This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft File: XLz7z59AY6eYAiqPHiafvf6jb_g.mft (raw, json) Hash identifier: nDwpuC05qIB2sy7v4BE0inDzYQMCGNY762kvbxCBmiI= Subject key identifier: EF:53:46:E4:6E:BB:7A:21:E6:26:12:51:A1:BA:38:B4:4F:27:63:EC Authority key identifier: 5C:BC:FB:CF:9F:40:63:A7:98:02:2A:8F:1E:26:9F:BD:FE:A3:6F:F8 Certificate issuer: /CN=A917F4F2/serialNumber=5CBCFBCF9F4063A798022A8F1E269FBDFEA36FF8 Certificate serial: 034C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft Manifest number: 0348 Signing time: Thu 04 Dec 2025 23:23:39 +0000 Manifest this update: Thu 04 Dec 2025 23:23:39 +0000 Manifest next update: Thu 11 Dec 2025 23:23:39 +0000 Files and hashes: 1: XLz7z59AY6eYAiqPHiafvf6jb_g.crl (hash: i5tLbzuov+ceuArG3U4sDoP2YsTpL+Sw+KvxyivBnC4=) 2: CA455C5CE0B311ECBC9BEA63C4F9AE02.roa (hash: +ZSBEXRcgClmiO74ln8lB46inGp0vsN6jKOzaxEdX6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.crl rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:23:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 844 (0x34c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F4F2, serialNumber=5CBCFBCF9F4063A798022A8F1E269FBDFEA36FF8 Validity Not Before: Dec 4 23:23:39 2025 GMT Not After : Dec 11 23:23:39 2025 GMT Subject: CN=693217fb-e23b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:28:68:a7:ae:d4:4a:97:7f:20:f6:eb:8a:7c: 4b:a1:56:0e:ca:7b:32:f4:c8:23:61:ca:aa:3a:e7: 79:12:9c:ef:a2:d1:0a:26:80:86:88:6e:55:11:52: dc:dc:b2:6a:b5:73:09:21:ac:07:56:be:16:70:b7: aa:e3:5f:b3:18:6a:30:ce:a1:db:cf:b9:69:97:c1: 15:f1:38:51:f3:b7:6a:8c:3b:00:d5:f6:bf:71:8a: 48:d5:b4:73:23:6e:2a:9d:85:04:24:d1:e3:39:a3: 18:76:09:71:74:05:e2:b4:0d:93:52:e1:19:90:0a: 4b:fc:99:57:3c:bc:c7:41:5d:5b:e6:8a:1a:89:93: 2d:49:e9:22:35:29:53:e1:ad:8a:50:56:83:56:48: ae:fc:7c:9e:67:28:56:68:2a:db:5c:6a:1c:df:08: e3:34:f9:1e:67:a2:a0:b4:a8:5d:0a:18:ce:5a:77: db:b6:0b:26:2b:59:ae:14:db:c6:85:a5:94:25:f8: 58:a1:4b:fc:03:f5:8d:11:08:6b:6e:50:f5:16:8e: ff:00:f5:a2:6a:04:d5:d0:0c:6f:0b:33:93:50:25: 19:4a:e6:d1:c6:c9:54:a3:ae:bf:83:45:ce:44:cc: 98:b9:4a:d3:53:41:14:65:75:9c:67:5e:0e:aa:94: 07:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:53:46:E4:6E:BB:7A:21:E6:26:12:51:A1:BA:38:B4:4F:27:63:EC X509v3 Authority Key Identifier: keyid:5C:BC:FB:CF:9F:40:63:A7:98:02:2A:8F:1E:26:9F:BD:FE:A3:6F:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:5b:6b:26:07:69:c0:49:f1:a6:98:ba:de:ed:ed:4d:1f:63: ed:a9:d1:a8:87:ff:05:a9:43:fd:62:6e:92:cb:47:66:dc:8c: cd:18:ae:4a:91:2d:47:28:bb:1b:f3:cf:f1:eb:0d:12:f2:ae: 61:ae:e8:f1:9b:0a:10:16:0e:eb:98:b4:67:84:34:5e:ac:71: 3a:73:1d:04:c8:87:c0:3c:67:3e:d3:4b:92:ea:dd:03:6d:78: 04:e5:a6:b2:b1:c2:0c:0d:f8:20:30:c3:ed:bc:de:e9:21:c9: 56:fa:ef:9b:1e:9e:c9:2c:34:43:d2:41:9f:f0:89:44:18:b2: 24:f1:de:e8:ad:0a:16:52:2f:de:bf:41:fa:75:cb:0b:32:c7: a3:1b:ac:f4:4b:bf:4d:e0:ed:6a:1e:58:06:2c:0d:c9:1d:b9: a8:4a:3b:07:c9:fc:9c:64:ed:f2:99:87:27:f7:cc:e7:54:42: c2:a2:b1:0a:9f:8d:e5:e8:ca:0e:88:5a:b4:9a:5c:2f:4e:e5: 8c:94:0d:d5:55:f9:e4:65:f5:b4:92:49:8e:38:c3:26:8b:df: e6:42:94:fc:b9:e8:a0:3f:c6:a3:f6:3c:94:08:bc:4b:34:9a: bd:13:05:1f:05:a8:30:03:bb:79:cb:1e:dd:fd:4e:43:0e:9d: d2:6f:fb:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y0RjIxMTAvBgNVBAUTKDVDQkNGQkNGOUY0MDYzQTc5ODAyMkE4RjFFMjY5RkJE RkVBMzZGRjgwHhcNMjUxMjA0MjMyMzM5WhcNMjUxMjExMjMyMzM5WjAYMRYwFAYD VQQDEw02OTMyMTdmYi1lMjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4yhop67USpd/IPbrinxLoVYOynsy9MgjYcqqOud5EpzvotEKJoCGiG5VEVLc 3LJqtXMJIawHVr4WcLeq41+zGGowzqHbz7lpl8EV8ThR87dqjDsA1fa/cYpI1bRz I24qnYUEJNHjOaMYdglxdAXitA2TUuEZkApL/JlXPLzHQV1b5ooaiZMtSekiNSlT 4a2KUFaDVkiu/HyeZyhWaCrbXGoc3wjjNPkeZ6KgtKhdChjOWnfbtgsmK1muFNvG haWUJfhYoUv8A/WNEQhrblD1Fo7/APWiagTV0AxvCzOTUCUZSubRxslUo66/g0XO RMyYuUrTU0EUZXWcZ14OqpQHJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO9TRuRu u3oh5iYSUaG6OLRPJ2PsMB8GA1UdIwQYMBaAFFy8+8+fQGOnmAIqjx4mn73+o2/4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjRGMi8zNEQ1NTQzMkUw QUYxMUVDODI5MDJGNkRDNEY5QUUwMi9YTHo3ejU5QVk2ZVlBaXFQSGlhZnZmNmpi X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hMejd6NTlBWTZlWUFpcVBIaWFmdmY2amJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjRGMi8zNEQ1NTQzMkUwQUYxMUVDODI5MDJGNkRDNEY5QUUwMi9YTHo3ejU5QVk2 ZVlBaXFQSGlhZnZmNmpiX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEW2smB2nASfGmmLre7e1NH2PtqdGoh/8FqUP9Ym6Sy0dm3IzNGK5K kS1HKLsb88/x6w0S8q5hrujxmwoQFg7rmLRnhDRerHE6cx0EyIfAPGc+00uS6t0D bXgE5aayscIMDfggMMPtvN7pIclW+u+bHp7JLDRD0kGf8IlEGLIk8d7orQoWUi/e v0H6dcsLMsejG6z0S79N4O1qHlgGLA3JHbmoSjsHyfycZO3ymYcn98znVELCorEK n43l6MoOiFq0mlwvTuWMlA3VVfnkZfW0kkmOOMMmi9/mQpT8ueigP8aj9jyUCLxL NJq9EwUfBagwA7t5yx7d/U5DDp3Sb/vG -----END CERTIFICATE-----Generated at Sat Dec 6 20:28:52 2025 by rpki-client