This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft File: xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft (raw, json) Hash identifier: XD3oLrNAMnzCowVFyFhlKpdpPoQP5CcGz7oMEdUJpZs= Subject key identifier: E8:F2:7A:72:FB:B1:7E:A5:20:A2:26:CC:3C:EC:1D:87:78:66:8C:0F Authority key identifier: C4:B6:25:03:E6:D6:70:2A:C2:9D:00:BF:35:0C:8B:2C:12:E7:9F:05 Certificate issuer: /CN=A91A76AD/serialNumber=C4B62503E6D6702AC29D00BF350C8B2C12E79F05 Certificate serial: 0158 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xLYlA-bWcCrCnQC_NQyLLBLnnwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft Manifest number: 0158 Signing time: Fri 05 Dec 2025 02:15:40 +0000 Manifest this update: Fri 05 Dec 2025 02:15:39 +0000 Manifest next update: Fri 12 Dec 2025 02:15:39 +0000 Files and hashes: 1: xLYlA-bWcCrCnQC_NQyLLBLnnwU.crl (hash: fuXaZTjZLB6Z9ANJfbTFflvoRJW0WiVsrMkvRYI2Ixw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.crl rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xLYlA-bWcCrCnQC_NQyLLBLnnwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:15:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 344 (0x158) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A76AD, serialNumber=C4B62503E6D6702AC29D00BF350C8B2C12E79F05 Validity Not Before: Dec 5 02:15:39 2025 GMT Not After : Dec 12 02:15:39 2025 GMT Subject: CN=6932404c-f556 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:69:e7:66:68:32:65:9c:42:b9:d0:8f:bf:b6: 8d:c4:f9:d7:65:77:46:c7:d1:57:c3:1c:c8:54:38: b6:3e:3e:4b:2a:06:c2:b2:9d:9d:8c:ad:25:61:a4: b1:7a:34:58:1e:3b:a5:c1:ab:4f:15:66:cb:0a:ad: 9e:e5:e6:a8:41:a6:c1:e3:43:4e:2d:ac:f6:f6:3d: a4:30:3b:37:3b:4a:9c:de:7e:ec:8f:35:3a:9b:fb: 7b:49:68:83:b1:96:ed:92:78:97:25:fa:6d:a2:f9: 8d:e3:8b:51:62:fb:4f:fd:75:11:a9:8b:f7:e2:e7: c2:bf:3e:c3:1d:4b:af:0a:10:42:47:3a:e4:ee:41: 47:11:75:a8:0f:e0:20:11:ee:b2:48:94:fb:a2:dd: cb:98:e1:2c:dc:04:5a:f3:be:57:fb:70:9a:ca:d9: 2c:5c:b8:f2:86:6e:bd:e8:df:89:a2:ad:81:dd:3f: f0:48:dd:35:25:de:19:0a:b1:9a:b3:9d:61:c9:76: 3f:04:5b:80:b6:33:db:a3:bf:d4:9e:8c:48:cc:05: 80:17:b3:5b:cd:1d:67:9e:b8:97:4d:8f:8b:52:9a: 6b:9f:02:80:7d:9f:54:d5:a2:fc:b2:1d:1c:5c:8c: 87:a2:6d:65:d6:cc:db:02:21:6d:36:52:32:a7:03: 09:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:F2:7A:72:FB:B1:7E:A5:20:A2:26:CC:3C:EC:1D:87:78:66:8C:0F X509v3 Authority Key Identifier: keyid:C4:B6:25:03:E6:D6:70:2A:C2:9D:00:BF:35:0C:8B:2C:12:E7:9F:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xLYlA-bWcCrCnQC_NQyLLBLnnwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:0f:42:b9:e5:bb:b6:dc:e5:75:05:d9:67:bb:93:0e:7e:0f: c9:b3:af:1d:77:0c:2d:6d:be:a5:0c:8e:c5:ae:f5:01:c2:59: 51:6b:20:6e:4e:60:bc:ed:c3:c0:40:b2:2b:b7:3a:e6:90:b2: 85:08:a3:4b:df:b3:55:12:d5:8c:c9:c1:9f:72:06:2d:61:78: 1d:7b:19:73:94:cb:fe:a2:da:d7:f7:e9:15:e9:6f:ed:66:c9: c0:ca:23:1e:1d:67:28:df:d8:f8:cf:91:7c:a4:fe:e6:38:31: 65:a6:d6:be:ae:ef:09:31:ac:b9:44:78:c3:9f:36:76:fd:15: c8:9e:ea:4f:dc:50:b6:9f:e7:fd:fb:80:a5:13:1e:e4:95:45: 8a:d8:de:12:e9:f3:d0:ec:b3:51:33:ae:44:67:8a:b2:25:8f: 63:07:6d:67:93:a4:5a:dc:d4:b5:28:ef:ab:0f:92:d1:12:f8: 90:30:4d:89:24:f2:63:26:9b:a0:0d:c5:ee:1e:d0:ab:28:bf: e3:ff:ee:65:6b:fd:38:83:dd:48:0e:e3:31:c8:7e:7c:c4:d3: a7:54:8f:d1:36:8b:e1:70:9a:47:de:45:38:c8:54:b7:f0:9d: 66:06:bb:e1:76:9a:4f:6f:98:88:9e:f9:69:b8:33:b1:3a:98: b4:d4:32:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc2QUQxMTAvBgNVBAUTKEM0QjYyNTAzRTZENjcwMkFDMjlEMDBCRjM1MEM4QjJD MTJFNzlGMDUwHhcNMjUxMjA1MDIxNTM5WhcNMjUxMjEyMDIxNTM5WjAYMRYwFAYD VQQDEw02OTMyNDA0Yy1mNTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6GnnZmgyZZxCudCPv7aNxPnXZXdGx9FXwxzIVDi2Pj5LKgbCsp2djK0lYaSx ejRYHjulwatPFWbLCq2e5eaoQabB40NOLaz29j2kMDs3O0qc3n7sjzU6m/t7SWiD sZbtkniXJfptovmN44tRYvtP/XURqYv34ufCvz7DHUuvChBCRzrk7kFHEXWoD+Ag Ee6ySJT7ot3LmOEs3ARa875X+3CaytksXLjyhm696N+Joq2B3T/wSN01Jd4ZCrGa s51hyXY/BFuAtjPbo7/UnoxIzAWAF7NbzR1nnriXTY+LUpprnwKAfZ9U1aL8sh0c XIyHom1l1szbAiFtNlIypwMJmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOjyenL7 sX6lIKImzDzsHYd4ZowPMB8GA1UdIwQYMBaAFMS2JQPm1nAqwp0AvzUMiywS558F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzZBRC8wN0Y1MkU0NkJF ODAxMUVFOTY3ODRENjJDNEY5QUUwMi94TFlsQS1iV2NDckNuUUNfTlF5TExCTG5u d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hMWWxBLWJXY0NyQ25RQ19OUXlMTEJMbm53VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzZBRC8wN0Y1MkU0NkJFODAxMUVFOTY3ODRENjJDNEY5QUUwMi94TFlsQS1iV2ND ckNuUUNfTlF5TExCTG5ud1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeD0K55bu23OV1Bdlnu5MOfg/Js68ddwwtbb6lDI7FrvUBwllRayBu TmC87cPAQLIrtzrmkLKFCKNL37NVEtWMycGfcgYtYXgdexlzlMv+otrX9+kV6W/t ZsnAyiMeHWco39j4z5F8pP7mODFlpta+ru8JMay5RHjDnzZ2/RXInupP3FC2n+f9 +4ClEx7klUWK2N4S6fPQ7LNRM65EZ4qyJY9jB21nk6Ra3NS1KO+rD5LREviQME2J JPJjJpugDcXuHtCrKL/j/+5la/04g91IDuMxyH58xNOnVI/RNovhcJpH3kU4yFS3 8J1mBrvhdppPb5iInvlpuDOxOpi01DII -----END CERTIFICATE-----Generated at Sat Dec 6 22:20:04 2025 by rpki-client