This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft File: XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft (raw, json) Hash identifier: SUxElcMh9rkV90kxsIua6/ij4ENYOiOca5iTs8nezYc= Subject key identifier: 5F:05:92:91:F0:D2:F3:54:A5:C9:41:E7:A3:0F:2B:87:DA:BB:7E:DE Authority key identifier: 5D:CA:45:28:B9:E4:0C:88:E4:67:A4:3F:DC:12:B7:8F:2B:35:45:E3 Certificate issuer: /CN=A91E4BD2/serialNumber=5DCA4528B9E40C88E467A43FDC12B78F2B3545E3 Certificate serial: 095D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft Manifest number: 0956 Signing time: Sat 06 Dec 2025 19:19:41 +0000 Manifest this update: Sat 06 Dec 2025 19:19:40 +0000 Manifest next update: Sat 13 Dec 2025 19:19:40 +0000 Files and hashes: 1: XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl (hash: V0fG1/zKlZSV/PKHPOpHMWnattkB/TQqPcKi3TMH2zY=) 2: A862F866AA3111EA9E08C324C4F9AE02.roa (hash: OW41bUAPIGMrqZxgUYQ1U1pF1P2hht2Fk6aRcB2b9ic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:19:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2397 (0x95d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4BD2, serialNumber=5DCA4528B9E40C88E467A43FDC12B78F2B3545E3 Validity Not Before: Dec 6 19:19:40 2025 GMT Not After : Dec 13 19:19:40 2025 GMT Subject: CN=693481cd-7ce3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:15:5e:8b:0c:3d:05:21:c9:fd:e9:d6:fd:88: 74:09:69:21:08:55:7e:8a:a2:3d:ae:f8:76:1e:fb: 45:c7:d5:6a:67:44:df:84:ce:ec:5f:23:e1:8d:18: ba:2a:da:11:1a:6e:9b:af:55:4f:5d:1e:a1:7b:31: cb:7c:19:d9:b3:c5:1e:15:49:e7:f3:e4:9f:4b:9d: c6:f3:5b:ba:02:1a:57:01:4c:db:7e:d6:21:f3:9e: 1b:dd:a6:6c:c6:40:3a:a5:26:0b:ab:7e:29:05:19: 8c:3a:f1:87:b7:9a:bb:c5:86:57:cd:27:d9:16:01: 03:80:49:b0:6a:68:97:a6:fc:f4:4c:15:ff:97:04: 1b:57:4e:3c:6f:d5:0b:94:09:d3:38:b4:ab:a4:3c: ad:f4:b0:1e:e1:2e:54:8d:b6:e7:6f:82:ef:74:55: 5d:f1:ad:d4:61:95:43:bf:e6:74:73:44:2d:0f:65: 7f:80:28:9c:76:c5:6a:41:46:12:ac:e7:ca:24:d8: 08:26:5f:2c:47:cd:63:48:9a:dd:e6:62:3b:ab:88: c5:01:b9:75:18:8c:d5:af:e9:fa:ae:15:4e:43:26: 14:fc:c4:27:ef:eb:1b:e5:68:32:72:46:10:b5:8c: 2f:00:f6:03:62:f0:e3:e5:43:2d:19:ee:1a:50:b9: f1:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:05:92:91:F0:D2:F3:54:A5:C9:41:E7:A3:0F:2B:87:DA:BB:7E:DE X509v3 Authority Key Identifier: keyid:5D:CA:45:28:B9:E4:0C:88:E4:67:A4:3F:DC:12:B7:8F:2B:35:45:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:43:08:77:54:ab:8e:2d:05:8a:24:ee:09:83:de:f2:4d:f4: 9a:ce:1a:c8:e1:2e:38:d1:60:9a:d4:70:ec:eb:75:57:7e:cd: 25:b9:fc:8d:ce:63:05:95:24:3d:00:fd:3a:de:92:03:20:e8: 60:11:e3:65:17:e9:02:ca:31:34:68:c7:e2:6a:23:a4:69:5f: f8:22:b2:61:28:0b:e8:bb:5e:2f:d3:4a:b7:b1:43:f6:6b:d4: 31:87:e5:aa:c2:24:03:cd:ac:08:cf:1e:0e:98:39:01:b6:02: 87:ee:6d:81:68:ce:7e:a8:7a:41:56:2b:17:11:da:ab:9a:fb: d7:bf:c6:fc:d5:6c:45:55:c2:98:e1:b4:53:e8:39:bb:c9:ef: 37:72:18:31:33:c1:68:38:b9:35:ba:81:ec:24:fe:88:a4:41: 66:c5:36:a7:8e:a3:01:bc:83:10:c6:3e:1f:92:b6:e3:b7:94: b4:ff:e5:05:51:42:f1:86:b2:42:1a:44:95:49:0f:50:f6:bc: d4:a9:68:88:8b:b4:f6:33:17:5d:c8:e9:e8:e2:c1:90:80:7f: 2e:44:f7:77:e2:72:e8:5c:16:18:f9:3f:6f:cb:5b:ec:9e:ba: d0:e5:e2:e3:69:8e:e6:01:3a:03:2c:e1:cd:d5:1a:f9:d6:f0: 2d:2a:a5:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRCRDIxMTAvBgNVBAUTKDVEQ0E0NTI4QjlFNDBDODhFNDY3QTQzRkRDMTJCNzhG MkIzNTQ1RTMwHhcNMjUxMjA2MTkxOTQwWhcNMjUxMjEzMTkxOTQwWjAYMRYwFAYD VQQDEw02OTM0ODFjZC03Y2UzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApxVeiww9BSHJ/enW/Yh0CWkhCFV+iqI9rvh2HvtFx9VqZ0TfhM7sXyPhjRi6 KtoRGm6br1VPXR6hezHLfBnZs8UeFUnn8+SfS53G81u6AhpXAUzbftYh854b3aZs xkA6pSYLq34pBRmMOvGHt5q7xYZXzSfZFgEDgEmwamiXpvz0TBX/lwQbV048b9UL lAnTOLSrpDyt9LAe4S5Ujbbnb4LvdFVd8a3UYZVDv+Z0c0QtD2V/gCicdsVqQUYS rOfKJNgIJl8sR81jSJrd5mI7q4jFAbl1GIzVr+n6rhVOQyYU/MQn7+sb5WgyckYQ tYwvAPYDYvDj5UMtGe4aULnxZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF8FkpHw 0vNUpclB56MPK4fau37eMB8GA1UdIwQYMBaAFF3KRSi55AyI5GekP9wSt48rNUXj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEJEMi9GNDBCMTE2QUFB MkYxMUVBOUMyOTU5MUVDNEY5QUUwMi9YY3BGS0xua0RJamtaNlFfM0JLM2p5czFS ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjcEZLTG5rRElqa1o2UV8zQkszanlzMVJlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEJEMi9GNDBCMTE2QUFBMkYxMUVBOUMyOTU5MUVDNEY5QUUwMi9YY3BGS0xua0RJ amtaNlFfM0JLM2p5czFSZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqQwh3VKuOLQWKJO4Jg97yTfSazhrI4S440WCa1HDs63VXfs0lufyN zmMFlSQ9AP063pIDIOhgEeNlF+kCyjE0aMfiaiOkaV/4IrJhKAvou14v00q3sUP2 a9Qxh+WqwiQDzawIzx4OmDkBtgKH7m2BaM5+qHpBVisXEdqrmvvXv8b81WxFVcKY 4bRT6Dm7ye83chgxM8FoOLk1uoHsJP6IpEFmxTanjqMBvIMQxj4fkrbjt5S0/+UF UULxhrJCGkSVSQ9Q9rzUqWiIi7T2MxddyOno4sGQgH8uRPd34nLoXBYY+T9vy1vs nrrQ5eLjaY7mAToDLOHN1Rr51vAtKqVG -----END CERTIFICATE-----Generated at Sun Dec 7 02:44:23 2025 by rpki-client