This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft File: X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft (raw, json) Hash identifier: LmGYO6Pif8piIys5fVdTKpOb712Q6Qw+JqU/0l6XgAw= Subject key identifier: B2:E7:26:54:7B:64:BB:54:DC:BA:82:23:36:0D:83:2B:AC:F0:F1:27 Authority key identifier: 5F:E0:4C:95:7A:6C:BC:54:0A:34:F4:53:D1:3E:3F:80:50:C8:F4:EE Certificate issuer: /CN=A918A51B/serialNumber=5FE04C957A6CBC540A34F453D13E3F8050C8F4EE Certificate serial: 021F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft Manifest number: 0216 Signing time: Fri 05 Dec 2025 00:33:08 +0000 Manifest this update: Fri 05 Dec 2025 00:33:07 +0000 Manifest next update: Fri 12 Dec 2025 00:33:07 +0000 Files and hashes: 1: X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl (hash: JIKPNSMjsKBidHXJPUSqLNiqvwFIJ1QGAjSE7qQ0JwE=) 2: 6B9615FCD6E311EE94842842C4F9AE02.roa (hash: okvmN+fO8yeb8sv3bijRR7qzwb2TLJ+EV1o8F+ji/G8=) 3: 6A9D79ECD6E311EE94842842C4F9AE02.roa (hash: lxKtarKsATY2wiXkVbh3EFTMWa9NQc/B8XJ8gCOAwlc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:33:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 543 (0x21f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A51B, serialNumber=5FE04C957A6CBC540A34F453D13E3F8050C8F4EE Validity Not Before: Dec 5 00:33:07 2025 GMT Not After : Dec 12 00:33:07 2025 GMT Subject: CN=69322844-bffb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:70:7a:05:48:25:9f:9b:94:ea:9d:29:a8:15: d7:61:11:e4:5c:0a:18:51:a1:b4:4b:eb:36:69:8b: f8:21:62:dc:cb:9a:76:37:25:d9:20:b4:96:ec:b4: cc:5a:59:8f:68:3d:48:cd:5a:96:52:54:95:d3:5b: bc:05:de:89:51:99:48:12:51:ee:36:b7:f8:80:06: c4:5b:5d:fa:6b:1c:b1:a5:88:0f:3f:55:b7:85:bd: 24:ca:94:60:0f:6c:39:3b:db:bb:1c:bf:f5:45:fc: bc:b8:b6:24:aa:08:26:22:a6:4a:1e:44:d7:d4:cd: d8:3f:ae:43:b6:5a:37:83:b1:8d:d1:0d:ec:12:2b: 72:0c:41:91:2e:4b:8c:c9:26:e6:9b:ac:68:15:6c: 98:ac:b7:ad:08:b7:41:32:fe:19:f6:0b:e0:57:7d: dd:d7:eb:5f:b4:53:c5:cc:3b:26:4f:5f:a4:6e:a0: 37:f2:ca:f2:ba:02:18:83:1f:69:8a:0f:12:da:30: 49:46:28:4c:fc:54:ba:84:f0:4e:71:c0:26:ba:61: 38:33:2d:5a:d0:ed:1c:07:83:f3:ec:9e:2b:85:e4: 4a:62:62:c8:48:78:b7:cb:89:33:62:3e:05:33:09: 16:39:8e:15:b4:19:17:d2:99:8b:15:cd:1a:5a:90: 03:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:E7:26:54:7B:64:BB:54:DC:BA:82:23:36:0D:83:2B:AC:F0:F1:27 X509v3 Authority Key Identifier: keyid:5F:E0:4C:95:7A:6C:BC:54:0A:34:F4:53:D1:3E:3F:80:50:C8:F4:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:8f:91:55:8a:ea:9c:c2:8e:ac:23:2d:87:41:63:5c:a6:76: 8d:3b:ff:17:9d:af:48:8a:43:da:47:a9:26:d9:83:c4:b1:b8: c4:87:86:31:c2:b3:a2:b2:7e:c3:5e:87:79:1e:a9:86:77:62: 60:af:e8:aa:44:c1:bc:fa:d5:d6:6e:b6:62:c6:ec:3b:f0:d6: b0:3b:fd:dc:02:b9:a3:e3:f8:03:60:62:a8:fd:67:92:17:16: fd:5d:4b:6a:26:f2:74:1a:2f:0c:10:1e:45:04:88:09:b6:df: 54:71:ff:7c:de:af:c4:65:67:6f:60:59:bf:6b:57:6d:95:c6: 1b:85:23:81:31:e1:8e:14:db:f3:b9:58:73:6a:5d:84:d8:19: 9e:81:63:c2:c9:d0:ec:9e:3f:18:cc:be:45:70:0f:3d:98:09: 0c:0b:9d:cc:5d:63:1e:95:f6:a7:65:c2:ea:cc:57:9a:a2:cc: e9:51:13:5a:d5:31:e5:36:dc:b3:2c:3e:9f:53:58:fd:7c:09: fd:dc:b3:df:c7:17:35:5d:7c:66:b4:10:52:cc:ee:45:67:8e: 2c:a6:51:78:75:1c:32:9b:2e:09:c1:b4:30:bd:f2:5e:a4:aa: c5:1f:c0:a9:8b:6a:79:f1:5a:04:f9:eb:f4:e2:a0:0f:7a:03: 41:6e:65:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE1MUIxMTAvBgNVBAUTKDVGRTA0Qzk1N0E2Q0JDNTQwQTM0RjQ1M0QxM0UzRjgw NTBDOEY0RUUwHhcNMjUxMjA1MDAzMzA3WhcNMjUxMjEyMDAzMzA3WjAYMRYwFAYD VQQDEw02OTMyMjg0NC1iZmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApHB6BUgln5uU6p0pqBXXYRHkXAoYUaG0S+s2aYv4IWLcy5p2NyXZILSW7LTM WlmPaD1IzVqWUlSV01u8Bd6JUZlIElHuNrf4gAbEW136axyxpYgPP1W3hb0kypRg D2w5O9u7HL/1Rfy8uLYkqggmIqZKHkTX1M3YP65Dtlo3g7GN0Q3sEityDEGRLkuM ySbmm6xoFWyYrLetCLdBMv4Z9gvgV33d1+tftFPFzDsmT1+kbqA38sryugIYgx9p ig8S2jBJRihM/FS6hPBOccAmumE4My1a0O0cB4Pz7J4rheRKYmLISHi3y4kzYj4F MwkWOY4VtBkX0pmLFc0aWpADxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLLnJlR7 ZLtU3LqCIzYNgyus8PEnMB8GA1UdIwQYMBaAFF/gTJV6bLxUCjT0U9E+P4BQyPTu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTUxQi8wMENBOThGMkEx QTUxMUVEOTEyMzIyNTRDNEY5QUUwMi9YLUJNbFhwc3ZGUUtOUFJUMFQ0X2dGREk5 TzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtQk1sWHBzdkZRS05QUlQwVDRfZ0ZESTlPNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTUxQi8wMENBOThGMkExQTUxMUVEOTEyMzIyNTRDNEY5QUUwMi9YLUJNbFhwc3ZG UUtOUFJUMFQ0X2dGREk5TzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCij5FViuqcwo6sIy2HQWNcpnaNO/8Xna9IikPaR6km2YPEsbjEh4Yx wrOisn7DXod5HqmGd2Jgr+iqRMG8+tXWbrZixuw78NawO/3cArmj4/gDYGKo/WeS Fxb9XUtqJvJ0Gi8MEB5FBIgJtt9Ucf983q/EZWdvYFm/a1dtlcYbhSOBMeGOFNvz uVhzal2E2BmegWPCydDsnj8YzL5FcA89mAkMC53MXWMelfanZcLqzFeaoszpURNa 1THlNtyzLD6fU1j9fAn93LPfxxc1XXxmtBBSzO5FZ44splF4dRwymy4JwbQwvfJe pKrFH8Cpi2p58VoE+ev04qAPegNBbmWm -----END CERTIFICATE-----Generated at Sat Dec 6 14:50:18 2025 by rpki-client