This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft File: X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft (raw, json) Hash identifier: fnpZefQhES6dXl9Lfr18PGTy8GsRAj9T+yxMtsIJyAY= Subject key identifier: 4E:68:69:6A:ED:28:BB:55:98:7E:3D:60:69:F2:C1:8F:74:25:7B:59 Authority key identifier: 5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 Certificate issuer: /CN=A9156255/serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Certificate serial: 0252 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft Manifest number: 024A Signing time: Fri 05 Dec 2025 00:06:29 +0000 Manifest this update: Fri 05 Dec 2025 00:06:28 +0000 Manifest next update: Fri 12 Dec 2025 00:06:28 +0000 Files and hashes: 1: X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl (hash: PRqE2sQiZ8mOrQybOoaEvDnTf0KEJr99yXtExeZCDs0=) 2: 5637146C507611EDB59D9E2EC4F9AE02.roa (hash: IYazKEF9pFwcNLUhIv47rtL28xMCsqpjMCPhr8mxAvo=) 3: D1FCB742514711ED92E3885EC4F9AE02.roa (hash: yEKEL/Vmgj/ap31DsnVmbLEDqgJ7Y6orXe7GIcH2R9A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:06:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 594 (0x252) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156255, serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Validity Not Before: Dec 5 00:06:28 2025 GMT Not After : Dec 12 00:06:28 2025 GMT Subject: CN=69322205-0dad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:aa:37:88:6b:ad:bf:0a:1c:0a:31:c0:55:db: 1a:db:2d:49:3d:c4:8d:c4:50:4a:5d:81:f0:be:26: e0:d2:9b:47:df:29:f1:37:fb:43:3f:86:fa:61:8f: f6:a2:08:85:bb:f0:89:a3:c6:53:e2:e1:99:d7:47: 32:ea:71:dc:d5:8f:8f:6d:69:63:e2:10:f4:13:a4: 79:0e:74:5b:a9:7c:df:d6:92:06:06:7c:90:07:61: 18:02:04:a9:e4:0e:ce:47:7a:39:ab:17:3b:6e:c1: f0:ef:66:c9:89:83:ee:72:6f:9b:66:a8:db:0d:4d: 59:f6:f0:b1:b9:77:92:c9:e7:52:af:bc:98:a7:97: 14:63:97:70:a9:37:fb:69:7e:34:c1:28:a6:fd:97: 93:86:14:44:09:ef:c2:12:d4:e0:63:87:38:2b:59: 0c:d5:d5:85:cf:59:21:ff:01:e2:1d:a2:4a:67:29: 45:95:a6:50:bd:ca:33:86:32:b5:b1:5e:df:a9:89: 26:8c:47:e2:3e:ed:60:e1:da:2e:5c:00:2e:22:02: 6a:85:a4:7a:17:83:59:8f:1f:87:53:f7:a8:de:40: 99:e1:0f:2e:f3:68:0e:ed:eb:52:2c:35:79:6b:9d: 02:01:24:2d:1f:8a:86:4b:14:d8:45:41:5d:60:62: bd:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:68:69:6A:ED:28:BB:55:98:7E:3D:60:69:F2:C1:8F:74:25:7B:59 X509v3 Authority Key Identifier: keyid:5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:df:fc:07:c6:00:39:8e:3a:aa:7a:57:52:0e:62:23:e1:aa: 1a:c0:39:59:3c:a6:36:5a:8a:04:dd:f3:ca:85:b4:da:d1:36: 91:7d:fc:8c:3c:60:8c:87:b8:42:83:c3:7c:bf:79:c3:8a:2b: b7:72:47:14:6f:42:63:f7:74:98:e8:60:9e:40:a4:20:a0:5f: ef:93:5b:23:da:3a:b4:f1:7e:78:51:8b:09:32:69:82:ef:5a: 84:cc:b2:07:a3:66:7f:95:10:f4:9e:7e:f6:ec:93:16:3b:af: b8:5b:8c:3f:26:4a:7b:85:20:2a:59:80:35:a7:b9:33:16:d1: 53:0a:b3:8f:ff:94:e4:a2:09:72:d0:7e:07:ca:c1:f0:77:d7: 01:34:b2:ac:3d:2f:fd:79:ff:cd:52:39:fe:53:2b:83:38:b4: aa:29:01:e6:ae:91:e5:ba:f3:b4:7d:66:ba:d8:34:5e:0b:f8: e9:1c:b3:90:8a:ea:05:43:c5:20:e8:b8:00:f6:07:91:ed:21: 8d:23:25:72:5c:a7:ac:48:78:e7:6b:9a:42:e2:21:27:b7:24: f1:6e:a9:69:f7:5c:af:c6:28:03:0c:b5:dd:b5:e2:48:c5:93: 0d:6d:f0:a8:38:21:3d:6a:b9:0f:ee:a5:14:b3:82:c4:02:9f: 2f:5d:80:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYyNTUxMTAvBgNVBAUTKDVGNkM4RkEzQTY1ODc0MDIzMUIyQzRCMTM0ODFCRTEx NTAwQURDNzYwHhcNMjUxMjA1MDAwNjI4WhcNMjUxMjEyMDAwNjI4WjAYMRYwFAYD VQQDEw02OTMyMjIwNS0wZGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKo3iGutvwocCjHAVdsa2y1JPcSNxFBKXYHwvibg0ptH3ynxN/tDP4b6YY/2 ogiFu/CJo8ZT4uGZ10cy6nHc1Y+PbWlj4hD0E6R5DnRbqXzf1pIGBnyQB2EYAgSp 5A7OR3o5qxc7bsHw72bJiYPucm+bZqjbDU1Z9vCxuXeSyedSr7yYp5cUY5dwqTf7 aX40wSim/ZeThhRECe/CEtTgY4c4K1kM1dWFz1kh/wHiHaJKZylFlaZQvcozhjK1 sV7fqYkmjEfiPu1g4douXAAuIgJqhaR6F4NZjx+HU/eo3kCZ4Q8u82gO7etSLDV5 a50CASQtH4qGSxTYRUFdYGK9MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE5oaWrt KLtVmH49YGnywY90JXtZMB8GA1UdIwQYMBaAFF9sj6OmWHQCMbLEsTSBvhFQCtx2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjI1NS85MTYyMDg0QzUw NzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRBSXhzc1N4TklHLUVWQUsz SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gyeVBvNlpZZEFJeHNzU3hOSUctRVZBSzNIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjI1NS85MTYyMDg0QzUwNzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRB SXhzc1N4TklHLUVWQUszSFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAE3/wHxgA5jjqqeldSDmIj4aoawDlZPKY2WooE3fPKhbTa0TaRffyM PGCMh7hCg8N8v3nDiiu3ckcUb0Jj93SY6GCeQKQgoF/vk1sj2jq08X54UYsJMmmC 71qEzLIHo2Z/lRD0nn727JMWO6+4W4w/Jkp7hSAqWYA1p7kzFtFTCrOP/5Tkogly 0H4HysHwd9cBNLKsPS/9ef/NUjn+UyuDOLSqKQHmrpHluvO0fWa62DReC/jpHLOQ iuoFQ8Ug6LgA9geR7SGNIyVyXKesSHjna5pC4iEntyTxbqlp91yvxigDDLXdteJI xZMNbfCoOCE9arkP7qUUs4LEAp8vXYD0 -----END CERTIFICATE-----Generated at Sat Dec 6 22:11:08 2025 by rpki-client