This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft File: xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft (raw, json) Hash identifier: OhwHXT+EszFG7fYxMwGP5laJwXTM+AB4sU+EkJ62sC4= Subject key identifier: F8:9A:82:BC:A5:F6:6B:EF:A5:78:0E:0F:11:8E:AC:EE:7C:74:EF:03 Authority key identifier: C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF Certificate issuer: /CN=A918FD04/serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Certificate serial: 08F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft Manifest number: 1559 Signing time: Sat 06 Dec 2025 17:52:43 +0000 Manifest this update: Sat 06 Dec 2025 17:52:42 +0000 Manifest next update: Sat 13 Dec 2025 17:52:42 +0000 Files and hashes: 1: xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl (hash: czLJccWZEV/hPitCKAWmWueI8um5oQU6PjU14zUCLFE=) 2: 7BBC1DD2040611EF909F6C3EC4F9AE02.roa (hash: PO0AZ1fTp3S5+kMx+XcNpi0qfLQExWGMHCA4bw3dxVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2290 (0x8f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FD04, serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Validity Not Before: Dec 6 17:52:42 2025 GMT Not After : Dec 13 17:52:42 2025 GMT Subject: CN=69346d6a-0f2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d1:5f:ca:d4:f8:03:11:36:0c:5e:65:0d:bf: 6d:44:d0:e4:46:21:87:33:b5:ca:0a:8a:1d:d9:3d: 96:9e:36:5e:ab:f8:6d:65:7b:20:88:f6:cd:9f:f3: b4:37:63:0c:2c:39:ca:0d:f9:69:05:3d:a5:39:49: 47:b3:80:d2:93:81:b6:77:d9:15:af:28:f9:a6:8e: d7:a0:ba:1f:ef:7a:f3:01:82:4d:f7:1a:da:19:e5: 3a:8a:51:b2:a8:6a:eb:f0:7e:5d:d9:4f:58:1c:97: c1:a5:08:52:1f:8d:ad:8d:f5:4d:bb:cf:25:e8:e4: 92:3a:3a:6c:ef:3c:30:6e:70:49:b7:46:43:b3:38: ee:0e:7d:10:a4:c4:dd:7e:c0:80:97:07:66:d5:c6: ee:ed:66:09:41:96:fa:02:c7:f7:e1:55:23:bb:1b: 21:bc:82:20:6e:c8:07:a2:98:81:d5:06:8a:8c:84: 2d:af:e5:cd:cd:b7:e9:23:36:44:d0:e3:a3:32:e5: 39:4a:fe:e6:e9:9b:d3:19:a8:b5:77:66:a1:52:73: c8:85:4a:b3:41:22:c9:eb:f1:c3:fa:ad:3d:43:7c: e9:3d:2a:9d:77:ca:40:87:40:3e:ec:bd:00:90:65: c2:06:f4:db:91:7a:96:71:08:f8:45:df:02:b8:00: 08:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:9A:82:BC:A5:F6:6B:EF:A5:78:0E:0F:11:8E:AC:EE:7C:74:EF:03 X509v3 Authority Key Identifier: keyid:C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:8d:a7:98:ad:bc:0a:10:b1:c5:b0:8f:63:b6:d9:25:3d:4f: 65:11:fe:d4:03:8e:92:da:2d:34:b9:f5:2a:3c:11:ad:6e:af: c8:21:c7:e6:4a:2d:88:fe:1f:e4:4c:71:0a:59:e4:17:a1:9b: 96:af:53:cd:63:e8:7e:b7:50:d9:72:a3:ee:05:04:11:fc:15: e2:31:6c:ea:5a:e2:cd:98:f8:6b:f3:de:ae:fe:cc:c7:2b:a0: d0:df:79:be:ef:a8:5c:02:d9:26:f4:3c:bb:18:7b:c3:d4:30: bc:7c:60:57:67:4b:e9:62:4b:cb:e1:ff:4a:2c:28:91:d3:3d: b9:0e:fe:80:c9:37:67:40:05:68:8c:1f:2f:19:8c:1c:fa:61: 20:f9:d3:97:b0:eb:a3:93:91:a8:e0:ad:f4:62:f6:d7:c3:92: 25:6e:84:4b:27:11:cf:d2:38:34:6a:e2:65:4c:9d:66:d3:3d: c9:28:c5:5f:eb:9b:99:b8:4e:8c:18:c1:1f:c9:60:61:32:92: 9f:f4:d7:e8:62:f1:b8:d1:0c:d7:0e:dc:9d:65:31:46:db:3b: 3c:a1:2a:2c:8d:b0:a6:58:44:74:82:e7:5c:89:73:6c:34:a5: 7f:98:0f:ac:f5:f7:57:f6:7e:5d:0f:f1:4b:41:c8:b9:6c:76: 1e:81:51:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZEMDQxMTAvBgNVBAUTKEM0QTRDMzU0MzU4RkQ0ODIzRjZFQzUzMTMyNzY3NDg1 NEM4NkM2REYwHhcNMjUxMjA2MTc1MjQyWhcNMjUxMjEzMTc1MjQyWjAYMRYwFAYD VQQDEw02OTM0NmQ2YS0wZjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9FfytT4AxE2DF5lDb9tRNDkRiGHM7XKCood2T2WnjZeq/htZXsgiPbNn/O0 N2MMLDnKDflpBT2lOUlHs4DSk4G2d9kVryj5po7XoLof73rzAYJN9xraGeU6ilGy qGrr8H5d2U9YHJfBpQhSH42tjfVNu88l6OSSOjps7zwwbnBJt0ZDszjuDn0QpMTd fsCAlwdm1cbu7WYJQZb6Asf34VUjuxshvIIgbsgHopiB1QaKjIQtr+XNzbfpIzZE 0OOjMuU5Sv7m6ZvTGai1d2ahUnPIhUqzQSLJ6/HD+q09Q3zpPSqdd8pAh0A+7L0A kGXCBvTbkXqWcQj4Rd8CuAAIYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPiagryl 9mvvpXgODxGOrO58dO8DMB8GA1UdIwQYMBaAFMSkw1Q1j9SCP27FMTJ2dIVMhsbf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkQwNC8wQUJCRjQ3MjBE RjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJSV9ic1V4TW5aMGhVeUd4 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hLVERWRFdQMUlJX2JzVXhNblowaFV5R3h0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkQwNC8wQUJCRjQ3MjBERjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJ SV9ic1V4TW5aMGhVeUd4dDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjjaeYrbwKELHFsI9jttklPU9lEf7UA46S2i00ufUqPBGtbq/IIcfm Si2I/h/kTHEKWeQXoZuWr1PNY+h+t1DZcqPuBQQR/BXiMWzqWuLNmPhr896u/szH K6DQ33m+76hcAtkm9Dy7GHvD1DC8fGBXZ0vpYkvL4f9KLCiR0z25Dv6AyTdnQAVo jB8vGYwc+mEg+dOXsOujk5Go4K30YvbXw5IlboRLJxHP0jg0auJlTJ1m0z3JKMVf 65uZuE6MGMEfyWBhMpKf9NfoYvG40QzXDtydZTFG2zs8oSosjbCmWER0gudciXNs NKV/mA+s9fdX9n5dD/FLQci5bHYegVF8 -----END CERTIFICATE-----Generated at Sat Dec 6 21:45:56 2025 by rpki-client