This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft File: XerjhTD4FfvwubP472N1B4bIrAo.mft (raw, json) Hash identifier: uOfAHMVg2Vsk9n3vl2ID5NvV7/wYMA0Qs45h8xAM3Ww= Subject key identifier: 79:14:CB:B6:51:49:BF:1F:0E:EA:F5:A5:AF:CF:14:B8:13:AF:2F:38 Authority key identifier: 5D:EA:E3:85:30:F8:15:FB:F0:B9:B3:F8:EF:63:75:07:86:C8:AC:0A Certificate issuer: /CN=A91A4481/serialNumber=5DEAE38530F815FBF0B9B3F8EF63750786C8AC0A Certificate serial: 012E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft Manifest number: 012C Signing time: Fri 05 Dec 2025 02:41:26 +0000 Manifest this update: Fri 05 Dec 2025 02:41:25 +0000 Manifest next update: Fri 12 Dec 2025 02:41:25 +0000 Files and hashes: 1: XerjhTD4FfvwubP472N1B4bIrAo.crl (hash: INOpXM1j0yhovHSJvR/pTBjS/XWZlbLZXkuagV2erf4=) 2: 5B08B12602C211EF9A1E4567C4F9AE02.roa (hash: K+g6F2DggfqAEcFUFS+CObch7aX7JFtpiO+kkOJ8Xy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.crl rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:41:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 302 (0x12e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4481, serialNumber=5DEAE38530F815FBF0B9B3F8EF63750786C8AC0A Validity Not Before: Dec 5 02:41:25 2025 GMT Not After : Dec 12 02:41:25 2025 GMT Subject: CN=69324656-5933 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:31:c3:71:9d:b0:52:b2:87:d0:1c:af:e5:b4: bc:ac:7c:1f:8e:b9:aa:5f:2b:37:4c:e4:81:71:3d: 8f:c6:1d:9f:f6:3c:61:6a:28:ee:c4:db:6e:08:3a: ec:0c:03:f0:0e:35:fc:3d:9d:ad:be:f2:f6:41:28: bd:9a:59:77:04:9c:9a:55:28:d6:6c:db:85:10:d0: 17:1f:1d:fc:ef:9a:4f:30:f4:94:7a:c5:71:ac:a6: af:c3:e6:08:e5:ae:b8:be:ab:ac:68:2c:21:c8:11: e2:8c:7b:d1:18:be:15:4e:37:62:86:b2:34:88:d7: 26:b6:02:68:e4:67:2f:c7:6b:2f:0f:b0:11:7a:01: 03:3c:b9:a0:eb:db:fd:92:58:4c:44:d9:51:65:c9: 8d:38:c5:70:f5:3b:2e:d4:64:73:63:cb:11:9d:8b: c4:13:2e:81:1a:73:6f:e9:6f:26:f8:61:8f:f9:71: 35:6d:59:28:47:12:4d:da:b4:33:65:29:d5:e4:2e: 85:d7:f4:50:3f:aa:11:a7:12:7d:93:c9:93:da:7c: 91:50:90:95:e1:b3:70:9c:4b:95:e9:c2:ac:e7:71: c0:5a:26:65:68:25:84:c9:24:8e:25:27:14:b9:08: 36:65:16:c2:af:63:ab:27:bf:a7:2e:ef:ef:ce:06: b2:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:14:CB:B6:51:49:BF:1F:0E:EA:F5:A5:AF:CF:14:B8:13:AF:2F:38 X509v3 Authority Key Identifier: keyid:5D:EA:E3:85:30:F8:15:FB:F0:B9:B3:F8:EF:63:75:07:86:C8:AC:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:42:8b:05:b7:a4:b0:4e:4b:df:02:5e:8c:08:4e:99:16:b4: 34:6e:7b:ae:a1:97:c0:02:4a:1f:07:a1:cc:5d:d6:36:da:36: b6:d1:ac:25:c8:1a:a8:ca:3c:e7:f0:51:68:b4:31:ef:b4:48: 21:0c:02:f1:2a:41:02:ce:e3:68:35:fb:ea:6a:f9:db:1c:8a: 16:97:cf:42:61:ab:94:f1:0d:4c:4f:98:e9:20:a8:fa:a3:58: d6:d6:5d:49:72:ca:2c:60:43:fd:c7:cb:be:39:74:b4:88:b9: bc:a0:ac:3f:47:be:34:66:03:a1:a9:d1:de:25:36:70:21:e5: 23:33:58:00:f6:40:4c:d2:c7:e0:28:b7:79:ac:c2:2f:9e:f3: b0:b2:f7:fc:fb:60:8b:cc:0b:ad:b1:fc:91:a6:51:ad:88:f2: 22:97:97:37:44:25:1f:1d:7f:c9:bb:60:1d:13:64:a6:23:bf: a9:35:72:74:dc:f8:14:7e:19:10:51:e5:d9:0a:af:91:f1:4d: 08:e7:29:00:d4:ba:51:a1:8f:e3:f2:41:74:7b:b7:1c:84:28: cc:b7:c8:98:68:c0:ca:3f:cf:ed:9d:ed:60:07:d0:58:b1:e3: ca:3e:f7:14:d9:10:f2:c5:c1:80:d7:c1:0d:2b:ce:29:8d:d5: 0d:7d:d8:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0ODExMTAvBgNVBAUTKDVERUFFMzg1MzBGODE1RkJGMEI5QjNGOEVGNjM3NTA3 ODZDOEFDMEEwHhcNMjUxMjA1MDI0MTI1WhcNMjUxMjEyMDI0MTI1WjAYMRYwFAYD VQQDEw02OTMyNDY1Ni01OTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjHDcZ2wUrKH0Byv5bS8rHwfjrmqXys3TOSBcT2Pxh2f9jxhaijuxNtuCDrs DAPwDjX8PZ2tvvL2QSi9mll3BJyaVSjWbNuFENAXHx3875pPMPSUesVxrKavw+YI 5a64vqusaCwhyBHijHvRGL4VTjdihrI0iNcmtgJo5Gcvx2svD7ARegEDPLmg69v9 klhMRNlRZcmNOMVw9Tsu1GRzY8sRnYvEEy6BGnNv6W8m+GGP+XE1bVkoRxJN2rQz ZSnV5C6F1/RQP6oRpxJ9k8mT2nyRUJCV4bNwnEuV6cKs53HAWiZlaCWEySSOJScU uQg2ZRbCr2OrJ7+nLu/vzgaylwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHkUy7ZR Sb8fDur1pa/PFLgTry84MB8GA1UdIwQYMBaAFF3q44Uw+BX78Lmz+O9jdQeGyKwK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQ4MS9CQzg0MEY0NjAy QzExMUVGQUYzQ0I0NjVDNEY5QUUwMi9YZXJqaFRENEZmdnd1YlA0NzJOMUI0Ykly QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hlcmpoVEQ0RmZ2d3ViUDQ3Mk4xQjRiSXJBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDQ4MS9CQzg0MEY0NjAyQzExMUVGQUYzQ0I0NjVDNEY5QUUwMi9YZXJqaFRENEZm dnd1YlA0NzJOMUI0YklyQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHQosFt6SwTkvfAl6MCE6ZFrQ0bnuuoZfAAkofB6HMXdY22ja20awl yBqoyjzn8FFotDHvtEghDALxKkECzuNoNfvqavnbHIoWl89CYauU8Q1MT5jpIKj6 o1jW1l1JcsosYEP9x8u+OXS0iLm8oKw/R740ZgOhqdHeJTZwIeUjM1gA9kBM0sfg KLd5rMIvnvOwsvf8+2CLzAutsfyRplGtiPIil5c3RCUfHX/Ju2AdE2SmI7+pNXJ0 3PgUfhkQUeXZCq+R8U0I5ykA1LpRoY/j8kF0e7cchCjMt8iYaMDKP8/tne1gB9BY sePKPvcU2RDyxcGA18ENK84pjdUNfdhq -----END CERTIFICATE-----Generated at Sat Dec 6 23:44:59 2025 by rpki-client