This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft File: xdQJ-106qXOpUMnDHMMBVfNJP2I.mft (raw, json) Hash identifier: f3ipmiFBkKXelAkBZplPh/3pzmBgk8d9Iv1XNAcl6cs= Subject key identifier: 4C:CB:EE:56:46:21:53:C8:6C:AD:26:43:8A:D9:36:24:A3:6B:4A:42 Authority key identifier: C5:D4:09:FB:5D:3A:A9:73:A9:50:C9:C3:1C:C3:01:55:F3:49:3F:62 Certificate issuer: /CN=A91D6884/serialNumber=C5D409FB5D3AA973A950C9C31CC30155F3493F62 Certificate serial: 0197 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft Manifest number: 0194 Signing time: Sun 07 Dec 2025 01:54:35 +0000 Manifest this update: Sun 07 Dec 2025 01:54:34 +0000 Manifest next update: Sun 14 Dec 2025 01:54:34 +0000 Files and hashes: 1: xdQJ-106qXOpUMnDHMMBVfNJP2I.crl (hash: +fW0gfNiMaXkj8h+cK5tdtjQRfp0kuWFjg+zO442nOk=) 2: 5CF4C0D4FADD11EE8083D572C4F9AE02.roa (hash: tBK54wCyQ2wcX6ZNsRYGZb85q/LNuJrcbm5n2EF4GsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.crl rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:24:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 407 (0x197) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6884, serialNumber=C5D409FB5D3AA973A950C9C31CC30155F3493F62 Validity Not Before: Dec 7 01:54:34 2025 GMT Not After : Dec 14 01:54:34 2025 GMT Subject: CN=6934de5a-198f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:aa:67:ec:29:3b:7c:fd:2f:cc:59:64:aa:6d: 78:de:0a:0c:d3:2d:3f:a1:d0:fe:bc:7f:b8:d7:18: 62:50:75:8e:70:af:e6:a4:b5:30:5a:48:36:e6:49: 63:1b:cc:15:07:11:f2:ae:d9:fe:9b:11:11:7c:e0: c7:6e:74:c6:91:ff:d6:7f:45:0e:e3:f2:6d:eb:b7: 12:34:69:c7:13:2e:75:e1:a2:bf:33:89:a5:e2:a5: 55:cc:18:f6:53:12:61:ff:0d:e6:e6:54:b4:00:a7: d6:0e:99:7b:80:c0:a5:f2:69:e9:f2:0c:2f:37:24: cd:d1:a7:fe:94:37:25:1c:36:96:23:11:d6:a7:58: 7c:e2:77:d9:26:7b:91:bc:f2:57:14:06:c9:28:d2: 3d:30:24:81:96:f3:5c:79:8e:d9:21:63:f8:77:59: 6c:d1:ce:84:fd:47:68:c9:9c:f0:cf:88:37:07:06: 79:c7:8e:57:a1:35:2c:93:10:b7:95:7a:f4:04:99: 83:ef:41:0e:63:88:76:0f:bd:5b:fd:f9:00:03:03: 85:e8:b0:fb:43:ab:c5:95:6b:cf:98:3f:95:95:ae: 21:d4:e4:bc:d9:5d:3d:90:87:7f:9a:4f:c3:5b:8c: 1f:be:be:66:c7:49:63:4e:9d:ef:b3:35:70:59:ca: 6e:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:CB:EE:56:46:21:53:C8:6C:AD:26:43:8A:D9:36:24:A3:6B:4A:42 X509v3 Authority Key Identifier: keyid:C5:D4:09:FB:5D:3A:A9:73:A9:50:C9:C3:1C:C3:01:55:F3:49:3F:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:79:9c:7c:33:68:6d:cb:db:03:75:3f:0a:7e:0f:18:3b:a8: a9:b3:48:86:14:6b:c8:1b:97:24:68:f2:17:b7:af:a5:ab:de: 13:27:ad:91:3b:32:a7:3a:ce:07:07:62:06:6e:93:71:94:cd: 39:92:7b:b9:ab:76:c2:65:f5:9b:1c:ef:86:c9:cc:e1:c2:44: b7:95:c1:52:a8:13:a2:ba:af:90:6e:77:77:d5:4b:65:eb:40: 66:37:ef:96:1a:1b:43:e4:6c:a5:4c:62:3d:19:e0:d7:e1:ad: d9:64:71:c8:cd:50:e5:2b:38:5b:f3:3d:ef:a5:7e:51:a2:8c: 03:cf:2a:6c:72:61:e4:b3:88:39:05:14:2b:bd:cf:ea:75:9a: c9:46:08:02:4a:aa:19:58:2d:fe:73:ea:a7:bc:2c:c3:7e:ea: 36:0a:f3:f0:11:e2:a6:98:06:e2:d1:0d:61:8f:23:af:fb:7c: 92:ba:d2:46:21:c1:53:5e:34:e9:00:de:59:95:50:e0:25:9b: 1b:60:1f:b6:72:03:d8:e4:4d:10:b5:33:0d:f9:14:b8:a0:ee: d3:ad:66:f4:bc:24:a0:44:0e:39:f9:14:3c:7d:26:a6:31:86: aa:e6:41:41:ee:b6:a8:e9:a8:85:bf:3e:b6:4b:db:d5:2f:eb: f3:c6:bd:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY4ODQxMTAvBgNVBAUTKEM1RDQwOUZCNUQzQUE5NzNBOTUwQzlDMzFDQzMwMTU1 RjM0OTNGNjIwHhcNMjUxMjA3MDE1NDM0WhcNMjUxMjE0MDE1NDM0WjAYMRYwFAYD VQQDEw02OTM0ZGU1YS0xOThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3apn7Ck7fP0vzFlkqm143goM0y0/odD+vH+41xhiUHWOcK/mpLUwWkg25klj G8wVBxHyrtn+mxERfODHbnTGkf/Wf0UO4/Jt67cSNGnHEy514aK/M4ml4qVVzBj2 UxJh/w3m5lS0AKfWDpl7gMCl8mnp8gwvNyTN0af+lDclHDaWIxHWp1h84nfZJnuR vPJXFAbJKNI9MCSBlvNceY7ZIWP4d1ls0c6E/UdoyZzwz4g3BwZ5x45XoTUskxC3 lXr0BJmD70EOY4h2D71b/fkAAwOF6LD7Q6vFlWvPmD+Vla4h1OS82V09kId/mk/D W4wfvr5mx0ljTp3vszVwWcpuCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEzL7lZG IVPIbK0mQ4rZNiSja0pCMB8GA1UdIwQYMBaAFMXUCftdOqlzqVDJwxzDAVXzST9i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjg4NC8yQTk1MDI1NjY5 NzUxMUVFQjcwQTU1MEVDNEY5QUUwMi94ZFFKLTEwNnFYT3BVTW5ESE1NQlZmTkpQ MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hkUUotMTA2cVhPcFVNbkRITU1CVmZOSlAySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Njg4NC8yQTk1MDI1NjY5NzUxMUVFQjcwQTU1MEVDNEY5QUUwMi94ZFFKLTEwNnFY T3BVTW5ESE1NQlZmTkpQMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIeZx8M2hty9sDdT8Kfg8YO6ips0iGFGvIG5ckaPIXt6+lq94TJ62R OzKnOs4HB2IGbpNxlM05knu5q3bCZfWbHO+GyczhwkS3lcFSqBOiuq+Qbnd31Utl 60BmN++WGhtD5GylTGI9GeDX4a3ZZHHIzVDlKzhb8z3vpX5RoowDzypscmHks4g5 BRQrvc/qdZrJRggCSqoZWC3+c+qnvCzDfuo2CvPwEeKmmAbi0Q1hjyOv+3ySutJG IcFTXjTpAN5ZlVDgJZsbYB+2cgPY5E0QtTMN+RS4oO7TrWb0vCSgRA45+RQ8fSam MYaq5kFB7rao6aiFvz62S9vVL+vzxr05 -----END CERTIFICATE-----Generated at Sun Dec 7 03:44:49 2025 by rpki-client