This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.mft File: X48BYbesuyVfE88IG2ZTYZtOLAI.mft (raw, json) Hash identifier: SBiks+zzi16jhm2GZbMXwa2b19ljSpmgXc37vYcj13w= Subject key identifier: 50:79:E0:4E:15:04:96:EB:8D:00:D3:EE:A5:51:4C:A2:B6:04:8F:5A Authority key identifier: 5F:8F:01:61:B7:AC:BB:25:5F:13:CF:08:1B:66:53:61:9B:4E:2C:02 Certificate issuer: /CN=A9149A0D/serialNumber=5F8F0161B7ACBB255F13CF081B6653619B4E2C02 Certificate serial: 0829 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X48BYbesuyVfE88IG2ZTYZtOLAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.mft Manifest number: 0827 Signing time: Tue 30 Dec 2025 20:15:09 +0000 Manifest this update: Tue 30 Dec 2025 20:15:09 +0000 Manifest next update: Tue 06 Jan 2026 20:15:09 +0000 Files and hashes: 1: X48BYbesuyVfE88IG2ZTYZtOLAI.crl (hash: x9gxo/P2SwcIbSE5XwFnqdulCBg//xeV18Rf4gmtoTc=) 2: 799C6AD8149711EFB0CB9E0AC4F9AE02.roa (hash: Z6c5AlKVKf/klPMN7KddRfh49KHTtioUb3aQg5mvfg0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.crl rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X48BYbesuyVfE88IG2ZTYZtOLAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 Jan 2026 20:15:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2089 (0x829) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149A0D, serialNumber=5F8F0161B7ACBB255F13CF081B6653619B4E2C02 Validity Not Before: Dec 30 20:15:09 2025 GMT Not After : Jan 6 20:15:09 2026 GMT Subject: CN=695432cd-b2ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:69:2e:7f:05:cd:6f:05:b7:c8:54:41:90:02: 4b:96:b0:36:46:fe:d8:ec:2e:39:00:a2:33:11:3e: 7b:16:ac:82:00:ba:01:62:64:5c:9e:3c:e3:1e:9d: 0a:c7:2c:73:0f:ec:d4:9b:08:9b:b4:95:a4:92:58: e6:d0:58:96:f2:6a:f6:4a:a0:d2:e1:6b:83:59:9c: 3d:64:51:97:d0:cf:ce:9c:e0:91:99:df:b2:84:7c: 7c:a7:08:47:84:a9:35:14:5d:2e:95:eb:e8:87:90: bc:04:4e:8e:96:f3:0a:0d:8f:51:d9:ac:05:b9:bb: b7:43:b3:12:46:17:37:24:fe:48:a8:c3:03:9f:c1: 89:d3:17:4d:59:24:6a:f9:be:c3:07:25:1a:87:57: 7f:12:d8:59:67:09:60:40:8f:01:ba:07:b0:40:f6: 95:79:89:1d:f2:82:1f:1a:ca:c6:53:34:46:d7:47: df:b0:7d:53:ee:37:9d:92:aa:92:3a:28:3e:02:07: f5:64:df:1e:df:99:bc:cd:92:96:36:88:10:b6:f8: e0:6a:66:dd:9e:be:94:f4:e2:b4:e7:58:a2:22:da: 56:5a:05:fa:b2:17:07:e9:bc:63:7e:d4:70:23:d1: ef:e6:64:2c:a6:dd:16:96:91:eb:12:b2:ae:b7:a7: 6a:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:79:E0:4E:15:04:96:EB:8D:00:D3:EE:A5:51:4C:A2:B6:04:8F:5A X509v3 Authority Key Identifier: keyid:5F:8F:01:61:B7:AC:BB:25:5F:13:CF:08:1B:66:53:61:9B:4E:2C:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X48BYbesuyVfE88IG2ZTYZtOLAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:fd:28:d7:cf:40:3f:cc:73:5a:e3:bc:ae:51:f6:f3:8a:2a: 89:34:3b:6c:0e:6c:c5:0f:da:c7:fb:85:7c:43:a5:88:2e:83: 54:b3:b9:3c:63:f7:57:a9:74:63:8a:63:2a:a2:a5:00:22:f0: a3:2a:7f:3c:02:f0:66:c7:e9:9f:60:0b:61:8f:06:da:32:8c: 4d:4a:6d:16:f7:1e:52:83:c2:99:7b:4d:45:2a:5d:03:95:ad: 30:a6:5c:2c:5a:d3:81:87:a0:51:83:0c:a5:9b:71:3e:6b:d4: 20:07:d3:d4:31:56:39:cc:3e:64:34:bb:af:98:0e:25:d9:ba: c5:7a:55:d6:89:4e:c2:a4:d7:67:de:8b:51:cc:5d:51:72:3a: 00:a3:a5:34:ca:41:fd:9a:23:79:ad:28:6f:02:37:05:8b:87: 78:82:5f:55:b7:3a:b8:13:4e:35:bb:5c:26:46:37:d7:4a:da: cf:05:a9:3d:c8:dc:7a:4a:16:16:d1:06:ad:f7:1c:64:1d:e8: de:ad:bb:68:43:d1:d4:f0:25:52:85:60:15:14:7f:83:d5:87: ce:5c:05:92:b3:d9:06:c8:71:42:20:56:ec:48:c4:f6:b7:d5: 22:e0:54:5d:37:72:db:5e:77:b0:22:28:39:b2:b0:a2:1f:6b: 75:46:24:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlBMEQxMTAvBgNVBAUTKDVGOEYwMTYxQjdBQ0JCMjU1RjEzQ0YwODFCNjY1MzYx OUI0RTJDMDIwHhcNMjUxMjMwMjAxNTA5WhcNMjYwMTA2MjAxNTA5WjAYMRYwFAYD VQQDDA02OTU0MzJjZC1iMmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2kufwXNbwW3yFRBkAJLlrA2Rv7Y7C45AKIzET57FqyCALoBYmRcnjzjHp0K xyxzD+zUmwibtJWkkljm0FiW8mr2SqDS4WuDWZw9ZFGX0M/OnOCRmd+yhHx8pwhH hKk1FF0ulevoh5C8BE6OlvMKDY9R2awFubu3Q7MSRhc3JP5IqMMDn8GJ0xdNWSRq +b7DByUah1d/EthZZwlgQI8BugewQPaVeYkd8oIfGsrGUzRG10ffsH1T7jedkqqS Oig+Agf1ZN8e35m8zZKWNogQtvjgambdnr6U9OK051iiItpWWgX6shcH6bxjftRw I9Hv5mQspt0WlpHrErKut6dq3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFB54E4V BJbrjQDT7qVRTKK2BI9aMB8GA1UdIwQYMBaAFF+PAWG3rLslXxPPCBtmU2GbTiwC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUEwRC8wRkI3OTE2NEZC MTUxMUVBQjAxMUVDNkVDNEY5QUUwMi9YNDhCWWJlc3V5VmZFODhJRzJaVFladE9M QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0OEJZYmVzdXlWZkU4OElHMlpUWVp0T0xBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUEwRC8wRkI3OTE2NEZCMTUxMUVBQjAxMUVDNkVDNEY5QUUwMi9YNDhCWWJlc3V5 VmZFODhJRzJaVFladE9MQUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1/SjXz0A/zHNa47yuUfbziiqJNDtsDmzFD9rH+4V8Q6WILoNUs7k8 Y/dXqXRjimMqoqUAIvCjKn88AvBmx+mfYAthjwbaMoxNSm0W9x5Sg8KZe01FKl0D la0wplwsWtOBh6BRgwylm3E+a9QgB9PUMVY5zD5kNLuvmA4l2brFelXWiU7CpNdn 3otRzF1RcjoAo6U0ykH9miN5rShvAjcFi4d4gl9Vtzq4E041u1wmRjfXStrPBak9 yNx6ShYW0Qat9xxkHejerbtoQ9HU8CVShWAVFH+D1YfOXAWSs9kGyHFCIFbsSMT2 t9Ui4FRdN3LbXnewIig5srCiH2t1RiQZ -----END CERTIFICATE-----Generated at Wed Dec 31 04:16:10 2025 by rpki-client