This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft File: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft (raw, json) Hash identifier: UPI3NpSnj6BgZFNda88+QU1MPWXthykBefMPibtLyhU= Subject key identifier: CC:3C:C6:65:25:59:A1:54:C9:29:5B:36:D1:51:BF:F4:93:D1:1D:31 Authority key identifier: 5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 Certificate issuer: /CN=A918B0B9/serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Certificate serial: 0A06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft Manifest number: 09EE Signing time: Sat 06 Dec 2025 19:08:20 +0000 Manifest this update: Sat 06 Dec 2025 19:08:19 +0000 Manifest next update: Sat 13 Dec 2025 19:08:19 +0000 Files and hashes: 1: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl (hash: pxeNJ66VAOpDoJ8FJ6wdn6TpiT3dXr5yAarhv6kLWcI=) 2: 52F955A89B1511EA9BEFA53BC4F9AE02.roa (hash: ULVz6gtv7Lj17GsbY0DraIvlqeAo9m+ryNVdzpRY8/w=) 3: BED54F1A9B1611EA939F5A3FC4F9AE02.roa (hash: vTD8xn0iYmYF0FCpYg76YMcwnWDZovAXcFL69UbAO9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:08:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2566 (0xa06) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B0B9, serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Validity Not Before: Dec 6 19:08:19 2025 GMT Not After : Dec 13 19:08:19 2025 GMT Subject: CN=69347f24-3912 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:3f:1a:59:42:1d:48:11:9d:27:b1:2c:dd:79: b5:3e:73:8d:91:8a:3b:4b:d0:b9:da:36:47:ad:45: 5b:f4:44:ae:5f:02:3d:9a:33:4f:ff:7f:58:53:fb: a5:f6:27:e6:37:c1:41:94:6a:ca:8a:e2:1e:3e:b6: 2e:49:be:fc:6c:12:3c:62:ab:94:9a:5b:da:7f:09: fc:e9:4b:8c:41:fb:b4:db:17:06:79:63:81:52:2b: 26:7d:6c:72:a9:64:64:75:a9:8b:9b:dc:a7:04:cb: f4:75:3f:8e:69:7c:f4:e6:c8:34:db:01:b8:0e:4d: b7:85:75:6b:f0:33:cb:8b:35:7d:53:9f:fa:ca:5c: 34:24:5f:88:7f:f2:77:c1:4c:c0:52:fb:22:cf:3f: 70:96:d7:ad:51:99:d0:0c:65:83:c1:f6:f5:14:2b: 0b:3d:76:5c:80:fe:4a:94:51:03:45:9d:79:6e:7c: 60:38:aa:66:bb:0f:a3:c2:c2:c9:be:d7:0a:4e:89: d0:89:bc:e6:2b:7c:74:ba:3c:e1:0f:cc:9a:92:37: 19:0a:db:6e:fd:89:6b:9d:ed:f0:41:ae:aa:bb:0a: de:de:c6:71:61:87:3c:5c:df:a3:58:38:dc:99:8d: 91:d7:3d:ea:36:cb:6c:3c:1b:8d:6b:e7:cc:64:fc: c4:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:3C:C6:65:25:59:A1:54:C9:29:5B:36:D1:51:BF:F4:93:D1:1D:31 X509v3 Authority Key Identifier: keyid:5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:cb:f0:7c:a2:cf:1d:32:f2:f5:e2:66:a7:96:e6:7c:91:97: c2:03:67:88:de:e7:3d:63:c6:bc:10:1b:64:0f:72:1f:fa:f0: 28:53:56:82:87:0e:72:a6:00:30:ce:ce:79:eb:a6:85:98:49: 7c:dc:ee:8c:69:e7:3e:8d:85:62:39:28:14:83:a1:14:85:6e: f0:ef:72:52:cf:be:72:93:52:9e:6c:8a:ec:60:dd:8e:c0:02: 40:c7:5d:0c:0c:04:7e:32:bf:55:2c:0c:fd:f9:e2:03:06:cc: 77:98:80:43:fb:31:a8:24:c3:02:6c:21:f1:8b:b2:0a:66:b7: 3e:dc:34:9c:b1:a8:8a:3f:46:d2:db:40:c6:f1:3b:5f:cd:bf: 77:0e:04:81:ad:b7:ad:e5:fa:01:00:f1:f5:d7:a8:c8:27:12: 4d:70:e9:76:84:e8:78:7d:9b:94:91:a8:dd:66:d6:29:1d:44: c4:df:2b:79:b9:3f:f8:a8:90:30:74:ec:3e:b3:34:07:8f:b3: fb:16:d0:c7:d8:c4:76:61:1b:3c:9d:94:71:a4:f7:36:f5:01: c9:5b:6b:95:4d:ef:6a:5f:cf:5f:81:10:ae:fe:84:77:85:5d: d4:fa:79:24:8c:27:43:ac:65:9a:c9:69:2d:d5:8d:74:07:ed: 95:0a:9e:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEIwQjkxMTAvBgNVBAUTKDVDNUE0RkFFNEFGMDFGRkRDOTI3NTM1NUNDQkFCOEM4 MTAxODlGNTQwHhcNMjUxMjA2MTkwODE5WhcNMjUxMjEzMTkwODE5WjAYMRYwFAYD VQQDEw02OTM0N2YyNC0zOTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3j8aWUIdSBGdJ7Es3Xm1PnONkYo7S9C52jZHrUVb9ESuXwI9mjNP/39YU/ul 9ifmN8FBlGrKiuIePrYuSb78bBI8YquUmlvafwn86UuMQfu02xcGeWOBUismfWxy qWRkdamLm9ynBMv0dT+OaXz05sg02wG4Dk23hXVr8DPLizV9U5/6ylw0JF+If/J3 wUzAUvsizz9wltetUZnQDGWDwfb1FCsLPXZcgP5KlFEDRZ15bnxgOKpmuw+jwsLJ vtcKTonQibzmK3x0ujzhD8yakjcZCttu/Ylrne3wQa6quwre3sZxYYc8XN+jWDjc mY2R1z3qNstsPBuNa+fMZPzEsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMw8xmUl WaFUySlbNtFRv/ST0R0xMB8GA1UdIwQYMBaAFFxaT65K8B/9ySdTVcy6uMgQGJ9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjBCOS85Q0JGM0Q5MDhG QTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hfM0pKMU5WekxxNHlCQVlu MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hGcFBya3J3SF8zSkoxTlZ6THE0eUJBWW4xUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjBCOS85Q0JGM0Q5MDhGQTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hf M0pKMU5WekxxNHlCQVluMVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZy/B8os8dMvL14manluZ8kZfCA2eI3uc9Y8a8EBtkD3If+vAoU1aC hw5ypgAwzs5566aFmEl83O6Maec+jYViOSgUg6EUhW7w73JSz75yk1KebIrsYN2O wAJAx10MDAR+Mr9VLAz9+eIDBsx3mIBD+zGoJMMCbCHxi7IKZrc+3DScsaiKP0bS 20DG8Ttfzb93DgSBrbet5foBAPH116jIJxJNcOl2hOh4fZuUkajdZtYpHUTE3yt5 uT/4qJAwdOw+szQHj7P7FtDH2MR2YRs8nZRxpPc29QHJW2uVTe9qX89fgRCu/oR3 hV3U+nkkjCdDrGWayWkt1Y10B+2VCp4Y -----END CERTIFICATE-----Generated at Sun Dec 7 01:51:50 2025 by rpki-client