This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.mft File: XqGnuALn5-_HfKGjjlL3Ks1GOTA.mft (raw, json) Hash identifier: qbi8xFq2yhokoIhsprbcN0SHa6D0oim3CZQ6UoHTwoM= Subject key identifier: 64:E9:C5:BB:72:F7:C5:68:93:37:DA:B2:59:F0:10:4F:92:FE:22:23 Authority key identifier: 5E:A1:A7:B8:02:E7:E7:EF:C7:7C:A1:A3:8E:52:F7:2A:CD:46:39:30 Certificate issuer: /CN=A919A998/serialNumber=5EA1A7B802E7E7EFC77CA1A38E52F72ACD463930 Certificate serial: 0D75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqGnuALn5-_HfKGjjlL3Ks1GOTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.mft Manifest number: 0D42 Signing time: Sat 06 Dec 2025 17:27:48 +0000 Manifest this update: Sat 06 Dec 2025 17:27:48 +0000 Manifest next update: Sat 13 Dec 2025 17:27:48 +0000 Files and hashes: 1: XqGnuALn5-_HfKGjjlL3Ks1GOTA.crl (hash: +ctoZ1UzcGgQhhOQkUxahcS/YNxwZUBK1TNyvcRgZN0=) 2: 6EA46446646511EFA9435879C4F9AE02.roa (hash: N1pVptA00WkhE4m7SJH5EH6Jm0Owz+2oXrWW4KUrpu8=) 3: 65DCB430F25A11E9937D9D73C4F9AE02.roa (hash: /aVclLD4E4tWBUOjWLIy9WCs0APOAP9s7RhIp3StsiQ=) 4: 3BC4C576426D11EFAD9E7D10C4F9AE02.roa (hash: BDVB4NGwuoV9jd6p0mq+EV/AIWqBPxsn1M/JVs61jFc=) 5: 653CF2F6F25A11E9937D9D73C4F9AE02.roa (hash: IlqRKAixBVu9Vx4XUBGktOBKcBONHQKrwOz30YJWU9c=) 6: 49ADA7183C6111F0BB3B1A85C4F9AE02.roa (hash: glN4k7urNUEminalwjQaEl9qzQ9uaPGYJxVPLRonhOg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.crl rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqGnuALn5-_HfKGjjlL3Ks1GOTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:27:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3445 (0xd75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A998, serialNumber=5EA1A7B802E7E7EFC77CA1A38E52F72ACD463930 Validity Not Before: Dec 6 17:27:48 2025 GMT Not After : Dec 13 17:27:48 2025 GMT Subject: CN=69346794-c516 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:73:1c:d9:ba:d6:a2:8c:65:64:c5:b6:b0:9d: 04:6d:fc:48:0b:d5:d3:30:fd:8d:d2:55:c3:d2:31: ab:cb:aa:7d:c3:a7:f4:83:62:e3:bd:6b:66:2d:df: 12:0e:4d:3a:54:75:f2:c1:ae:c8:a9:d4:39:ab:4c: 02:44:08:9f:a1:49:62:8e:2e:70:33:0f:61:d7:45: 4a:73:af:98:da:a9:9e:36:d1:ce:6b:5e:d4:e4:b9: 24:a3:f4:ce:19:21:bc:39:f2:60:ab:53:3f:80:40: 3c:bd:10:e9:34:db:b8:33:4a:38:4c:64:ec:79:37: 75:79:bc:ff:75:d8:eb:bb:7a:41:58:40:b7:30:2e: 32:61:cf:6d:b6:08:c8:a0:16:7f:9e:e5:01:40:87: 44:09:56:3b:b5:45:4e:48:66:06:b5:dc:46:92:2d: 0c:40:14:90:8d:c0:86:b9:d8:3e:bc:f5:6e:b5:71: 8d:e1:cd:a9:4d:0d:0e:4a:1f:52:36:0c:45:65:68: ab:b1:d2:50:92:f3:f2:62:03:af:51:d8:17:2c:39: 37:26:24:2b:1a:cd:fd:6c:dd:9b:bb:f3:b4:a5:2d: b9:ed:c6:8b:0d:d3:6f:4b:68:c4:89:ee:3e:40:c0: 8c:19:9a:32:15:24:5c:7c:db:ac:a3:a3:42:08:1e: 82:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:E9:C5:BB:72:F7:C5:68:93:37:DA:B2:59:F0:10:4F:92:FE:22:23 X509v3 Authority Key Identifier: keyid:5E:A1:A7:B8:02:E7:E7:EF:C7:7C:A1:A3:8E:52:F7:2A:CD:46:39:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqGnuALn5-_HfKGjjlL3Ks1GOTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:b0:4f:be:89:fa:f5:8b:f7:7c:d0:c7:cd:e2:22:f2:52:b8: cf:d0:e4:cc:4a:b2:f1:21:dc:42:87:b0:7e:c9:c1:02:03:7c: c4:e8:b8:76:c5:fc:f6:7e:13:8a:5a:bf:f8:97:47:b4:e0:c6: 75:46:d9:34:71:49:c5:b7:3d:9c:47:d0:38:f9:29:87:a8:09: 4c:06:ab:34:68:32:74:2b:41:23:34:a2:2a:83:2b:54:d1:3e: f5:dd:6d:e0:12:c8:cd:89:aa:d1:a1:93:11:19:8b:c5:b8:37: 0d:83:15:07:23:8c:d3:38:1b:04:d9:88:73:d9:ca:e1:08:d6: 4e:e9:0d:f6:2b:45:2b:02:27:e5:9c:f5:86:3c:a8:f4:35:e0: 5c:a8:ee:57:41:cc:7b:37:2f:d8:c1:f1:77:2f:f7:d9:82:56: b0:ed:c1:5a:a4:5b:40:f6:37:1a:64:c4:bf:e5:f5:f7:67:a0: b1:24:a6:9e:9f:7c:76:87:4f:ee:47:6e:0f:5b:74:73:db:bc: 84:c0:e8:cb:a7:a4:89:11:ad:f1:13:45:f3:b0:17:64:7a:4f: 77:c0:fc:cc:21:8a:66:9c:77:15:b1:fb:73:44:11:e6:96:f5: 5c:1d:3d:ce:6c:c7:94:8f:cd:b3:74:58:38:a5:e8:a3:18:d8: 62:1d:72:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE5OTgxMTAvBgNVBAUTKDVFQTFBN0I4MDJFN0U3RUZDNzdDQTFBMzhFNTJGNzJB Q0Q0NjM5MzAwHhcNMjUxMjA2MTcyNzQ4WhcNMjUxMjEzMTcyNzQ4WjAYMRYwFAYD VQQDEw02OTM0Njc5NC1jNTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs3Mc2brWooxlZMW2sJ0EbfxIC9XTMP2N0lXD0jGry6p9w6f0g2LjvWtmLd8S Dk06VHXywa7IqdQ5q0wCRAifoUliji5wMw9h10VKc6+Y2qmeNtHOa17U5Lkko/TO GSG8OfJgq1M/gEA8vRDpNNu4M0o4TGTseTd1ebz/ddjru3pBWEC3MC4yYc9ttgjI oBZ/nuUBQIdECVY7tUVOSGYGtdxGki0MQBSQjcCGudg+vPVutXGN4c2pTQ0OSh9S NgxFZWirsdJQkvPyYgOvUdgXLDk3JiQrGs39bN2bu/O0pS257caLDdNvS2jEie4+ QMCMGZoyFSRcfNuso6NCCB6CbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGTpxbty 98VokzfaslnwEE+S/iIjMB8GA1UdIwQYMBaAFF6hp7gC5+fvx3yho45S9yrNRjkw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTk5OC9BQjM0RkJENEYy NTgxMUU5Qjc1RTNDNzBDNEY5QUUwMi9YcUdudUFMbjUtX0hmS0dqamxMM0tzMUdP VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxR251QUxuNS1fSGZLR2pqbEwzS3MxR09UQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTk5OC9BQjM0RkJENEYyNTgxMUU5Qjc1RTNDNzBDNEY5QUUwMi9YcUdudUFMbjUt X0hmS0dqamxMM0tzMUdPVEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtsE++ifr1i/d80MfN4iLyUrjP0OTMSrLxIdxCh7B+ycECA3zE6Lh2 xfz2fhOKWr/4l0e04MZ1Rtk0cUnFtz2cR9A4+SmHqAlMBqs0aDJ0K0EjNKIqgytU 0T713W3gEsjNiarRoZMRGYvFuDcNgxUHI4zTOBsE2Yhz2crhCNZO6Q32K0UrAifl nPWGPKj0NeBcqO5XQcx7Ny/YwfF3L/fZglaw7cFapFtA9jcaZMS/5fX3Z6CxJKae n3x2h0/uR24PW3Rz27yEwOjLp6SJEa3xE0XzsBdkek93wPzMIYpmnHcVsftzRBHm lvVcHT3ObMeUj82zdFg4peijGNhiHXIV -----END CERTIFICATE-----Generated at Sun Dec 7 00:04:41 2025 by rpki-client