This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft File: xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft (raw, json) Hash identifier: TkVkXKoZYdgki7EF84NNHAUBW49Lt5dkaVCD4zTWNbg= Subject key identifier: F6:FD:86:16:A9:59:AC:8B:98:BA:3D:49:D1:3B:46:08:D2:42:F4:BB Authority key identifier: C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E Certificate issuer: /CN=A9125C22/serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Certificate serial: 06D5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft Manifest number: 06D0 Signing time: Thu 18 Dec 2025 21:30:28 +0000 Manifest this update: Thu 18 Dec 2025 21:30:28 +0000 Manifest next update: Thu 25 Dec 2025 21:30:28 +0000 Files and hashes: 1: xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl (hash: LC5vYji5Ra55fDDqEGjjC6HMSazg1zB+4qLFACqdWlA=) 2: 485D694A454911EEB8718378C4F9AE02.roa (hash: 8goNJpX3SWLmR+a+Wvt1jnrzs1RIuPAmcWPIzJu1GEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 21:30:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1749 (0x6d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C22, serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Validity Not Before: Dec 18 21:30:28 2025 GMT Not After : Dec 25 21:30:28 2025 GMT Subject: CN=69447274-668d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:57:67:ce:66:27:8e:c6:2e:58:ae:37:87:02: 50:b4:73:79:a7:c0:95:2d:b9:89:ae:f7:59:22:a0: 48:21:65:fc:93:32:80:1f:c5:09:92:78:08:ad:87: 89:3b:f6:4f:b0:3e:b4:95:d6:dc:da:4c:de:1f:1b: f8:d9:f9:26:4c:63:ab:c2:87:d7:a4:55:dc:52:95: 58:81:5a:01:f8:d1:23:5b:a2:ff:01:06:b8:f7:48: 17:3b:0e:f4:39:2e:4e:c6:02:c3:58:76:49:87:98: 74:17:cc:53:6d:5c:33:29:95:70:b4:59:03:aa:94: f2:f1:01:e1:80:46:e1:b4:41:e3:d4:e4:e0:41:bd: c7:96:56:c2:08:24:64:df:48:a0:d7:5d:d7:2b:87: f6:d4:e7:70:f2:3b:99:7d:6c:4a:49:b3:3e:f2:3e: 59:dd:c1:2f:06:6e:bd:f8:a8:35:b3:f0:9e:06:97: c5:56:79:e2:f3:c7:0f:fd:f4:16:7b:09:16:7f:9b: 33:e4:2c:18:ae:08:a1:b1:fc:ba:45:92:01:e8:9b: 74:3d:8a:02:bb:46:d2:b6:dd:e0:c8:0f:44:d2:44: 2b:c9:fb:d6:83:8f:f4:c7:b5:54:7b:13:a6:e8:07: 0e:99:25:31:25:1b:94:d9:cf:9d:26:32:97:f8:ad: 64:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:FD:86:16:A9:59:AC:8B:98:BA:3D:49:D1:3B:46:08:D2:42:F4:BB X509v3 Authority Key Identifier: keyid:C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:1d:df:cd:33:15:a3:53:85:bd:3a:b8:ee:54:50:e3:25:5e: 83:80:e1:b1:fd:de:d4:c7:ec:08:79:f2:b3:3c:dd:cc:5a:5d: b9:c0:0f:3c:de:db:d6:0c:1f:14:72:40:8a:3b:56:18:a8:4a: c1:7b:9b:25:b2:39:c3:2e:45:a4:f0:90:58:57:ae:ac:f8:d3: 33:1b:f0:19:e2:b5:46:b9:23:e5:3f:99:ad:f9:26:83:5e:21: 1b:7f:e2:74:a1:ff:35:1d:9c:40:6c:72:dd:a9:cc:dd:e9:2a: f3:1d:bd:3a:0c:50:f3:f0:2b:4b:ff:b9:08:48:b7:8e:dc:e0: bb:a0:6b:42:b7:c3:a2:77:2a:34:14:21:84:a9:45:a0:fa:57: c1:1f:c1:df:84:51:5d:05:58:f7:1f:ef:cb:77:44:72:68:9b: 6e:db:18:3c:a1:8a:54:b1:b2:2a:ff:36:45:79:db:0b:a0:64: 5a:e9:b0:8d:be:ef:a6:66:4f:9b:1c:d7:fe:1c:ab:a0:8f:92: 6c:28:31:a0:66:7f:f2:6c:fa:99:30:76:e7:de:4d:41:c1:be: 6d:2c:6f:18:ba:a6:34:06:44:7f:5e:24:42:dc:85:99:57:67: 28:47:1f:af:40:79:d1:6f:44:6a:9c:7a:93:30:3d:13:90:c9: 2c:e4:a3:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMjIxMTAvBgNVBAUTKEM3MEI0RTA0N0NBQTczNzcyNEI4OUQ1ODREQjVDMEMx QTg1OEQyOEUwHhcNMjUxMjE4MjEzMDI4WhcNMjUxMjI1MjEzMDI4WjAYMRYwFAYD VQQDDA02OTQ0NzI3NC02NjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsVdnzmYnjsYuWK43hwJQtHN5p8CVLbmJrvdZIqBIIWX8kzKAH8UJkngIrYeJ O/ZPsD60ldbc2kzeHxv42fkmTGOrwofXpFXcUpVYgVoB+NEjW6L/AQa490gXOw70 OS5OxgLDWHZJh5h0F8xTbVwzKZVwtFkDqpTy8QHhgEbhtEHj1OTgQb3HllbCCCRk 30ig113XK4f21Odw8juZfWxKSbM+8j5Z3cEvBm69+Kg1s/CeBpfFVnni88cP/fQW ewkWf5sz5CwYrgihsfy6RZIB6Jt0PYoCu0bStt3gyA9E0kQryfvWg4/0x7VUexOm 6AcOmSUxJRuU2c+dJjKX+K1kiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPb9hhap WayLmLo9SdE7RgjSQvS7MB8GA1UdIwQYMBaAFMcLTgR8qnN3JLidWE21wMGoWNKO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMyMi9GQUNDQkM1QzdG QUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMzY2t1SjFZVGJYQXdhaFkw bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3h3dE9CSHlxYzNja3VKMVlUYlhBd2FoWTBvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMyMi9GQUNDQkM1QzdGQUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMz Y2t1SjFZVGJYQXdhaFkwbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOHd/NMxWjU4W9OrjuVFDjJV6DgOGx/d7Ux+wIefKzPN3MWl25wA88 3tvWDB8UckCKO1YYqErBe5slsjnDLkWk8JBYV66s+NMzG/AZ4rVGuSPlP5mt+SaD XiEbf+J0of81HZxAbHLdqczd6SrzHb06DFDz8CtL/7kISLeO3OC7oGtCt8Oidyo0 FCGEqUWg+lfBH8HfhFFdBVj3H+/Ld0RyaJtu2xg8oYpUsbIq/zZFedsLoGRa6bCN vu+mZk+bHNf+HKugj5JsKDGgZn/ybPqZMHbn3k1Bwb5tLG8YuqY0BkR/XiRC3IWZ V2coRx+vQHnRb0RqnHqTMD0TkMks5KP1 -----END CERTIFICATE-----Generated at Sat Dec 20 04:58:33 2025 by rpki-client