This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft File: XAq0JfK0I14cgVaDvWyOi3uAtyc.mft (raw, json) Hash identifier: YS2BvrNUt1SB6zpBQ39kmAXPfwQT1R0U3DD52pr4weY= Subject key identifier: 9A:D7:8A:92:76:85:4B:08:4A:81:AD:E9:E3:C2:A5:30:4A:61:7C:13 Authority key identifier: 5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 Certificate issuer: /CN=A917F8A9/serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Certificate serial: 09E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft Manifest number: 09CE Signing time: Sat 06 Dec 2025 19:10:58 +0000 Manifest this update: Sat 06 Dec 2025 19:10:57 +0000 Manifest next update: Sat 13 Dec 2025 19:10:57 +0000 Files and hashes: 1: XAq0JfK0I14cgVaDvWyOi3uAtyc.crl (hash: DhGl7YfibvR56Xzw6M40XKwPIidN+M/BTNBTpMuuVWg=) 2: 83DC30E0D0DB11EA9336962FC4F9AE02.roa (hash: 1xpqucRPj2sGGfUlw/hjqGcWw2RAvQEPEvj1/o7DLww=) 3: 0774A2C894F211EAB30E7682C4F9AE02.roa (hash: Qe2k4Rmt8cYvrQ25NjhCj6HgTDQ2LTBczeZdX5NMi1Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:10:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2533 (0x9e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F8A9, serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Validity Not Before: Dec 6 19:10:57 2025 GMT Not After : Dec 13 19:10:57 2025 GMT Subject: CN=69347fc1-9cd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:10:7f:44:7e:fa:21:26:bf:56:46:86:69:f6: 10:37:13:08:46:7a:bf:51:c9:9e:ca:76:40:2c:06: 18:79:c2:46:5b:86:8e:1b:51:14:06:61:e6:f3:2e: 80:a4:b6:b1:aa:f1:e7:b9:a0:09:e0:bf:21:6b:60: bb:33:c6:44:17:64:1d:28:d1:ba:0d:9d:b2:0a:93: 05:3d:3f:2b:92:cb:3e:25:6d:9d:69:75:92:96:46: 6d:a8:13:21:ea:29:1a:63:f5:c9:24:61:c9:71:fc: f7:5f:19:64:3e:b5:c0:59:50:e6:fc:f9:d8:21:68: e0:dc:f4:8b:2d:56:e6:0e:99:93:f9:a4:8e:38:ca: f9:9f:12:24:99:b6:88:14:22:9e:ff:04:d3:4c:50: 50:8a:24:67:81:60:54:25:3f:8f:cd:5f:d7:9d:5a: c9:44:99:67:5b:e3:b5:05:3e:48:3c:86:b1:7c:03: db:0a:f6:e7:f9:e8:fc:6e:44:b5:7a:96:ff:f4:00: 08:6b:84:d8:86:28:e2:ea:d2:9f:fe:b5:d4:e4:bc: 8f:06:c6:01:46:e7:e8:81:fb:cf:3a:e1:4c:46:c0: 23:dc:fe:42:7e:40:d7:9e:37:67:11:51:ce:e1:06: f3:5d:d1:17:f1:e2:84:f0:30:b0:c3:47:5e:80:bb: 3d:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:D7:8A:92:76:85:4B:08:4A:81:AD:E9:E3:C2:A5:30:4A:61:7C:13 X509v3 Authority Key Identifier: keyid:5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:32:5e:1c:ab:02:7f:17:77:e0:16:3d:de:58:9d:a4:5a:0d: 1a:ed:25:27:b7:31:07:71:c5:08:13:75:6b:85:6a:d5:31:14: e6:df:90:b9:c1:19:a0:a4:e0:c9:4d:30:55:81:90:ce:6a:87: 0f:c2:90:12:09:61:6b:30:75:fb:39:81:7e:d5:e4:12:77:d5: 58:de:dd:82:9f:d9:51:13:ee:9d:5d:9b:7c:cd:ec:3b:2d:00: 0a:1f:49:b4:26:8f:f4:ea:3a:be:55:b4:10:26:48:19:e3:1a: a6:97:b5:77:4e:df:96:20:86:6e:f0:a9:e8:c3:90:09:ea:7f: f2:a5:ae:25:61:2e:9d:25:d1:96:a0:1f:2e:88:e6:1c:0d:4d: e2:4f:2d:b5:d8:ea:66:90:ea:b8:52:8e:ac:33:c4:79:d2:7b: ae:f9:2d:8f:64:84:50:b3:ee:00:ff:03:c2:60:f6:9f:dc:96: 0b:5f:81:21:b5:b7:54:30:74:9d:4e:4b:19:47:c8:63:c3:f4: 96:01:40:17:41:f6:be:c4:5d:c6:fd:04:81:e9:80:4a:59:09: 45:4d:3f:10:06:17:8b:f8:c5:5a:70:00:5a:0a:99:7c:5a:a6: f3:84:cf:66:c1:e2:e3:47:56:c6:10:7a:f6:ea:aa:d4:5f:3f: b2:d0:8a:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4QTkxMTAvBgNVBAUTKDVDMEFCNDI1RjJCNDIzNUUxQzgxNTY4M0JENkM4RThC N0I4MEI3MjcwHhcNMjUxMjA2MTkxMDU3WhcNMjUxMjEzMTkxMDU3WjAYMRYwFAYD VQQDEw02OTM0N2ZjMS05Y2Q0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwxB/RH76ISa/VkaGafYQNxMIRnq/UcmeynZALAYYecJGW4aOG1EUBmHm8y6A pLaxqvHnuaAJ4L8ha2C7M8ZEF2QdKNG6DZ2yCpMFPT8rkss+JW2daXWSlkZtqBMh 6ikaY/XJJGHJcfz3XxlkPrXAWVDm/PnYIWjg3PSLLVbmDpmT+aSOOMr5nxIkmbaI FCKe/wTTTFBQiiRngWBUJT+PzV/XnVrJRJlnW+O1BT5IPIaxfAPbCvbn+ej8bkS1 epb/9AAIa4TYhiji6tKf/rXU5LyPBsYBRufogfvPOuFMRsAj3P5CfkDXnjdnEVHO 4QbzXdEX8eKE8DCww0degLs9NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJrXipJ2 hUsISoGt6ePCpTBKYXwTMB8GA1UdIwQYMBaAFFwKtCXytCNeHIFWg71sjot7gLcn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjhBOS8yQUEwNDMzMDk0 RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkxNGNnVmFEdld5T2kzdUF0 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBcTBKZkswSTE0Y2dWYUR2V3lPaTN1QXR5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjhBOS8yQUEwNDMzMDk0RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkx NGNnVmFEdld5T2kzdUF0eWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0Ml4cqwJ/F3fgFj3eWJ2kWg0a7SUntzEHccUIE3VrhWrVMRTm35C5 wRmgpODJTTBVgZDOaocPwpASCWFrMHX7OYF+1eQSd9VY3t2Cn9lRE+6dXZt8zew7 LQAKH0m0Jo/06jq+VbQQJkgZ4xqml7V3Tt+WIIZu8Know5AJ6n/ypa4lYS6dJdGW oB8uiOYcDU3iTy212OpmkOq4Uo6sM8R50nuu+S2PZIRQs+4A/wPCYPaf3JYLX4Eh tbdUMHSdTksZR8hjw/SWAUAXQfa+xF3G/QSB6YBKWQlFTT8QBheL+MVacABaCpl8 WqbzhM9mweLjR1bGEHr26qrUXz+y0IrP -----END CERTIFICATE-----Generated at Sun Dec 7 01:55:22 2025 by rpki-client