This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91411C0/B960375855FF11EBBC36C843C4F9AE02/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.mft File: xCOwgDJiM9rAjMMNdKZf9KUp0Jo.mft (raw, json) Hash identifier: ZC46eVroX3LxizgyBHob9nG+lL6UNo4cLQjZ65gJGLY= Subject key identifier: 92:7D:9C:44:B1:2B:1F:7E:FC:29:4F:60:F1:DE:78:4A:A6:5C:AA:ED Authority key identifier: C4:23:B0:80:32:62:33:DA:C0:8C:C3:0D:74:A6:5F:F4:A5:29:D0:9A Certificate issuer: /CN=A91411C0/serialNumber=C423B080326233DAC08CC30D74A65FF4A529D09A Certificate serial: 0743 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91411C0/B960375855FF11EBBC36C843C4F9AE02/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.mft Manifest number: 073D Signing time: Fri 26 Dec 2025 21:01:40 +0000 Manifest this update: Fri 26 Dec 2025 21:01:40 +0000 Manifest next update: Fri 02 Jan 2026 21:01:40 +0000 Files and hashes: 1: xCOwgDJiM9rAjMMNdKZf9KUp0Jo.crl (hash: Dc8O8kZtJR9UmA2ukdcryS9wSdinArtql/ocYnLyr5E=) 2: 0361CF86560211EB97A98D46C4F9AE02.roa (hash: HlIyCnozTXmahx4OrgB34hXtStTSnVnLcqtp68+OH5c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91411C0/B960375855FF11EBBC36C843C4F9AE02/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.crl rsync://rpki.apnic.net/member_repository/A91411C0/B960375855FF11EBBC36C843C4F9AE02/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Jan 2026 21:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1859 (0x743) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91411C0, serialNumber=C423B080326233DAC08CC30D74A65FF4A529D09A Validity Not Before: Dec 26 21:01:40 2025 GMT Not After : Jan 2 21:01:40 2026 GMT Subject: CN=694ef7b4-543a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f7:9e:17:9c:25:88:37:3f:75:93:0c:6f:1c: f7:7a:20:aa:23:09:09:18:f6:2b:d0:2b:49:dc:80: 8f:18:fe:6e:b7:4f:da:b8:42:de:1a:10:df:9d:f5: 01:9b:bb:8b:33:df:cf:24:b7:cc:c7:a5:b4:d9:94: 8c:50:59:a4:da:18:d4:e4:a2:fd:48:45:16:09:a9: a2:a8:1e:1d:22:90:ea:e3:09:ac:17:59:41:f2:1f: 36:81:c2:a2:cc:80:07:8a:be:b4:7e:ea:a5:86:2c: 87:5e:b2:44:d1:a9:7a:24:6f:53:f4:bb:4f:8a:2b: bc:ff:af:f0:af:28:5d:db:84:8b:5e:2b:22:e3:e7: 2e:aa:1e:99:a0:ce:c2:d6:77:be:01:56:ac:4d:c9: d4:9b:19:c1:b6:37:65:4e:1e:77:d9:66:97:28:e2: d6:0c:1d:4a:7f:a8:cc:58:c9:a9:5b:5d:82:7c:10: 91:89:8b:86:06:79:0f:17:a8:7f:1e:fe:2f:36:de: 4a:d2:88:9d:5a:3e:c5:9f:76:f6:3d:3d:89:af:c2: c6:61:34:7c:1e:91:3c:4c:be:7e:c0:b0:e0:c0:bc: 85:c5:51:0e:bf:e0:41:c4:18:05:c8:1b:e8:6b:d8: 69:ce:83:17:45:40:b0:0e:d2:79:a4:4e:31:20:23: 4a:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:7D:9C:44:B1:2B:1F:7E:FC:29:4F:60:F1:DE:78:4A:A6:5C:AA:ED X509v3 Authority Key Identifier: keyid:C4:23:B0:80:32:62:33:DA:C0:8C:C3:0D:74:A6:5F:F4:A5:29:D0:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91411C0/B960375855FF11EBBC36C843C4F9AE02/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91411C0/B960375855FF11EBBC36C843C4F9AE02/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:3f:84:d3:91:ee:e4:6a:b2:35:23:ba:b4:b0:12:1b:02:de: 47:30:8d:0d:e4:ec:fe:fe:6e:59:88:d5:62:54:71:c4:bc:6e: 0b:4b:51:86:49:77:2d:33:01:2f:0c:3f:bd:4b:ae:9e:bf:22: 4e:5f:08:be:1b:6d:fa:6b:fd:84:01:27:c8:98:04:f3:f0:11: 7c:8a:8d:4d:80:fe:ca:b7:a9:6d:b5:82:92:4d:30:61:d6:de: c5:18:e2:a5:42:a6:25:e8:ef:37:d1:b2:69:f7:1b:27:50:e4: 2e:be:83:dd:51:95:8b:f6:8e:b1:c3:5b:f2:52:2a:82:88:77: 23:15:40:a3:78:90:af:93:0c:1a:7f:ae:10:be:14:0c:6e:9a: 5d:e2:a9:44:9a:f7:c8:dc:08:fa:31:24:c5:cf:de:d9:45:43: f4:88:00:62:a3:eb:30:5c:f1:b6:46:9e:eb:a1:a1:cb:a5:d7: fe:d1:86:ac:7e:21:00:cf:95:e1:f8:b6:37:54:ba:42:71:2a: c4:26:bc:d3:46:a1:ec:38:27:9c:46:93:5b:c2:b9:33:d0:fd: 6b:fb:30:eb:5a:f5:72:f0:8e:2f:7d:62:b0:58:a0:7b:22:ca: 79:54:6c:22:39:23:95:41:9e:02:b2:a3:86:26:f6:af:97:c5: cf:a6:9f:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDExQzAxMTAvBgNVBAUTKEM0MjNCMDgwMzI2MjMzREFDMDhDQzMwRDc0QTY1RkY0 QTUyOUQwOUEwHhcNMjUxMjI2MjEwMTQwWhcNMjYwMTAyMjEwMTQwWjAYMRYwFAYD VQQDDA02OTRlZjdiNC01NDNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxfeeF5wliDc/dZMMbxz3eiCqIwkJGPYr0CtJ3ICPGP5ut0/auELeGhDfnfUB m7uLM9/PJLfMx6W02ZSMUFmk2hjU5KL9SEUWCamiqB4dIpDq4wmsF1lB8h82gcKi zIAHir60fuqlhiyHXrJE0al6JG9T9LtPiiu8/6/wryhd24SLXisi4+cuqh6ZoM7C 1ne+AVasTcnUmxnBtjdlTh532WaXKOLWDB1Kf6jMWMmpW12CfBCRiYuGBnkPF6h/ Hv4vNt5K0oidWj7Fn3b2PT2Jr8LGYTR8HpE8TL5+wLDgwLyFxVEOv+BBxBgFyBvo a9hpzoMXRUCwDtJ5pE4xICNKewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJJ9nESx Kx9+/ClPYPHeeEqmXKrtMB8GA1UdIwQYMBaAFMQjsIAyYjPawIzDDXSmX/SlKdCa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTFDMC9COTYwMzc1ODU1 RkYxMUVCQkMzNkM4NDNDNEY5QUUwMi94Q093Z0RKaU05ckFqTU1OZEtaZjlLVXAw Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hDT3dnREppTTlyQWpNTU5kS1pmOUtVcDBKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTFDMC9COTYwMzc1ODU1RkYxMUVCQkMzNkM4NDNDNEY5QUUwMi94Q093Z0RKaU05 ckFqTU1OZEtaZjlLVXAwSm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAP4TTke7karI1I7q0sBIbAt5HMI0N5Oz+/m5ZiNViVHHEvG4LS1GG SXctMwEvDD+9S66evyJOXwi+G236a/2EASfImATz8BF8io1NgP7Kt6lttYKSTTBh 1t7FGOKlQqYl6O830bJp9xsnUOQuvoPdUZWL9o6xw1vyUiqCiHcjFUCjeJCvkwwa f64QvhQMbppd4qlEmvfI3Aj6MSTFz97ZRUP0iABio+swXPG2Rp7roaHLpdf+0Yas fiEAz5Xh+LY3VLpCcSrEJrzTRqHsOCecRpNbwrkz0P1r+zDrWvVy8I4vfWKwWKB7 Isp5VGwiOSOVQZ4CsqOGJvavl8XPpp8B -----END CERTIFICATE-----Generated at Sat Dec 27 05:34:01 2025 by rpki-client