This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft File: XKzlv2VarPfLxicsXGl_N3oGzow.mft (raw, json) Hash identifier: fqSJXQVwN7i3erEnkKmHAWpPGucNKr6EUs8ebmouCTI= Subject key identifier: 46:C5:06:65:03:F0:62:E9:5D:22:EC:36:69:D5:A6:6F:E7:E2:9B:AF Authority key identifier: 5C:AC:E5:BF:65:5A:AC:F7:CB:C6:27:2C:5C:69:7F:37:7A:06:CE:8C Certificate issuer: /CN=A917C9BF/serialNumber=5CACE5BF655AACF7CBC6272C5C697F377A06CE8C Certificate serial: EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft Manifest number: E7 Signing time: Fri 05 Dec 2025 03:30:34 +0000 Manifest this update: Fri 05 Dec 2025 03:30:34 +0000 Manifest next update: Fri 12 Dec 2025 03:30:34 +0000 Files and hashes: 1: XKzlv2VarPfLxicsXGl_N3oGzow.crl (hash: lDGgiSj4ClQAJVS2DZs0ic4kjKEOl78MmxAHiynLbD0=) 2: 15875DC27B5E11EFAB71253BC4F9AE02.roa (hash: 0W2/njWu/4NeHHOITSUzSzI4ic/vgB1fnauNrzPM4sc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.crl rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:30:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 236 (0xec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C9BF, serialNumber=5CACE5BF655AACF7CBC6272C5C697F377A06CE8C Validity Not Before: Dec 5 03:30:34 2025 GMT Not After : Dec 12 03:30:34 2025 GMT Subject: CN=693251da-695b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:29:9f:48:2a:74:ab:e3:a0:14:79:04:46:c2: 1d:f7:af:d2:f6:45:df:5c:ef:93:f4:f7:e2:8c:c9: 93:3a:32:f1:4d:f6:be:5e:4a:ec:95:c4:e5:17:43: f1:1a:a5:2d:ce:e3:8c:b4:32:78:36:e2:b0:5a:00: 0d:d7:cf:cf:c3:d4:e8:3f:50:fb:fb:05:f4:57:5b: 44:39:3a:4d:e3:bc:6a:36:23:19:65:f4:d0:a4:f5: 80:f2:48:bd:96:b2:50:86:13:72:9e:9b:7c:27:96: ad:5b:20:cc:46:fa:19:74:f2:13:72:ae:32:b8:db: 30:ee:4c:71:72:b9:83:77:28:92:f3:d1:46:c6:9b: bb:c7:99:11:46:44:75:a4:2a:e1:55:d8:7b:e1:93: 91:b1:21:db:97:5f:aa:cd:2d:b3:7d:9d:6f:dd:4d: 55:9e:cc:7f:df:61:52:68:03:59:ba:58:81:7b:fe: 76:79:f2:ab:a2:fa:83:41:2e:6e:8a:c3:1e:78:13: 34:34:bf:b1:03:5f:1e:b1:9d:3a:ae:86:0b:04:4e: 30:5e:83:8a:a8:2a:2b:72:cb:1e:96:39:3e:dd:8e: b2:58:5a:19:68:d0:93:7f:27:ec:a5:e0:1c:a8:23: 43:33:4b:e7:c9:8b:6a:f6:3b:f1:fe:55:8c:3c:26: 9f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:C5:06:65:03:F0:62:E9:5D:22:EC:36:69:D5:A6:6F:E7:E2:9B:AF X509v3 Authority Key Identifier: keyid:5C:AC:E5:BF:65:5A:AC:F7:CB:C6:27:2C:5C:69:7F:37:7A:06:CE:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:df:25:4e:cc:1b:ef:43:55:2c:41:4c:c9:c0:4d:e9:87:12: 67:f5:70:f9:46:4f:18:e9:25:32:64:9e:c6:e6:58:73:ab:e1: a2:73:3d:d1:37:17:57:76:ef:df:4e:26:b4:81:af:33:9d:64: 03:ac:75:ac:a0:5e:33:31:c2:47:6f:f8:ef:fd:12:10:7b:94: 87:75:77:7a:86:e5:49:51:9d:3e:da:2d:ab:1d:a8:3d:b2:51: 58:f4:68:09:bb:3a:84:3e:cc:ae:da:87:3b:d9:a5:b3:3a:54: 8a:8d:75:5e:5f:bd:60:63:ea:58:03:e7:4f:4a:0f:90:25:2e: e8:58:f3:57:6d:87:10:4f:17:52:19:ee:c8:da:d4:95:70:13: 15:46:83:ff:c2:a7:13:3a:be:48:84:ec:f5:c3:62:db:77:55: 55:d6:a1:ea:a7:d5:d1:95:e5:26:03:ba:a7:b2:19:a2:1f:c5: 90:2b:e5:f6:93:cb:50:36:f1:80:94:8c:09:c4:22:7a:de:53: e3:fa:1c:db:ad:30:0e:c4:02:41:4d:1d:dd:0b:d6:68:3b:46: ab:66:6a:e7:c0:4b:38:a0:d8:2f:e6:a6:da:12:e5:a8:9b:a6: 5d:bc:af:c7:ed:e7:b5:a1:b6:1c:92:14:31:db:f5:34:b3:5e: c1:3b:79:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5QkYxMTAvBgNVBAUTKDVDQUNFNUJGNjU1QUFDRjdDQkM2MjcyQzVDNjk3RjM3 N0EwNkNFOEMwHhcNMjUxMjA1MDMzMDM0WhcNMjUxMjEyMDMzMDM0WjAYMRYwFAYD VQQDEw02OTMyNTFkYS02OTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtymfSCp0q+OgFHkERsId96/S9kXfXO+T9PfijMmTOjLxTfa+XkrslcTlF0Px GqUtzuOMtDJ4NuKwWgAN18/Pw9ToP1D7+wX0V1tEOTpN47xqNiMZZfTQpPWA8ki9 lrJQhhNynpt8J5atWyDMRvoZdPITcq4yuNsw7kxxcrmDdyiS89FGxpu7x5kRRkR1 pCrhVdh74ZORsSHbl1+qzS2zfZ1v3U1Vnsx/32FSaANZuliBe/52efKrovqDQS5u isMeeBM0NL+xA18esZ06roYLBE4wXoOKqCorcsseljk+3Y6yWFoZaNCTfyfspeAc qCNDM0vnyYtq9jvx/lWMPCafvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEbFBmUD 8GLpXSLsNmnVpm/n4puvMB8GA1UdIwQYMBaAFFys5b9lWqz3y8YnLFxpfzd6Bs6M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzlCRi9CRTFENEEzNDdC NEQxMUVGQjAyMzZDNzhDNEY5QUUwMi9YS3psdjJWYXJQZkx4aWNzWEdsX04zb0d6 b3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hLemx2MlZhclBmTHhpY3NYR2xfTjNvR3pvdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzlCRi9CRTFENEEzNDdCNEQxMUVGQjAyMzZDNzhDNEY5QUUwMi9YS3psdjJWYXJQ Zkx4aWNzWEdsX04zb0d6b3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBy3yVOzBvvQ1UsQUzJwE3phxJn9XD5Rk8Y6SUyZJ7G5lhzq+Gicz3R NxdXdu/fTia0ga8znWQDrHWsoF4zMcJHb/jv/RIQe5SHdXd6huVJUZ0+2i2rHag9 slFY9GgJuzqEPsyu2oc72aWzOlSKjXVeX71gY+pYA+dPSg+QJS7oWPNXbYcQTxdS Ge7I2tSVcBMVRoP/wqcTOr5IhOz1w2Lbd1VV1qHqp9XRleUmA7qnshmiH8WQK+X2 k8tQNvGAlIwJxCJ63lPj+hzbrTAOxAJBTR3dC9ZoO0arZmrnwEs4oNgv5qbaEuWo m6ZdvK/H7ee1obYckhQx2/U0s17BO3nR -----END CERTIFICATE-----Generated at Sun Dec 7 02:55:01 2025 by rpki-client