eVO0/IneIWO87 -----END CERTIFICATE-----Generated at Sat Dec 6 20:27:53 2025 by rpki-client