This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft File: XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft (raw, json) Hash identifier: uVB4QZp/Yml6NbF/czElEWZdNUqQPluGTZBPWkb+7WY= Subject key identifier: 6C:58:BC:BA:66:2F:E1:F5:12:B3:52:A4:31:87:98:DB:C5:6B:11:FD Authority key identifier: 5F:30:7E:62:74:AC:39:E5:4E:99:86:6D:AB:B8:5C:2C:9E:FD:16:B1 Certificate issuer: /CN=A91E9F89/serialNumber=5F307E6274AC39E54E99866DABB85C2C9EFD16B1 Certificate serial: 08CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft Manifest number: 08C4 Signing time: Sat 06 Dec 2025 19:36:31 +0000 Manifest this update: Sat 06 Dec 2025 19:36:30 +0000 Manifest next update: Sat 13 Dec 2025 19:36:30 +0000 Files and hashes: 1: XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl (hash: LbTEdDT6Wqi4nbj6Blr/73SMtuIsbuZUzoExoq+KYkM=) 2: 05B67AF8C6A011EAA70D183FC4F9AE02.roa (hash: uyDMO7ckw/0z5jl/cntcgb/65TbIdBVdA1r68qbPTT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:36:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2251 (0x8cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9F89, serialNumber=5F307E6274AC39E54E99866DABB85C2C9EFD16B1 Validity Not Before: Dec 6 19:36:30 2025 GMT Not After : Dec 13 19:36:30 2025 GMT Subject: CN=693485be-36f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:cd:1f:fe:63:82:22:2e:2f:97:79:17:ad:bc: 18:c9:14:de:dd:0a:5e:fe:20:0b:d4:85:81:2c:b0: 19:b0:0e:b7:0a:1f:df:5c:90:c7:c9:c8:84:bf:dc: 22:4d:e4:e1:a5:d0:82:86:c0:19:fc:80:eb:be:34: 68:c4:08:a5:b3:f8:89:b2:57:5e:49:dc:36:76:43: 7e:56:01:61:35:dd:e5:f2:9a:e0:d9:68:b0:30:5f: d7:1a:d3:e2:02:47:86:1b:98:3f:1d:10:56:62:68: 77:af:3d:fb:c2:00:e9:38:5a:28:60:e3:8f:f8:35: 8d:d8:2e:bd:ff:f9:89:52:f0:f8:e6:52:e6:84:15: 91:86:eb:69:f6:9d:6a:e3:92:f6:41:36:d6:2a:09: 26:92:67:fd:20:1c:82:23:62:37:bb:10:ce:94:b9: a2:e8:ca:5c:1a:53:d4:e0:fb:0d:a1:5e:9d:9c:b0: e1:ed:08:ea:0f:0e:21:f6:ef:4d:30:46:98:dd:c0: 12:3d:27:e9:04:1d:d9:80:5a:46:8d:ec:74:58:8e: d4:07:d3:af:e2:61:12:b6:25:1f:7c:0c:d8:ac:f7: d0:b2:54:03:0c:a7:15:e2:5c:52:b5:b1:db:c7:16: 15:78:ef:f3:ab:9a:49:43:0d:76:7c:6d:e7:cd:18: f7:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:58:BC:BA:66:2F:E1:F5:12:B3:52:A4:31:87:98:DB:C5:6B:11:FD X509v3 Authority Key Identifier: keyid:5F:30:7E:62:74:AC:39:E5:4E:99:86:6D:AB:B8:5C:2C:9E:FD:16:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:9f:8c:6f:68:6a:22:15:d1:fd:44:33:4c:55:5a:56:51:cf: 7b:66:ee:d3:35:2e:f1:57:f5:ac:13:d1:3a:0c:91:6a:72:85: 39:9d:86:bd:98:79:91:54:95:90:80:9e:83:5f:88:68:2f:25: a1:91:83:d7:e7:73:28:5c:30:aa:ed:d6:65:39:2f:25:4a:9c: 49:bc:b3:57:ef:b0:2d:50:89:05:99:9a:8c:ef:53:7a:bc:6f: 80:18:c3:1a:58:32:4e:fc:7c:65:ee:cc:69:82:a0:df:34:6c: 14:14:69:d2:c8:1f:1a:d3:a4:ac:c0:7d:2a:5c:76:98:4b:1a: 6d:76:c0:19:f8:bb:7f:fe:1e:7d:fe:20:89:2f:ec:67:8e:d6: fb:94:4e:e4:56:88:f2:cb:73:e5:65:7e:be:95:7f:ff:25:70: 26:68:e0:3c:eb:d6:91:0e:52:9c:1a:0b:82:ad:a5:e3:32:c9: 80:2f:fd:27:05:ce:38:81:1e:44:0e:7f:f6:30:68:c0:bb:08: 5b:1a:02:f6:19:ff:c0:19:27:5c:28:99:bc:7b:e7:53:14:22: af:25:46:57:aa:d4:eb:b2:13:1b:b0:9d:fc:ee:a9:fa:bc:8f: 14:ac:6f:b7:e6:73:3c:3e:f0:cc:00:7b:67:e5:91:40:fa:b9: f2:2d:7f:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlGODkxMTAvBgNVBAUTKDVGMzA3RTYyNzRBQzM5RTU0RTk5ODY2REFCQjg1QzJD OUVGRDE2QjEwHhcNMjUxMjA2MTkzNjMwWhcNMjUxMjEzMTkzNjMwWjAYMRYwFAYD VQQDEw02OTM0ODViZS0zNmYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5M0f/mOCIi4vl3kXrbwYyRTe3Qpe/iAL1IWBLLAZsA63Ch/fXJDHyciEv9wi TeThpdCChsAZ/IDrvjRoxAils/iJsldeSdw2dkN+VgFhNd3l8prg2WiwMF/XGtPi AkeGG5g/HRBWYmh3rz37wgDpOFooYOOP+DWN2C69//mJUvD45lLmhBWRhutp9p1q 45L2QTbWKgkmkmf9IByCI2I3uxDOlLmi6MpcGlPU4PsNoV6dnLDh7QjqDw4h9u9N MEaY3cASPSfpBB3ZgFpGjex0WI7UB9Ov4mEStiUffAzYrPfQslQDDKcV4lxStbHb xxYVeO/zq5pJQw12fG3nzRj3SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGxYvLpm L+H1ErNSpDGHmNvFaxH9MB8GA1UdIwQYMBaAFF8wfmJ0rDnlTpmGbau4XCye/Rax MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUY4OS81QkU3NDg3OEM2 OUUxMUVBOUJGOEEzM0NDNEY5QUUwMi9YekItWW5Tc09lVk9tWVp0cTdoY0xKNzlG ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h6Qi1ZblNzT2VWT21ZWnRxN2hjTEo3OUZyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUY4OS81QkU3NDg3OEM2OUUxMUVBOUJGOEEzM0NDNEY5QUUwMi9YekItWW5Tc09l Vk9tWVp0cTdoY0xKNzlGckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMn4xvaGoiFdH9RDNMVVpWUc97Zu7TNS7xV/WsE9E6DJFqcoU5nYa9 mHmRVJWQgJ6DX4hoLyWhkYPX53MoXDCq7dZlOS8lSpxJvLNX77AtUIkFmZqM71N6 vG+AGMMaWDJO/Hxl7sxpgqDfNGwUFGnSyB8a06SswH0qXHaYSxptdsAZ+Lt//h59 /iCJL+xnjtb7lE7kVojyy3PlZX6+lX//JXAmaOA869aRDlKcGguCraXjMsmAL/0n Bc44gR5EDn/2MGjAuwhbGgL2Gf/AGSdcKJm8e+dTFCKvJUZXqtTrshMbsJ387qn6 vI8UrG+35nM8PvDMAHtn5ZFA+rnyLX/H -----END CERTIFICATE-----Generated at Sun Dec 7 00:04:47 2025 by rpki-client