This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft File: XdRoWi6WsUFvfNM1zetK0YIvfes.mft (raw, json) Hash identifier: YdT82xh57f06+2HIXZZEBe+TWrF60Z3IVB779y4edNY= Subject key identifier: F9:1F:26:A4:61:4A:70:D7:3D:9F:24:74:B9:03:C9:E9:FC:8F:DD:75 Authority key identifier: 5D:D4:68:5A:2E:96:B1:41:6F:7C:D3:35:CD:EB:4A:D1:82:2F:7D:EB Certificate issuer: /CN=A91AF01C/serialNumber=5DD4685A2E96B1416F7CD335CDEB4AD1822F7DEB Certificate serial: 01EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XdRoWi6WsUFvfNM1zetK0YIvfes.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft Manifest number: 01E2 Signing time: Fri 05 Dec 2025 01:01:43 +0000 Manifest this update: Fri 05 Dec 2025 01:01:42 +0000 Manifest next update: Fri 12 Dec 2025 01:01:42 +0000 Files and hashes: 1: XdRoWi6WsUFvfNM1zetK0YIvfes.crl (hash: Ia1k1KitaDtU2b5uPewQcVf8Jf9K6N1IVILxTCywCAU=) 2: 3474AD64FAD311ED9CEE0E29C4F9AE02.roa (hash: bZ3DvcSU67WmMaGW0gpbOJ7oihqEunDO2oztcjKXnww=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.crl rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XdRoWi6WsUFvfNM1zetK0YIvfes.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 490 (0x1ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF01C, serialNumber=5DD4685A2E96B1416F7CD335CDEB4AD1822F7DEB Validity Not Before: Dec 5 01:01:42 2025 GMT Not After : Dec 12 01:01:42 2025 GMT Subject: CN=69322ef7-678b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:24:a9:ab:03:4f:57:be:59:7d:72:0d:c1:07: 70:59:3b:6c:4f:11:f4:2e:e6:8d:51:ce:88:4d:35: e9:e0:b3:5d:a8:c1:8e:3e:3c:46:3a:dc:72:b1:6b: 5a:54:f4:fb:ee:3f:87:57:18:df:4b:6a:e6:41:6d: 79:58:0b:6b:7f:99:da:c2:45:63:ed:ba:88:6b:84: da:ff:df:a1:39:03:08:33:ae:8d:4b:41:58:a0:9d: 59:f4:e7:f1:da:e9:d0:aa:39:41:ef:03:76:51:65: 2b:53:53:20:c8:e0:fa:93:84:02:44:0b:3e:ef:b7: 06:f5:25:34:f8:e2:58:ad:1e:b2:d9:f5:20:cc:7e: 7e:54:1f:97:3b:9b:13:31:4b:01:8b:cb:64:ef:df: 6b:80:85:ce:0f:b1:6a:1e:ec:f9:66:91:2e:d3:8b: 45:6b:00:a6:99:69:1b:a4:2c:d3:21:83:1b:4e:af: 8b:be:6c:de:87:91:31:d3:95:e3:3c:29:40:ee:44: 99:7f:fb:23:b9:1a:00:b6:35:f5:b3:51:f4:b3:30: d5:f4:f9:d8:6f:9b:3c:66:fd:8d:9a:4b:54:61:fc: a5:c3:d4:36:75:e7:17:c2:30:6a:f1:c1:fd:37:ef: 0e:d6:00:7d:52:8b:8b:df:0c:c5:da:53:de:6f:89: 0b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:1F:26:A4:61:4A:70:D7:3D:9F:24:74:B9:03:C9:E9:FC:8F:DD:75 X509v3 Authority Key Identifier: keyid:5D:D4:68:5A:2E:96:B1:41:6F:7C:D3:35:CD:EB:4A:D1:82:2F:7D:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XdRoWi6WsUFvfNM1zetK0YIvfes.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:7c:2f:7b:9c:fb:d8:e8:b6:7c:68:8f:a6:24:c0:9d:44:06: 17:e4:4f:04:c2:76:31:51:ec:98:45:ff:41:41:b2:1c:c8:a7: 4d:eb:a3:0c:e8:4f:e1:31:93:21:c3:9b:e9:11:48:66:92:6b: 5f:ae:e1:9e:eb:a8:b0:f1:4c:09:c8:35:7f:fb:33:a1:2e:69: 93:af:1b:d4:3c:1a:87:c0:76:ea:5e:98:e4:d6:cf:f3:59:1b: c7:da:d9:09:c0:76:77:60:18:fe:c2:04:45:07:b1:25:b1:68: 2b:20:83:da:45:0e:2b:11:e0:ed:eb:10:fd:74:21:57:a8:39: 12:c0:2d:74:48:f9:c8:af:ea:23:41:40:45:d9:74:43:56:c5: f3:1f:d4:16:a2:e1:57:3e:ba:c1:57:04:15:3f:a2:cb:6b:cd: 89:43:a2:b4:23:14:ea:1a:f8:07:8b:ae:18:87:df:bb:bb:c8: 3b:cd:20:fe:e4:9d:2e:72:fa:52:e0:eb:d9:d3:a7:13:57:de: 67:03:73:a3:22:ad:b0:1d:9c:f5:e1:58:d6:f6:7a:a4:92:32: a7:30:de:48:bf:f3:16:51:5b:8f:e6:b3:de:61:84:59:7a:94: 63:96:e3:65:bb:92:61:3a:ac:62:54:d5:56:63:fb:ae:62:ca: 5b:0b:71:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYwMUMxMTAvBgNVBAUTKDVERDQ2ODVBMkU5NkIxNDE2RjdDRDMzNUNERUI0QUQx ODIyRjdERUIwHhcNMjUxMjA1MDEwMTQyWhcNMjUxMjEyMDEwMTQyWjAYMRYwFAYD VQQDEw02OTMyMmVmNy02NzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ySpqwNPV75ZfXINwQdwWTtsTxH0LuaNUc6ITTXp4LNdqMGOPjxGOtxysWta VPT77j+HVxjfS2rmQW15WAtrf5nawkVj7bqIa4Ta/9+hOQMIM66NS0FYoJ1Z9Ofx 2unQqjlB7wN2UWUrU1MgyOD6k4QCRAs+77cG9SU0+OJYrR6y2fUgzH5+VB+XO5sT MUsBi8tk799rgIXOD7FqHuz5ZpEu04tFawCmmWkbpCzTIYMbTq+Lvmzeh5Ex05Xj PClA7kSZf/sjuRoAtjX1s1H0szDV9PnYb5s8Zv2NmktUYfylw9Q2decXwjBq8cH9 N+8O1gB9UouL3wzF2lPeb4kL5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPkfJqRh SnDXPZ8kdLkDyen8j911MB8GA1UdIwQYMBaAFF3UaFoulrFBb3zTNc3rStGCL33r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjAxQy9FNUQ5RTczNEZB Q0IxMUVEQjhGOTdEODVDNEY5QUUwMi9YZFJvV2k2V3NVRnZmTk0xemV0SzBZSXZm ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hkUm9XaTZXc1VGdmZOTTF6ZXRLMFlJdmZlcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjAxQy9FNUQ5RTczNEZBQ0IxMUVEQjhGOTdEODVDNEY5QUUwMi9YZFJvV2k2V3NV RnZmTk0xemV0SzBZSXZmZXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXfC97nPvY6LZ8aI+mJMCdRAYX5E8EwnYxUeyYRf9BQbIcyKdN66MM 6E/hMZMhw5vpEUhmkmtfruGe66iw8UwJyDV/+zOhLmmTrxvUPBqHwHbqXpjk1s/z WRvH2tkJwHZ3YBj+wgRFB7ElsWgrIIPaRQ4rEeDt6xD9dCFXqDkSwC10SPnIr+oj QUBF2XRDVsXzH9QWouFXPrrBVwQVP6LLa82JQ6K0IxTqGvgHi64Yh9+7u8g7zSD+ 5J0ucvpS4OvZ06cTV95nA3OjIq2wHZz14VjW9nqkkjKnMN5Iv/MWUVuP5rPeYYRZ epRjluNlu5JhOqxiVNVWY/uuYspbC3Hi -----END CERTIFICATE-----Generated at Sat Dec 6 12:30:20 2025 by rpki-client