This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft File: XEzzdpk9EYUoJw3ZUvMCztV18dw.mft (raw, json) Hash identifier: g5snuOzRyI0eWLnY6Ox6FKmE8zD018RcJqtwShQ37/8= Subject key identifier: 77:DE:48:F0:30:DE:F1:FF:FC:66:B6:3D:69:B1:A5:97:EA:22:0E:51 Authority key identifier: 5C:4C:F3:76:99:3D:11:85:28:27:0D:D9:52:F3:02:CE:D5:75:F1:DC Certificate issuer: /CN=A91FBD89/serialNumber=5C4CF376993D118528270DD952F302CED575F1DC Certificate serial: 056A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft Manifest number: 056A Signing time: Thu 04 Dec 2025 21:58:50 +0000 Manifest this update: Thu 04 Dec 2025 21:58:49 +0000 Manifest next update: Thu 11 Dec 2025 21:58:49 +0000 Files and hashes: 1: XEzzdpk9EYUoJw3ZUvMCztV18dw.crl (hash: CSwgpWtarZ7Y4b3W8VqB9shWJbOlIs6KQRo3Q9JjtuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.crl rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:58:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1386 (0x56a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBD89, serialNumber=5C4CF376993D118528270DD952F302CED575F1DC Validity Not Before: Dec 4 21:58:49 2025 GMT Not After : Dec 11 21:58:49 2025 GMT Subject: CN=6932041a-4a84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:41:45:c0:3e:ff:82:2d:a3:86:87:cb:ea:78: c8:7e:56:7b:0f:c8:3a:ab:ea:5d:78:93:a1:c1:a0: 01:c2:4d:aa:6f:1e:96:1f:3f:80:e9:69:fb:ce:2d: 81:a7:c5:76:7e:27:25:27:67:44:2c:f9:4c:9c:b2: d5:f9:6e:1f:cb:3a:da:34:16:8b:e0:d9:af:58:d8: 1f:6f:21:5d:6f:e2:d9:78:48:4e:8c:ea:d9:fc:93: bb:23:e2:45:0f:cd:21:f3:51:19:fc:9b:2f:71:0b: 97:fc:c3:e4:0d:3a:34:a8:ab:0e:8c:71:f0:da:93: a8:3d:d7:0e:df:e4:c8:c0:fe:61:9d:6e:73:74:5f: 8a:77:95:7f:2b:3e:50:26:cf:35:d7:09:40:4c:02: 7d:12:62:28:d2:37:17:be:5a:cb:91:71:a0:0d:b4: 8a:c6:63:c7:f8:d0:29:bf:62:4e:a7:4f:2c:a5:05: d1:17:6f:27:99:5c:8e:bf:d7:eb:17:82:a6:87:d0: 71:67:f6:c2:1f:ed:fe:2f:a4:42:60:57:04:4e:0b: da:04:ba:7d:a6:de:4b:e6:5c:0c:3e:21:7f:40:4c: 19:9c:8c:85:bc:6e:78:46:f3:fe:6c:f3:68:cc:2c: 42:c4:11:89:b1:8b:d8:68:2c:a8:31:25:6c:33:3e: 60:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:DE:48:F0:30:DE:F1:FF:FC:66:B6:3D:69:B1:A5:97:EA:22:0E:51 X509v3 Authority Key Identifier: keyid:5C:4C:F3:76:99:3D:11:85:28:27:0D:D9:52:F3:02:CE:D5:75:F1:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:07:a9:63:97:93:3b:23:f8:7c:08:23:d2:1b:0e:06:1e:08: bc:9c:16:0a:c1:52:58:66:2c:a1:14:e6:39:62:e4:6b:09:c6: a8:9e:b4:87:ad:f8:bd:70:70:54:0e:be:da:3b:ca:f9:77:52: cd:8d:af:c0:ac:27:d8:bf:65:f1:dc:01:30:46:28:21:1d:38: f0:1b:6b:06:c7:fe:e1:d8:70:be:b0:c5:84:c0:95:49:56:8f: e8:4c:9f:5d:ed:88:c5:00:71:a7:0a:59:0b:c6:9a:59:87:f9: 9d:10:98:d6:6d:7b:8f:89:b1:16:f7:67:4f:0c:8f:62:52:ae: 5d:27:f8:f7:aa:a1:2c:fd:e4:1c:53:b4:7b:3e:fc:e3:e1:86: f3:33:3b:6d:cb:cd:90:70:6f:9a:02:31:e3:25:74:aa:4d:70: d8:51:1e:41:d1:57:35:8c:99:1a:0d:32:b3:c9:0d:85:84:cb: 4d:9a:02:8e:93:2a:d5:8f:fa:04:01:91:6b:36:13:2a:33:28: 60:ec:22:da:46:e0:fe:72:66:2b:65:dd:b3:3c:57:15:47:8b: 88:de:e2:e5:77:dc:24:5a:79:2c:d3:7e:a7:f2:be:54:ca:4f: 95:2e:e0:b8:a7:37:63:9d:5c:fc:0f:d0:c8:9f:bf:d2:8d:bf: e0:9f:64:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJEODkxMTAvBgNVBAUTKDVDNENGMzc2OTkzRDExODUyODI3MEREOTUyRjMwMkNF RDU3NUYxREMwHhcNMjUxMjA0MjE1ODQ5WhcNMjUxMjExMjE1ODQ5WjAYMRYwFAYD VQQDEw02OTMyMDQxYS00YTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0FFwD7/gi2jhofL6njIflZ7D8g6q+pdeJOhwaABwk2qbx6WHz+A6Wn7zi2B p8V2ficlJ2dELPlMnLLV+W4fyzraNBaL4NmvWNgfbyFdb+LZeEhOjOrZ/JO7I+JF D80h81EZ/JsvcQuX/MPkDTo0qKsOjHHw2pOoPdcO3+TIwP5hnW5zdF+Kd5V/Kz5Q Js811wlATAJ9EmIo0jcXvlrLkXGgDbSKxmPH+NApv2JOp08spQXRF28nmVyOv9fr F4Kmh9BxZ/bCH+3+L6RCYFcETgvaBLp9pt5L5lwMPiF/QEwZnIyFvG54RvP+bPNo zCxCxBGJsYvYaCyoMSVsMz5gxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHfeSPAw 3vH//Ga2PWmxpZfqIg5RMB8GA1UdIwQYMBaAFFxM83aZPRGFKCcN2VLzAs7VdfHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkQ4OS9GMzdDODhFRTBC N0UxMUVDODMxMjk2NDhDNEY5QUUwMi9YRXp6ZHBrOUVZVW9KdzNaVXZNQ3p0VjE4 ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hFenpkcGs5RVlVb0p3M1pVdk1DenRWMThkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkQ4OS9GMzdDODhFRTBCN0UxMUVDODMxMjk2NDhDNEY5QUUwMi9YRXp6ZHBrOUVZ VW9KdzNaVXZNQ3p0VjE4ZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcB6ljl5M7I/h8CCPSGw4GHgi8nBYKwVJYZiyhFOY5YuRrCcaonrSH rfi9cHBUDr7aO8r5d1LNja/ArCfYv2Xx3AEwRighHTjwG2sGx/7h2HC+sMWEwJVJ Vo/oTJ9d7YjFAHGnClkLxppZh/mdEJjWbXuPibEW92dPDI9iUq5dJ/j3qqEs/eQc U7R7Pvzj4YbzMztty82QcG+aAjHjJXSqTXDYUR5B0Vc1jJkaDTKzyQ2FhMtNmgKO kyrVj/oEAZFrNhMqMyhg7CLaRuD+cmYrZd2zPFcVR4uI3uLld9wkWnks036n8r5U yk+VLuC4pzdjnVz8D9DIn7/Sjb/gn2R+ -----END CERTIFICATE-----Generated at Sat Dec 6 15:58:59 2025 by rpki-client