This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft File: XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft (raw, json) Hash identifier: PoXbckk1GRJE0DDGQFeWiH0AXRHnpGJitaMlGP7TkAY= Subject key identifier: DF:52:FE:9B:A2:48:51:AA:C9:CE:9F:54:E8:4B:63:79:EA:1F:9B:D4 Authority key identifier: 5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A Certificate issuer: /CN=A91524AF/serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Certificate serial: 04E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft Manifest number: 04D2 Signing time: Thu 04 Dec 2025 22:25:50 +0000 Manifest this update: Thu 04 Dec 2025 22:25:49 +0000 Manifest next update: Thu 11 Dec 2025 22:25:49 +0000 Files and hashes: 1: XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl (hash: XGixTzV1TKo9R72+ciHZYyrBPvNJEbpxxRyedDujShY=) 2: BEB34436FE3211EFAA1D9A4EC4F9AE02.roa (hash: yFDpBLHsX38bp2JcWh75H9eK/2yaSCGu63FKHuPPshA=) 3: 87840F3AFBD111EFB4804F27C4F9AE02.roa (hash: 4ehbMo37a6ch/Exe1ear/YvsEg7kjNmAG4ZYn9dhULQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:25:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1257 (0x4e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91524AF, serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Validity Not Before: Dec 4 22:25:49 2025 GMT Not After : Dec 11 22:25:49 2025 GMT Subject: CN=69320a6d-8ec7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3e:33:64:cb:06:0f:2e:97:05:aa:00:92:01: 97:89:b5:93:55:77:4d:45:8f:90:11:e9:9f:e7:a2: ad:65:e6:81:ec:10:29:0a:64:54:61:e2:5c:a1:97: d0:00:e5:d9:88:9d:79:e1:e9:b5:85:77:16:ee:31: ee:32:88:cf:36:c1:73:bc:55:34:fc:ba:20:2b:ae: 3f:23:79:f7:64:0f:e6:82:49:77:37:46:72:d1:92: 4f:9c:08:c6:72:5b:8e:18:94:0b:ca:6f:2f:99:78: eb:7e:a3:95:b4:2b:a8:cc:2b:3e:66:d7:de:a4:38: 9c:2a:92:f1:5e:99:09:e9:4d:39:5a:c5:8f:16:e4: e7:42:a4:95:6f:b9:fc:20:b3:07:51:75:b3:90:88: cd:ae:2b:83:1c:eb:71:62:6b:a7:e8:c7:4d:03:5e: e5:05:aa:5f:d5:67:7f:95:08:4a:3c:08:f1:c7:ff: cc:48:d0:37:31:57:8b:ac:d9:60:0d:96:ed:0a:37: f7:9b:c9:64:44:ed:47:0b:ce:90:4a:29:19:9c:67: c1:a2:f9:8a:ee:d1:8c:cc:2a:1c:9f:b6:cb:dd:71: 04:0f:7a:ff:09:00:85:fa:71:cf:62:a9:ba:2b:ba: 0e:72:c8:62:bf:f1:a4:b8:4b:02:90:00:cc:8a:96: e9:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:52:FE:9B:A2:48:51:AA:C9:CE:9F:54:E8:4B:63:79:EA:1F:9B:D4 X509v3 Authority Key Identifier: keyid:5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:df:40:50:88:13:eb:a7:2f:08:3e:dc:36:75:84:63:99:91: d1:3c:91:d8:45:97:99:d7:18:10:eb:41:f4:02:f3:11:e3:56: 28:72:7c:4b:77:a1:79:a4:02:a2:2d:ef:a9:7b:47:9e:27:0f: e8:dc:4d:5e:33:92:63:df:15:97:13:6e:b1:53:0a:d8:37:71: c4:88:cf:aa:55:cb:54:1b:7c:e4:50:88:bf:80:73:f6:63:f0: f5:cd:d1:7c:cf:83:96:08:be:e9:6f:32:14:bb:be:b3:4b:b4: 82:5c:60:81:4c:35:28:92:c7:30:de:41:7b:d0:82:ed:9f:05: f6:b3:b7:51:50:07:85:56:80:13:40:41:49:50:6d:86:02:eb: 65:2b:40:a7:b0:ae:25:ac:1e:28:c9:0e:a4:3e:12:ff:89:96: cf:f4:d3:62:bb:43:a3:a1:a3:fd:41:b6:c6:51:f8:2f:83:1d: 78:62:bf:3c:25:25:3e:11:84:d5:a1:79:7c:a0:bd:80:ed:9b: e6:a6:50:32:94:29:f8:a6:6e:d0:0c:1b:66:99:cf:4b:1d:8e: cd:4e:b7:80:fe:77:27:fd:4f:ec:e8:42:56:ae:df:01:64:d8: 8f:79:b9:92:f1:7f:62:be:3a:8c:96:86:3d:96:95:3d:39:2c: fd:fb:c2:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI0QUYxMTAvBgNVBAUTKDVDMzE1REFGQzUzQTgyRkRENjJDNzIwMDVDNzY0NDMz M0JDMDI5N0EwHhcNMjUxMjA0MjIyNTQ5WhcNMjUxMjExMjIyNTQ5WjAYMRYwFAYD VQQDEw02OTMyMGE2ZC04ZWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApj4zZMsGDy6XBaoAkgGXibWTVXdNRY+QEemf56KtZeaB7BApCmRUYeJcoZfQ AOXZiJ154em1hXcW7jHuMojPNsFzvFU0/LogK64/I3n3ZA/mgkl3N0Zy0ZJPnAjG cluOGJQLym8vmXjrfqOVtCuozCs+ZtfepDicKpLxXpkJ6U05WsWPFuTnQqSVb7n8 ILMHUXWzkIjNriuDHOtxYmun6MdNA17lBapf1Wd/lQhKPAjxx//MSNA3MVeLrNlg DZbtCjf3m8lkRO1HC86QSikZnGfBovmK7tGMzCocn7bL3XEED3r/CQCF+nHPYqm6 K7oOcshiv/GkuEsCkADMipbpWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN9S/pui SFGqyc6fVOhLY3nqH5vUMB8GA1UdIwQYMBaAFFwxXa/FOoL91ixyAFx2RDM7wCl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjRBRi83NkM3RjBGNDUx RjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2M1dMSElBWEhaRU16dkFL WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hERmRyOFU2Z3YzV0xISUFYSFpFTXp2QUtYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjRBRi83NkM3RjBGNDUxRjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2 M1dMSElBWEhaRU16dkFLWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAV30BQiBPrpy8IPtw2dYRjmZHRPJHYRZeZ1xgQ60H0AvMR41YocnxL d6F5pAKiLe+pe0eeJw/o3E1eM5Jj3xWXE26xUwrYN3HEiM+qVctUG3zkUIi/gHP2 Y/D1zdF8z4OWCL7pbzIUu76zS7SCXGCBTDUokscw3kF70ILtnwX2s7dRUAeFVoAT QEFJUG2GAutlK0CnsK4lrB4oyQ6kPhL/iZbP9NNiu0OjoaP9QbbGUfgvgx14Yr88 JSU+EYTVoXl8oL2A7ZvmplAylCn4pm7QDBtmmc9LHY7NTreA/ncn/U/s6EJWrt8B ZNiPebmS8X9ivjqMloY9lpU9OSz9+8JC -----END CERTIFICATE-----Generated at Sat Dec 6 13:29:39 2025 by rpki-client