This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft File: xPuRgT57oJnZHpxIFyCUuZBcDxE.mft (raw, json) Hash identifier: gfpSxlNpXJ8tA1aUmp5tus6mvoeMaJC9ipBzKjuQcws= Subject key identifier: BF:2D:0B:E4:76:1F:14:93:09:E0:3A:74:D4:D8:84:BC:C0:11:F9:9F Authority key identifier: C4:FB:91:81:3E:7B:A0:99:D9:1E:9C:48:17:20:94:B9:90:5C:0F:11 Certificate issuer: /CN=A919B3BC/serialNumber=C4FB91813E7BA099D91E9C48172094B9905C0F11 Certificate serial: 1E91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft Manifest number: 1E72 Signing time: Sat 06 Dec 2025 15:46:33 +0000 Manifest this update: Sat 06 Dec 2025 15:46:33 +0000 Manifest next update: Sat 13 Dec 2025 15:46:33 +0000 Files and hashes: 1: xPuRgT57oJnZHpxIFyCUuZBcDxE.crl (hash: cH6KsC/2KPUGz6A92CYPw5FMbU2cPktT5Vdt0COabXs=) 2: 6553E9461A0611F08E7AD42AC4F9AE02.roa (hash: gPUSFmbihFfUmrLnrNcUaLZQc5vn//4bgSoy5gzJdZo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.crl rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:46:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7825 (0x1e91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B3BC, serialNumber=C4FB91813E7BA099D91E9C48172094B9905C0F11 Validity Not Before: Dec 6 15:46:33 2025 GMT Not After : Dec 13 15:46:33 2025 GMT Subject: CN=69344fd9-fa58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:db:aa:1c:3f:13:9d:10:4e:5b:fa:ec:d1:35: 97:09:ca:55:1f:fc:bd:08:b4:bb:4a:f0:86:73:0b: 14:b0:7e:3d:5c:b4:1c:df:1e:67:42:cd:d4:51:4c: 7b:b2:76:71:e4:5a:e4:08:78:64:f2:93:fe:fa:cb: aa:3f:a9:ae:eb:f0:18:ab:d7:50:59:d7:05:57:da: fc:d6:e9:ea:22:a2:41:c6:fc:8c:0b:b7:ab:8a:63: e7:67:8e:5c:c3:74:96:5e:55:17:d5:7c:6a:f2:92: bd:43:c6:4c:60:90:8f:fe:4e:18:5a:e5:c6:14:f4: 08:fc:fc:e6:e0:7b:e9:9a:24:c7:5f:2d:bc:30:51: 30:1f:b0:21:62:aa:ba:fd:dd:61:80:2e:f2:26:89: 6a:5e:50:46:78:68:5b:98:09:05:cf:23:41:42:b3: 72:79:da:78:e8:e8:1c:2a:d4:54:9c:96:97:4e:46: f0:f7:30:77:e0:b8:04:9f:6c:32:46:1f:63:4b:e7: 9d:36:6a:44:0c:4e:ef:d6:92:f6:b5:de:59:7a:37: 7e:64:5c:ad:9a:3b:e2:f7:5f:4a:f6:bd:5c:cc:d2: 9b:d5:67:75:32:53:90:64:6b:1a:a0:6e:a8:af:fd: d8:9e:26:7d:32:28:65:5e:b1:d1:cf:bd:de:ee:d7: 16:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:2D:0B:E4:76:1F:14:93:09:E0:3A:74:D4:D8:84:BC:C0:11:F9:9F X509v3 Authority Key Identifier: keyid:C4:FB:91:81:3E:7B:A0:99:D9:1E:9C:48:17:20:94:B9:90:5C:0F:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:5d:32:80:b9:b6:73:1f:50:1e:d8:ee:2c:01:14:38:27:8d: 98:22:be:52:2b:4d:4b:51:4b:99:57:6e:26:83:11:33:e3:c5: 35:dd:81:f5:c7:a2:52:e8:8c:dd:a4:bb:f0:b3:c9:8c:8a:e0: ab:7e:a5:81:0b:b1:c7:e7:b0:7f:9e:c0:61:8d:51:e6:24:d1: a8:cd:a5:8e:aa:01:a5:8b:31:05:fe:88:71:41:18:7f:ca:e0: 38:0d:45:56:98:79:f9:17:b8:20:4e:11:65:ed:26:4e:6a:31: a6:8b:07:38:2d:cf:75:fe:56:88:29:e4:02:c0:60:9e:93:8c: 27:21:fb:c5:4f:68:ef:1c:e8:f0:91:b2:d0:b0:2a:7d:5b:b7: 10:17:ca:32:14:c5:5b:e7:86:b3:e7:90:97:7d:a3:06:2d:22: b1:cf:55:3e:fb:49:4c:35:fa:d6:30:e0:44:f4:74:4b:b7:b7: 12:6a:dd:e1:35:25:74:fa:c4:55:9b:b3:11:e2:0f:b8:21:b6: 03:e6:a2:b1:73:89:82:09:b1:cf:0e:b4:36:fc:81:a0:79:6d: a5:f8:0d:fa:5b:32:e1:89:50:85:73:a2:c8:07:4f:5d:f0:3c: 8f:26:58:c7:b0:5d:54:6a:de:c4:38:d1:b6:c6:ee:a3:94:6f: cd:9e:a8:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHpEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIzQkMxMTAvBgNVBAUTKEM0RkI5MTgxM0U3QkEwOTlEOTFFOUM0ODE3MjA5NEI5 OTA1QzBGMTEwHhcNMjUxMjA2MTU0NjMzWhcNMjUxMjEzMTU0NjMzWjAYMRYwFAYD VQQDEw02OTM0NGZkOS1mYTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0duqHD8TnRBOW/rs0TWXCcpVH/y9CLS7SvCGcwsUsH49XLQc3x5nQs3UUUx7 snZx5FrkCHhk8pP++suqP6mu6/AYq9dQWdcFV9r81unqIqJBxvyMC7erimPnZ45c w3SWXlUX1Xxq8pK9Q8ZMYJCP/k4YWuXGFPQI/Pzm4HvpmiTHXy28MFEwH7AhYqq6 /d1hgC7yJolqXlBGeGhbmAkFzyNBQrNyedp46OgcKtRUnJaXTkbw9zB34LgEn2wy Rh9jS+edNmpEDE7v1pL2td5Zejd+ZFytmjvi919K9r1czNKb1Wd1MlOQZGsaoG6o r/3YniZ9MihlXrHRz73e7tcW3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL8tC+R2 HxSTCeA6dNTYhLzAEfmfMB8GA1UdIwQYMBaAFMT7kYE+e6CZ2R6cSBcglLmQXA8R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjNCQy8zODEyNDRGRThG OUIxMUU2QkVDNUNCMjVDNEY5QUUwMi94UHVSZ1Q1N29KblpIcHhJRnlDVXVaQmNE eEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hQdVJnVDU3b0puWkhweElGeUNVdVpCY0R4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjNCQy8zODEyNDRGRThGOUIxMUU2QkVDNUNCMjVDNEY5QUUwMi94UHVSZ1Q1N29K blpIcHhJRnlDVXVaQmNEeEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+XTKAubZzH1Ae2O4sARQ4J42YIr5SK01LUUuZV24mgxEz48U13YH1 x6JS6IzdpLvws8mMiuCrfqWBC7HH57B/nsBhjVHmJNGozaWOqgGlizEF/ohxQRh/ yuA4DUVWmHn5F7ggThFl7SZOajGmiwc4Lc91/laIKeQCwGCek4wnIfvFT2jvHOjw kbLQsCp9W7cQF8oyFMVb54az55CXfaMGLSKxz1U++0lMNfrWMOBE9HRLt7cSat3h NSV0+sRVm7MR4g+4IbYD5qKxc4mCCbHPDrQ2/IGgeW2l+A36WzLhiVCFc6LIB09d 8DyPJljHsF1Uat7EONG2xu6jlG/Nnqiw -----END CERTIFICATE-----Generated at Sun Dec 7 21:36:13 2025 by rpki-client