This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft File: X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft (raw, json) Hash identifier: x9TNRhUzIoHgSvB0GIye/KwMQv35cSNO4Kf3m8Squ5Y= Subject key identifier: AB:CF:C7:1E:66:D4:1E:98:9C:0F:1E:B9:7C:7A:47:42:C8:34:B5:D5 Authority key identifier: 5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D Certificate issuer: /CN=A91DF856/serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Certificate serial: 7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft Manifest number: 78 Signing time: Fri 05 Dec 2025 04:43:59 +0000 Manifest this update: Fri 05 Dec 2025 04:43:59 +0000 Manifest next update: Fri 12 Dec 2025 04:43:58 +0000 Files and hashes: 1: X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl (hash: I7Hs7A7CH0XGyPD1dFfuhjjIQRDpflPOkUqSaaJOhqA=) 2: D522C16CBAEB11F09547BA51C4F9AE02.roa (hash: VPNk3Z2PRH6O6dcJtXC2yyJNWSfjiCAA+D4i9ZD7bxQ=) 3: B245BA601C4311F08254DE40C4F9AE02.roa (hash: cR1hA1Kx4PPiBeW49KPuxZm4E1WoNdgwAMLfYPZP980=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:43:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF856, serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Validity Not Before: Dec 5 04:43:59 2025 GMT Not After : Dec 12 04:43:58 2025 GMT Subject: CN=6932630f-d79b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d5:3b:21:d4:2d:d3:cc:9f:f0:02:fa:b2:f3: 2d:29:26:89:d5:f0:28:ff:3c:bf:7e:05:0a:2b:63: 4f:0b:e3:48:38:92:02:ed:63:02:87:af:a7:a2:3a: 35:61:7b:f1:15:02:55:ee:30:4f:17:1f:b6:a3:3d: ca:28:a9:91:f6:9a:9a:2f:00:f5:87:1b:fc:d8:3d: 89:06:a3:38:fd:e6:56:6b:84:82:41:c5:fd:62:29: 3c:ff:b1:be:b5:fc:2f:fb:03:69:03:0e:08:c4:58: 9d:96:6f:b1:62:00:00:44:17:7c:49:2a:cf:13:fa: a7:64:63:5d:79:15:96:9f:72:be:e9:68:1c:10:df: a0:1d:ab:03:70:df:6a:07:0b:e0:25:32:e2:d8:b9: ea:69:f6:c7:82:87:f4:64:29:81:fc:50:dc:61:27: 05:fa:67:e6:4d:de:cf:bd:a1:10:11:ca:c1:de:eb: 90:59:ce:9c:af:6f:53:ed:0a:8b:2f:3a:e1:d5:f1: fc:f4:24:35:a0:f0:fe:38:88:5e:8f:fb:ad:74:20: 3e:0b:68:72:81:7e:17:e1:ec:fa:01:9b:8f:fc:59: b7:ff:f0:7e:60:23:a6:a2:a7:1e:2a:29:a4:da:ac: db:1a:64:34:c4:f8:ef:7a:99:4d:70:96:d0:b3:b6: a7:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:CF:C7:1E:66:D4:1E:98:9C:0F:1E:B9:7C:7A:47:42:C8:34:B5:D5 X509v3 Authority Key Identifier: keyid:5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:49:9a:17:64:bb:c6:4a:a6:f3:87:d3:6d:a1:be:ac:1f:a4: d5:56:32:4a:ee:c7:23:59:ae:ca:a7:68:9b:ee:63:db:02:06: 3d:28:83:67:58:a0:3d:81:9f:a1:17:aa:80:ff:f8:74:f6:d6: aa:a4:d8:e2:a9:ac:1e:76:d6:bb:98:32:17:61:d0:82:bb:96: 02:71:82:6d:af:f8:2d:f7:e0:20:29:2b:10:74:2c:09:ff:66: 97:fe:15:11:73:3d:5a:61:29:99:c1:5a:01:6e:4d:ff:eb:e8: b7:29:e7:b0:eb:d7:f4:a7:19:35:46:1a:e9:ca:cd:e0:51:1d: ce:de:67:43:44:d3:7e:21:8f:8c:c1:32:90:b3:aa:27:24:a0: 30:f6:e6:77:cf:9e:f6:e9:40:4e:ed:9d:79:af:f0:df:94:58: e6:d8:47:ce:9d:69:43:0f:0a:68:60:c7:16:d2:9f:3f:cc:e0: 80:bd:e3:5f:39:0e:3c:4f:4d:49:dd:7e:88:ca:f2:3c:6f:2b: dd:cc:a0:de:18:d3:08:8b:db:78:c2:ac:26:c9:7b:d8:11:11: 48:31:9c:87:ed:ab:10:59:ee:62:1d:29:6f:39:fa:ed:9b:58: 79:63:96:95:bb:be:af:f8:9c:e7:ca:c2:e6:0a:02:62:fe:55: 25:d7:c7:84 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE Rjg1NjExMC8GA1UEBRMoNUY2OTkxODZBMkVCQ0Q0NUIxRkY2QTBBNEFGNjA2MDZG M0IzRDA4RDAeFw0yNTEyMDUwNDQzNTlaFw0yNTEyMTIwNDQzNThaMBgxFjAUBgNV BAMTDTY5MzI2MzBmLWQ3OWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCx1Tsh1C3TzJ/wAvqy8y0pJonV8Cj/PL9+BQorY08L40g4kgLtYwKHr6eiOjVh e/EVAlXuME8XH7ajPcooqZH2mpovAPWHG/zYPYkGozj95lZrhIJBxf1iKTz/sb61 /C/7A2kDDgjEWJ2Wb7FiAABEF3xJKs8T+qdkY115FZafcr7paBwQ36AdqwNw32oH C+AlMuLYuepp9seCh/RkKYH8UNxhJwX6Z+ZN3s+9oRARysHe65BZzpyvb1PtCosv OuHV8fz0JDWg8P44iF6P+610ID4LaHKBfhfh7PoBm4/8Wbf/8H5gI6aipx4qKaTa rNsaZDTE+O96mU1wltCztqelAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUq8/HHmbU HpicDx65fHpHQsg0tdUwHwYDVR0jBBgwFoAUX2mRhqLrzUWx/2oKSvYGBvOz0I0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGODU2L0VGRjJBMEEwMUM0 MTExRjBBOTgyMUYzRUM0RjlBRTAyL1gybVJocUxyelVXeF8yb0tTdllHQnZPejBJ MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWDJtUmhxTHJ6VVd4XzJvS1N2WUdCdk96MEkwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURG ODU2L0VGRjJBMEEwMUM0MTExRjBBOTgyMUYzRUM0RjlBRTAyL1gybVJocUxyelVX eF8yb0tTdllHQnZPejBJMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEJJmhdku8ZKpvOH022hvqwfpNVWMkruxyNZrsqnaJvuY9sCBj0og2dY oD2Bn6EXqoD/+HT21qqk2OKprB521ruYMhdh0IK7lgJxgm2v+C334CApKxB0LAn/ Zpf+FRFzPVphKZnBWgFuTf/r6Lcp57Dr1/SnGTVGGunKzeBRHc7eZ0NE034hj4zB MpCzqickoDD25nfPnvbpQE7tnXmv8N+UWObYR86daUMPCmhgxxbSnz/M4IC94185 DjxPTUndfojK8jxvK93MoN4Y0wiL23jCrCbJe9gREUgxnIftqxBZ7mIdKW85+u2b WHljlpW7vq/4nOfKwuYKAmL+VSXXx4Q= -----END CERTIFICATE-----Generated at Sun Dec 7 00:39:28 2025 by rpki-client