This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft File: XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft (raw, json) Hash identifier: P0r/mJNgj80FtJl0fdXslCg6juVCcdAAtUwlpK9waPs= Subject key identifier: 9D:92:1D:44:D3:F8:89:F4:FB:4A:69:9D:88:9C:E4:C3:9F:0C:A9:F6 Authority key identifier: 5D:4F:41:2A:E4:80:10:FE:54:87:F0:18:F1:71:A9:C6:46:9D:9A:C5 Certificate issuer: /CN=A91BCA5B/serialNumber=5D4F412AE48010FE5487F018F171A9C6469D9AC5 Certificate serial: 11 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XU9BKuSAEP5Uh_AY8XGpxkadmsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft Manifest number: 0F Signing time: Sun 07 Dec 2025 05:56:21 +0000 Manifest this update: Sun 07 Dec 2025 05:56:20 +0000 Manifest next update: Sun 14 Dec 2025 05:56:20 +0000 Files and hashes: 1: XU9BKuSAEP5Uh_AY8XGpxkadmsU.crl (hash: v+ZD7k+B7vaJMte2xGlbXKgEeV4+orKUKe3BGFIXRTQ=) 2: AF2E6AE2C03B11F09EE7012FC4F9AE02.roa (hash: 7K3qRA/N7rz2jfT0m6Hcbsd9SkfThsmVfXsBZYNY3Xs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.crl rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XU9BKuSAEP5Uh_AY8XGpxkadmsU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 05:56:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCA5B, serialNumber=5D4F412AE48010FE5487F018F171A9C6469D9AC5 Validity Not Before: Dec 7 05:56:20 2025 GMT Not After : Dec 14 05:56:20 2025 GMT Subject: CN=69351705-e760 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c2:7c:0f:cc:25:05:f0:31:bd:1d:34:a1:61: d9:04:17:d0:1d:9c:12:83:91:2e:a7:0f:41:84:e5: ce:a7:c3:23:0f:7b:81:0f:f7:4a:54:89:c2:f2:6b: 2d:f2:7a:cf:e8:cc:7d:72:0b:3d:d7:53:e3:4a:f1: 24:2f:5e:e8:e9:e0:05:2f:45:2d:94:08:be:46:b4: ae:64:b1:d9:a1:7c:fe:e1:91:e2:32:a1:32:cd:83: 11:a7:09:30:7b:ad:f1:1f:b4:77:ed:48:e9:23:8b: b7:bb:85:07:b2:0a:de:41:53:df:5e:86:a2:a3:f9: 0a:f5:d6:15:39:90:98:43:76:2c:89:db:66:0f:ce: 4f:58:4e:f7:cd:d4:9f:95:86:3b:0b:63:da:2b:a3: a6:14:3d:7f:d5:e1:83:fa:c0:29:67:61:28:3a:fe: 94:4b:a3:21:f9:36:aa:32:c8:58:98:33:8e:b2:46: 8b:55:3e:17:f6:62:5a:08:9a:ca:f0:73:5f:63:54: 9f:bd:fc:d8:dc:4b:c7:68:21:3f:6f:cf:e4:2f:8b: 23:76:12:e5:07:d6:8d:27:f1:e6:b7:0f:ac:42:4b: 6d:dc:73:da:95:b8:dc:f5:10:1f:a9:15:d0:2e:27: f0:1b:59:f0:ca:c1:98:b8:22:4a:4a:63:a9:06:db: 35:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:92:1D:44:D3:F8:89:F4:FB:4A:69:9D:88:9C:E4:C3:9F:0C:A9:F6 X509v3 Authority Key Identifier: keyid:5D:4F:41:2A:E4:80:10:FE:54:87:F0:18:F1:71:A9:C6:46:9D:9A:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XU9BKuSAEP5Uh_AY8XGpxkadmsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:06:b4:f2:43:3b:d4:d7:ae:64:18:93:5b:98:b4:17:81:89: bf:b7:29:aa:dd:54:0c:9b:c2:74:1e:3f:f2:16:7f:93:12:29: 89:f8:7d:e6:61:c9:41:35:1c:0a:63:d5:57:e0:be:da:96:00: 35:66:b3:51:6e:37:c4:e6:18:2b:f9:34:7c:59:c1:a7:19:81: 48:ea:47:3c:a8:ca:f8:e6:d6:3c:a1:cb:dd:9a:4f:25:93:f5: 7e:85:fd:44:d8:1a:cb:45:ae:d7:08:cd:e6:32:94:77:f2:3c: 11:71:92:83:71:5b:0c:21:ed:37:77:46:f4:6e:ff:6e:8c:b7: 3a:a6:be:ed:dc:d7:32:0a:a7:6f:13:eb:41:a4:bd:c3:cc:b6: b9:67:84:2d:14:16:5d:15:1e:dc:e9:14:c9:eb:2d:64:04:05: 27:f4:4a:f3:37:6d:f9:fd:41:b2:eb:30:8c:76:5f:12:c7:37: fc:1c:00:5a:21:a2:e3:10:cb:cc:0d:f1:cb:e6:a5:94:dd:1c: 4a:2e:2b:85:ea:8b:56:96:e9:1f:e2:d5:c3:7f:88:7b:14:02: c5:37:9e:5e:2c:4b:d3:73:b4:63:ad:a9:5c:dc:72:d2:30:13: fc:fc:ec:90:75:b5:ed:e1:a7:9d:07:c5:7d:69:4e:b3:2c:ce: 55:a6:09:ba -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBETANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC Q0E1QjExMC8GA1UEBRMoNUQ0RjQxMkFFNDgwMTBGRTU0ODdGMDE4RjE3MUE5QzY0 NjlEOUFDNTAeFw0yNTEyMDcwNTU2MjBaFw0yNTEyMTQwNTU2MjBaMBgxFjAUBgNV BAMTDTY5MzUxNzA1LWU3NjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9wnwPzCUF8DG9HTShYdkEF9AdnBKDkS6nD0GE5c6nwyMPe4EP90pUicLyay3y es/ozH1yCz3XU+NK8SQvXujp4AUvRS2UCL5GtK5ksdmhfP7hkeIyoTLNgxGnCTB7 rfEftHftSOkji7e7hQeyCt5BU99ehqKj+Qr11hU5kJhDdiyJ22YPzk9YTvfN1J+V hjsLY9oro6YUPX/V4YP6wClnYSg6/pRLoyH5NqoyyFiYM46yRotVPhf2YloImsrw c19jVJ+9/NjcS8doIT9vz+QviyN2EuUH1o0n8ea3D6xCS23cc9qVuNz1EB+pFdAu J/AbWfDKwZi4IkpKY6kG2zXLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnZIdRNP4 ifT7SmmdiJzkw58MqfYwHwYDVR0jBBgwFoAUXU9BKuSAEP5Uh/AY8XGpxkadmsUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJDQTVCL0QyNUQ4NjhFQzAz QTExRjA4OEEzNDYyQ0M0RjlBRTAyL1hVOUJLdVNBRVA1VWhfQVk4WEdweGthZG1z VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWFU5Qkt1U0FFUDVVaF9BWThYR3B4a2FkbXNVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJD QTVCL0QyNUQ4NjhFQzAzQTExRjA4OEEzNDYyQ0M0RjlBRTAyL1hVOUJLdVNBRVA1 VWhfQVk4WEdweGthZG1zVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACIGtPJDO9TXrmQYk1uYtBeBib+3KardVAybwnQeP/IWf5MSKYn4feZh yUE1HApj1VfgvtqWADVms1FuN8TmGCv5NHxZwacZgUjqRzyoyvjm1jyhy92aTyWT 9X6F/UTYGstFrtcIzeYylHfyPBFxkoNxWwwh7Td3RvRu/26Mtzqmvu3c1zIKp28T 60GkvcPMtrlnhC0UFl0VHtzpFMnrLWQEBSf0SvM3bfn9QbLrMIx2XxLHN/wcAFoh ouMQy8wN8cvmpZTdHEouK4Xqi1aW6R/i1cN/iHsUAsU3nl4sS9NztGOtqVzcctIw E/z87JB1te3hp50HxX1pTrMszlWmCbo= -----END CERTIFICATE-----Generated at Mon Dec 8 00:49:58 2025 by rpki-client