This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft File: X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft (raw, json) Hash identifier: lTJpYGSPO+1HYS83SzOsWK0wF4ZnMqF/lDz4ioTlX54= Subject key identifier: 49:C8:F0:4C:34:68:2F:77:9D:A1:29:41:7E:78:D3:01:3D:3D:A2:17 Authority key identifier: 5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 Certificate issuer: /CN=A9156255/serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Certificate serial: 025A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft Manifest number: 0252 Signing time: Sun 21 Dec 2025 00:57:21 +0000 Manifest this update: Sun 21 Dec 2025 00:57:20 +0000 Manifest next update: Sun 28 Dec 2025 00:57:20 +0000 Files and hashes: 1: X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl (hash: ZRz0Z6D+hbIHfoyYdLrO6z/BemyVXygkfuvw7Gd91Zo=) 2: D1FCB742514711ED92E3885EC4F9AE02.roa (hash: yEKEL/Vmgj/ap31DsnVmbLEDqgJ7Y6orXe7GIcH2R9A=) 3: 5637146C507611EDB59D9E2EC4F9AE02.roa (hash: IYazKEF9pFwcNLUhIv47rtL28xMCsqpjMCPhr8mxAvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:57:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 602 (0x25a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156255, serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Validity Not Before: Dec 21 00:57:20 2025 GMT Not After : Dec 28 00:57:20 2025 GMT Subject: CN=694745f1-796f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:de:f4:02:56:df:ba:0a:dd:af:17:39:16:47: a8:b7:d5:3f:95:4c:3b:ba:8b:ce:15:3c:be:87:b3: ed:75:6c:83:98:a8:d4:71:e2:ef:7c:c0:23:f4:f6: 0d:37:ca:a1:dd:31:b5:b1:f4:ce:1c:20:e3:b9:4b: b2:ea:cb:09:61:12:bb:34:4a:0c:0d:2e:84:34:c1: 63:fb:33:4d:7e:06:1f:a6:31:83:d9:dd:84:76:f0: a0:b7:63:3f:9c:ea:ff:47:de:53:d2:f3:10:4c:55: ce:ed:a0:f1:fd:e1:73:1d:f3:2e:e3:03:48:db:09: c2:45:66:e1:18:47:fd:06:31:f8:dc:a8:b7:5f:29: 9e:9b:8f:f8:8d:46:5a:90:5b:79:24:6c:27:de:47: 6a:00:45:8d:ed:9d:ac:88:e8:c0:70:98:ab:eb:28: 98:54:b6:31:4e:ad:27:51:7a:1c:78:cd:16:e8:1b: d8:e5:41:7b:bc:45:c3:93:a8:78:c4:fc:15:97:20: 83:17:a1:7c:93:9e:6c:a7:94:85:51:19:fe:bb:f0: af:e5:58:36:17:95:d9:4d:33:60:b8:2d:9b:57:df: 77:69:9d:93:d5:f4:6c:97:4c:d1:e7:8b:60:b4:6c: bd:91:83:aa:e1:9c:95:cd:74:52:dc:50:dc:2e:f3: e8:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:C8:F0:4C:34:68:2F:77:9D:A1:29:41:7E:78:D3:01:3D:3D:A2:17 X509v3 Authority Key Identifier: keyid:5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:b9:be:5d:a0:8f:b7:83:d2:9c:ae:22:1f:b0:35:c2:05:05: 08:be:dc:1d:a5:70:31:1a:5f:22:a2:f9:86:2d:bc:29:bc:04: d7:e4:f9:cc:e5:16:1a:5d:33:d6:9c:dd:43:e9:6c:1c:66:07: 01:55:a0:c7:a0:ac:61:85:c9:4e:af:76:92:07:60:71:b0:9a: 0e:66:9d:50:9c:bc:a3:83:1a:04:b2:63:b1:2b:15:77:c0:93: 59:fb:89:df:b2:dc:2e:90:4d:a6:1a:a1:8b:f1:a2:40:53:90: 7d:8f:a1:71:df:45:1b:b7:d6:0e:6c:37:8e:33:1f:46:1a:e3: 85:f8:fb:82:1e:5b:39:ce:03:3a:a7:5a:72:1b:cb:26:d3:ed: 28:16:5c:f9:68:7c:79:1f:da:02:68:f0:a2:30:3f:ad:3d:df: 86:94:5e:29:53:a4:f3:30:14:39:14:48:59:1d:0c:3a:65:9c: 67:46:ff:c5:69:ee:a8:2c:5d:35:e1:0b:9c:33:ad:60:08:74: 68:55:02:ab:bb:8d:1b:25:7e:0b:9f:d9:fb:ee:9f:da:65:98: c5:05:c1:fc:8e:1e:ac:e7:3d:3e:60:d2:df:ed:c9:65:c9:f5: c4:79:56:0b:9c:d7:b3:64:d2:35:d3:cb:60:6c:ab:8c:c0:b7: 4b:8c:b6:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYyNTUxMTAvBgNVBAUTKDVGNkM4RkEzQTY1ODc0MDIzMUIyQzRCMTM0ODFCRTEx NTAwQURDNzYwHhcNMjUxMjIxMDA1NzIwWhcNMjUxMjI4MDA1NzIwWjAYMRYwFAYD VQQDDA02OTQ3NDVmMS03OTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqt70Albfugrdrxc5Fkeot9U/lUw7uovOFTy+h7PtdWyDmKjUceLvfMAj9PYN N8qh3TG1sfTOHCDjuUuy6ssJYRK7NEoMDS6ENMFj+zNNfgYfpjGD2d2EdvCgt2M/ nOr/R95T0vMQTFXO7aDx/eFzHfMu4wNI2wnCRWbhGEf9BjH43Ki3Xymem4/4jUZa kFt5JGwn3kdqAEWN7Z2siOjAcJir6yiYVLYxTq0nUXoceM0W6BvY5UF7vEXDk6h4 xPwVlyCDF6F8k55sp5SFURn+u/Cv5Vg2F5XZTTNguC2bV993aZ2T1fRsl0zR54tg tGy9kYOq4ZyVzXRS3FDcLvPotwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEnI8Ew0 aC93naEpQX540wE9PaIXMB8GA1UdIwQYMBaAFF9sj6OmWHQCMbLEsTSBvhFQCtx2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjI1NS85MTYyMDg0QzUw NzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRBSXhzc1N4TklHLUVWQUsz SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gyeVBvNlpZZEFJeHNzU3hOSUctRVZBSzNIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjI1NS85MTYyMDg0QzUwNzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRB SXhzc1N4TklHLUVWQUszSFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABub5doI+3g9KcriIfsDXCBQUIvtwdpXAxGl8iovmGLbwpvATX5PnM 5RYaXTPWnN1D6WwcZgcBVaDHoKxhhclOr3aSB2BxsJoOZp1QnLyjgxoEsmOxKxV3 wJNZ+4nfstwukE2mGqGL8aJAU5B9j6Fx30Ubt9YObDeOMx9GGuOF+PuCHls5zgM6 p1pyG8sm0+0oFlz5aHx5H9oCaPCiMD+tPd+GlF4pU6TzMBQ5FEhZHQw6ZZxnRv/F ae6oLF014QucM61gCHRoVQKru40bJX4Ln9n77p/aZZjFBcH8jh6s5z0+YNLf7cll yfXEeVYLnNezZNI108tgbKuMwLdLjLYp -----END CERTIFICATE-----Generated at Mon Dec 22 03:25:43 2025 by rpki-client