This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft File: XDlbosoKv2WIhyaHTHgktpt4mZU.mft (raw, json) Hash identifier: AgK6l19rniBi505N13DT+AycFTl1pFTfoYOBotGBT1U= Subject key identifier: A5:20:5A:03:3A:BA:60:D9:10:9B:DE:6C:22:EF:0A:3B:E0:61:0F:63 Authority key identifier: 5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 Certificate issuer: /CN=A91E66E5/serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Certificate serial: 0EA7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft Manifest number: 0E9A Signing time: Thu 04 Dec 2025 17:15:33 +0000 Manifest this update: Thu 04 Dec 2025 17:15:32 +0000 Manifest next update: Thu 11 Dec 2025 17:15:32 +0000 Files and hashes: 1: XDlbosoKv2WIhyaHTHgktpt4mZU.crl (hash: ojSUU91qVSTZAm3n5eWsd5Aabq1ZH2LX5xcP/qRvEZE=) 2: AECDA1B0448F11EDACC30815C4F9AE02.roa (hash: xirIMjuaHIPZj6jpdJVKaFKfHlsVW3gI4qvEhU2Je88=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 17:15:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3751 (0xea7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E66E5, serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Validity Not Before: Dec 4 17:15:32 2025 GMT Not After : Dec 11 17:15:32 2025 GMT Subject: CN=6931c1b4-7b76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c0:13:87:f9:7c:41:65:94:1c:9f:13:7e:fb: 12:64:3d:b9:39:fe:2c:7f:1c:d1:4d:15:81:f1:39: 75:ad:2f:41:6d:40:cf:f8:a2:ee:4e:41:d7:a7:1c: 2b:fe:0e:0d:bc:83:0b:57:e1:22:0a:0c:9e:2f:41: 1d:e9:b8:36:52:83:2c:f3:1a:27:d7:a0:c3:dd:4f: 04:23:36:91:f3:5b:af:8d:05:ea:f8:06:ec:09:f8: 6b:ca:33:dd:f3:7f:41:f3:a3:42:d0:da:23:27:8a: 54:91:81:a5:1d:87:51:09:93:5b:15:8f:dc:63:04: 4a:cb:ee:36:f1:a9:20:fd:89:72:4a:cc:2d:af:d0: 36:08:23:02:eb:06:9e:ff:f6:50:d9:4c:66:46:6a: 54:35:26:08:57:4e:7e:5b:35:5b:94:16:01:9e:db: a5:71:66:9f:bf:0b:26:cb:a1:0a:b1:92:41:b8:fb: bb:12:2d:09:95:1a:55:d2:ff:3b:cc:d1:31:b0:37: a7:ff:31:84:46:88:27:5d:90:69:ad:dc:9e:a8:9d: b9:8d:df:70:a9:ac:fe:89:4a:86:47:64:19:f5:06: 92:2e:62:57:2d:09:2f:e6:c0:f2:ce:a0:23:03:85: da:da:37:4b:d0:74:67:a6:e5:46:ca:cb:cd:31:ae: 38:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:20:5A:03:3A:BA:60:D9:10:9B:DE:6C:22:EF:0A:3B:E0:61:0F:63 X509v3 Authority Key Identifier: keyid:5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:dd:0a:a8:c3:18:fc:b6:85:21:c6:f6:8e:a6:04:1c:80:5f: 51:a0:9e:96:5c:77:c5:ce:c8:aa:65:39:31:c8:00:95:c1:3c: 90:ec:4a:65:ee:14:c8:79:f6:f5:eb:ae:30:1b:2d:c8:e7:a1: e9:6d:60:f2:8e:13:83:a4:fd:ca:c2:45:f4:cc:68:12:97:b7: 1b:47:53:9b:0f:e6:c8:f4:91:bd:6b:d1:f8:ba:02:93:0c:a9: d2:84:f2:31:4c:1e:2a:bf:cd:50:26:77:1f:ab:54:71:30:23: 09:c2:19:3a:fc:6f:89:43:bd:ee:6a:51:72:44:db:41:61:ed: 58:d9:ee:55:89:39:af:f1:c6:21:f5:63:44:fc:4a:9f:0c:f5: ad:dd:c3:82:a2:4b:fe:c3:43:1f:e5:fd:d5:f1:60:75:d4:87: 9c:52:35:61:06:ba:e0:86:3e:5e:73:a2:1b:8b:b0:95:0a:76: 4d:d2:df:ca:da:27:e4:9b:ae:e0:25:f0:2f:d0:47:fb:80:e6: 03:0f:5d:b4:8b:5e:a4:61:70:6c:6c:07:fe:73:75:6f:78:20: ec:72:89:56:54:62:ba:ec:90:f5:95:84:bf:07:f7:fd:85:8c: 7b:11:df:aa:13:5f:73:27:a7:95:01:84:74:90:a1:d5:1b:e5: 81:e9:54:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY2RTUxMTAvBgNVBAUTKDVDMzk1QkEyQ0EwQUJGNjU4ODg3MjY4NzRDNzgyNEI2 OUI3ODk5OTUwHhcNMjUxMjA0MTcxNTMyWhcNMjUxMjExMTcxNTMyWjAYMRYwFAYD VQQDEw02OTMxYzFiNC03Yjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsMATh/l8QWWUHJ8TfvsSZD25Of4sfxzRTRWB8Tl1rS9BbUDP+KLuTkHXpxwr /g4NvIMLV+EiCgyeL0Ed6bg2UoMs8xon16DD3U8EIzaR81uvjQXq+AbsCfhryjPd 839B86NC0NojJ4pUkYGlHYdRCZNbFY/cYwRKy+428akg/YlySswtr9A2CCMC6wae //ZQ2UxmRmpUNSYIV05+WzVblBYBntulcWafvwsmy6EKsZJBuPu7Ei0JlRpV0v87 zNExsDen/zGERognXZBprdyeqJ25jd9wqaz+iUqGR2QZ9QaSLmJXLQkv5sDyzqAj A4Xa2jdL0HRnpuVGysvNMa44TwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKUgWgM6 umDZEJvebCLvCjvgYQ9jMB8GA1UdIwQYMBaAFFw5W6LKCr9liIcmh0x4JLabeJmV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjZFNS81NjQzMDU4NkEy NzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3YyV0loeWFIVEhna3RwdDRt WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEbGJvc29LdjJXSWh5YUhUSGdrdHB0NG1aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjZFNS81NjQzMDU4NkEyNzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3Yy V0loeWFIVEhna3RwdDRtWlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAX3Qqowxj8toUhxvaOpgQcgF9RoJ6WXHfFzsiqZTkxyACVwTyQ7Epl 7hTIefb1664wGy3I56HpbWDyjhODpP3KwkX0zGgSl7cbR1ObD+bI9JG9a9H4ugKT DKnShPIxTB4qv81QJncfq1RxMCMJwhk6/G+JQ73ualFyRNtBYe1Y2e5ViTmv8cYh 9WNE/EqfDPWt3cOCokv+w0Mf5f3V8WB11IecUjVhBrrghj5ec6Ibi7CVCnZN0t/K 2ifkm67gJfAv0Ef7gOYDD120i16kYXBsbAf+c3VveCDscolWVGK67JD1lYS/B/f9 hYx7Ed+qE19zJ6eVAYR0kKHVG+WB6VTv -----END CERTIFICATE-----Generated at Sat Dec 6 18:04:33 2025 by rpki-client