This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft File: xiGEgVH3l79yMQfxTWLGeiE6U-M.mft (raw, json) Hash identifier: NAgM6vXjTEfbJgVa8vp+5tWzoUzP+2iXSuzTyTDKz6Q= Subject key identifier: AF:94:F6:09:36:7E:23:00:F6:0F:C5:B0:A0:0E:35:64:E3:2A:B1:62 Authority key identifier: C6:21:84:81:51:F7:97:BF:72:31:07:F1:4D:62:C6:7A:21:3A:53:E3 Certificate issuer: /CN=A915EBC8/serialNumber=C621848151F797BF723107F14D62C67A213A53E3 Certificate serial: 022A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft Manifest number: 0205 Signing time: Fri 05 Dec 2025 00:56:50 +0000 Manifest this update: Fri 05 Dec 2025 00:56:50 +0000 Manifest next update: Fri 12 Dec 2025 00:56:50 +0000 Files and hashes: 1: xiGEgVH3l79yMQfxTWLGeiE6U-M.crl (hash: yEcRXR6ftzOtv/Uyrv6U3z+QX8yweR1n6IXkHxDekgw=) 2: 1DAE236CC9D411F0A61E0021C4F9AE02.roa (hash: vFnHMZDmaAEJX6sDkXcevocgA5u3JoklJPdgGoC+BEI=) 3: 781637A8FADD11EE880BF37DC4F9AE02.roa (hash: NHs0+oLxPl8uuJffLMiSnsDVJyHvtsfXj9mt3FT2mqU=) 4: AC61350A4E3C11EF9286040CC4F9AE02.roa (hash: TUo7uv4rXTA0iRyimVV1a57fjFNt5Gy9xOb0XovcHoI=) 5: 9BB3FAB6CCB511EE8612FB18C4F9AE02.roa (hash: AeF6+orX99LwnbHGZiB851tFWKGqrAIMqoROhOgxFpw=) 6: 7755D5B2FADD11EE880BF37DC4F9AE02.roa (hash: 7c9RXUhll7RjmfKdCACTxBkSEfUtF0muR2dkJbiSbMQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.crl rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:56:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 554 (0x22a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EBC8, serialNumber=C621848151F797BF723107F14D62C67A213A53E3 Validity Not Before: Dec 5 00:56:50 2025 GMT Not After : Dec 12 00:56:50 2025 GMT Subject: CN=69322dd2-d67e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:83:8f:b7:b3:2f:c7:2c:cd:21:6f:89:91:64: 63:e7:89:48:bb:d4:c7:35:dc:7f:9c:ee:d8:42:11: 49:0d:6a:9b:7e:8d:86:3f:a8:28:2d:08:ab:87:d4: ae:52:88:f4:1c:6e:d2:9a:c2:c8:2b:1c:d9:70:14: 08:ee:cd:e6:bf:54:62:bf:14:8d:0e:c9:95:1f:b2: 47:03:d2:52:e4:79:76:b9:a0:fb:0e:63:b8:e9:b1: 11:5a:dd:3a:df:c2:5b:8f:81:75:0a:fb:58:3a:96: 79:3b:bb:26:1e:77:ce:10:9b:60:4b:13:cf:19:9b: c7:1e:54:4a:f8:4a:c1:af:60:59:52:ca:cd:06:d5: 5e:94:0f:d2:fe:03:96:92:b5:c5:11:3d:91:64:ce: d7:df:bc:90:d3:79:a3:31:dd:3b:f1:9f:d5:d0:1d: ee:ba:0b:68:0a:72:31:af:ce:94:99:27:90:ad:af: f8:f2:37:37:40:ed:f9:81:22:b7:8c:04:3a:30:df: 98:67:4b:5d:42:c8:20:71:92:4e:06:78:7e:f0:20: ea:0a:52:c4:7c:95:6e:a9:56:fe:f8:fe:b0:90:15: 22:1f:70:0d:6e:b0:db:2f:cd:06:fb:3d:e4:5b:d0: 08:5b:36:5c:ca:dc:9d:db:7c:33:ce:6e:b7:c8:06: 71:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:94:F6:09:36:7E:23:00:F6:0F:C5:B0:A0:0E:35:64:E3:2A:B1:62 X509v3 Authority Key Identifier: keyid:C6:21:84:81:51:F7:97:BF:72:31:07:F1:4D:62:C6:7A:21:3A:53:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:0d:d2:6a:52:65:13:d9:79:f6:8d:3c:29:7c:45:de:b0:30: 4e:69:ee:38:a2:40:23:54:37:a8:e2:ae:32:d5:56:30:b3:ba: c1:b1:59:29:ce:0a:0f:5f:37:ee:7e:ea:88:fe:ee:3a:cb:b6: ab:d0:8b:92:c2:5e:74:1e:48:ce:41:3c:5e:d9:86:be:ed:1b: 54:63:ce:50:0c:b8:d2:86:46:a7:7b:d3:77:a5:c6:4d:8c:0b: 91:2a:4d:a2:5b:e0:d3:32:59:f1:fa:77:57:1e:e6:20:90:21: e3:a8:e9:63:20:d4:e1:95:09:00:3d:bf:a4:30:3d:60:c4:bf: 45:a9:cd:f2:5f:5a:b9:77:54:29:83:4c:76:dc:b6:2b:8a:7c: 11:bd:aa:40:76:ec:6e:e0:e9:e2:85:25:14:b1:df:33:de:54: fd:ad:fe:ea:2f:ba:5f:2b:05:77:48:1f:54:d0:ac:38:21:8f: c4:46:cb:21:f9:d1:c8:1c:55:df:b2:4e:e9:13:55:b2:3a:14: 8e:aa:3e:c7:c6:79:10:45:aa:58:b3:07:5c:18:80:e6:a1:2c: da:ef:36:0e:3f:45:12:9d:a6:fa:d6:f5:de:af:ba:a1:49:cf: cd:db:5a:88:fd:e9:27:b2:c9:3a:db:64:a1:69:1f:ec:4d:f7: a0:11:19:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVCQzgxMTAvBgNVBAUTKEM2MjE4NDgxNTFGNzk3QkY3MjMxMDdGMTRENjJDNjdB MjEzQTUzRTMwHhcNMjUxMjA1MDA1NjUwWhcNMjUxMjEyMDA1NjUwWjAYMRYwFAYD VQQDEw02OTMyMmRkMi1kNjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwIOPt7MvxyzNIW+JkWRj54lIu9THNdx/nO7YQhFJDWqbfo2GP6goLQirh9Su Uoj0HG7SmsLIKxzZcBQI7s3mv1RivxSNDsmVH7JHA9JS5Hl2uaD7DmO46bERWt06 38Jbj4F1CvtYOpZ5O7smHnfOEJtgSxPPGZvHHlRK+ErBr2BZUsrNBtVelA/S/gOW krXFET2RZM7X37yQ03mjMd078Z/V0B3uugtoCnIxr86UmSeQra/48jc3QO35gSK3 jAQ6MN+YZ0tdQsggcZJOBnh+8CDqClLEfJVuqVb++P6wkBUiH3ANbrDbL80G+z3k W9AIWzZcytyd23wzzm63yAZxewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK+U9gk2 fiMA9g/FsKAONWTjKrFiMB8GA1UdIwQYMBaAFMYhhIFR95e/cjEH8U1ixnohOlPj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUJDOC81ODk4MjBDMkVG MDIxMUVEOEMyREQ5MUZDNEY5QUUwMi94aUdFZ1ZIM2w3OXlNUWZ4VFdMR2VpRTZV LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hpR0VnVkgzbDc5eU1RZnhUV0xHZWlFNlUtTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RUJDOC81ODk4MjBDMkVGMDIxMUVEOEMyREQ5MUZDNEY5QUUwMi94aUdFZ1ZIM2w3 OXlNUWZ4VFdMR2VpRTZVLU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2DdJqUmUT2Xn2jTwpfEXesDBOae44okAjVDeo4q4y1VYws7rBsVkp zgoPXzfufuqI/u46y7ar0IuSwl50HkjOQTxe2Ya+7RtUY85QDLjShkane9N3pcZN jAuRKk2iW+DTMlnx+ndXHuYgkCHjqOljINThlQkAPb+kMD1gxL9Fqc3yX1q5d1Qp g0x23LYrinwRvapAduxu4OnihSUUsd8z3lT9rf7qL7pfKwV3SB9U0Kw4IY/ERssh +dHIHFXfsk7pE1WyOhSOqj7HxnkQRapYswdcGIDmoSza7zYOP0USnab61vXer7qh Sc/N21qI/eknssk622ShaR/sTfegERlv -----END CERTIFICATE-----Generated at Sat Dec 6 15:36:31 2025 by rpki-client