This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft File: XUofz1MBwCdZyE7qVZFeJcFxpz8.mft (raw, json) Hash identifier: I54YEyBj0trJHKP6WPeXCOQGrW+liO/uK71qp696j2I= Subject key identifier: CC:0C:79:6D:4E:43:0F:7F:A9:E3:28:E0:EB:DB:CC:96:DA:BA:55:3A Authority key identifier: 5D:4A:1F:CF:53:01:C0:27:59:C8:4E:EA:55:91:5E:25:C1:71:A7:3F Certificate issuer: /CN=A91194E9/serialNumber=5D4A1FCF5301C02759C84EEA55915E25C171A73F Certificate serial: 02FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft Manifest number: 02F4 Signing time: Fri 19 Dec 2025 00:28:19 +0000 Manifest this update: Fri 19 Dec 2025 00:28:19 +0000 Manifest next update: Fri 26 Dec 2025 00:28:19 +0000 Files and hashes: 1: XUofz1MBwCdZyE7qVZFeJcFxpz8.crl (hash: H4P+Ctyp9t1/jEUh9XR9gGzsjFM0NX0tdBkxmetbnTw=) 2: 388802BC067711EDA1DEB529C4F9AE02.roa (hash: jv+C3MRRv1S8VzgzhjdRwbO8r25GoT/B3n+TeYBfeTU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.crl rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:28:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 762 (0x2fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91194E9, serialNumber=5D4A1FCF5301C02759C84EEA55915E25C171A73F Validity Not Before: Dec 19 00:28:19 2025 GMT Not After : Dec 26 00:28:19 2025 GMT Subject: CN=69449c23-45c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:46:7e:1c:ab:a0:54:46:a8:8b:90:44:ba:24: 3b:0a:be:00:ac:92:41:4d:28:df:1a:a0:5e:02:a4: 8c:d1:8d:c1:29:96:52:2e:f5:53:ac:47:93:62:b7: 68:d2:5b:a4:f7:af:a2:87:d4:94:08:f9:07:ec:61: 3e:9e:e5:37:63:5c:a3:d5:a6:0f:09:d5:c7:4a:a7: 0f:5f:88:ac:ae:bb:d5:62:63:54:aa:cf:c2:3a:25: 0f:84:f6:52:64:39:66:f5:af:cc:e8:62:a8:78:af: de:89:7a:b0:e3:65:c2:de:bc:4c:49:6c:73:49:ee: 9b:5c:9d:6d:75:da:b2:65:f5:75:88:b0:f5:11:9c: a5:f0:cb:9f:f1:e2:d2:0d:23:e9:ba:c0:db:9a:d9: cf:c5:79:2e:16:1d:f9:76:f8:60:71:f1:b1:ed:57: 28:3a:90:90:fe:12:20:37:cd:e3:ac:9b:42:fd:42: e2:dd:8b:79:43:a6:e1:ce:19:f6:3f:17:fd:8b:be: 64:85:21:29:bf:70:7a:7a:0e:1c:19:1f:15:ef:88: a0:7b:ec:77:2d:a2:ed:aa:2c:90:4e:3d:d0:14:15: bc:3d:6c:89:cb:64:d0:11:47:9d:eb:be:f7:e9:e3: 0a:09:9b:6d:d8:7d:9d:ac:6d:55:5f:9e:de:4a:19: 8b:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:0C:79:6D:4E:43:0F:7F:A9:E3:28:E0:EB:DB:CC:96:DA:BA:55:3A X509v3 Authority Key Identifier: keyid:5D:4A:1F:CF:53:01:C0:27:59:C8:4E:EA:55:91:5E:25:C1:71:A7:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:1b:25:f7:29:8f:3e:61:45:e0:2b:c1:18:83:4d:eb:89:43: e0:e6:9a:c9:4f:18:3e:51:f5:6c:aa:01:64:3b:7d:c1:cc:8e: 77:41:03:59:dc:fa:55:42:20:be:51:20:28:f0:58:78:01:32: 40:eb:ac:f6:ee:d2:92:2f:e3:7e:c9:27:4a:d1:18:fe:c9:c4: c9:e0:37:89:a6:2a:e9:19:86:43:f3:7c:66:be:6b:9d:af:60: b4:87:93:ef:df:bb:e3:4d:de:f2:32:f1:7b:da:14:79:40:58: 1f:cf:6a:e1:b9:91:5d:05:2b:05:26:9f:d1:6e:49:95:db:cc: 28:a2:74:6f:32:e0:ee:7d:de:26:16:d9:48:93:4a:96:92:23: 68:15:3d:58:4b:6c:00:00:1e:74:85:4a:86:ec:24:20:4e:78: 5b:c7:7a:c7:79:bd:c3:c7:71:43:42:2a:47:6f:78:c6:ca:3e: b3:cf:e9:5c:b2:c1:13:00:eb:bb:ca:8c:e4:3a:7e:0a:5c:35: fc:08:41:0e:fb:5c:9c:3d:5a:a9:7e:71:e2:2a:64:71:61:59: e6:1b:e0:d0:07:72:c8:f5:e4:43:f8:0e:f1:4e:15:d9:11:23: 2c:32:4f:e5:b3:86:b7:e9:ed:97:b6:0b:52:8f:de:15:59:ea: 5b:96:2c:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk0RTkxMTAvBgNVBAUTKDVENEExRkNGNTMwMUMwMjc1OUM4NEVFQTU1OTE1RTI1 QzE3MUE3M0YwHhcNMjUxMjE5MDAyODE5WhcNMjUxMjI2MDAyODE5WjAYMRYwFAYD VQQDDA02OTQ0OWMyMy00NWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0EZ+HKugVEaoi5BEuiQ7Cr4ArJJBTSjfGqBeAqSM0Y3BKZZSLvVTrEeTYrdo 0luk96+ih9SUCPkH7GE+nuU3Y1yj1aYPCdXHSqcPX4isrrvVYmNUqs/COiUPhPZS ZDlm9a/M6GKoeK/eiXqw42XC3rxMSWxzSe6bXJ1tddqyZfV1iLD1EZyl8Muf8eLS DSPpusDbmtnPxXkuFh35dvhgcfGx7VcoOpCQ/hIgN83jrJtC/ULi3Yt5Q6bhzhn2 Pxf9i75khSEpv3B6eg4cGR8V74ige+x3LaLtqiyQTj3QFBW8PWyJy2TQEUed6773 6eMKCZtt2H2drG1VX57eShmLjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMwMeW1O Qw9/qeMo4OvbzJbaulU6MB8GA1UdIwQYMBaAFF1KH89TAcAnWchO6lWRXiXBcac/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTRFOS9DNUQ1RTRDQTA2 NzQxMUVEQjFEMjlBMjhDNEY5QUUwMi9YVW9mejFNQndDZFp5RTdxVlpGZUpjRnhw ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hVb2Z6MU1Cd0NkWnlFN3FWWkZlSmNGeHB6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTRFOS9DNUQ1RTRDQTA2NzQxMUVEQjFEMjlBMjhDNEY5QUUwMi9YVW9mejFNQndD ZFp5RTdxVlpGZUpjRnhwejgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5GyX3KY8+YUXgK8EYg03riUPg5prJTxg+UfVsqgFkO33BzI53QQNZ 3PpVQiC+USAo8Fh4ATJA66z27tKSL+N+ySdK0Rj+ycTJ4DeJpirpGYZD83xmvmud r2C0h5Pv37vjTd7yMvF72hR5QFgfz2rhuZFdBSsFJp/RbkmV28woonRvMuDufd4m FtlIk0qWkiNoFT1YS2wAAB50hUqG7CQgTnhbx3rHeb3Dx3FDQipHb3jGyj6zz+lc ssETAOu7yozkOn4KXDX8CEEO+1ycPVqpfnHiKmRxYVnmG+DQB3LI9eRD+A7xThXZ ESMsMk/ls4a36e2XtgtSj94VWepbliyQ -----END CERTIFICATE-----Generated at Fri Dec 19 20:14:28 2025 by rpki-client