This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft File: xbajYOSK75Kf3CcpbR1S9b9umRY.mft (raw, json) Hash identifier: PqIytHf27VV0leO/eRGgDrRHITrI/3H+PwYaaZKwigw= Subject key identifier: 6E:F2:F1:04:26:30:25:72:1F:E8:3E:7F:77:5D:C8:80:83:23:79:35 Authority key identifier: C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16 Certificate issuer: /CN=A91FD088/serialNumber=C5B6A360E48AEF929FDC27296D1D52F5BF6E9916 Certificate serial: 081A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft Manifest number: 0813 Signing time: Thu 04 Dec 2025 19:59:30 +0000 Manifest this update: Thu 04 Dec 2025 19:59:29 +0000 Manifest next update: Thu 11 Dec 2025 19:59:29 +0000 Files and hashes: 1: xbajYOSK75Kf3CcpbR1S9b9umRY.crl (hash: ZzkzJQwdk0HjTNT+tvI/KaCxJYjlkmjBdRGYrNwLX5A=) 2: 423EA4CC039B11EBB3C1465CC4F9AE02.roa (hash: LsVQKkTp9V5mDiVUJekj0bvUgPf5aQfKDpRqhhkjvWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.crl rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:59:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2074 (0x81a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD088, serialNumber=C5B6A360E48AEF929FDC27296D1D52F5BF6E9916 Validity Not Before: Dec 4 19:59:29 2025 GMT Not After : Dec 11 19:59:29 2025 GMT Subject: CN=6931e821-de46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:20:44:77:a2:74:63:a8:35:8c:cd:d3:e3:3f: f4:c6:2d:fb:2d:dc:98:39:ff:d1:be:cb:60:d2:3a: 35:7a:64:c8:4c:fe:40:28:1d:dd:70:fa:e0:7f:28: 79:c0:de:ba:c1:4a:12:26:7e:6b:be:2b:6a:0f:fa: 46:75:7b:1e:5a:56:4a:15:a6:75:75:ca:6a:92:53: 49:81:db:65:e8:a8:41:1f:5e:0a:fa:c1:a8:91:6a: 1c:9b:fc:9e:06:3c:7d:4f:02:ac:6e:76:6e:57:1a: 8c:79:f9:aa:b3:7e:bf:f0:b9:5e:d9:ec:41:c4:14: 5e:df:9e:45:6d:12:27:e1:50:5a:31:4c:c1:e8:e5: c8:58:00:23:0f:7d:bf:c5:f4:e6:ac:6d:20:e0:0f: fd:82:9e:aa:f6:ab:47:4d:7f:2e:17:7b:40:fa:55: d8:4d:b6:5a:49:9d:f0:80:9c:15:a8:72:de:34:fc: aa:93:62:d9:a7:df:3e:a0:d0:8a:85:cd:e7:d5:b7: da:18:24:50:c9:85:a8:29:3e:45:d1:b4:91:54:22: c4:a5:56:10:e2:41:fd:fb:bf:f7:0f:c9:bf:1a:5a: a6:50:bf:8a:6c:b4:7d:e3:c1:ab:16:64:78:a5:ca: b8:68:80:80:29:44:77:f8:42:41:c3:54:b3:ee:04: 1c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:F2:F1:04:26:30:25:72:1F:E8:3E:7F:77:5D:C8:80:83:23:79:35 X509v3 Authority Key Identifier: keyid:C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:50:12:5a:e9:be:ae:46:25:be:ec:fa:fe:ba:f5:27:46:ed: 0a:d8:0b:1a:49:84:ac:0b:1b:1c:1c:a3:c3:64:77:90:5b:39: be:02:f1:3e:39:8c:ef:ab:a7:e1:f7:68:c5:13:c8:6b:ec:41: 04:94:ac:d9:60:08:4f:17:fc:ce:b1:81:8b:bd:36:fd:07:56: d1:0b:c7:fe:bd:63:8b:20:29:22:ba:df:71:61:08:1f:04:a9: 58:a3:40:6d:ca:18:66:bf:7b:ba:1a:38:67:2a:ce:e4:05:c9: 70:d6:25:9c:87:9a:ae:ae:0d:25:84:12:69:82:b8:b3:31:e7: 1e:f4:7f:fb:6d:98:4d:73:3c:36:7a:38:39:c6:75:65:9d:63: 21:d9:0f:8b:bc:fd:f6:5f:80:7b:31:54:35:ce:fc:84:11:16: f6:37:af:f4:61:fc:80:9f:5e:b2:2c:aa:1d:7a:9f:3c:83:bf: d1:7d:bb:e0:5f:92:7e:aa:97:41:40:77:74:e9:18:ac:bd:82: 7e:be:bb:0d:89:dc:98:20:90:17:53:c7:a3:46:51:33:6e:e5: a6:b2:08:dd:e1:76:3d:3c:26:8a:98:81:15:c1:2b:46:02:55: d5:8d:c9:79:b1:6d:12:88:da:67:20:37:89:24:b6:00:09:49: c1:b3:7d:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQwODgxMTAvBgNVBAUTKEM1QjZBMzYwRTQ4QUVGOTI5RkRDMjcyOTZEMUQ1MkY1 QkY2RTk5MTYwHhcNMjUxMjA0MTk1OTI5WhcNMjUxMjExMTk1OTI5WjAYMRYwFAYD VQQDEw02OTMxZTgyMS1kZTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxCBEd6J0Y6g1jM3T4z/0xi37LdyYOf/Rvstg0jo1emTITP5AKB3dcPrgfyh5 wN66wUoSJn5rvitqD/pGdXseWlZKFaZ1dcpqklNJgdtl6KhBH14K+sGokWocm/ye Bjx9TwKsbnZuVxqMefmqs36/8Lle2exBxBRe355FbRIn4VBaMUzB6OXIWAAjD32/ xfTmrG0g4A/9gp6q9qtHTX8uF3tA+lXYTbZaSZ3wgJwVqHLeNPyqk2LZp98+oNCK hc3n1bfaGCRQyYWoKT5F0bSRVCLEpVYQ4kH9+7/3D8m/GlqmUL+KbLR948GrFmR4 pcq4aICAKUR3+EJBw1Sz7gQcawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG7y8QQm MCVyH+g+f3ddyICDI3k1MB8GA1UdIwQYMBaAFMW2o2Dkiu+Sn9wnKW0dUvW/bpkW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDA4OC80NEJBN0NBMkZE OUQxMUVBQTA0RUI4N0RDNEY5QUUwMi94YmFqWU9TSzc1S2YzQ2NwYlIxUzliOXVt UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hiYWpZT1NLNzVLZjNDY3BiUjFTOWI5dW1SWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDA4OC80NEJBN0NBMkZEOUQxMUVBQTA0RUI4N0RDNEY5QUUwMi94YmFqWU9TSzc1 S2YzQ2NwYlIxUzliOXVtUlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6UBJa6b6uRiW+7Pr+uvUnRu0K2AsaSYSsCxscHKPDZHeQWzm+AvE+ OYzvq6fh92jFE8hr7EEElKzZYAhPF/zOsYGLvTb9B1bRC8f+vWOLICkiut9xYQgf BKlYo0Btyhhmv3u6GjhnKs7kBclw1iWch5qurg0lhBJpgrizMece9H/7bZhNczw2 ejg5xnVlnWMh2Q+LvP32X4B7MVQ1zvyEERb2N6/0YfyAn16yLKodep88g7/Rfbvg X5J+qpdBQHd06RisvYJ+vrsNidyYIJAXU8ejRlEzbuWmsgjd4XY9PCaKmIEVwStG AlXVjcl5sW0SiNpnIDeJJLYACUnBs30g -----END CERTIFICATE-----Generated at Sat Dec 6 14:30:33 2025 by rpki-client