This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft File: XwBNV-s29CZy5m8wBfZGm2KJFxs.mft (raw, json) Hash identifier: bMzOSLHUKW1zn/5g5cA0u4JN1ht8fd4UkKNVdEeBx5Q= Subject key identifier: 22:88:D3:EC:9F:B9:F5:A7:82:E0:7C:E2:D4:2C:7F:9C:5D:40:2E:7A Authority key identifier: 5F:00:4D:57:EB:36:F4:26:72:E6:6F:30:05:F6:46:9B:62:89:17:1B Certificate issuer: /CN=A91C1025/serialNumber=5F004D57EB36F42672E66F3005F6469B6289171B Certificate serial: D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft Manifest number: CD Signing time: Fri 05 Dec 2025 03:47:48 +0000 Manifest this update: Fri 05 Dec 2025 03:47:48 +0000 Manifest next update: Fri 12 Dec 2025 03:47:48 +0000 Files and hashes: 1: XwBNV-s29CZy5m8wBfZGm2KJFxs.crl (hash: Q1e/YauFBI6g+v+EuaByQ2iGypJ53PvclJ7wABucuis=) 2: 3D04EA589D9211EF8083B245C4F9AE02.roa (hash: Iqqm3XnZxAwHyLfxm5fiQ2PL3nIt3cAVFXF23TPN80A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.crl rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:47:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1025, serialNumber=5F004D57EB36F42672E66F3005F6469B6289171B Validity Not Before: Dec 5 03:47:48 2025 GMT Not After : Dec 12 03:47:48 2025 GMT Subject: CN=693255e4-83a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a2:19:b9:ca:43:e5:2d:c1:a4:31:60:03:17: d5:39:ba:93:a5:48:be:53:5c:37:c9:82:52:b1:ea: 65:73:17:73:fe:ed:0e:c2:bb:78:21:ed:66:73:95: 50:e1:bb:6c:30:47:55:d5:20:78:30:b0:f1:05:2f: 4e:9b:04:80:c1:3b:c6:8d:1b:b3:82:04:a6:9e:7d: 9a:74:34:d9:fe:b5:b9:89:a8:6b:ab:2b:d0:32:f1: 08:3b:07:29:7b:b8:3b:17:20:ea:e4:49:12:81:fd: 7f:36:a3:e3:07:c4:d8:76:15:da:2c:58:52:64:4e: c1:f4:d7:7a:64:74:93:3e:e4:c2:ce:ca:09:6a:c3: 42:40:f7:e0:ee:ed:16:8a:8a:02:63:a7:7a:5b:74: 84:a1:64:9a:29:fd:31:71:96:12:fd:51:47:bb:62: f0:fc:48:6f:fd:53:54:a2:05:19:3d:8d:dd:34:ad: 9d:6e:49:86:0d:4e:b7:93:8b:4d:8e:47:8c:21:64: da:b0:49:c3:3f:38:d9:c0:06:ce:cf:9f:b0:c5:61: 72:fd:b9:68:0f:1e:bf:09:ec:6f:c0:5b:2a:25:56: b2:69:f5:fd:31:9e:4c:e6:9e:20:f3:d2:38:62:85: 46:8d:9e:40:fc:5d:f6:6d:df:b4:80:4f:a8:d0:7f: 0a:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:88:D3:EC:9F:B9:F5:A7:82:E0:7C:E2:D4:2C:7F:9C:5D:40:2E:7A X509v3 Authority Key Identifier: keyid:5F:00:4D:57:EB:36:F4:26:72:E6:6F:30:05:F6:46:9B:62:89:17:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:ca:a6:7a:d4:2a:75:e6:91:8d:4d:10:be:26:0c:b8:6b:d6: 74:5f:1b:61:b3:e3:a2:d9:e5:e4:9e:33:c9:c1:39:18:b8:d9: 4d:e1:fe:e7:86:b2:49:e0:ae:6d:d4:1d:0d:d3:8b:20:8c:0d: 7d:b9:96:a5:5f:3a:6b:b9:64:12:39:3d:4c:8b:fa:1c:11:2f: 8b:4d:ab:05:9a:02:4d:7c:8e:25:d0:8c:b6:ab:95:b5:97:99: 28:65:73:65:79:3b:c2:69:5d:a7:b6:de:9f:1d:7b:bd:b9:55: 10:71:8d:cb:28:e6:07:f0:20:e4:39:57:84:3c:87:a2:34:76: 7a:70:26:6f:aa:bc:50:a0:81:cb:2c:71:9e:ea:f1:ee:44:1f: ae:c8:c2:f6:4e:21:52:8c:63:88:c0:6d:79:61:c8:3d:2c:2f: e4:55:f1:7c:b6:fa:2e:d4:07:22:50:d0:11:14:71:bd:5b:61: 39:53:97:af:bb:6c:5e:86:f7:e7:c0:ca:a2:1c:31:b2:33:94: 2c:5f:87:35:a7:4e:a1:59:be:64:a0:72:07:9f:14:a5:b9:38: 05:d4:27:b4:14:90:f0:05:de:b4:8b:d8:50:bb:8a:f3:9f:56: 78:a4:f0:cb:67:3d:43:9d:cc:80:8d:d6:82:72:ed:7e:d7:c7: c2:96:29:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEwMjUxMTAvBgNVBAUTKDVGMDA0RDU3RUIzNkY0MjY3MkU2NkYzMDA1RjY0NjlC NjI4OTE3MUIwHhcNMjUxMjA1MDM0NzQ4WhcNMjUxMjEyMDM0NzQ4WjAYMRYwFAYD VQQDEw02OTMyNTVlNC04M2E4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApaIZucpD5S3BpDFgAxfVObqTpUi+U1w3yYJSseplcxdz/u0Owrt4Ie1mc5VQ 4btsMEdV1SB4MLDxBS9OmwSAwTvGjRuzggSmnn2adDTZ/rW5iahrqyvQMvEIOwcp e7g7FyDq5EkSgf1/NqPjB8TYdhXaLFhSZE7B9Nd6ZHSTPuTCzsoJasNCQPfg7u0W iooCY6d6W3SEoWSaKf0xcZYS/VFHu2Lw/Ehv/VNUogUZPY3dNK2dbkmGDU63k4tN jkeMIWTasEnDPzjZwAbOz5+wxWFy/bloDx6/CexvwFsqJVayafX9MZ5M5p4g89I4 YoVGjZ5A/F32bd+0gE+o0H8KeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCKI0+yf ufWnguB84tQsf5xdQC56MB8GA1UdIwQYMBaAFF8ATVfrNvQmcuZvMAX2RptiiRcb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTAyNS85NTZGNjYyQzlE ODQxMUVGODE3RTE0MjBDNEY5QUUwMi9Yd0JOVi1zMjlDWnk1bTh3QmZaR20yS0pG eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h3Qk5WLXMyOUNaeTVtOHdCZlpHbTJLSkZ4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTAyNS85NTZGNjYyQzlEODQxMUVGODE3RTE0MjBDNEY5QUUwMi9Yd0JOVi1zMjlD Wnk1bTh3QmZaR20yS0pGeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbyqZ61Cp15pGNTRC+Jgy4a9Z0Xxths+Oi2eXknjPJwTkYuNlN4f7n hrJJ4K5t1B0N04sgjA19uZalXzpruWQSOT1Mi/ocES+LTasFmgJNfI4l0Iy2q5W1 l5koZXNleTvCaV2ntt6fHXu9uVUQcY3LKOYH8CDkOVeEPIeiNHZ6cCZvqrxQoIHL LHGe6vHuRB+uyML2TiFSjGOIwG15Ycg9LC/kVfF8tvou1AciUNARFHG9W2E5U5ev u2xehvfnwMqiHDGyM5QsX4c1p06hWb5koHIHnxSluTgF1Ce0FJDwBd60i9hQu4rz n1Z4pPDLZz1DncyAjdaCcu1+18fClilP -----END CERTIFICATE-----Generated at Sun Dec 7 02:01:01 2025 by rpki-client