This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.mft File: XOe82cbkE4HMCvkJkN2gNpOF5lU.mft (raw, json) Hash identifier: wnRmEkrhhpQuh2XpvNlGKyN89svyRd04ZUh+3KYpTIk= Subject key identifier: BC:56:A7:60:B6:01:C6:88:C5:09:02:C1:EF:3F:E7:4D:0A:FE:B0:FF Authority key identifier: 5C:E7:BC:D9:C6:E4:13:81:CC:0A:F9:09:90:DD:A0:36:93:85:E6:55 Certificate issuer: /CN=A91EC3A8/serialNumber=5CE7BCD9C6E41381CC0AF90990DDA0369385E655 Certificate serial: 04D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOe82cbkE4HMCvkJkN2gNpOF5lU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.mft Manifest number: 04C7 Signing time: Thu 04 Dec 2025 22:23:36 +0000 Manifest this update: Thu 04 Dec 2025 22:23:36 +0000 Manifest next update: Thu 11 Dec 2025 22:23:36 +0000 Files and hashes: 1: XOe82cbkE4HMCvkJkN2gNpOF5lU.crl (hash: dxmI+O7rWF6eCpq8iWsQ0c2OB+ugmF+StKQhqLBEABA=) 2: 11330A4663F611ECB344F979C4F9AE02.roa (hash: DUvw8XiBBG3P6wqdRebsbbeOkq3Va0FcHiVzE8M6sk4=) 3: 10A8D0E263F611ECB344F979C4F9AE02.roa (hash: sQNjxMd5LDqe0WyT4xvTJH/Ho0rkly0KR/Vbb2pkt5Q=) 4: C71919900BEE11EDBB84E711C4F9AE02.roa (hash: WK+phDZ3e+WuXd7GGXd/LXbz+tlV9m1b0anrW82wCDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.crl rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOe82cbkE4HMCvkJkN2gNpOF5lU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:23:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1238 (0x4d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC3A8, serialNumber=5CE7BCD9C6E41381CC0AF90990DDA0369385E655 Validity Not Before: Dec 4 22:23:36 2025 GMT Not After : Dec 11 22:23:36 2025 GMT Subject: CN=693209e8-d56c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:18:96:33:96:e0:53:0e:7d:9c:49:c4:66:07: 01:94:03:26:b9:7d:4d:0d:9c:44:9e:bd:c1:fb:32: c6:c8:de:d4:fc:69:1c:e2:50:87:2b:27:a1:6b:c5: 33:33:7b:0d:b8:c6:ba:1d:b1:b1:52:45:5c:05:b2: f3:d0:4f:d2:ec:79:04:64:13:91:0d:06:a6:38:86: e9:bc:a9:70:a9:45:2b:e5:f5:4f:13:fe:4e:0c:29: 31:69:a8:dc:ae:c4:a8:fd:2e:e2:62:23:cf:08:e6: 5d:5f:76:f5:d5:a5:d3:e3:18:68:c9:52:5c:43:59: 16:8d:d3:34:3f:c6:84:d3:9c:63:40:3f:1e:11:9c: a9:bc:66:78:59:9c:15:ca:57:89:fd:18:8d:64:07: 74:2e:48:b6:2c:ec:b4:31:1c:3a:3d:59:c5:7e:e6: 80:85:81:8d:5a:14:ff:b0:b0:12:ee:5a:42:8c:3a: 55:1c:86:30:1a:c9:53:3a:c4:a9:43:7e:ef:76:b0: 30:a6:24:57:05:78:a1:08:1a:26:c5:94:84:9a:18: 74:9c:35:f8:53:d8:b1:82:c6:a1:77:0b:ac:13:c0: 5f:ab:b2:5a:71:4e:2b:9e:d7:a3:c8:2c:97:6f:aa: 28:f5:99:c2:64:93:5f:25:b8:11:4e:f7:6e:0c:fc: 97:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:56:A7:60:B6:01:C6:88:C5:09:02:C1:EF:3F:E7:4D:0A:FE:B0:FF X509v3 Authority Key Identifier: keyid:5C:E7:BC:D9:C6:E4:13:81:CC:0A:F9:09:90:DD:A0:36:93:85:E6:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOe82cbkE4HMCvkJkN2gNpOF5lU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:1e:a1:b7:02:6e:f5:02:4b:87:60:73:18:94:8f:90:4c:0a: fa:4e:71:28:a2:ef:b6:f5:6e:38:a9:db:a6:fb:e7:bc:a2:1b: 4a:d2:e7:5c:dc:cf:35:c7:74:83:a6:c8:84:cc:57:e1:06:92: c2:0c:34:76:ac:8f:ea:48:1d:85:2d:2d:e4:89:dc:78:08:4d: 7d:23:c5:41:72:7b:93:1c:65:95:65:17:af:c1:50:80:42:62: 24:52:59:09:dc:ae:a2:fc:9c:b0:47:0c:cd:45:35:c1:18:41: bd:a1:a7:3d:e4:be:82:19:82:15:b7:d8:c2:6b:37:0a:a4:0f: b5:18:7e:1c:fe:46:00:83:bb:2b:af:e1:f5:10:7d:fc:d3:7f: 45:56:1a:60:b9:0c:ac:b2:9b:04:d3:ab:e8:66:c8:f0:99:c3: 56:6d:6f:d4:ca:30:d2:86:30:4a:05:fc:93:1d:f2:5e:d5:73: 2f:fd:2b:80:87:5f:c7:2e:06:0b:11:97:1a:5f:f6:9f:1d:75: 6e:80:23:7f:cb:e3:f9:21:48:c8:99:c1:97:2e:ff:cf:6d:ed: a3:06:58:c7:c7:20:e8:da:96:87:44:37:a8:1f:be:d4:fd:2f: 25:93:93:24:ac:da:7a:31:11:8a:d3:6a:3c:9c:5a:20:55:b1: af:6b:ee:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMzQTgxMTAvBgNVBAUTKDVDRTdCQ0Q5QzZFNDEzODFDQzBBRjkwOTkwRERBMDM2 OTM4NUU2NTUwHhcNMjUxMjA0MjIyMzM2WhcNMjUxMjExMjIyMzM2WjAYMRYwFAYD VQQDEw02OTMyMDllOC1kNTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9BiWM5bgUw59nEnEZgcBlAMmuX1NDZxEnr3B+zLGyN7U/Gkc4lCHKyeha8Uz M3sNuMa6HbGxUkVcBbLz0E/S7HkEZBORDQamOIbpvKlwqUUr5fVPE/5ODCkxaajc rsSo/S7iYiPPCOZdX3b11aXT4xhoyVJcQ1kWjdM0P8aE05xjQD8eEZypvGZ4WZwV yleJ/RiNZAd0Lki2LOy0MRw6PVnFfuaAhYGNWhT/sLAS7lpCjDpVHIYwGslTOsSp Q37vdrAwpiRXBXihCBomxZSEmhh0nDX4U9ixgsahdwusE8Bfq7JacU4rntejyCyX b6oo9ZnCZJNfJbgRTvduDPyXEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLxWp2C2 AcaIxQkCwe8/500K/rD/MB8GA1UdIwQYMBaAFFznvNnG5BOBzAr5CZDdoDaTheZV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzNBOC8yMUZBMDI3MjRD NkMxMUVDQkJDRkFEMjZDNEY5QUUwMi9YT2U4MmNia0U0SE1DdmtKa04yZ05wT0Y1 bFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hPZTgyY2JrRTRITUN2a0prTjJnTnBPRjVsVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzNBOC8yMUZBMDI3MjRDNkMxMUVDQkJDRkFEMjZDNEY5QUUwMi9YT2U4MmNia0U0 SE1DdmtKa04yZ05wT0Y1bFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbHqG3Am71AkuHYHMYlI+QTAr6TnEoou+29W44qdum++e8ohtK0udc 3M81x3SDpsiEzFfhBpLCDDR2rI/qSB2FLS3kidx4CE19I8VBcnuTHGWVZRevwVCA QmIkUlkJ3K6i/JywRwzNRTXBGEG9oac95L6CGYIVt9jCazcKpA+1GH4c/kYAg7sr r+H1EH38039FVhpguQysspsE06voZsjwmcNWbW/UyjDShjBKBfyTHfJe1XMv/SuA h1/HLgYLEZcaX/afHXVugCN/y+P5IUjImcGXLv/Pbe2jBljHxyDo2paHRDeoH77U /S8lk5MkrNp6MRGK02o8nFogVbGva+4t -----END CERTIFICATE-----Generated at Sat Dec 6 14:21:02 2025 by rpki-client