This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft File: XUXapVj_ZfZmNblniAm4rPBAc9I.mft (raw, json) Hash identifier: ppyfQ3qB2WH7o2odZrsMpJ0diIVYd8Pv1WuqNRH1aVI= Subject key identifier: 8C:A5:7F:42:83:CE:3A:5F:AF:81:09:A4:3A:B8:F4:85:2F:32:A6:85 Authority key identifier: 5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2 Certificate issuer: /CN=A91F52FD/serialNumber=5D45DAA558FF65F66635B9678809B8ACF04073D2 Certificate serial: 0641 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft Manifest number: 0638 Signing time: Thu 04 Dec 2025 21:29:28 +0000 Manifest this update: Thu 04 Dec 2025 21:29:28 +0000 Manifest next update: Thu 11 Dec 2025 21:29:28 +0000 Files and hashes: 1: XUXapVj_ZfZmNblniAm4rPBAc9I.crl (hash: 4VT4Eg0MVoGhOGcmgidrCpOIUNJrdvk46Hf8DmHznnU=) 2: 48459AB0BACF11EBAA321370C4F9AE02.roa (hash: pnHmUa0U0xz9JsAjeRh4Irw7X+bt9zrhkQQo7Oiu4oA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.crl rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1601 (0x641) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F52FD, serialNumber=5D45DAA558FF65F66635B9678809B8ACF04073D2 Validity Not Before: Dec 4 21:29:28 2025 GMT Not After : Dec 11 21:29:28 2025 GMT Subject: CN=6931fd38-d832 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a5:62:4c:c5:93:04:8e:1f:d1:c2:b5:7d:74: 35:7c:d1:d9:42:97:0f:0d:02:9c:a7:dd:03:03:96: 1f:ae:e2:be:af:94:d5:ad:a9:31:ea:47:6d:58:d9: b9:bc:f8:1e:a1:8e:1e:7a:4e:9a:d6:33:e8:34:3c: 2c:cb:db:ee:0d:a5:a3:91:cf:46:b0:61:78:1e:0c: 21:11:26:75:77:f3:44:8d:d6:49:2a:18:40:30:ec: aa:95:2c:09:76:90:ab:a0:a2:46:87:3d:ce:ab:df: 81:14:64:07:25:3a:d4:ba:d4:3c:32:52:b4:0c:a6: 61:13:01:8a:da:8e:a2:d7:39:44:48:73:99:c7:a2: 1f:5b:93:5a:20:d8:50:3a:58:b6:d9:14:ed:90:1f: 79:e5:99:30:6a:5a:41:a0:56:e1:a6:67:9f:b3:40: f3:c8:5c:20:0a:1c:2f:2e:e1:e2:c9:96:0e:b2:56: d8:e5:ad:39:ab:b5:99:81:84:16:fc:59:3f:d7:c4: c8:72:46:c1:08:da:4c:9f:fd:13:76:f1:d3:5f:8b: 83:7f:4f:14:8e:e0:1f:28:fd:df:f6:f4:c1:cd:e1: ca:3b:0d:ed:16:8b:8c:93:78:ef:70:0e:6e:e6:c9: 2c:ae:30:97:c4:db:c5:f0:a8:fa:8c:49:87:9a:5b: b4:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:A5:7F:42:83:CE:3A:5F:AF:81:09:A4:3A:B8:F4:85:2F:32:A6:85 X509v3 Authority Key Identifier: keyid:5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:60:df:0e:7d:49:a0:e4:51:72:63:49:0c:35:fd:b9:85:ef: 43:90:91:e0:d7:64:e9:43:5d:46:dd:94:30:6e:0b:01:6e:70: 61:4a:58:da:ff:7c:64:83:d9:4e:9f:54:9a:78:8b:83:46:7d: b7:17:fb:9b:5b:f3:24:1b:a1:5c:83:ff:75:f9:e1:16:3e:43: ac:38:c6:e3:f8:78:4b:fb:19:90:43:98:1e:17:3a:a8:d2:63: c6:b9:f8:f3:07:95:8f:06:18:d8:07:56:c5:0c:26:09:6f:9b: e7:5e:cb:0a:b4:12:e2:24:c6:45:ac:04:30:df:93:17:ce:c1: 2e:d4:23:18:c7:1d:45:58:9b:0d:03:57:27:3e:e7:6b:c4:13: d0:1d:be:c1:2c:3a:e2:f8:a6:10:eb:78:87:c3:f9:89:0d:7a: fc:28:20:8b:29:a9:26:dc:1f:8e:b0:ed:7d:0b:a3:83:f4:f5: 89:d3:1a:09:ec:07:cb:c4:4b:d1:cc:10:56:af:ea:8c:46:22: 3c:fa:62:d2:52:8d:b4:7a:ba:43:12:7b:92:86:6a:43:86:87: 54:20:de:3e:53:b8:5b:3d:ce:67:05:af:ea:e3:43:4c:dd:c3: e5:67:84:55:e0:c1:31:b6:ab:cb:1c:ab:84:10:3c:99:1f:28: fd:6f:48:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyRkQxMTAvBgNVBAUTKDVENDVEQUE1NThGRjY1RjY2NjM1Qjk2Nzg4MDlCOEFD RjA0MDczRDIwHhcNMjUxMjA0MjEyOTI4WhcNMjUxMjExMjEyOTI4WjAYMRYwFAYD VQQDEw02OTMxZmQzOC1kODMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqViTMWTBI4f0cK1fXQ1fNHZQpcPDQKcp90DA5YfruK+r5TVrakx6kdtWNm5 vPgeoY4eek6a1jPoNDwsy9vuDaWjkc9GsGF4HgwhESZ1d/NEjdZJKhhAMOyqlSwJ dpCroKJGhz3Oq9+BFGQHJTrUutQ8MlK0DKZhEwGK2o6i1zlESHOZx6IfW5NaINhQ Oli22RTtkB955ZkwalpBoFbhpmefs0DzyFwgChwvLuHiyZYOslbY5a05q7WZgYQW /Fk/18TIckbBCNpMn/0TdvHTX4uDf08UjuAfKP3f9vTBzeHKOw3tFouMk3jvcA5u 5sksrjCXxNvF8Kj6jEmHmlu0PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIylf0KD zjpfr4EJpDq49IUvMqaFMB8GA1UdIwQYMBaAFF1F2qVY/2X2ZjW5Z4gJuKzwQHPS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTJGRC82MjVGMEYwQUJB Q0QxMUVCQUEyMzk3NkRDNEY5QUUwMi9YVVhhcFZqX1pmWm1OYmxuaUFtNHJQQkFj OUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hVWGFwVmpfWmZabU5ibG5pQW00clBCQWM5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTJGRC82MjVGMEYwQUJBQ0QxMUVCQUEyMzk3NkRDNEY5QUUwMi9YVVhhcFZqX1pm Wm1OYmxuaUFtNHJQQkFjOUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEYN8OfUmg5FFyY0kMNf25he9DkJHg12TpQ11G3ZQwbgsBbnBhSlja /3xkg9lOn1SaeIuDRn23F/ubW/MkG6Fcg/91+eEWPkOsOMbj+HhL+xmQQ5geFzqo 0mPGufjzB5WPBhjYB1bFDCYJb5vnXssKtBLiJMZFrAQw35MXzsEu1CMYxx1FWJsN A1cnPudrxBPQHb7BLDri+KYQ63iHw/mJDXr8KCCLKakm3B+OsO19C6OD9PWJ0xoJ 7AfLxEvRzBBWr+qMRiI8+mLSUo20erpDEnuShmpDhodUIN4+U7hbPc5nBa/q40NM 3cPlZ4RV4MExtqvLHKuEEDyZHyj9b0gU -----END CERTIFICATE-----Generated at Sat Dec 6 19:14:25 2025 by rpki-client