This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft File: XZRtT0edN7zhcAywut1RosPfYg8.mft (raw, json) Hash identifier: jDXkMDSP3ZmaIjJzQ+p6+uvyGejnEzY427Q5hqpEL+U= Subject key identifier: 64:4C:1E:D5:72:0C:0A:B9:A4:16:5A:2D:EB:44:9D:9B:3D:37:A5:6E Authority key identifier: 5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F Certificate issuer: /CN=A9152787/serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Certificate serial: D8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft Manifest number: D5 Signing time: Fri 05 Dec 2025 03:40:57 +0000 Manifest this update: Fri 05 Dec 2025 03:40:56 +0000 Manifest next update: Fri 12 Dec 2025 03:40:56 +0000 Files and hashes: 1: XZRtT0edN7zhcAywut1RosPfYg8.crl (hash: Yg4hxn+DFKVBaCVOPaKiXAelHNuTFxcC0n8N/CC1/Mo=) 2: CB24F37C033711F0B76A8520C4F9AE02.roa (hash: 98s3ds+kGQSvl0ncwBjphBprg+/d5JhkpC63UpEc2Nk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:40:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787, serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Validity Not Before: Dec 5 03:40:56 2025 GMT Not After : Dec 12 03:40:56 2025 GMT Subject: CN=69325448-06af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:86:cf:cf:cc:29:a8:c0:cc:8b:46:33:34:c3: ec:42:57:9a:7f:fb:cd:1d:4e:79:e4:f0:91:b7:3b: 0f:a2:a7:03:ff:b3:17:20:0a:bb:94:eb:de:62:ff: 3c:70:c1:12:90:0b:84:4c:67:e3:b0:01:4c:6d:5c: 55:17:8f:75:2c:69:6d:5e:7c:ae:5d:ca:07:89:5d: 69:ab:a8:54:5c:22:59:4a:5d:30:9a:84:20:5f:87: cd:17:d6:d7:f2:81:19:33:c1:9d:39:ef:9e:3f:8f: da:28:7b:20:5d:1f:73:2a:8f:4a:69:dd:15:3d:74: ed:8a:51:c1:90:87:42:fc:52:16:a5:4a:4b:6f:62: ed:6c:6b:70:9b:4a:75:ad:fb:9c:60:c8:f7:ea:25: 9b:b6:ac:be:20:e6:4b:60:83:c5:b3:68:98:b5:00: 60:d1:26:cc:44:99:c8:82:d2:d4:89:f9:a5:87:2f: 6f:2d:4c:e5:3b:c7:49:69:85:75:a7:0c:bb:3a:c5: 56:f8:dd:9f:7a:a3:e6:0f:52:fc:99:29:ca:f0:03: 88:13:e5:d2:53:fc:13:33:33:19:ac:64:1c:fb:1e: 50:17:fb:cd:f3:fe:bc:89:6f:35:5c:1f:c2:d3:30: 55:ec:67:77:46:8d:6b:f7:08:eb:fe:14:c1:97:48: fe:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:4C:1E:D5:72:0C:0A:B9:A4:16:5A:2D:EB:44:9D:9B:3D:37:A5:6E X509v3 Authority Key Identifier: keyid:5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:37:8f:7b:c7:80:44:9c:27:37:ad:8b:46:b2:3b:51:72:ef: ff:29:30:31:65:05:ab:8e:7d:0c:f6:0b:db:6e:ae:53:43:93: 79:2e:e0:0c:21:09:4a:46:06:26:a1:02:19:6f:c9:a6:1a:36: f5:c7:48:09:c1:19:82:a5:63:8c:93:4b:9a:f4:ed:26:7a:a6: 84:ee:83:21:f5:cf:00:26:38:b8:6a:6a:aa:43:be:2d:84:f3: 1f:1d:96:c4:0c:f5:12:0c:6c:af:11:e4:b9:35:c4:d5:7e:e1: cb:17:ea:6b:da:65:77:93:34:91:64:89:d9:5b:f8:3c:13:fe: 55:19:dd:2c:19:f5:57:1f:67:87:b1:d9:61:c6:61:2a:c7:79: 0f:65:02:85:f8:40:f9:3c:6d:5a:b0:b7:39:da:bc:fa:cc:be: 38:af:50:b0:05:28:b8:8a:50:3a:90:66:a0:77:e7:82:b8:05: 8b:7f:fb:60:e3:7b:89:46:90:4a:38:84:0d:fc:b2:a1:3a:f4: 85:1d:1e:4b:6d:8f:f1:3e:12:93:ac:91:61:14:87:1d:ac:4b: 18:f4:f7:f9:fb:55:69:1f:78:b4:1b:f4:36:18:76:7b:90:78: 48:7e:65:6e:4c:15:83:b0:0b:06:48:a3:74:d7:f3:29:7d:85: ab:69:29:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI3ODcxMTAvBgNVBAUTKDVEOTQ2RDRGNDc5RDM3QkNFMTcwMENCMEJBREQ1MUEy QzNERjYyMEYwHhcNMjUxMjA1MDM0MDU2WhcNMjUxMjEyMDM0MDU2WjAYMRYwFAYD VQQDEw02OTMyNTQ0OC0wNmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8obPz8wpqMDMi0YzNMPsQleaf/vNHU555PCRtzsPoqcD/7MXIAq7lOveYv88 cMESkAuETGfjsAFMbVxVF491LGltXnyuXcoHiV1pq6hUXCJZSl0wmoQgX4fNF9bX 8oEZM8GdOe+eP4/aKHsgXR9zKo9Kad0VPXTtilHBkIdC/FIWpUpLb2LtbGtwm0p1 rfucYMj36iWbtqy+IOZLYIPFs2iYtQBg0SbMRJnIgtLUifmlhy9vLUzlO8dJaYV1 pwy7OsVW+N2feqPmD1L8mSnK8AOIE+XSU/wTMzMZrGQc+x5QF/vN8/68iW81XB/C 0zBV7Gd3Ro1r9wjr/hTBl0j+LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGRMHtVy DAq5pBZaLetEnZs9N6VuMB8GA1UdIwQYMBaAFF2UbU9HnTe84XAMsLrdUaLD32IP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mjc4Ny8yMjg2NTYyQThG NzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43emhjQXl3dXQxUm9zUGZZ ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1haUnRUMGVkTjd6aGNBeXd1dDFSb3NQZllnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Mjc4Ny8yMjg2NTYyQThGNzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43 emhjQXl3dXQxUm9zUGZZZzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgN497x4BEnCc3rYtGsjtRcu//KTAxZQWrjn0M9gvbbq5TQ5N5LuAM IQlKRgYmoQIZb8mmGjb1x0gJwRmCpWOMk0ua9O0meqaE7oMh9c8AJji4amqqQ74t hPMfHZbEDPUSDGyvEeS5NcTVfuHLF+pr2mV3kzSRZInZW/g8E/5VGd0sGfVXH2eH sdlhxmEqx3kPZQKF+ED5PG1asLc52rz6zL44r1CwBSi4ilA6kGagd+eCuAWLf/tg 43uJRpBKOIQN/LKhOvSFHR5LbY/xPhKTrJFhFIcdrEsY9Pf5+1VpH3i0G/Q2GHZ7 kHhIfmVuTBWDsAsGSKN01/MpfYWraSmC -----END CERTIFICATE-----Generated at Sun Dec 7 03:24:24 2025 by rpki-client