This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft File: X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft (raw, json) Hash identifier: Y6ZbcemisLbiv/p+lm1TVy/GP1TKiKVw/ADxOSQYqx4= Subject key identifier: 8D:B0:6B:AF:03:8A:1F:A8:CD:6B:78:96:16:98:30:0C:C5:4C:86:DC Authority key identifier: 5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 Certificate issuer: /CN=A91CE285/serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Certificate serial: 0A1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft Manifest number: 0A15 Signing time: Sat 06 Dec 2025 19:02:36 +0000 Manifest this update: Sat 06 Dec 2025 19:02:35 +0000 Manifest next update: Sat 13 Dec 2025 19:02:35 +0000 Files and hashes: 1: X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl (hash: WcDL1DAaP3dYH9Z84fXmaae+uYEM3Q8/VxC6lTage28=) 2: E5C4974689CF11EAA39AF441C4F9AE02.roa (hash: S/+GQ9LaNR6oJzl2BIn9qWcVDZWjqUHkpie5l4NiGuc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:02:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2588 (0xa1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE285, serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Validity Not Before: Dec 6 19:02:35 2025 GMT Not After : Dec 13 19:02:35 2025 GMT Subject: CN=69347dcc-dab8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ca:e7:f6:55:b0:eb:dd:bf:9c:3e:3e:2f:ab: 42:b5:1c:f2:05:86:37:f6:21:f1:72:ac:e1:cc:5c: 9b:0f:b9:77:b7:2b:76:bb:2a:1e:3a:d2:de:26:54: 08:a7:43:d3:2f:6e:4a:66:33:eb:b8:ad:bf:21:e8: c1:e2:03:79:70:2f:1a:2c:ef:4d:5b:79:1c:4b:f3: a7:e0:85:3f:a7:4d:64:ac:02:44:f7:a3:74:dd:6c: 57:f5:62:1f:de:bc:ef:71:6a:c3:26:02:1e:b0:a2: ee:d2:88:16:59:eb:14:e2:4a:be:2c:53:55:a2:19: 86:d6:2c:01:3a:50:3c:eb:56:86:a8:20:56:8e:0f: fb:1e:81:02:9e:43:be:30:fd:51:a3:71:4a:8b:e7: a4:52:0a:c0:fa:2a:06:be:30:a1:a6:a5:3a:7e:a2: 8b:62:a2:11:82:b7:a4:ae:05:18:0a:58:d0:6d:6e: af:88:ac:38:14:35:b8:45:52:0e:a9:33:b8:bc:73: 5a:f8:d5:3a:14:6f:f1:ce:54:73:73:be:72:a2:39: 4e:f7:46:c0:d5:cb:3a:23:00:18:2f:b3:59:6b:61: 74:e8:11:de:4e:45:b0:7c:e3:af:c5:37:4d:c1:bd: 22:f7:2a:1e:d7:cb:ed:a9:bd:f3:43:21:c9:50:0a: cc:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:B0:6B:AF:03:8A:1F:A8:CD:6B:78:96:16:98:30:0C:C5:4C:86:DC X509v3 Authority Key Identifier: keyid:5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:29:0d:90:72:e8:92:bd:97:d6:68:80:cb:df:fc:0a:d6:95: 4b:d7:91:3d:e6:fe:11:dc:27:62:d7:f4:cf:a6:5f:c9:fc:fd: 58:97:c2:38:26:6e:b3:95:00:81:19:d6:a3:f8:9f:70:79:00: bd:27:75:ab:3c:19:ab:74:e6:06:8e:80:7e:5e:36:47:a8:d7: a8:34:2b:79:61:bc:52:00:75:72:68:f5:15:63:43:e6:98:0b: 11:31:1d:29:c8:30:4b:7f:35:8a:e3:f8:f7:ac:4d:50:aa:30: 0c:19:2e:a7:68:3a:5d:b6:be:26:4e:2b:b1:6d:e7:0a:74:e0: cb:35:52:16:36:72:e8:06:23:cd:13:1c:a2:ae:e5:8e:b1:4b: 50:ee:e3:d5:26:2d:ec:15:37:48:49:f6:41:28:5b:78:84:1e: da:0c:13:f7:59:ad:2d:4f:68:99:df:df:f9:ac:81:2a:77:6b: ae:a4:03:27:c2:0d:32:60:9d:6f:aa:06:53:42:7d:07:b9:24: 55:a0:6a:05:2e:90:bc:89:c2:6c:67:62:17:9e:4a:d6:a1:e5: 00:07:01:5c:bd:96:18:be:ba:b4:59:3a:6f:ec:ea:5a:b9:a1: 4e:da:f5:05:dd:e9:57:b8:35:52:8f:06:fc:37:29:cc:75:48: 34:b9:70:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyODUxMTAvBgNVBAUTKDVGOEFGMzU5NzNGRDRGQTU2M0YzM0I3Mzc2NTM0Njgy MTA3QkM4RjkwHhcNMjUxMjA2MTkwMjM1WhcNMjUxMjEzMTkwMjM1WjAYMRYwFAYD VQQDEw02OTM0N2RjYy1kYWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx8rn9lWw692/nD4+L6tCtRzyBYY39iHxcqzhzFybD7l3tyt2uyoeOtLeJlQI p0PTL25KZjPruK2/IejB4gN5cC8aLO9NW3kcS/On4IU/p01krAJE96N03WxX9WIf 3rzvcWrDJgIesKLu0ogWWesU4kq+LFNVohmG1iwBOlA861aGqCBWjg/7HoECnkO+ MP1Ro3FKi+ekUgrA+ioGvjChpqU6fqKLYqIRgrekrgUYCljQbW6viKw4FDW4RVIO qTO4vHNa+NU6FG/xzlRzc75yojlO90bA1cs6IwAYL7NZa2F06BHeTkWwfOOvxTdN wb0i9yoe18vtqb3zQyHJUArMSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI2wa68D ih+ozWt4lhaYMAzFTIbcMB8GA1UdIwQYMBaAFF+K81lz/U+lY/M7c3ZTRoIQe8j5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTI4NS81RTE2NDhCNjg0 QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2Vmo4enR6ZGxOR2doQjd5 UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0cnpXWFA5VDZWajh6dHpkbE5HZ2hCN3lQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTI4NS81RTE2NDhCNjg0QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2 Vmo4enR6ZGxOR2doQjd5UGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDKQ2QcuiSvZfWaIDL3/wK1pVL15E95v4R3Cdi1/TPpl/J/P1Yl8I4 Jm6zlQCBGdaj+J9weQC9J3WrPBmrdOYGjoB+XjZHqNeoNCt5YbxSAHVyaPUVY0Pm mAsRMR0pyDBLfzWK4/j3rE1QqjAMGS6naDpdtr4mTiuxbecKdODLNVIWNnLoBiPN ExyiruWOsUtQ7uPVJi3sFTdISfZBKFt4hB7aDBP3Wa0tT2iZ39/5rIEqd2uupAMn wg0yYJ1vqgZTQn0HuSRVoGoFLpC8icJsZ2IXnkrWoeUABwFcvZYYvrq0WTpv7Opa uaFO2vUF3elXuDVSjwb8NynMdUg0uXBe -----END CERTIFICATE-----Generated at Sun Dec 7 03:42:36 2025 by rpki-client