This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft File: xPfznmL0ydeMXhL9wVGuTjK8mkI.mft (raw, json) Hash identifier: rJzaHmJPilSJR3ItOdjdpDol33ex4BTyxLzIllsggOg= Subject key identifier: 81:EC:4D:6B:D3:F9:A8:5C:87:0B:CB:08:56:B5:F4:97:E0:55:B2:E4 Authority key identifier: C4:F7:F3:9E:62:F4:C9:D7:8C:5E:12:FD:C1:51:AE:4E:32:BC:9A:42 Certificate issuer: /CN=A914B29B/serialNumber=C4F7F39E62F4C9D78C5E12FDC151AE4E32BC9A42 Certificate serial: 0139 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft Manifest number: 0133 Signing time: Fri 19 Dec 2025 03:44:00 +0000 Manifest this update: Fri 19 Dec 2025 03:43:59 +0000 Manifest next update: Fri 26 Dec 2025 03:43:59 +0000 Files and hashes: 1: xPfznmL0ydeMXhL9wVGuTjK8mkI.crl (hash: zWv+ezlI3C080njSA8gukX8xlhLc3uH+IozgPsv/aSI=) 2: 127604E20F8B11EF87FC5918C4F9AE02.roa (hash: Ur2f+2mtS8rG+Wi5lYOAmNS8a2RYYseSRQgStkLqo/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.crl rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:43:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B29B, serialNumber=C4F7F39E62F4C9D78C5E12FDC151AE4E32BC9A42 Validity Not Before: Dec 19 03:43:59 2025 GMT Not After : Dec 26 03:43:59 2025 GMT Subject: CN=6944ca00-b111 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:6b:34:b1:3a:7f:48:d6:11:6c:0f:10:35:f8: a0:82:49:f0:7d:14:1c:ae:55:17:8a:87:c2:aa:1d: 8c:7a:8e:4f:de:02:c5:a5:68:87:6e:ea:2c:38:f2: 0e:9a:62:6b:65:76:ee:ef:08:cd:fe:4d:1f:3f:97: 9b:16:3b:66:0e:ea:81:21:30:36:ab:70:19:a4:f1: 87:47:4b:16:db:7b:db:aa:f1:6a:b2:32:7c:00:cd: da:94:4a:2f:59:f7:89:84:45:27:9d:6e:42:79:d5: b4:4e:89:f5:a0:ff:4a:8a:82:47:d2:c6:e6:62:e8: ff:c2:4a:f0:55:57:fb:d7:4a:4e:ed:78:5e:0d:81: b7:94:0b:47:a8:cf:57:39:71:97:b0:61:35:59:59: 81:03:05:64:70:73:26:f1:fe:3f:25:25:88:96:97: 2e:e9:f6:57:b4:c4:c3:5e:17:6a:b2:40:96:68:d3: 7e:25:b6:7f:f6:a4:6a:f2:dc:2a:be:3a:f7:8e:c0: 62:21:a7:67:50:f1:ff:43:cd:7a:17:d3:ba:91:d6: bd:ed:00:cf:58:56:af:6f:98:9b:32:f6:fb:39:df: b0:a8:d4:28:aa:d1:63:e6:ff:e4:8a:92:57:55:19: 05:45:26:60:5f:7f:e1:ee:75:84:92:f4:d8:79:5a: 29:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:EC:4D:6B:D3:F9:A8:5C:87:0B:CB:08:56:B5:F4:97:E0:55:B2:E4 X509v3 Authority Key Identifier: keyid:C4:F7:F3:9E:62:F4:C9:D7:8C:5E:12:FD:C1:51:AE:4E:32:BC:9A:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:6a:c2:f2:39:16:c3:35:7e:d2:e7:30:34:da:b2:ea:03:5e: 68:02:0b:c9:fc:ac:41:27:ba:4f:a3:63:ad:9e:0c:36:f5:f0: ef:d8:e3:e1:d9:65:41:fa:15:68:39:c7:b6:5d:db:89:23:3e: 1d:ee:1c:c8:6e:8d:6d:f3:00:de:ab:d0:62:6c:ae:fe:4e:78: a7:02:5b:8c:a5:3a:05:f8:62:99:14:05:47:10:6d:ef:af:b6: 60:bf:04:d0:13:e6:4d:95:5f:d8:f7:5f:f3:07:39:a9:28:a7: f4:ce:6d:50:46:33:34:03:36:56:b0:fa:ee:0a:d2:eb:d3:49: 17:21:6f:0f:29:5a:0f:37:df:46:58:19:57:20:63:f2:a1:ac: 8b:72:0c:00:86:33:09:d8:07:6a:22:6d:23:32:50:dc:35:e4: c8:1c:91:7c:ae:04:f3:11:e3:40:c6:a8:d4:c6:6a:74:97:d1: b0:f7:bc:52:54:f9:ab:7f:c2:d6:62:1b:16:0a:6b:9b:32:b6: a9:5e:50:1d:0c:5e:9e:cf:21:4b:55:01:47:32:1f:b1:4c:a4: ef:0f:4d:7e:f4:4e:89:bb:d1:18:f6:5d:15:c8:09:09:71:ed: 87:c4:cb:b8:38:09:ba:c9:c5:b8:cf:38:b1:7b:c2:c4:41:f5: 8a:28:0e:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIyOUIxMTAvBgNVBAUTKEM0RjdGMzlFNjJGNEM5RDc4QzVFMTJGREMxNTFBRTRF MzJCQzlBNDIwHhcNMjUxMjE5MDM0MzU5WhcNMjUxMjI2MDM0MzU5WjAYMRYwFAYD VQQDDA02OTQ0Y2EwMC1iMTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlms0sTp/SNYRbA8QNfiggknwfRQcrlUXiofCqh2Meo5P3gLFpWiHbuosOPIO mmJrZXbu7wjN/k0fP5ebFjtmDuqBITA2q3AZpPGHR0sW23vbqvFqsjJ8AM3alEov WfeJhEUnnW5CedW0Ton1oP9KioJH0sbmYuj/wkrwVVf710pO7XheDYG3lAtHqM9X OXGXsGE1WVmBAwVkcHMm8f4/JSWIlpcu6fZXtMTDXhdqskCWaNN+JbZ/9qRq8twq vjr3jsBiIadnUPH/Q816F9O6kda97QDPWFavb5ibMvb7Od+wqNQoqtFj5v/kipJX VRkFRSZgX3/h7nWEkvTYeVopYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIHsTWvT +ahchwvLCFa19JfgVbLkMB8GA1UdIwQYMBaAFMT3855i9MnXjF4S/cFRrk4yvJpC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjI5Qi84QTNFMUQxQTBG ODIxMUVGODI2NkYwNUVDNEY5QUUwMi94UGZ6bm1MMHlkZU1YaEw5d1ZHdVRqSzht a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hQZnpubUwweWRlTVhoTDl3Vkd1VGpLOG1rSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjI5Qi84QTNFMUQxQTBGODIxMUVGODI2NkYwNUVDNEY5QUUwMi94UGZ6bm1MMHlk ZU1YaEw5d1ZHdVRqSzhta0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2asLyORbDNX7S5zA02rLqA15oAgvJ/KxBJ7pPo2Otngw29fDv2OPh 2WVB+hVoOce2XduJIz4d7hzIbo1t8wDeq9BibK7+TninAluMpToF+GKZFAVHEG3v r7ZgvwTQE+ZNlV/Y91/zBzmpKKf0zm1QRjM0AzZWsPruCtLr00kXIW8PKVoPN99G WBlXIGPyoayLcgwAhjMJ2AdqIm0jMlDcNeTIHJF8rgTzEeNAxqjUxmp0l9Gw97xS VPmrf8LWYhsWCmubMrapXlAdDF6ezyFLVQFHMh+xTKTvD01+9E6Ju9EY9l0VyAkJ ce2HxMu4OAm6ycW4zzixe8LEQfWKKA4R -----END CERTIFICATE-----Generated at Sat Dec 20 05:16:57 2025 by rpki-client