This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft File: XSeFtU0WPtAepUGLz6NPG3RWtxM.mft (raw, json) Hash identifier: szeWqSI0lZAILqkQRov5Lq1+S3oCzBBWojnAv5wwxkA= Subject key identifier: 27:2B:03:87:4B:66:B7:2D:D9:1F:57:38:13:B3:3E:04:18:4C:AB:79 Authority key identifier: 5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 Certificate issuer: /CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Certificate serial: 04F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft Manifest number: 04DD Signing time: Thu 04 Dec 2025 22:21:46 +0000 Manifest this update: Thu 04 Dec 2025 22:21:45 +0000 Manifest next update: Thu 11 Dec 2025 22:21:45 +0000 Files and hashes: 1: XSeFtU0WPtAepUGLz6NPG3RWtxM.crl (hash: 25rUhZkzxVrao8mRy1pWb0RL0VoLo6G50jzGTCwNvRw=) 2: 6337963E4C3D11ECB5FF844FC4F9AE02.roa (hash: aTXEi1LzXTl0g2LyujQDHdlXFvir0+qlzsPxrUIKoNA=) 3: ACE844F047AA11ECA0F05026C4F9AE02.roa (hash: rDIISPx2Jw6kCtly/sr/saYDXZ1Vwq2i5nDputMMqM0=) 4: 1F77EFA44C4011EC952D5A23C4F9AE02.roa (hash: 8xg5MTXXpBnfX0/pQTijWkIRf1MFFgkaGBEoo218ZXc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:21:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1272 (0x4f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CC5, serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Validity Not Before: Dec 4 22:21:45 2025 GMT Not After : Dec 11 22:21:45 2025 GMT Subject: CN=6932097a-620c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:0c:9b:fa:51:7f:87:a2:7e:a7:ee:3f:d4:ad: c0:32:79:dd:f2:99:5e:0e:07:55:79:2f:12:fb:10: 8e:28:35:f1:fb:2b:a3:28:c1:6f:ab:1d:9e:a6:8b: c4:0e:29:4c:9c:61:fb:6c:93:e2:74:8b:29:c4:90: 35:6d:5e:2e:36:4b:24:2f:fd:11:63:f7:4d:75:13: 62:09:69:d2:54:40:41:00:db:de:3d:7e:97:fa:cc: 22:a5:44:7a:a4:94:27:6f:b4:2e:56:93:a0:a0:e8: a4:dd:1d:f6:57:25:cc:02:dd:93:21:1c:43:77:04: 2c:1c:8e:fd:e0:76:52:59:ce:eb:61:31:a0:4e:e5: 37:3a:4a:22:91:54:ba:f7:cb:7e:a8:56:fa:c6:66: ca:35:41:44:67:da:a6:21:c4:91:ba:79:7e:4a:a4: de:50:aa:fc:65:46:92:87:b4:dd:ce:60:19:e6:35: 25:3b:09:64:19:99:41:68:ce:ea:77:11:f3:0e:5b: 92:28:98:5a:fb:1e:9f:74:ac:1e:15:5d:ad:2e:3c: 05:3a:fb:54:55:78:be:28:d8:f9:0f:9a:01:5a:3b: b8:83:3e:58:fe:f8:b4:17:13:29:bc:20:68:f6:41: af:6d:aa:c7:18:61:ef:54:8a:b9:ca:a1:49:a6:cd: d3:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:2B:03:87:4B:66:B7:2D:D9:1F:57:38:13:B3:3E:04:18:4C:AB:79 X509v3 Authority Key Identifier: keyid:5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:66:93:14:36:96:31:39:c1:4a:32:d9:62:76:48:42:c3:df: 6f:d3:be:14:66:d5:9e:f7:2d:12:b8:06:44:11:20:39:48:55: 1b:4a:6d:2c:88:5f:bd:1f:24:af:ec:44:d7:ba:fe:d6:80:c8: e7:53:2c:6f:65:f7:f9:d3:44:68:21:af:8a:06:95:79:71:72: cb:8b:12:41:78:77:cd:d6:02:ec:f1:90:74:67:7f:71:0e:52: 71:ba:86:9c:62:18:1f:07:b4:c5:7a:4c:a1:a9:7f:64:e2:83: cb:8e:e2:13:7d:ff:25:05:f4:5b:e6:d8:26:79:b9:d9:a9:6f: 16:61:8e:cd:e9:7e:11:a2:70:cb:d4:0b:21:c3:aa:3d:1b:2b: 63:bc:27:ee:6b:ce:ce:ff:d0:57:b1:35:a5:1b:31:fb:2a:c4: 86:59:e3:31:c7:c0:c1:02:2b:10:a3:6b:8d:d0:e5:23:34:c7: a0:6e:de:e1:4f:0e:5b:45:c4:e8:73:e3:b7:13:be:c9:5e:c5: c4:e6:7c:f1:1e:ee:6c:55:b5:4f:05:6c:93:13:3e:fd:6a:6b: 29:4d:d4:af:3f:12:6b:36:83:b0:c6:13:f0:74:02:e8:12:dc: db:0d:66:25:c2:80:c0:d3:0a:f5:17:2e:da:ea:c6:9c:62:c1: a5:f1:c1:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQzUxMTAvBgNVBAUTKDVEMjc4NUI1NEQxNjNFRDAxRUE1NDE4QkNGQTM0RjFC NzQ1NkI3MTMwHhcNMjUxMjA0MjIyMTQ1WhcNMjUxMjExMjIyMTQ1WjAYMRYwFAYD VQQDEw02OTMyMDk3YS02MjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Ayb+lF/h6J+p+4/1K3AMnnd8pleDgdVeS8S+xCOKDXx+yujKMFvqx2epovE DilMnGH7bJPidIspxJA1bV4uNkskL/0RY/dNdRNiCWnSVEBBANvePX6X+swipUR6 pJQnb7QuVpOgoOik3R32VyXMAt2TIRxDdwQsHI794HZSWc7rYTGgTuU3OkoikVS6 98t+qFb6xmbKNUFEZ9qmIcSRunl+SqTeUKr8ZUaSh7TdzmAZ5jUlOwlkGZlBaM7q dxHzDluSKJha+x6fdKweFV2tLjwFOvtUVXi+KNj5D5oBWju4gz5Y/vi0FxMpvCBo 9kGvbarHGGHvVIq5yqFJps3T/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCcrA4dL Zrct2R9XOBOzPgQYTKt5MB8GA1UdIwQYMBaAFF0nhbVNFj7QHqVBi8+jTxt0VrcT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NDNS8yQUM0RDMzRTQ2 QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0QWVwVUdMejZOUEczUld0 eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTZUZ0VTBXUHRBZXBVR0x6Nk5QRzNSV3R4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NDNS8yQUM0RDMzRTQ2QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0 QWVwVUdMejZOUEczUld0eE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTZpMUNpYxOcFKMtlidkhCw99v074UZtWe9y0SuAZEESA5SFUbSm0s iF+9HySv7ETXuv7WgMjnUyxvZff500RoIa+KBpV5cXLLixJBeHfN1gLs8ZB0Z39x DlJxuoacYhgfB7TFekyhqX9k4oPLjuITff8lBfRb5tgmebnZqW8WYY7N6X4RonDL 1Ashw6o9GytjvCfua87O/9BXsTWlGzH7KsSGWeMxx8DBAisQo2uN0OUjNMegbt7h Tw5bRcToc+O3E77JXsXE5nzxHu5sVbVPBWyTEz79amspTdSvPxJrNoOwxhPwdALo EtzbDWYlwoDA0wr1Fy7a6sacYsGl8cGO -----END CERTIFICATE-----Generated at Sat Dec 6 13:35:39 2025 by rpki-client