This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft File: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft (raw, json) Hash identifier: kgApoet8X01pHF4OW0DjBg9qEpshKZLxOgJNvrGgc30= Subject key identifier: 8F:8B:D0:2F:B3:19:AA:78:89:66:52:EE:82:02:07:58:74:4E:1C:01 Authority key identifier: C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 Certificate issuer: /CN=A91AAF73/serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Certificate serial: 019B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft Manifest number: 0198 Signing time: Fri 05 Dec 2025 01:37:44 +0000 Manifest this update: Fri 05 Dec 2025 01:37:43 +0000 Manifest next update: Fri 12 Dec 2025 01:37:43 +0000 Files and hashes: 1: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl (hash: bxVImHaGLERMNnGFMEjIosp7xNl6FrTRj9Cipkq9ATs=) 2: 4B2F1F725E7811EE9307D234C4F9AE02.roa (hash: 3yvbzjuUuh9G6qcJ8V8xglcFed2rUg7lvlhKdI7EHEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:37:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 411 (0x19b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF73, serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Validity Not Before: Dec 5 01:37:43 2025 GMT Not After : Dec 12 01:37:43 2025 GMT Subject: CN=69323767-f5fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:09:17:af:74:9e:c5:97:0f:e8:a0:ef:76:0d: 9e:b8:ca:0c:2b:2b:4c:18:11:57:d8:a5:0b:64:26: 03:d4:26:76:b9:0e:41:de:4d:e8:c6:ca:e7:59:04: 7a:88:9b:63:a9:c8:5a:3b:db:29:60:ac:87:5c:17: 8f:ae:38:89:0d:f2:b1:2c:e6:d4:ab:2b:de:fc:c7: e3:2f:8a:a3:1f:a9:c2:c6:65:d1:88:ad:97:03:d9: 71:9a:09:3b:61:20:74:e5:04:0a:f2:05:bb:39:3e: 23:b5:a2:f5:60:23:50:84:9d:43:a1:b7:c4:2b:91: b3:03:a8:b9:d9:7b:23:27:f1:cd:0d:c0:03:6d:82: ae:9d:db:e6:a4:93:16:98:34:71:56:82:4c:96:af: e1:34:bb:14:9c:49:64:76:0f:8a:ee:53:0e:47:d0: bf:3c:7f:d1:c0:36:7a:77:eb:b8:30:da:49:88:95: a6:32:82:1f:ef:8b:0f:30:08:de:8a:e3:dd:7e:e2: 0e:a4:42:a6:5f:23:c5:bd:20:bf:3e:49:9e:7d:95: af:07:3f:71:e5:70:68:ae:18:48:d6:52:0d:3d:3c: 5c:06:8a:9e:7b:1e:d6:56:4c:8a:18:d2:0f:84:61: 38:5d:48:74:c3:f7:a4:0c:c7:5d:2c:51:0d:5d:4f: 53:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:8B:D0:2F:B3:19:AA:78:89:66:52:EE:82:02:07:58:74:4E:1C:01 X509v3 Authority Key Identifier: keyid:C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:00:42:7d:1f:5b:76:d4:d1:fa:52:72:0e:a8:f5:d2:44:91: 4d:da:8a:1f:4b:56:c4:e9:1d:1a:46:58:2f:be:46:7d:4b:44: fe:73:49:13:c2:41:87:d3:db:75:6c:5e:3d:2d:35:8c:84:94: 7f:f9:00:77:64:3d:75:38:12:5a:02:50:29:41:50:af:93:ca: 01:24:4a:48:5e:a3:9c:3d:98:55:4c:ff:57:13:67:cb:9c:17: 96:86:14:2f:55:85:da:05:51:59:25:df:f9:07:29:bb:15:5d: 3d:4e:be:60:08:d5:c7:59:02:27:0a:7b:ff:25:e7:04:7f:d1: a0:25:1f:31:c0:a8:a2:ea:6f:aa:b4:6f:3f:33:ff:3f:b2:29: 6b:18:96:b4:2e:81:ef:b3:51:45:cc:30:df:71:0b:9c:87:79: 98:15:84:5b:3d:98:bb:ea:65:d3:a2:44:a3:ab:c1:77:56:1c: 8a:73:8e:3d:80:34:f3:67:36:52:5d:75:06:b8:7b:92:e0:78: 0d:9e:3d:7d:34:e3:87:a6:77:d4:5a:59:d1:8f:c7:f1:55:8b: 01:02:56:61:ad:15:6d:d3:ab:10:a7:58:bc:63:4c:3e:6d:18: 4e:53:e6:e1:32:17:77:8f:b8:e6:b0:c4:7e:0c:f3:a9:61:fd: fc:e3:37:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGNzMxMTAvBgNVBAUTKEM0MDVGMDYxRTMzQjA3MTdDOTA0RkMxREYzRTc5QkNE Nzk1MjBGQTYwHhcNMjUxMjA1MDEzNzQzWhcNMjUxMjEyMDEzNzQzWjAYMRYwFAYD VQQDEw02OTMyMzc2Ny1mNWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQkXr3SexZcP6KDvdg2euMoMKytMGBFX2KULZCYD1CZ2uQ5B3k3oxsrnWQR6 iJtjqchaO9spYKyHXBePrjiJDfKxLObUqyve/MfjL4qjH6nCxmXRiK2XA9lxmgk7 YSB05QQK8gW7OT4jtaL1YCNQhJ1DobfEK5GzA6i52XsjJ/HNDcADbYKundvmpJMW mDRxVoJMlq/hNLsUnElkdg+K7lMOR9C/PH/RwDZ6d+u4MNpJiJWmMoIf74sPMAje iuPdfuIOpEKmXyPFvSC/PkmefZWvBz9x5XBorhhI1lINPTxcBoqeex7WVkyKGNIP hGE4XUh0w/ekDMddLFENXU9TVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI+L0C+z Gap4iWZS7oICB1h0ThwBMB8GA1UdIwQYMBaAFMQF8GHjOwcXyQT8HfPnm815Ug+m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUY3My9ENUZGMUY0MDVF NzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4ZkpCUHdkOC1lYnpYbFNE NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hBWHdZZU03QnhmSkJQd2Q4LWVielhsU0Q2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUY3My9ENUZGMUY0MDVFNzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4 ZkpCUHdkOC1lYnpYbFNENlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaAEJ9H1t21NH6UnIOqPXSRJFN2oofS1bE6R0aRlgvvkZ9S0T+c0kT wkGH09t1bF49LTWMhJR/+QB3ZD11OBJaAlApQVCvk8oBJEpIXqOcPZhVTP9XE2fL nBeWhhQvVYXaBVFZJd/5Bym7FV09Tr5gCNXHWQInCnv/JecEf9GgJR8xwKii6m+q tG8/M/8/silrGJa0LoHvs1FFzDDfcQuch3mYFYRbPZi76mXTokSjq8F3VhyKc449 gDTzZzZSXXUGuHuS4HgNnj19NOOHpnfUWlnRj8fxVYsBAlZhrRVt06sQp1i8Y0w+ bRhOU+bhMhd3j7jmsMR+DPOpYf384zc0 -----END CERTIFICATE-----Generated at Sat Dec 6 16:14:46 2025 by rpki-client