This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft File: xiZYMphXjR1K9yc-vXkccjCjdEk.mft (raw, json) Hash identifier: 1dif/GY9t81x3WXUWW25R9FN7rK5J1R3xxN/jyzofe0= Subject key identifier: 8E:3D:F2:89:2E:16:C4:6D:5D:88:16:18:9C:5B:C8:AD:38:C2:51:BD Authority key identifier: C6:26:58:32:98:57:8D:1D:4A:F7:27:3E:BD:79:1C:72:30:A3:74:49 Certificate issuer: /CN=A91186C2/serialNumber=C626583298578D1D4AF7273EBD791C7230A37449 Certificate serial: B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft Manifest number: B4 Signing time: Mon 29 Dec 2025 05:09:47 +0000 Manifest this update: Mon 29 Dec 2025 05:09:46 +0000 Manifest next update: Mon 05 Jan 2026 05:09:46 +0000 Files and hashes: 1: xiZYMphXjR1K9yc-vXkccjCjdEk.crl (hash: wgticXx+IrO7tiaA23jKQYngjv3bWakmHblNdPaYf0U=) 2: 7DFFCDA4D17F11EF8FAE452BC4F9AE02.roa (hash: yxYbVT0G3FIFNHaQq21RRd4odOx6/tGbrON4MVMOYMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.crl rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 05:09:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 182 (0xb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91186C2, serialNumber=C626583298578D1D4AF7273EBD791C7230A37449 Validity Not Before: Dec 29 05:09:46 2025 GMT Not After : Jan 5 05:09:46 2026 GMT Subject: CN=69520d1b-faaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e4:a0:c5:90:19:6d:64:05:c9:94:51:8b:77: bc:04:ab:52:46:20:c0:fe:43:b1:32:5a:02:49:99: d3:58:25:b9:eb:b8:b2:97:0d:1c:b1:73:0e:e5:31: d5:64:bf:12:cb:bd:65:f4:ec:1b:34:98:d5:3a:53: 28:e4:66:5b:dd:80:64:5b:d9:20:a6:07:7b:07:ec: 2c:11:2b:39:99:a3:29:e4:6f:85:92:ef:42:03:cb: cf:f4:6c:cd:64:a1:1b:40:10:cd:05:c1:57:99:e2: 9c:33:91:41:81:28:73:3f:4a:45:1a:2a:af:36:68: 61:7b:fa:2f:20:14:9f:21:48:c6:e0:b7:fb:8c:af: 22:9b:dc:33:3a:c8:ac:9f:3d:d7:36:95:85:b3:54: e0:91:a9:a1:78:60:7b:98:45:01:b4:15:63:3a:88: 11:30:73:0a:37:4b:3a:c3:d6:a5:1a:7b:50:57:43: e6:e3:27:e4:c5:8a:03:69:07:7b:8f:01:a9:7c:6c: 67:e9:da:ac:da:5b:8a:93:ef:f4:99:fc:ab:0b:c7: b1:88:94:67:e8:b0:82:f3:9f:7e:ad:5f:d4:4c:26: 07:78:0b:92:05:2f:4e:7d:7e:dd:02:63:cf:53:3f: 76:dc:b6:de:b0:bd:22:fa:7d:49:64:cb:97:45:60: e6:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:3D:F2:89:2E:16:C4:6D:5D:88:16:18:9C:5B:C8:AD:38:C2:51:BD X509v3 Authority Key Identifier: keyid:C6:26:58:32:98:57:8D:1D:4A:F7:27:3E:BD:79:1C:72:30:A3:74:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:47:1e:a2:f9:d3:22:1b:0f:16:2b:0b:06:ea:f3:1e:a8:18: bf:91:6b:bf:c5:fe:14:e7:e7:de:03:93:55:55:ff:72:fb:59: cf:2d:fa:f5:fd:9b:0d:f7:b8:60:dd:6a:3e:56:51:38:01:b1: 44:46:7a:08:f4:a0:97:c0:0e:d6:34:28:8a:c6:53:b3:86:4f: 75:50:c9:e3:cd:90:8c:94:52:4b:42:20:5f:af:a0:a4:35:c9: 00:4e:91:8e:5e:a0:0f:61:79:ca:29:33:bb:a1:8c:53:6d:21: 04:ac:14:99:46:f0:65:e0:4c:41:e2:11:46:67:35:00:5b:27: ca:9f:21:cc:53:47:c8:e2:d4:bc:7c:82:79:40:49:84:b9:9c: 66:2c:62:3f:2d:10:09:45:e1:3f:2e:ed:d8:a8:35:28:de:69: 2f:93:26:00:29:20:97:4f:8e:64:ef:b1:5d:75:85:91:11:87: d4:03:1d:d7:4e:5b:88:76:95:2a:1f:4b:77:b6:7a:cc:09:6a: 2a:8a:3c:55:8d:a6:0b:3f:ce:19:eb:1f:0c:13:ea:fa:8d:93: 1f:3a:d1:dd:3e:cb:23:37:f1:bd:e9:97:e6:63:1d:f9:ae:00: 23:e9:c6:62:b8:3c:c4:27:6e:7c:45:6a:f1:58:88:d8:2e:51: be:74:c2:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg2QzIxMTAvBgNVBAUTKEM2MjY1ODMyOTg1NzhEMUQ0QUY3MjczRUJENzkxQzcy MzBBMzc0NDkwHhcNMjUxMjI5MDUwOTQ2WhcNMjYwMTA1MDUwOTQ2WjAYMRYwFAYD VQQDDA02OTUyMGQxYi1mYWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOSgxZAZbWQFyZRRi3e8BKtSRiDA/kOxMloCSZnTWCW567iylw0csXMO5THV ZL8Sy71l9OwbNJjVOlMo5GZb3YBkW9kgpgd7B+wsESs5maMp5G+Fku9CA8vP9GzN ZKEbQBDNBcFXmeKcM5FBgShzP0pFGiqvNmhhe/ovIBSfIUjG4Lf7jK8im9wzOsis nz3XNpWFs1TgkamheGB7mEUBtBVjOogRMHMKN0s6w9alGntQV0Pm4yfkxYoDaQd7 jwGpfGxn6dqs2luKk+/0mfyrC8exiJRn6LCC859+rV/UTCYHeAuSBS9OfX7dAmPP Uz923LbesL0i+n1JZMuXRWDmaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI498oku FsRtXYgWGJxbyK04wlG9MB8GA1UdIwQYMBaAFMYmWDKYV40dSvcnPr15HHIwo3RJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODZDMi8xRDJGMDcyNEQx N0YxMUVGQjM4NDY5MjhDNEY5QUUwMi94aVpZTXBoWGpSMUs5eWMtdlhrY2NqQ2pk RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hpWllNcGhYalIxSzl5Yy12WGtjY2pDamRFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODZDMi8xRDJGMDcyNEQxN0YxMUVGQjM4NDY5MjhDNEY5QUUwMi94aVpZTXBoWGpS MUs5eWMtdlhrY2NqQ2pkRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxRx6i+dMiGw8WKwsG6vMeqBi/kWu/xf4U5+feA5NVVf9y+1nPLfr1 /ZsN97hg3Wo+VlE4AbFERnoI9KCXwA7WNCiKxlOzhk91UMnjzZCMlFJLQiBfr6Ck NckATpGOXqAPYXnKKTO7oYxTbSEErBSZRvBl4ExB4hFGZzUAWyfKnyHMU0fI4tS8 fIJ5QEmEuZxmLGI/LRAJReE/Lu3YqDUo3mkvkyYAKSCXT45k77FddYWREYfUAx3X TluIdpUqH0t3tnrMCWoqijxVjaYLP84Z6x8ME+r6jZMfOtHdPssjN/G96ZfmYx35 rgAj6cZiuDzEJ258RWrxWIjYLlG+dMLm -----END CERTIFICATE-----Generated at Wed Dec 31 00:09:22 2025 by rpki-client