This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft File: XYnzqvmxOgelsmTy3rpk1cUAZRw.mft (raw, json) Hash identifier: ESBooMzLG5r+6pOQQjDf5oF6tjT+lDXthTULD7YKLYg= Subject key identifier: E5:CD:A3:8A:31:02:12:EF:0E:76:3C:21:5F:57:C8:C4:50:6A:CC:94 Authority key identifier: 5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C Certificate issuer: /CN=A91D5240/serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Certificate serial: 0227 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft Manifest number: 021C Signing time: Fri 05 Dec 2025 00:30:38 +0000 Manifest this update: Fri 05 Dec 2025 00:30:37 +0000 Manifest next update: Fri 12 Dec 2025 00:30:37 +0000 Files and hashes: 1: XYnzqvmxOgelsmTy3rpk1cUAZRw.crl (hash: BzPvoy0Mf6oDN0OgtMQldGFicjXFur+pWIEJnUo45tc=) 2: 9EA7B7D8A63911ED874E6630C4F9AE02.roa (hash: 6o0EUZvJBerht1y6bzh1g89SRPPeQ5cLEU5AQhJzOAU=) 3: 5DCE1A1AA63C11ED9306165AC4F9AE02.roa (hash: QPGj0eJqXgnGukiRaT/QHSiAaiIAXjZCnZKqvteNQAI=) 4: 9FBA5FCCA63911ED874E6630C4F9AE02.roa (hash: lCV4Wc/C2vG49K6yvqo7KO+pzcjtBqjnxvlmY9cM+oI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:30:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 551 (0x227) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5240, serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Validity Not Before: Dec 5 00:30:37 2025 GMT Not After : Dec 12 00:30:37 2025 GMT Subject: CN=693227ae-48f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:53:8d:e8:e9:0a:68:ed:41:12:73:79:6c:f4: 3d:68:48:17:a9:a0:af:14:dd:ad:f4:51:ad:42:30: 0a:3e:2f:2e:dd:38:57:bc:d5:70:c1:70:c9:76:fe: 7f:6d:48:d9:91:db:20:79:52:e3:fb:5d:4e:37:aa: 1f:f8:cb:ca:33:dd:0a:d7:b2:78:96:39:6e:a8:f5: f8:83:75:fa:92:fb:d5:50:3d:a8:a5:15:8a:05:7a: 0e:f7:71:b7:93:3f:fc:72:09:be:9e:d6:79:27:b5: 4d:50:03:14:18:8b:55:2e:ae:ac:17:0d:3c:58:1d: 37:e9:70:2f:63:db:d3:3f:7a:73:ac:62:b4:92:f1: cc:ce:1e:49:01:1d:16:e3:fd:3b:06:8e:dd:30:9f: c5:dc:f1:7e:3b:d9:2a:7e:43:73:42:cb:64:d2:7b: e8:17:ae:44:f2:3c:35:4a:32:51:e4:84:ce:b6:72: 36:9f:c3:8f:b4:6f:84:f0:98:62:7d:25:6c:e8:1c: 29:e0:d8:f4:8e:25:33:6c:ed:41:a1:1e:e8:21:f6: 62:9c:08:9a:3e:5d:b0:3c:01:15:16:1b:47:1b:75: 19:43:09:18:81:d6:fd:fd:54:fa:b8:d9:34:c3:05: c8:ae:ce:67:14:82:cb:a5:33:6f:56:fb:51:ec:48: f5:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:CD:A3:8A:31:02:12:EF:0E:76:3C:21:5F:57:C8:C4:50:6A:CC:94 X509v3 Authority Key Identifier: keyid:5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:47:b7:77:fe:4a:60:6c:49:39:02:86:18:c7:ac:82:44:4f: 87:84:b7:b8:92:b8:2d:df:b1:9d:68:24:b5:f5:26:ce:c2:53: 4b:9b:13:18:d7:cd:6e:ef:25:52:7b:b4:71:43:75:9a:44:15: 08:5b:3a:a7:f2:ed:93:44:16:e2:5e:c9:86:48:8e:db:54:67: df:82:25:e6:79:2c:ba:d9:aa:6e:e8:26:7a:cd:f1:57:d4:39: f0:e7:f5:7a:8a:ab:61:53:58:f6:45:bd:2d:ec:c4:18:44:73: 56:8f:42:49:60:5e:e2:48:ab:02:29:b0:bc:b0:d3:15:e0:08: 38:15:ba:73:7d:99:6d:44:d2:eb:e9:fb:11:57:0c:9d:bd:8e: d5:a2:f3:69:b8:6e:69:31:ee:00:2d:44:18:a9:fb:a5:ff:c1: 78:f6:c2:83:7f:c9:fb:5a:d7:22:73:86:90:b3:d2:f5:35:60: 81:19:1f:c4:94:23:67:bb:d0:52:89:df:57:94:62:fa:58:71: 56:cb:38:0b:76:56:c3:f8:09:fc:7d:02:ce:b7:94:aa:2f:87: 4d:56:4f:5f:0f:0c:e6:83:b2:55:bf:79:af:cf:0c:c6:93:86: 20:13:50:9d:86:76:c7:3c:99:51:3d:ad:f7:c1:bf:fc:e4:fe: c6:47:ce:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUyNDAxMTAvBgNVBAUTKDVEODlGM0FBRjlCMTNBMDdBNUIyNjRGMkRFQkE2NEQ1 QzUwMDY1MUMwHhcNMjUxMjA1MDAzMDM3WhcNMjUxMjEyMDAzMDM3WjAYMRYwFAYD VQQDEw02OTMyMjdhZS00OGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFON6OkKaO1BEnN5bPQ9aEgXqaCvFN2t9FGtQjAKPi8u3ThXvNVwwXDJdv5/ bUjZkdsgeVLj+11ON6of+MvKM90K17J4ljluqPX4g3X6kvvVUD2opRWKBXoO93G3 kz/8cgm+ntZ5J7VNUAMUGItVLq6sFw08WB036XAvY9vTP3pzrGK0kvHMzh5JAR0W 4/07Bo7dMJ/F3PF+O9kqfkNzQstk0nvoF65E8jw1SjJR5ITOtnI2n8OPtG+E8Jhi fSVs6Bwp4Nj0jiUzbO1BoR7oIfZinAiaPl2wPAEVFhtHG3UZQwkYgdb9/VT6uNk0 wwXIrs5nFILLpTNvVvtR7Ej1lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOXNo4ox AhLvDnY8IV9XyMRQasyUMB8GA1UdIwQYMBaAFF2J86r5sToHpbJk8t66ZNXFAGUc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTI0MC8yN0RERTdEODlC N0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9nZWxzbVR5M3JwazFjVUFa UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hZbnpxdm14T2dlbHNtVHkzcnBrMWNVQVpSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTI0MC8yN0RERTdEODlCN0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9n ZWxzbVR5M3JwazFjVUFaUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPR7d3/kpgbEk5AoYYx6yCRE+HhLe4krgt37GdaCS19SbOwlNLmxMY 181u7yVSe7RxQ3WaRBUIWzqn8u2TRBbiXsmGSI7bVGffgiXmeSy62apu6CZ6zfFX 1Dnw5/V6iqthU1j2Rb0t7MQYRHNWj0JJYF7iSKsCKbC8sNMV4Ag4FbpzfZltRNLr 6fsRVwydvY7VovNpuG5pMe4ALUQYqful/8F49sKDf8n7Wtcic4aQs9L1NWCBGR/E lCNnu9BSid9XlGL6WHFWyzgLdlbD+An8fQLOt5SqL4dNVk9fDwzmg7JVv3mvzwzG k4YgE1CdhnbHPJlRPa33wb/85P7GR86x -----END CERTIFICATE-----Generated at Sun Dec 7 00:05:33 2025 by rpki-client