This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft File: XcAwMzGJiu_bheTZFABriTdr7-E.mft (raw, json) Hash identifier: rva/9lYN4poLbjXUemth3AaNLnQZoXu5r86nEiee+zA= Subject key identifier: 44:8E:36:80:93:02:D1:67:36:60:A1:23:DF:6F:73:F7:5D:C1:F3:17 Authority key identifier: 5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1 Certificate issuer: /CN=A91E7BD4/serialNumber=5DC0303331898AEFDB85E4D914006B89376BEFE1 Certificate serial: 06CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft Manifest number: 06C3 Signing time: Thu 18 Dec 2025 21:36:53 +0000 Manifest this update: Thu 18 Dec 2025 21:36:53 +0000 Manifest next update: Thu 25 Dec 2025 21:36:53 +0000 Files and hashes: 1: XcAwMzGJiu_bheTZFABriTdr7-E.crl (hash: 4c53zN5qmoFnAm53oE4D1R9Zb1swdi+WCn0F/vLUpZE=) 2: 81E3F4ACBBDA11ED8FDB4E45C4F9AE02.roa (hash: 7yUDpuvZHp5QBz3hhy/vTUHq3B8un1JwIKUsswRBXgQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.crl rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 21:36:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1741 (0x6cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BD4, serialNumber=5DC0303331898AEFDB85E4D914006B89376BEFE1 Validity Not Before: Dec 18 21:36:53 2025 GMT Not After : Dec 25 21:36:53 2025 GMT Subject: CN=694473f5-0823 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f6:1e:30:20:1f:f2:b8:7a:f3:33:50:66:02: 41:60:73:4c:17:31:13:29:ee:64:2b:1c:e9:aa:0f: b2:b4:14:c6:ee:29:4c:92:5d:4c:a3:b8:b9:49:6a: 60:c1:bd:3e:43:11:db:7f:46:89:f4:67:a9:0d:6f: 2d:9b:36:32:1d:0a:de:71:cc:b6:a9:6e:54:e9:9f: 95:c7:07:2f:91:85:e9:5e:67:8d:2c:be:ca:c4:c4: ca:e1:5a:b8:84:66:14:40:30:f1:ba:3b:a1:4c:2e: 46:43:8e:98:6d:ff:49:32:48:95:43:e9:ff:2b:b3: dc:00:19:f8:2a:1d:20:ed:38:6a:a6:20:63:f0:79: fe:7e:b0:60:ab:a0:28:9a:6c:2a:5b:04:66:1d:19: 0a:ce:65:49:c7:0c:c1:f6:83:78:ac:ca:82:0f:58: 48:b6:5e:79:1f:e6:9e:64:0c:40:1f:b2:07:9a:5a: c0:83:7d:36:e4:1a:8d:07:e9:79:c6:f5:73:d5:52: bc:0b:75:35:75:ae:e4:f0:89:87:be:b9:fe:e1:fc: d7:2c:d6:63:cb:54:ba:2f:b3:9b:2f:54:d9:fc:1d: 57:9e:3b:04:24:02:7a:9c:85:32:4a:53:b4:6f:45: 85:24:07:2c:3b:b9:fc:03:85:ab:c7:ee:ac:6c:92: 4b:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:8E:36:80:93:02:D1:67:36:60:A1:23:DF:6F:73:F7:5D:C1:F3:17 X509v3 Authority Key Identifier: keyid:5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:c6:31:70:81:77:06:ff:34:f7:aa:25:f5:0b:9f:22:82:35: f8:b6:59:21:15:4a:d1:6d:70:c5:8f:ef:aa:4c:a3:6f:aa:c6: 70:80:58:09:66:5f:a5:f5:a6:15:80:7f:d1:94:df:5e:a3:69: 52:69:73:66:0c:21:36:50:bb:d6:f2:98:9c:63:e7:f2:56:05: 0d:64:78:d6:41:af:be:14:d0:1f:37:04:7f:b3:f1:54:a2:53: 2d:0b:7e:ac:33:dc:14:da:38:35:8e:37:8c:3b:63:f9:32:a8: 45:da:27:df:7f:76:c8:4a:da:c5:bb:bf:d9:41:d5:92:ca:f4: 1b:c9:ff:76:c3:af:dd:d5:5b:67:03:15:83:b7:36:2e:b7:0a: 3b:94:eb:c6:9d:9a:74:22:c9:8c:88:bd:14:57:ea:fc:ea:42: b9:8a:6d:aa:2f:fc:c4:a0:90:57:a0:42:2f:51:ce:26:0e:58: 28:1e:19:a0:cc:6e:a6:cb:51:32:b1:c6:ec:72:07:18:fc:5f: 90:f4:92:bd:e0:3c:24:27:ae:52:06:f5:88:06:02:db:5e:53: 6d:29:69:83:87:d8:8d:e3:37:e6:0c:6b:ee:cf:1a:ee:e3:bb: 7b:c9:39:bd:9b:c4:af:20:e8:d3:f6:ce:59:39:d5:8e:6c:af: f8:8d:35:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCRDQxMTAvBgNVBAUTKDVEQzAzMDMzMzE4OThBRUZEQjg1RTREOTE0MDA2Qjg5 Mzc2QkVGRTEwHhcNMjUxMjE4MjEzNjUzWhcNMjUxMjI1MjEzNjUzWjAYMRYwFAYD VQQDDA02OTQ0NzNmNS0wODIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0/YeMCAf8rh68zNQZgJBYHNMFzETKe5kKxzpqg+ytBTG7ilMkl1Mo7i5SWpg wb0+QxHbf0aJ9GepDW8tmzYyHQreccy2qW5U6Z+VxwcvkYXpXmeNLL7KxMTK4Vq4 hGYUQDDxujuhTC5GQ46Ybf9JMkiVQ+n/K7PcABn4Kh0g7ThqpiBj8Hn+frBgq6Ao mmwqWwRmHRkKzmVJxwzB9oN4rMqCD1hItl55H+aeZAxAH7IHmlrAg3025BqNB+l5 xvVz1VK8C3U1da7k8ImHvrn+4fzXLNZjy1S6L7ObL1TZ/B1XnjsEJAJ6nIUySlO0 b0WFJAcsO7n8A4Wrx+6sbJJLWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFESONoCT AtFnNmChI99vc/ddwfMXMB8GA1UdIwQYMBaAFF3AMDMxiYrv24Xk2RQAa4k3a+/h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JENC80RTg3QTQ2QTg2 QjExMUVCQjhCRTIxN0NDNEY5QUUwMi9YY0F3TXpHSml1X2JoZVRaRkFCcmlUZHI3 LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjQXdNekdKaXVfYmhlVFpGQUJyaVRkcjctRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JENC80RTg3QTQ2QTg2QjExMUVCQjhCRTIxN0NDNEY5QUUwMi9YY0F3TXpHSml1 X2JoZVRaRkFCcmlUZHI3LUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBExjFwgXcG/zT3qiX1C58igjX4tlkhFUrRbXDFj++qTKNvqsZwgFgJ Zl+l9aYVgH/RlN9eo2lSaXNmDCE2ULvW8picY+fyVgUNZHjWQa++FNAfNwR/s/FU olMtC36sM9wU2jg1jjeMO2P5MqhF2ifff3bIStrFu7/ZQdWSyvQbyf92w6/d1Vtn AxWDtzYutwo7lOvGnZp0IsmMiL0UV+r86kK5im2qL/zEoJBXoEIvUc4mDlgoHhmg zG6my1EyscbscgcY/F+Q9JK94DwkJ65SBvWIBgLbXlNtKWmDh9iN4zfmDGvuzxru 47t7yTm9m8SvIOjT9s5ZOdWObK/4jTWm -----END CERTIFICATE-----Generated at Fri Dec 19 06:26:10 2025 by rpki-client