This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft File: xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft (raw, json) Hash identifier: i6XzEjWcKcTegdYvd6Vp1L24/xSOs9aDD4/mjsRGG9E= Subject key identifier: 71:0F:C9:FE:EA:6E:51:D4:AF:80:46:C0:38:6C:EE:4F:F6:29:4D:58 Authority key identifier: C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED Certificate issuer: /CN=A91EBFAE/serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Certificate serial: 2569 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft Manifest number: 2569 Signing time: Sat 06 Dec 2025 14:29:44 +0000 Manifest this update: Sat 06 Dec 2025 14:29:43 +0000 Manifest next update: Sat 13 Dec 2025 14:29:43 +0000 Files and hashes: 1: xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl (hash: TQ7JLmBfP0kcHOYnJGczhE4oZp52j5ji/9wlzWxsF4o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:29:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9577 (0x2569) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFAE, serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Validity Not Before: Dec 6 14:29:43 2025 GMT Not After : Dec 13 14:29:43 2025 GMT Subject: CN=69343dd8-f116 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:30:0b:88:a7:51:24:7b:6a:40:5e:7b:a8:be: 5f:9f:38:41:93:31:cf:82:99:54:3f:7a:2e:91:6c: e6:a5:34:de:4e:57:84:96:9d:34:f7:a4:51:1c:54: ad:6d:93:2f:c3:b9:df:a7:ce:b6:43:36:2a:20:e8: 19:b3:b2:54:f2:25:64:66:f7:bd:53:96:05:0d:0c: 17:11:97:e9:d5:7d:52:a3:2b:e5:01:7f:11:3b:8f: 21:3d:5b:3f:8f:ba:32:a3:08:f2:2e:fe:54:2b:12: b7:1d:df:c9:20:5c:0b:72:21:b8:be:60:7b:61:eb: c9:1d:47:a0:fe:10:9b:43:5c:9f:fa:0e:ae:0f:f9: d0:8e:b0:39:4d:cf:90:e0:41:28:b8:7d:6a:c5:39: ab:67:4c:b4:de:a0:d5:43:fd:90:e1:68:78:16:c8: 40:30:35:67:f4:4e:bc:b6:39:9d:6b:8b:51:80:c7: a4:1f:7b:d8:ea:13:7f:8e:7d:9f:ba:f4:f5:c4:75: 8a:b5:d5:f8:83:ec:28:75:07:2c:96:94:4e:ab:97: 95:64:da:bf:b8:e0:34:97:90:d6:5e:6e:12:c2:86: de:b5:be:bc:1f:d8:9f:81:40:c8:e9:14:b0:ca:70: 14:d7:97:06:c3:6d:88:91:ad:c3:bc:6b:54:07:52: d8:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:0F:C9:FE:EA:6E:51:D4:AF:80:46:C0:38:6C:EE:4F:F6:29:4D:58 X509v3 Authority Key Identifier: keyid:C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:ed:67:af:ba:99:44:10:4c:05:d1:c3:99:02:56:84:49:de: d4:12:bc:cd:89:3a:e0:3e:86:75:ee:c6:a9:80:33:30:8e:88: a3:0f:3c:d5:33:93:e3:28:17:d5:51:c9:54:75:72:01:29:71: b1:5d:8d:35:82:cd:2f:d0:f7:3d:ea:10:e0:f7:08:96:1d:bb: 4d:ae:5c:1a:f1:28:3f:5d:c1:d8:c9:96:4f:12:e5:52:04:ca: 0a:e9:56:c0:8d:68:b5:ff:18:b8:ab:29:ca:00:f1:d0:e4:28: 80:30:7b:87:9f:16:59:82:41:60:29:99:aa:9c:67:e5:da:46: 1c:a4:ba:51:00:43:ac:42:98:07:83:0e:b0:e5:d2:cb:5e:b3: d4:37:eb:67:63:5c:f4:b4:da:6d:de:20:77:ee:82:ee:58:70: 41:35:95:ef:a9:18:d7:88:7d:54:03:93:09:03:83:2b:d9:fb: de:19:32:dc:58:a0:da:c3:9e:fa:49:1f:59:9c:62:c9:d8:94: 37:25:3a:46:24:91:f0:a9:4c:c4:6e:cb:5d:98:eb:95:67:e1: b8:dd:2c:5b:e2:e4:f3:4b:79:4b:65:8a:fe:1f:e2:ed:9d:40: e2:36:3b:04:01:25:b8:98:25:de:be:a9:41:bd:8e:28:2e:7d: ab:04:a8:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQUUxMTAvBgNVBAUTKEM2NTNFRjc3QjE5RDEwOENGNUM1OUFFMTgwMUYwMjAw M0FCNTVFRUQwHhcNMjUxMjA2MTQyOTQzWhcNMjUxMjEzMTQyOTQzWjAYMRYwFAYD VQQDEw02OTM0M2RkOC1mMTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtTALiKdRJHtqQF57qL5fnzhBkzHPgplUP3oukWzmpTTeTleElp0096RRHFSt bZMvw7nfp862QzYqIOgZs7JU8iVkZve9U5YFDQwXEZfp1X1SoyvlAX8RO48hPVs/ j7oyowjyLv5UKxK3Hd/JIFwLciG4vmB7YevJHUeg/hCbQ1yf+g6uD/nQjrA5Tc+Q 4EEouH1qxTmrZ0y03qDVQ/2Q4Wh4FshAMDVn9E68tjmda4tRgMekH3vY6hN/jn2f uvT1xHWKtdX4g+wodQcslpROq5eVZNq/uOA0l5DWXm4Swobetb68H9ifgUDI6RSw ynAU15cGw22Ika3DvGtUB1LYKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHEPyf7q blHUr4BGwDhs7k/2KU1YMB8GA1UdIwQYMBaAFMZT73exnRCM9cWa4YAfAgA6tV7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZBRS9FRDMyNDQwQTI5 MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJejF4WnJoZ0I4Q0FEcTFY dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hsUHZkN0dkRUl6MXhacmhnQjhDQURxMVh1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZBRS9FRDMyNDQwQTI5MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJ ejF4WnJoZ0I4Q0FEcTFYdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCK7WevuplEEEwF0cOZAlaESd7UErzNiTrgPoZ17sapgDMwjoijDzzV M5PjKBfVUclUdXIBKXGxXY01gs0v0Pc96hDg9wiWHbtNrlwa8Sg/XcHYyZZPEuVS BMoK6VbAjWi1/xi4qynKAPHQ5CiAMHuHnxZZgkFgKZmqnGfl2kYcpLpRAEOsQpgH gw6w5dLLXrPUN+tnY1z0tNpt3iB37oLuWHBBNZXvqRjXiH1UA5MJA4Mr2fveGTLc WKDaw576SR9ZnGLJ2JQ3JTpGJJHwqUzEbstdmOuVZ+G43Sxb4uTzS3lLZYr+H+Lt nUDiNjsEASW4mCXevqlBvY4oLn2rBKiO -----END CERTIFICATE-----Generated at Sat Dec 6 17:46:53 2025 by rpki-client