This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft File: XHIqJhQciPfNQPObN0raf7wfmx8.mft (raw, json) Hash identifier: /wVgBrCSFnsWNFub543kDHMWReKwxF8Wwi0Nea1XXyw= Subject key identifier: 21:9D:BE:4B:A3:53:47:FE:CC:03:32:9D:D9:C1:B0:37:92:A6:39:AE Authority key identifier: 5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F Certificate issuer: /CN=A91D824A/serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Certificate serial: 0107 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft Manifest number: FE Signing time: Fri 05 Dec 2025 03:43:34 +0000 Manifest this update: Fri 05 Dec 2025 03:43:34 +0000 Manifest next update: Fri 12 Dec 2025 03:43:34 +0000 Files and hashes: 1: XHIqJhQciPfNQPObN0raf7wfmx8.crl (hash: 8XZFkAz7Q2Awcp2yxNLWxinrHDZqK0wzaXpZjp7182Q=) 2: D956F03AAB0211F083CD7E11C4F9AE02.roa (hash: InhzX7iIGzcMe6Kho+3PqVBZEDr5gXLOQBoPpmS3pUQ=) 3: F0FCC9ECABF411F0B9E4F837C4F9AE02.roa (hash: pm0hO1J76gHUpFtZLRftHGLMinnMePQpbTLnXHjj3KU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:43:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D824A, serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Validity Not Before: Dec 5 03:43:34 2025 GMT Not After : Dec 12 03:43:34 2025 GMT Subject: CN=693254e6-24b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:e5:e8:c0:02:ff:54:56:d4:43:1e:94:86:17: 33:a4:68:d1:e0:e5:a8:78:1d:9a:8a:c3:22:38:0f: 76:3f:42:fb:23:6e:76:be:32:37:e3:5f:09:27:a3: 65:e2:f4:5f:79:36:74:8f:ba:55:4c:f7:eb:ed:9b: f6:e1:f1:8d:ae:9f:95:3c:08:af:07:99:3c:83:47: 34:3b:f4:79:6a:12:84:cc:47:f6:81:06:63:bc:48: 4e:eb:80:b3:2b:a7:52:6d:21:a7:d0:95:db:62:44: 3b:88:23:e1:a9:1c:e2:16:38:41:48:2d:80:94:e3: f5:0d:01:c0:31:96:51:03:79:b6:29:08:f5:c0:6a: 69:91:6e:a3:0c:96:5d:8b:a5:9e:35:28:bc:8e:8f: c8:73:fc:e8:fa:0d:55:15:f7:f3:ea:0f:8d:2f:31: fa:8a:b5:9a:c4:f1:f6:05:86:e4:a5:48:6f:c2:47: 64:f9:f1:80:55:a7:c1:ee:22:0e:d5:d1:a6:63:85: e6:1d:4d:08:32:cc:04:d9:42:eb:cd:29:53:b2:2a: 26:f2:0a:46:17:30:4a:36:81:2a:e0:5c:63:63:27: 66:cd:bf:7b:c2:19:c5:73:9e:8a:af:7e:65:8a:0a: 4d:38:91:72:39:88:f1:ce:4c:f0:ef:c1:74:07:56: 68:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:9D:BE:4B:A3:53:47:FE:CC:03:32:9D:D9:C1:B0:37:92:A6:39:AE X509v3 Authority Key Identifier: keyid:5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:d7:56:b2:42:54:e1:89:37:da:8d:96:16:48:3a:4e:c2:7a: fc:6d:3a:66:41:c2:fb:0e:46:ab:e9:e0:92:8a:ad:78:66:b1: 48:e3:3f:14:ab:92:f3:f7:db:30:c5:62:91:f1:b2:18:4a:0f: aa:dd:f7:52:f9:8c:06:82:33:02:67:81:49:bd:fc:98:34:12: 36:19:ce:39:4e:1b:07:92:0e:09:40:86:c1:9f:21:b3:f3:70: b2:f3:47:b1:c1:74:bb:a5:35:1c:aa:ae:cb:58:c5:99:ee:e4: 54:f3:d2:68:e3:06:55:12:b2:70:55:59:ef:1a:02:5d:42:72: 34:37:f5:1f:a1:7f:cb:be:c5:68:45:31:fa:ab:38:e9:f9:38: 8e:e7:d2:3e:8b:6f:44:82:95:fd:86:e4:c0:da:9e:dd:53:c8: 8f:24:53:d1:1b:2c:6a:60:2f:1d:66:86:9d:5d:35:79:6a:e1: 12:36:fa:30:20:7a:eb:80:31:e5:0b:62:9c:8f:58:0c:97:4b: 16:50:37:08:77:7e:29:d1:a2:04:48:3b:ac:c3:92:be:c2:f7: 1b:7b:50:93:10:47:db:35:74:35:7d:08:2e:ec:58:01:d0:c3: cb:36:e6:9c:fe:26:af:60:8f:fd:15:c8:32:a0:8f:0b:34:f5: 37:f6:18:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgyNEExMTAvBgNVBAUTKDVDNzIyQTI2MTQxQzg4RjdDRDQwRjM5QjM3NEFEQTdG QkMxRjlCMUYwHhcNMjUxMjA1MDM0MzM0WhcNMjUxMjEyMDM0MzM0WjAYMRYwFAYD VQQDEw02OTMyNTRlNi0yNGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6eXowAL/VFbUQx6UhhczpGjR4OWoeB2aisMiOA92P0L7I252vjI3418JJ6Nl 4vRfeTZ0j7pVTPfr7Zv24fGNrp+VPAivB5k8g0c0O/R5ahKEzEf2gQZjvEhO64Cz K6dSbSGn0JXbYkQ7iCPhqRziFjhBSC2AlOP1DQHAMZZRA3m2KQj1wGppkW6jDJZd i6WeNSi8jo/Ic/zo+g1VFffz6g+NLzH6irWaxPH2BYbkpUhvwkdk+fGAVafB7iIO 1dGmY4XmHU0IMswE2ULrzSlTsiom8gpGFzBKNoEq4FxjYydmzb97whnFc56Kr35l igpNOJFyOYjxzkzw78F0B1ZoWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCGdvkuj U0f+zAMyndnBsDeSpjmuMB8GA1UdIwQYMBaAFFxyKiYUHIj3zUDzmzdK2n+8H5sf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODI0QS80QURGMzNGQzVC OUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQZk5RUE9iTjByYWY3d2Zt eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hISXFKaFFjaVBmTlFQT2JOMHJhZjd3Zm14OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODI0QS80QURGMzNGQzVCOUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQ Zk5RUE9iTjByYWY3d2ZteDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA511ayQlThiTfajZYWSDpOwnr8bTpmQcL7Dkar6eCSiq14ZrFI4z8U q5Lz99swxWKR8bIYSg+q3fdS+YwGgjMCZ4FJvfyYNBI2Gc45ThsHkg4JQIbBnyGz 83Cy80exwXS7pTUcqq7LWMWZ7uRU89Jo4wZVErJwVVnvGgJdQnI0N/UfoX/LvsVo RTH6qzjp+TiO59I+i29EgpX9huTA2p7dU8iPJFPRGyxqYC8dZoadXTV5auESNvow IHrrgDHlC2Kcj1gMl0sWUDcId34p0aIESDusw5K+wvcbe1CTEEfbNXQ1fQgu7FgB 0MPLNuac/iavYI/9FcgyoI8LNPU39hgY -----END CERTIFICATE-----Generated at Sat Dec 6 22:28:00 2025 by rpki-client