This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft File: XRhbcS2TBWvydLi3qJjGklTruYM.mft (raw, json) Hash identifier: atr2R9/BpfdZIR+2RHPYTCkP/NFlNd4Ys5ZPH7F+468= Subject key identifier: 38:C5:D2:6B:C4:3E:4F:19:98:07:73:55:01:25:1A:80:CD:B8:29:72 Authority key identifier: 5D:18:5B:71:2D:93:05:6B:F2:74:B8:B7:A8:98:C6:92:54:EB:B9:83 Certificate issuer: /CN=A91AE972/serialNumber=5D185B712D93056BF274B8B7A898C69254EBB983 Certificate serial: 019B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft Manifest number: 018B Signing time: Sun 21 Dec 2025 03:02:23 +0000 Manifest this update: Sun 21 Dec 2025 03:02:23 +0000 Manifest next update: Sun 28 Dec 2025 03:02:23 +0000 Files and hashes: 1: XRhbcS2TBWvydLi3qJjGklTruYM.crl (hash: +ipUAuYLi0hYPLZRD0Xd5m0Nl8i0GjPzmpUE0sq0LOE=) 2: DCCEA912A3EB11EE8049E335C4F9AE02.roa (hash: mJeqjVOv7jvR5HIjSJKMtiF4WeNSaF9wcOpOHqbk62w=) 3: 749BAA209BC911F0B2979527C4F9AE02.roa (hash: LzbUGtpSl+ZyW2ny+qQFMDTLA27guJpHBkGcUw+uCb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.crl rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 03:02:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 411 (0x19b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE972, serialNumber=5D185B712D93056BF274B8B7A898C69254EBB983 Validity Not Before: Dec 21 03:02:23 2025 GMT Not After : Dec 28 03:02:23 2025 GMT Subject: CN=6947633f-3fba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:bc:5d:63:5e:83:f5:ed:b0:a8:3a:8f:8f:ac: 70:a3:10:9d:58:06:94:e5:0e:b0:75:92:7d:1f:78: 00:b8:b6:bb:79:b1:f0:61:ee:2c:2e:7c:3d:a4:c6: f5:e9:0c:45:c0:2c:18:f2:f2:ed:84:ba:f5:a3:6c: 7f:c8:c1:92:4a:04:9b:f2:0d:b4:8a:39:8a:89:44: 1e:6a:1c:98:ff:3e:8c:1b:4d:a4:95:c2:e8:a2:8c: 9a:0e:92:14:38:10:83:ac:3b:2f:eb:05:c1:c1:58: 86:84:7b:88:b4:07:ed:ad:77:d1:b9:be:1f:85:4d: 0a:db:56:c9:24:2b:56:a7:1b:6f:50:29:d0:d4:9e: 40:73:4e:54:a3:ea:30:36:7b:07:b8:64:69:66:79: db:8d:46:18:46:58:eb:ca:d6:27:15:73:f7:cb:e3: 3a:40:9c:86:df:73:a1:78:c2:81:da:e7:5a:ed:59: 37:6c:4c:b8:04:15:a0:48:90:a9:07:de:35:10:f9: d1:e9:7d:ad:5e:f7:87:65:aa:8d:c3:03:bb:c9:aa: ad:49:f7:e6:b5:98:57:d2:18:9f:38:d0:4f:ef:51: 3e:f3:79:ea:66:4e:6f:c7:9a:97:81:c5:ae:f6:be: e4:74:c0:28:32:d4:ec:a1:d6:0e:34:74:0e:ac:c8: 44:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:C5:D2:6B:C4:3E:4F:19:98:07:73:55:01:25:1A:80:CD:B8:29:72 X509v3 Authority Key Identifier: keyid:5D:18:5B:71:2D:93:05:6B:F2:74:B8:B7:A8:98:C6:92:54:EB:B9:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:32:b1:88:6e:ff:2b:69:71:23:0d:3e:9c:13:39:2e:63:4f: 84:fd:92:0f:3c:16:60:81:f0:73:f1:53:38:7b:0a:ea:8f:76: a4:14:7c:f9:f0:33:bf:01:dd:16:17:63:ca:41:0f:8a:93:16: e2:16:41:d0:10:e8:6d:f1:d7:63:32:45:e0:af:05:b8:f1:50: bf:2e:50:7f:3c:c5:23:62:d3:91:e3:a7:0e:d0:3b:22:01:52: 38:d0:9a:fa:5c:93:d8:94:7d:87:2e:ca:c3:28:74:64:56:d5: 0a:08:92:3c:5c:88:72:f2:72:86:35:b4:0c:9e:42:b9:a1:3c: 7a:d6:2c:9c:ee:cb:6f:ff:1c:27:25:da:77:16:26:29:5f:8d: fe:b5:e4:37:1d:ac:e6:c0:b5:72:cc:b1:3a:3b:45:10:2e:b1: 08:ff:45:9e:41:8e:53:7d:5c:b2:b9:db:31:7a:2a:7c:46:81: 12:37:93:f7:42:c3:50:12:42:6f:c9:08:69:02:0f:6c:2a:c0: 2c:01:bc:5c:96:e8:7d:ea:b7:dd:95:f7:a3:02:d9:3c:f6:bd: 88:a4:6d:4a:db:fc:b3:fc:a5:7f:20:1f:5d:f8:c5:03:70:ec: 1b:9a:ea:fd:ac:b5:27:58:93:a6:b4:c6:08:2a:ff:71:6d:32: be:72:77:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU5NzIxMTAvBgNVBAUTKDVEMTg1QjcxMkQ5MzA1NkJGMjc0QjhCN0E4OThDNjky NTRFQkI5ODMwHhcNMjUxMjIxMDMwMjIzWhcNMjUxMjI4MDMwMjIzWjAYMRYwFAYD VQQDDA02OTQ3NjMzZi0zZmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07xdY16D9e2wqDqPj6xwoxCdWAaU5Q6wdZJ9H3gAuLa7ebHwYe4sLnw9pMb1 6QxFwCwY8vLthLr1o2x/yMGSSgSb8g20ijmKiUQeahyY/z6MG02klcLoooyaDpIU OBCDrDsv6wXBwViGhHuItAftrXfRub4fhU0K21bJJCtWpxtvUCnQ1J5Ac05Uo+ow NnsHuGRpZnnbjUYYRljrytYnFXP3y+M6QJyG33OheMKB2uda7Vk3bEy4BBWgSJCp B941EPnR6X2tXveHZaqNwwO7yaqtSffmtZhX0hifONBP71E+83nqZk5vx5qXgcWu 9r7kdMAoMtTsodYONHQOrMhEgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDjF0mvE Pk8ZmAdzVQElGoDNuClyMB8GA1UdIwQYMBaAFF0YW3EtkwVr8nS4t6iYxpJU67mD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTk3Mi8yNDVCM0REQ0Ez RTYxMUVFQURGOTQ4NTVDNEY5QUUwMi9YUmhiY1MyVEJXdnlkTGkzcUpqR2tsVHJ1 WU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hSaGJjUzJUQld2eWRMaTNxSmpHa2xUcnVZTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTk3Mi8yNDVCM0REQ0EzRTYxMUVFQURGOTQ4NTVDNEY5QUUwMi9YUmhiY1MyVEJX dnlkTGkzcUpqR2tsVHJ1WU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzMrGIbv8raXEjDT6cEzkuY0+E/ZIPPBZggfBz8VM4ewrqj3akFHz5 8DO/Ad0WF2PKQQ+KkxbiFkHQEOht8ddjMkXgrwW48VC/LlB/PMUjYtOR46cO0Dsi AVI40Jr6XJPYlH2HLsrDKHRkVtUKCJI8XIhy8nKGNbQMnkK5oTx61iyc7stv/xwn Jdp3FiYpX43+teQ3HazmwLVyzLE6O0UQLrEI/0WeQY5TfVyyudsxeip8RoESN5P3 QsNQEkJvyQhpAg9sKsAsAbxcluh96rfdlfejAtk89r2IpG1K2/yz/KV/IB9d+MUD cOwbmur9rLUnWJOmtMYIKv9xbTK+cnfb -----END CERTIFICATE-----Generated at Sun Dec 21 12:00:52 2025 by rpki-client