This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft File: xG1ZE_bCUMau4vMnRTXOhmKVufo.mft (raw, json) Hash identifier: u1taWbQO0vjrxOYVkz0KrcqYl16w/y6g+EMC/VJaT9E= Subject key identifier: 76:3C:E2:DD:24:8D:7B:59:A1:93:EE:23:23:7A:90:A8:E8:C0:BD:AF Authority key identifier: C4:6D:59:13:F6:C2:50:C6:AE:E2:F3:27:45:35:CE:86:62:95:B9:FA Certificate issuer: /CN=A9148B83/serialNumber=C46D5913F6C250C6AEE2F3274535CE866295B9FA Certificate serial: 06CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft Manifest number: 06BE Signing time: Wed 24 Dec 2025 21:31:45 +0000 Manifest this update: Wed 24 Dec 2025 21:31:45 +0000 Manifest next update: Wed 31 Dec 2025 21:31:45 +0000 Files and hashes: 1: xG1ZE_bCUMau4vMnRTXOhmKVufo.crl (hash: 03FLjBIX/TF6G8jvt4a8W3hrSsxUi/tVQGNwVuMM3Es=) 2: 65FE79B8885D11EB81454E41C4F9AE02.roa (hash: jIcmISVPA5DP2aVKanXlgtnTLpIc4xkMqPcAMV4fzi0=) 3: 009E969E885C11EB88A7723DC4F9AE02.roa (hash: K6g4QgChsxgzRfHFt3YwGm0Ei1HU3rEHfJ2P36tg9XM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.crl rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 21:31:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1739 (0x6cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148B83, serialNumber=C46D5913F6C250C6AEE2F3274535CE866295B9FA Validity Not Before: Dec 24 21:31:45 2025 GMT Not After : Dec 31 21:31:45 2025 GMT Subject: CN=694c5bc1-986e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:38:7c:76:9c:bd:5f:16:0c:ae:65:c0:a4:bb: 91:0c:27:6f:25:13:ae:1c:fa:e0:ec:66:30:8e:89: b0:e9:17:43:ab:aa:e4:29:46:1c:63:bd:f6:c5:d1: c5:73:fe:4d:0c:49:d1:10:88:73:5b:55:0d:a1:80: c6:c3:7f:39:a1:53:c3:fa:f7:97:e9:04:9b:e5:d9: 03:43:c6:e7:6e:f9:aa:5d:e1:f3:bc:8d:4a:63:19: d4:dc:76:db:5a:a1:c8:bd:4b:d7:22:5c:58:4a:4f: c5:fc:ea:50:bb:cc:20:84:70:77:67:d1:7c:cf:63: 6d:48:f4:f8:0f:c0:d9:68:bc:cf:de:fd:6d:81:ae: 8d:83:86:69:60:aa:40:95:d5:3b:67:16:2f:e4:4e: d9:96:77:e5:2d:67:3a:d1:2a:e2:a7:2a:54:0a:9a: 42:b9:e9:7d:f8:27:00:8c:0c:7b:d1:ca:d7:6c:7c: 50:e9:bb:92:66:e0:c2:ac:cc:c9:fe:ea:b5:e9:2a: 33:72:7a:cb:d9:fc:87:70:67:40:25:18:55:62:49: 93:f7:0d:b2:1e:21:58:df:f9:4f:66:17:c8:95:a1: f1:bb:96:d1:41:6f:d2:b2:d8:4d:12:ac:0c:0f:4d: 05:2b:e5:17:a9:40:38:75:e9:d3:24:00:be:e8:4d: 61:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:3C:E2:DD:24:8D:7B:59:A1:93:EE:23:23:7A:90:A8:E8:C0:BD:AF X509v3 Authority Key Identifier: keyid:C4:6D:59:13:F6:C2:50:C6:AE:E2:F3:27:45:35:CE:86:62:95:B9:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:ad:0b:41:94:d3:53:71:ce:b6:a9:8c:81:53:50:15:59:0c: 1d:c9:e7:11:3b:e0:f8:6c:22:01:38:4c:0f:cb:f1:f2:b2:b1: ca:65:e8:35:c0:1f:77:0d:82:0e:07:9a:45:49:f4:29:f5:63: 2e:33:5f:f6:35:6d:c5:a2:dc:12:a4:cb:4c:a5:eb:cb:2e:d8: 10:19:6c:99:7d:4d:54:cd:17:89:33:02:ca:68:4b:2a:35:fa: 78:3a:27:3e:ad:07:1b:16:34:d9:e9:ba:de:fd:f4:fe:6c:66: 67:bd:7e:bc:4f:2c:43:20:d2:13:4a:68:35:bc:0f:89:89:f3: 50:de:ff:68:f3:e0:bb:b6:39:c0:a9:a0:8f:db:16:d3:75:ca: 71:79:47:ba:f4:ab:1c:e4:fe:96:ff:25:38:1c:5a:0f:b1:2d: bc:41:31:df:dc:e5:ec:e9:73:ec:67:83:57:55:1c:a5:99:5b: 76:a8:f0:f4:c4:f3:28:e3:8a:fa:33:30:45:26:ce:77:f9:3d: fa:32:d6:88:2c:f9:b0:15:50:3e:a7:8c:91:e7:ea:eb:f8:b2: 30:4a:27:d6:a7:33:43:df:7b:52:80:f3:ab:ce:0d:75:9a:6d: aa:ab:3b:0a:e4:dd:9e:42:3f:52:90:ad:90:62:39:c1:fe:2c: a8:a6:9c:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCODMxMTAvBgNVBAUTKEM0NkQ1OTEzRjZDMjUwQzZBRUUyRjMyNzQ1MzVDRTg2 NjI5NUI5RkEwHhcNMjUxMjI0MjEzMTQ1WhcNMjUxMjMxMjEzMTQ1WjAYMRYwFAYD VQQDDA02OTRjNWJjMS05ODZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzDh8dpy9XxYMrmXApLuRDCdvJROuHPrg7GYwjomw6RdDq6rkKUYcY732xdHF c/5NDEnREIhzW1UNoYDGw385oVPD+veX6QSb5dkDQ8bnbvmqXeHzvI1KYxnU3Hbb WqHIvUvXIlxYSk/F/OpQu8wghHB3Z9F8z2NtSPT4D8DZaLzP3v1tga6Ng4ZpYKpA ldU7ZxYv5E7ZlnflLWc60SripypUCppCuel9+CcAjAx70crXbHxQ6buSZuDCrMzJ /uq16SozcnrL2fyHcGdAJRhVYkmT9w2yHiFY3/lPZhfIlaHxu5bRQW/SsthNEqwM D00FK+UXqUA4denTJAC+6E1hBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHY84t0k jXtZoZPuIyN6kKjowL2vMB8GA1UdIwQYMBaAFMRtWRP2wlDGruLzJ0U1zoZilbn6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEI4My83N0FBNDE0Njg3 RTExMUVCQjUwMUNCMjVDNEY5QUUwMi94RzFaRV9iQ1VNYXU0dk1uUlRYT2htS1Z1 Zm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hHMVpFX2JDVU1hdTR2TW5SVFhPaG1LVnVmby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEI4My83N0FBNDE0Njg3RTExMUVCQjUwMUNCMjVDNEY5QUUwMi94RzFaRV9iQ1VN YXU0dk1uUlRYT2htS1Z1Zm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwrQtBlNNTcc62qYyBU1AVWQwdyecRO+D4bCIBOEwPy/HysrHKZeg1 wB93DYIOB5pFSfQp9WMuM1/2NW3FotwSpMtMpevLLtgQGWyZfU1UzReJMwLKaEsq Nfp4Oic+rQcbFjTZ6bre/fT+bGZnvX68TyxDINITSmg1vA+JifNQ3v9o8+C7tjnA qaCP2xbTdcpxeUe69Ksc5P6W/yU4HFoPsS28QTHf3OXs6XPsZ4NXVRylmVt2qPD0 xPMo44r6MzBFJs53+T36MtaILPmwFVA+p4yR5+rr+LIwSifWpzND33tSgPOrzg11 mm2qqzsK5N2eQj9SkK2QYjnB/iyoppy6 -----END CERTIFICATE-----Generated at Thu Dec 25 02:44:16 2025 by rpki-client