This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft File: XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft (raw, json) Hash identifier: nl63f4Q2U9gHPj8w9Ze/TdQnpm0dOrQyab5S6t5vm24= Subject key identifier: 38:00:AD:9B:4C:17:3B:71:BE:44:FA:86:9B:56:04:CB:D1:B9:69:92 Authority key identifier: 5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8 Certificate issuer: /CN=A91C9561/serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8 Certificate serial: 0355 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft Manifest number: 0354 Signing time: Thu 04 Dec 2025 23:21:09 +0000 Manifest this update: Thu 04 Dec 2025 23:21:08 +0000 Manifest next update: Thu 11 Dec 2025 23:21:08 +0000 Files and hashes: 1: XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl (hash: 5psq2uXVfoi8hXwQmfKC+JydJ0uStvidLCp+q4luPWE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 853 (0x355) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9561, serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8 Validity Not Before: Dec 4 23:21:08 2025 GMT Not After : Dec 11 23:21:08 2025 GMT Subject: CN=69321764-f074 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:41:5b:45:af:f2:79:4b:ba:a0:7d:99:80:7f: 11:31:84:64:38:a7:23:51:17:4a:b4:23:d9:71:c7: 56:76:c5:9a:08:d5:f1:b1:3f:9f:de:95:8f:dc:36: 85:49:c2:54:e3:97:59:c3:e8:cd:0a:54:b2:c2:31: 17:6d:52:b4:28:15:38:50:12:fa:2b:1d:75:74:e8: 25:35:30:03:16:7b:88:5e:01:97:cb:87:4b:3d:b8: 4d:68:da:9a:b8:48:ca:a6:e6:89:d8:32:3b:b5:89: bb:72:cc:b8:94:ca:94:94:55:75:df:84:e1:53:5c: 6c:cf:58:7e:51:a9:48:54:e1:bf:c1:a8:47:97:9e: 58:6b:e2:51:2c:5d:63:8f:3c:1f:e3:49:27:a3:3d: 84:b0:be:e5:2f:da:92:79:dd:30:3b:b1:b4:09:9b: 36:ad:f5:0e:68:8a:3a:2c:10:f1:83:a7:fa:b0:c3: 4d:ae:46:9e:51:46:9f:63:fa:11:4c:87:da:23:57: af:e7:5d:6f:6b:d5:a5:b0:3b:ea:26:b3:1c:42:2e: e0:9e:08:f9:cb:fb:1d:e4:f8:0c:4a:f0:bd:f4:4e: 4a:d1:4c:2f:dc:de:87:b8:b9:3f:75:74:a0:4f:87: 30:b9:05:36:72:83:f0:1f:47:72:d6:6a:31:19:f6: 6b:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:00:AD:9B:4C:17:3B:71:BE:44:FA:86:9B:56:04:CB:D1:B9:69:92 X509v3 Authority Key Identifier: keyid:5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:38:86:9d:0e:d3:40:0d:37:1c:67:cb:42:56:42:13:04:9b: f4:65:99:a3:20:f7:60:b4:cb:1d:ee:ce:18:7a:27:3d:10:1c: 0f:59:6c:2a:0c:4d:6e:51:bb:33:64:95:0c:af:fa:af:45:55: ba:79:5a:1b:bf:5c:4f:a1:63:9b:5f:86:3b:f9:30:2a:f0:50: ef:d0:be:e9:42:0b:35:f7:77:6c:7e:8a:82:19:67:2e:98:69: 94:c0:e9:2d:e7:57:e0:d7:0b:56:48:cc:ca:55:d4:1d:a7:35: 47:74:8f:e4:52:aa:15:e4:6b:f0:f6:dc:c3:25:d0:d6:38:e9: 47:43:cc:1f:e2:ec:cf:4d:9e:6d:30:4a:16:41:9b:66:d7:dd: fd:31:71:7d:e8:d7:c5:e0:b1:0a:34:99:38:d3:34:15:39:38: c6:9d:b2:bf:40:19:0f:09:68:c1:d2:ed:e7:48:c7:9a:82:9d: 14:cd:2e:da:50:0b:84:c4:a8:0f:7c:a6:03:e1:01:3d:24:a5: 76:44:19:03:86:72:5a:e8:af:d0:a7:9b:60:b3:8b:3d:54:7f: c1:d7:78:60:e8:67:37:7f:7d:41:80:85:fb:da:85:2a:0d:9f: fc:65:48:cd:16:f9:04:76:9e:ee:00:0a:97:22:78:67:26:ff: 5a:90:b1:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1NjExMTAvBgNVBAUTKDVFM0NGMDI1MUQ4QTYwMDZCODI4NUJEMDk0OUZDRDlC QTNGOUVCQjgwHhcNMjUxMjA0MjMyMTA4WhcNMjUxMjExMjMyMTA4WjAYMRYwFAYD VQQDEw02OTMyMTc2NC1mMDc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvEFbRa/yeUu6oH2ZgH8RMYRkOKcjURdKtCPZccdWdsWaCNXxsT+f3pWP3DaF ScJU45dZw+jNClSywjEXbVK0KBU4UBL6Kx11dOglNTADFnuIXgGXy4dLPbhNaNqa uEjKpuaJ2DI7tYm7csy4lMqUlFV134ThU1xsz1h+UalIVOG/wahHl55Ya+JRLF1j jzwf40knoz2EsL7lL9qSed0wO7G0CZs2rfUOaIo6LBDxg6f6sMNNrkaeUUafY/oR TIfaI1ev511va9WlsDvqJrMcQi7gngj5y/sd5PgMSvC99E5K0Uwv3N6HuLk/dXSg T4cwuQU2coPwH0dy1moxGfZrtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDgArZtM FztxvkT6hptWBMvRuWmSMB8GA1UdIwQYMBaAFF488CUdimAGuChb0JSfzZuj+eu4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTU2MS9DOUE4REZEQURB NjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lBYTRLRnZRbEpfTm02UDU2 N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hqendKUjJLWUFhNEtGdlFsSl9ObTZQNTY3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTU2MS9DOUE4REZEQURBNjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lB YTRLRnZRbEpfTm02UDU2N2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApOIadDtNADTccZ8tCVkITBJv0ZZmjIPdgtMsd7s4Yeic9EBwPWWwq DE1uUbszZJUMr/qvRVW6eVobv1xPoWObX4Y7+TAq8FDv0L7pQgs193dsfoqCGWcu mGmUwOkt51fg1wtWSMzKVdQdpzVHdI/kUqoV5Gvw9tzDJdDWOOlHQ8wf4uzPTZ5t MEoWQZtm1939MXF96NfF4LEKNJk40zQVOTjGnbK/QBkPCWjB0u3nSMeagp0UzS7a UAuExKgPfKYD4QE9JKV2RBkDhnJa6K/Qp5tgs4s9VH/B13hg6Gc3f31BgIX72oUq DZ/8ZUjNFvkEdp7uAAqXInhnJv9akLG/ -----END CERTIFICATE-----Generated at Sat Dec 6 12:30:59 2025 by rpki-client