This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft File: xw3ieKt3JtKco6jAJAeqW64S7Ao.mft (raw, json) Hash identifier: 845D88hLIaycR8rS7ZjTlyuBK8qo8mKN+IOb6s9i4Dk= Subject key identifier: BF:C1:5A:0C:87:88:C1:43:4C:4D:3D:07:9F:15:C1:30:EE:AF:9A:16 Authority key identifier: C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A Certificate issuer: /CN=A918D323/serialNumber=C70DE278AB7726D29CA3A8C02407AA5BAE12EC0A Certificate serial: 0136 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft Manifest number: 0130 Signing time: Fri 05 Dec 2025 02:43:41 +0000 Manifest this update: Fri 05 Dec 2025 02:43:39 +0000 Manifest next update: Fri 12 Dec 2025 02:43:39 +0000 Files and hashes: 1: xw3ieKt3JtKco6jAJAeqW64S7Ao.crl (hash: HPdwSV4Xh6pZ6hIYBVEt80yKlw+P1jb7ZgLypxiTsFw=) 2: CC166DAC0A0811EFBE7E465EC4F9AE02.roa (hash: LIBTOUx4sDoJqevaYZ7QQd1IJGw6R0nOR1Do32NIl0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.crl rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:43:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 310 (0x136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D323, serialNumber=C70DE278AB7726D29CA3A8C02407AA5BAE12EC0A Validity Not Before: Dec 5 02:43:39 2025 GMT Not After : Dec 12 02:43:39 2025 GMT Subject: CN=693246dc-7731 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:28:76:1b:e3:4e:6f:89:79:a5:d2:48:cd:e3: 76:0f:92:32:bb:f5:0e:c2:c6:39:91:5e:ed:f3:5b: 35:aa:3a:35:ea:8d:e8:35:9a:70:40:c3:21:94:e7: 16:9b:c6:d1:43:c6:7e:a8:8e:0e:a9:4a:b4:f9:85: b3:bc:12:99:0d:3e:73:a0:b6:bb:8d:c9:1d:9b:78: e9:08:af:1f:5c:19:65:19:37:db:69:19:ba:91:ee: 70:34:07:c1:dc:15:9c:c5:e3:48:56:a5:be:35:65: e7:1f:bb:9a:5f:9c:66:01:69:d2:60:4f:45:bf:26: 49:61:be:c1:f7:c4:5b:4f:c3:13:77:37:3b:0f:75: e7:54:da:63:42:c1:fe:c5:1d:70:17:ff:00:d1:77: b2:ee:7d:63:9d:d3:e6:98:5d:82:61:a9:0d:c3:85: f5:04:d0:15:cb:08:68:6c:1f:7e:0e:08:1a:c1:d5: 32:22:b9:cd:2d:43:4d:1e:f0:5d:40:82:9a:80:91: 84:d4:b0:5c:1b:d4:64:85:8d:a7:f4:a6:5e:73:4d: 0c:42:f3:ee:c0:4c:b1:97:5b:1c:c5:0a:46:cc:e7: d5:45:ad:20:89:1c:67:c5:8b:75:c1:62:a2:5e:bb: 2e:89:a5:ea:88:0d:2d:d5:fe:a8:c6:13:ab:c4:f7: f0:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:C1:5A:0C:87:88:C1:43:4C:4D:3D:07:9F:15:C1:30:EE:AF:9A:16 X509v3 Authority Key Identifier: keyid:C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:fe:da:2b:e0:3a:ae:d9:06:fa:8f:d8:c9:9b:44:61:f1:31: 22:31:a3:b6:66:81:fe:1c:33:47:8d:d1:15:97:7f:43:a4:57: 77:a2:d5:ea:52:65:81:64:a8:c9:df:dd:5e:5e:43:df:24:c7: 72:9a:71:53:f7:8e:5f:21:6d:f3:c3:57:08:d0:d1:2c:46:31: 73:24:d2:43:d3:ab:b4:f7:c3:f8:2d:66:8c:65:a2:6d:df:0b: b5:07:e5:a9:53:c2:d7:de:fd:35:75:3d:5b:92:85:fb:e0:41: 9e:e9:52:e7:bb:f3:a0:40:3b:01:2a:7a:e1:fc:0f:25:de:f1: 3f:22:de:2b:9b:5e:77:5b:f5:46:b7:30:0a:23:67:e3:f6:ee: 24:27:dc:34:33:9d:38:72:a4:41:93:c6:0d:14:49:23:ff:fc: 3d:de:79:65:33:e3:78:cb:ba:4c:e9:e8:0b:e1:63:0b:99:12: 7d:f2:32:dc:e4:75:b2:cc:54:39:3d:92:b3:fd:d9:22:cb:d3: e8:43:ae:7f:a7:d3:ab:59:9e:ca:5e:69:3c:02:ca:25:21:e0: 8f:cc:f0:53:fd:98:ba:f6:ba:ef:c3:c6:8f:02:8f:d0:40:15: 82:3b:30:8b:6a:e3:f2:a8:50:7e:0a:59:6c:cf:c4:11:fa:4c: b1:72:ac:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQzMjMxMTAvBgNVBAUTKEM3MERFMjc4QUI3NzI2RDI5Q0EzQThDMDI0MDdBQTVC QUUxMkVDMEEwHhcNMjUxMjA1MDI0MzM5WhcNMjUxMjEyMDI0MzM5WjAYMRYwFAYD VQQDEw02OTMyNDZkYy03NzMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Ch2G+NOb4l5pdJIzeN2D5Iyu/UOwsY5kV7t81s1qjo16o3oNZpwQMMhlOcW m8bRQ8Z+qI4OqUq0+YWzvBKZDT5zoLa7jckdm3jpCK8fXBllGTfbaRm6ke5wNAfB 3BWcxeNIVqW+NWXnH7uaX5xmAWnSYE9FvyZJYb7B98RbT8MTdzc7D3XnVNpjQsH+ xR1wF/8A0Xey7n1jndPmmF2CYakNw4X1BNAVywhobB9+DggawdUyIrnNLUNNHvBd QIKagJGE1LBcG9RkhY2n9KZec00MQvPuwEyxl1scxQpGzOfVRa0giRxnxYt1wWKi XrsuiaXqiA0t1f6oxhOrxPfwyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL/BWgyH iMFDTE09B58VwTDur5oWMB8GA1UdIwQYMBaAFMcN4nirdybSnKOowCQHqluuEuwK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDMyMy8yMjBBMUZEODA5 RUIxMUVGQkM0RDE1MzRDNEY5QUUwMi94dzNpZUt0M0p0S2NvNmpBSkFlcVc2NFM3 QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h3M2llS3QzSnRLY282akFKQWVxVzY0UzdBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDMyMy8yMjBBMUZEODA5RUIxMUVGQkM0RDE1MzRDNEY5QUUwMi94dzNpZUt0M0p0 S2NvNmpBSkFlcVc2NFM3QW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB//tor4Dqu2Qb6j9jJm0Rh8TEiMaO2ZoH+HDNHjdEVl39DpFd3otXq UmWBZKjJ391eXkPfJMdymnFT945fIW3zw1cI0NEsRjFzJNJD06u098P4LWaMZaJt 3wu1B+WpU8LX3v01dT1bkoX74EGe6VLnu/OgQDsBKnrh/A8l3vE/It4rm153W/VG tzAKI2fj9u4kJ9w0M504cqRBk8YNFEkj//w93nllM+N4y7pM6egL4WMLmRJ98jLc 5HWyzFQ5PZKz/dkiy9PoQ65/p9OrWZ7KXmk8AsolIeCPzPBT/Zi69rrvw8aPAo/Q QBWCOzCLauPyqFB+Cllsz8QR+kyxcqwl -----END CERTIFICATE-----Generated at Sat Dec 6 17:22:42 2025 by rpki-client