This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft File: XctT6r5qkI7KhlLekkgHxQnFLTA.mft (raw, json) Hash identifier: 0YkD9HqP/lxeb7N/xB5YLUxOFWTOcazy/lkI9jL1Kvw= Subject key identifier: 3B:26:45:6A:DF:B0:D1:78:F6:3E:BB:DD:DD:38:74:50:34:1B:40:03 Authority key identifier: 5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 Certificate issuer: /CN=A918560D/serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Certificate serial: 0D4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft Manifest number: 0D45 Signing time: Sat 06 Dec 2025 17:25:35 +0000 Manifest this update: Sat 06 Dec 2025 17:25:35 +0000 Manifest next update: Sat 13 Dec 2025 17:25:35 +0000 Files and hashes: 1: XctT6r5qkI7KhlLekkgHxQnFLTA.crl (hash: soF8/cR7zgGC7KarUO7k7j7e6boCC8vXnZYlR/gJljE=) 2: 41A8E738045111EA9C7DF516C4F9AE02.roa (hash: t9j99ouqyAO1DSlTWOraKVE9DSXzBdaScfcUdlzhboc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:25:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3407 (0xd4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918560D, serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Validity Not Before: Dec 6 17:25:35 2025 GMT Not After : Dec 13 17:25:35 2025 GMT Subject: CN=6934670f-2054 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:26:5f:5b:ab:75:23:54:b1:50:09:17:78:85: 28:3d:43:d2:ff:71:25:6d:37:d8:13:38:c4:49:7c: 82:39:33:d5:d3:45:63:29:43:c6:5d:14:8e:7c:d6: a5:73:b4:cb:42:3b:32:a7:50:97:16:78:d0:d4:11: 2e:46:9d:c8:bc:4b:eb:fb:8e:a5:9f:35:e5:f1:b2: d9:ab:44:f3:3e:68:08:73:c4:92:a6:75:c5:b0:4e: 38:b6:67:4c:ee:54:35:df:3d:71:1b:c6:23:41:58: 7e:df:29:65:54:f2:3a:27:46:dc:95:12:65:7b:f1: fd:0c:7b:45:0f:4e:c5:6f:1c:6c:78:43:03:91:ba: a7:fe:d0:cf:53:a6:30:ea:a8:da:23:96:d1:b5:00: 0e:9c:73:cb:c6:c6:aa:d3:e7:c7:d6:e3:10:93:2c: 34:9c:cc:70:56:a2:43:dc:ed:54:a9:e5:07:6c:e8: 1d:a1:5d:ea:69:5a:53:45:c9:d7:13:90:89:47:28: d7:88:38:d9:06:b6:24:6d:f6:b6:67:ca:e9:c0:e7: 14:bd:30:09:51:f0:c7:ac:ed:f4:08:42:8e:64:2d: 9d:9d:5b:94:e2:9a:dd:60:f0:5f:7f:67:be:3e:c7: 8d:6e:73:8b:ae:0b:5f:04:22:91:e6:ed:46:0f:2b: 9b:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:26:45:6A:DF:B0:D1:78:F6:3E:BB:DD:DD:38:74:50:34:1B:40:03 X509v3 Authority Key Identifier: keyid:5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:11:93:71:71:c0:35:b5:a6:cc:30:42:04:09:99:ce:c1:d2: fb:c2:dd:56:9d:8e:1f:77:f1:e3:b2:f1:2b:12:55:60:34:0a: 82:4d:a7:e0:8d:69:ec:d1:88:e2:55:ca:93:9c:19:9d:7f:a9: 7c:4b:87:19:16:10:85:5d:a4:32:52:1f:6e:35:d9:68:cf:0c: 0b:d6:e9:47:34:89:c1:a3:80:67:de:ff:55:5f:e0:ac:ec:f7: 3b:90:56:af:71:1c:27:6c:e7:ee:1a:85:77:19:9a:fd:be:23: fc:5a:73:54:96:67:30:d5:96:5b:b5:da:5a:29:52:bc:b9:c4: 26:b3:3b:7f:82:b6:33:92:d5:d0:30:f0:50:46:b5:43:bc:16: f9:91:6b:4e:e9:20:66:49:32:88:45:0d:40:bd:8c:4f:2a:61: fa:3a:15:8c:0e:0b:49:34:19:77:82:0e:df:1a:2e:7e:2c:b3: 9e:45:2f:41:ef:43:c7:e8:f9:5a:e9:56:11:79:0a:e1:f2:d2: 47:62:55:77:a0:a1:54:68:fb:88:78:e7:bd:88:25:b9:37:7e: 27:90:06:80:97:ff:e7:6f:ba:67:6e:3e:eb:42:c7:2b:9b:75: 7f:dd:ac:a3:a7:4f:18:4c:64:f0:ea:f7:4c:fa:65:40:e1:49: 0f:25:5e:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU2MEQxMTAvBgNVBAUTKDVEQ0I1M0VBQkU2QTkwOEVDQTg2NTJERTkyNDgwN0M1 MDlDNTJEMzAwHhcNMjUxMjA2MTcyNTM1WhcNMjUxMjEzMTcyNTM1WjAYMRYwFAYD VQQDEw02OTM0NjcwZi0yMDU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuyZfW6t1I1SxUAkXeIUoPUPS/3ElbTfYEzjESXyCOTPV00VjKUPGXRSOfNal c7TLQjsyp1CXFnjQ1BEuRp3IvEvr+46lnzXl8bLZq0TzPmgIc8SSpnXFsE44tmdM 7lQ13z1xG8YjQVh+3yllVPI6J0bclRJle/H9DHtFD07FbxxseEMDkbqn/tDPU6Yw 6qjaI5bRtQAOnHPLxsaq0+fH1uMQkyw0nMxwVqJD3O1UqeUHbOgdoV3qaVpTRcnX E5CJRyjXiDjZBrYkbfa2Z8rpwOcUvTAJUfDHrO30CEKOZC2dnVuU4prdYPBff2e+ PseNbnOLrgtfBCKR5u1GDyubFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDsmRWrf sNF49j673d04dFA0G0ADMB8GA1UdIwQYMBaAFF3LU+q+apCOyoZS3pJIB8UJxS0w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTYwRC9GNURDQTZENEU1 QjgxMUU5OEE3NjEyMEVDNEY5QUUwMi9YY3RUNnI1cWtJN0tobExla2tnSHhRbkZM VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjdFQ2cjVxa0k3S2hsTGVra2dIeFFuRkxUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTYwRC9GNURDQTZENEU1QjgxMUU5OEE3NjEyMEVDNEY5QUUwMi9YY3RUNnI1cWtJ N0tobExla2tnSHhRbkZMVEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOEZNxccA1tabMMEIECZnOwdL7wt1WnY4fd/HjsvErElVgNAqCTafg jWns0YjiVcqTnBmdf6l8S4cZFhCFXaQyUh9uNdlozwwL1ulHNInBo4Bn3v9VX+Cs 7Pc7kFavcRwnbOfuGoV3GZr9viP8WnNUlmcw1ZZbtdpaKVK8ucQmszt/grYzktXQ MPBQRrVDvBb5kWtO6SBmSTKIRQ1AvYxPKmH6OhWMDgtJNBl3gg7fGi5+LLOeRS9B 70PH6Pla6VYReQrh8tJHYlV3oKFUaPuIeOe9iCW5N34nkAaAl//nb7pnbj7rQscr m3V/3ayjp08YTGTw6vdM+mVA4UkPJV7a -----END CERTIFICATE-----Generated at Sun Dec 7 04:46:26 2025 by rpki-client