This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft File: XAo1I_02RadjWvJRmtzQAuEy-84.mft (raw, json) Hash identifier: 30zeC0Sk/UbWiHI6DEmZEZ31MEplXghAIlMf0IqAoqA= Subject key identifier: F3:4C:DF:95:80:25:7B:E9:3E:2A:BE:66:B7:A8:52:0D:27:F8:4A:86 Authority key identifier: 5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE Certificate issuer: /CN=A91B0F90/serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft Manifest number: A0 Signing time: Fri 05 Dec 2025 04:24:43 +0000 Manifest this update: Fri 05 Dec 2025 04:24:43 +0000 Manifest next update: Fri 12 Dec 2025 04:24:43 +0000 Files and hashes: 1: XAo1I_02RadjWvJRmtzQAuEy-84.crl (hash: o9F6nYRL2YxZTI/ev89H0svGMYN3KYdPsTZ3SSf5Z2s=) 2: 304DD002EFAB11EF97C9610FC4F9AE02.roa (hash: nY9SnH3XV0jBQtfc+UOqx27pO7JEzdlFPgYbBdgEcrs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:24:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0F90, serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE Validity Not Before: Dec 5 04:24:43 2025 GMT Not After : Dec 12 04:24:43 2025 GMT Subject: CN=69325e8b-811c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:83:2d:d5:cc:6e:57:f1:00:b6:6f:6e:7e:5a: 54:94:72:d6:d7:c6:f3:0a:3c:f6:3c:fd:70:51:7c: 77:61:1e:72:5f:c2:3f:4c:b1:b8:3f:33:fc:89:c9: 3c:5c:42:aa:5d:c3:d8:24:74:49:3c:df:b0:d4:b6: f1:3a:3e:21:55:5c:90:f4:3e:90:dd:e9:33:4a:fb: ee:44:fe:0e:fd:5f:b8:36:89:07:7c:a5:47:08:92: 50:8c:0c:64:0e:8c:a0:ac:09:39:b5:3c:e2:51:8e: 8f:95:fe:e0:3c:3a:16:07:32:75:e3:49:e3:70:60: 74:6a:b6:ec:19:33:c3:93:eb:2e:6b:5a:23:0c:33: 04:60:7a:c6:b2:f3:a5:98:a1:92:b7:9b:98:71:82: 3f:78:7d:4b:11:27:4d:00:53:9a:4a:04:84:4b:88: 70:c6:5f:55:a7:78:67:ae:f4:74:a8:fe:75:86:dc: f4:30:d3:af:3c:33:0e:dd:a0:eb:e9:76:e5:57:00: 73:46:f8:69:da:3b:66:1c:55:5f:5f:f0:cc:e8:ba: 2b:68:6b:90:79:bb:29:cc:0e:8c:57:55:e0:ed:70: 09:3c:22:1e:e6:ff:a8:e8:dc:aa:9c:d1:4b:55:96: 7b:a7:d1:56:e1:28:32:2a:3e:75:77:e0:a2:bb:90: 0c:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:4C:DF:95:80:25:7B:E9:3E:2A:BE:66:B7:A8:52:0D:27:F8:4A:86 X509v3 Authority Key Identifier: keyid:5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:01:7d:55:f3:14:da:b8:58:df:91:00:3e:5d:25:33:65:9d: c2:b9:9f:77:2e:6a:e6:8b:77:a2:f7:4e:e9:37:e9:55:e3:b1: e9:bf:6d:c4:56:57:f2:c6:92:af:0c:38:5f:5f:16:ab:4b:dd: bf:e1:7a:7a:27:52:6f:e0:bf:1b:54:8a:1e:22:f4:21:92:73: 49:f3:a7:4d:e6:6a:a3:1e:f4:02:aa:4a:1c:71:9d:c5:d1:02: cb:f5:88:50:13:a9:4e:1f:7e:93:5d:f9:fd:2f:1d:16:60:0e: f8:50:e1:c5:ec:bb:aa:62:d3:a5:56:12:a0:76:3c:1d:ab:89: f3:3d:2d:4f:75:18:70:fa:d5:46:01:d8:1c:51:6e:8f:6e:84: b5:91:f9:67:0e:36:e8:3a:b5:f2:8a:48:ae:0d:ed:8b:4c:40: 9b:d0:11:51:0d:9e:50:a8:6d:39:7e:b7:54:eb:82:77:7b:ec: 40:1e:54:99:20:79:7d:a6:c8:ed:34:40:91:29:87:16:84:50: 34:7d:f1:20:95:47:df:7a:ed:5b:27:c1:56:d2:27:55:a5:f5: a6:ea:0d:cf:74:74:c5:3a:e5:9f:a9:6e:27:c5:97:99:bf:25: 5b:5f:2e:72:04:bd:d8:3d:22:45:e9:61:43:d4:db:e4:b0:4a: e2:db:15:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBGOTAxMTAvBgNVBAUTKDVDMEEzNTIzRkQzNjQ1QTc2MzVBRjI1MTlBRENEMDAy RTEzMkZCQ0UwHhcNMjUxMjA1MDQyNDQzWhcNMjUxMjEyMDQyNDQzWjAYMRYwFAYD VQQDEw02OTMyNWU4Yi04MTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/IMt1cxuV/EAtm9uflpUlHLW18bzCjz2PP1wUXx3YR5yX8I/TLG4PzP8ick8 XEKqXcPYJHRJPN+w1LbxOj4hVVyQ9D6Q3ekzSvvuRP4O/V+4NokHfKVHCJJQjAxk DoygrAk5tTziUY6Plf7gPDoWBzJ140njcGB0arbsGTPDk+sua1ojDDMEYHrGsvOl mKGSt5uYcYI/eH1LESdNAFOaSgSES4hwxl9Vp3hnrvR0qP51htz0MNOvPDMO3aDr 6XblVwBzRvhp2jtmHFVfX/DM6LoraGuQebspzA6MV1Xg7XAJPCIe5v+o6NyqnNFL VZZ7p9FW4SgyKj51d+Ciu5AMIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPNM35WA JXvpPiq+ZreoUg0n+EqGMB8GA1UdIwQYMBaAFFwKNSP9NkWnY1ryUZrc0ALhMvvO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMEY5MC8wNDc3OUI5Q0VE ODExMUVGQTAwMzY2MTZDNEY5QUUwMi9YQW8xSV8wMlJhZGpXdkpSbXR6UUF1RXkt ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBbzFJXzAyUmFkald2SlJtdHpRQXVFeS04NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MEY5MC8wNDc3OUI5Q0VEODExMUVGQTAwMzY2MTZDNEY5QUUwMi9YQW8xSV8wMlJh ZGpXdkpSbXR6UUF1RXktODQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIAX1V8xTauFjfkQA+XSUzZZ3CuZ93Lmrmi3ei907pN+lV47Hpv23E VlfyxpKvDDhfXxarS92/4Xp6J1Jv4L8bVIoeIvQhknNJ86dN5mqjHvQCqkoccZ3F 0QLL9YhQE6lOH36TXfn9Lx0WYA74UOHF7LuqYtOlVhKgdjwdq4nzPS1PdRhw+tVG AdgcUW6PboS1kflnDjboOrXyikiuDe2LTECb0BFRDZ5QqG05frdU64J3e+xAHlSZ IHl9psjtNECRKYcWhFA0ffEglUffeu1bJ8FW0idVpfWm6g3PdHTFOuWfqW4nxZeZ vyVbXy5yBL3YPSJF6WFD1NvksEri2xX4 -----END CERTIFICATE-----Generated at Sat Dec 6 12:34:06 2025 by rpki-client