This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft File: xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft (raw, json) Hash identifier: pKA/1yRuc3EpfKIkHx9dzEEdrDYzuebxd0etfr7JG2M= Subject key identifier: C1:5C:CF:CB:90:75:AB:16:BC:19:96:31:B7:41:41:72:96:12:26:82 Authority key identifier: C4:3D:19:C6:D3:97:11:2A:2A:FE:D4:66:61:22:FC:57:6B:47:88:6D Certificate issuer: /CN=A914CA5C/serialNumber=C43D19C6D397112A2AFED4666122FC576B47886D Certificate serial: 03F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xD0ZxtOXESoq_tRmYSL8V2tHiG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft Manifest number: 03EE Signing time: Sat 20 Dec 2025 23:46:55 +0000 Manifest this update: Sat 20 Dec 2025 23:46:54 +0000 Manifest next update: Sat 27 Dec 2025 23:46:54 +0000 Files and hashes: 1: xD0ZxtOXESoq_tRmYSL8V2tHiG0.crl (hash: BpqyTeqjulrf1gmtOC4j3ncxA0rug9kDsNCxigAPYgg=) 2: 0484BF6EF76311EC93951455C4F9AE02.roa (hash: ycFGkMxe7h4Ku30iu/P421qHyOaZ/lm2w5Y03BcYNz8=) 3: 3F7E8DCAA45C11EC845FEA36C4F9AE02.roa (hash: DbGKbMecwcykqDAfU21+x6Kvm9Z6g5WTzg4SdqXRisc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.crl rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xD0ZxtOXESoq_tRmYSL8V2tHiG0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 23:46:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1015 (0x3f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CA5C, serialNumber=C43D19C6D397112A2AFED4666122FC576B47886D Validity Not Before: Dec 20 23:46:54 2025 GMT Not After : Dec 27 23:46:54 2025 GMT Subject: CN=6947356f-7095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:38:db:d8:f7:11:c2:3c:9d:0d:34:35:61:cd: 34:92:5d:c3:b4:13:21:72:e6:7f:7f:b1:71:4b:2d: 95:02:62:85:af:48:87:8e:87:32:92:d0:64:cf:9f: 5c:35:0d:98:9b:db:88:81:7a:2d:c5:14:2c:65:3d: 06:e2:12:07:78:9c:25:8f:d0:02:82:98:ed:e6:2d: a0:9f:c5:5f:fb:50:7b:03:74:f0:75:cd:90:a2:bd: 54:99:c6:09:c0:f6:ab:55:84:65:75:5b:c4:4c:33: 01:3c:b0:95:de:40:8a:22:1d:59:f5:c0:86:bf:58: 8e:e7:43:a1:4c:0d:7c:0e:25:27:c6:e2:b2:c7:d1: 25:91:3b:4a:94:86:77:b4:64:13:66:a6:69:54:c1: 34:47:94:9e:d8:b2:3c:d6:c4:6b:0e:30:8e:e5:fa: e7:c3:41:80:05:9d:37:72:19:3b:11:00:03:a5:fe: ef:de:b5:b5:e6:63:a8:5e:cf:4e:b5:cc:7a:43:d7: f7:17:a9:10:10:3a:bf:13:ae:2c:f8:1a:c2:18:f9: 3d:8f:31:bb:1b:9e:f8:d4:95:0a:02:6c:8c:b6:a9: e8:eb:ec:00:09:e6:00:5d:2e:18:49:a3:bd:0c:50: 16:c7:62:0c:9c:38:92:5b:d9:52:51:00:8a:36:63: eb:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:5C:CF:CB:90:75:AB:16:BC:19:96:31:B7:41:41:72:96:12:26:82 X509v3 Authority Key Identifier: keyid:C4:3D:19:C6:D3:97:11:2A:2A:FE:D4:66:61:22:FC:57:6B:47:88:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xD0ZxtOXESoq_tRmYSL8V2tHiG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:7a:96:07:eb:ee:3c:43:5e:75:b7:fe:56:7d:fb:26:e6:44: dc:e1:aa:35:d1:57:36:86:e3:ac:45:b6:2b:c8:6d:28:15:ac: 0f:db:fd:53:44:e2:e5:7f:39:e6:59:1b:74:38:80:58:41:fd: 0e:08:16:51:48:05:d4:9c:6b:c0:8f:9a:e5:13:c9:49:9f:ac: e7:16:70:fa:df:f2:fc:d2:3e:32:d1:b5:24:5a:7d:e1:96:dd: ae:2a:42:b8:4c:c9:e4:cc:81:39:51:df:86:9a:18:75:73:fd: 32:e7:a9:e0:23:fa:78:88:c3:02:4c:73:e0:13:24:a3:f2:b9: 26:85:ae:4c:f8:52:da:0c:c7:19:07:68:07:ec:d2:24:45:19: be:95:d8:d1:2f:c7:bf:9b:59:28:27:6b:af:74:71:e3:bb:c0: fb:04:55:ad:08:e7:3c:9a:98:a3:a9:f7:17:8f:50:c7:e2:b6: 62:e6:fd:08:02:5d:30:40:7b:21:2a:c3:61:33:bc:02:a4:e1: 54:c6:5a:1d:1a:b6:2f:c4:42:80:89:86:8f:84:cd:84:cb:6b: de:6f:a1:8a:bf:90:df:e9:aa:ce:6c:3f:92:88:e6:69:b7:21: 95:3b:78:51:ab:12:eb:5e:43:8f:bd:9b:45:f0:fc:eb:e0:5f: 7f:e8:44:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENBNUMxMTAvBgNVBAUTKEM0M0QxOUM2RDM5NzExMkEyQUZFRDQ2NjYxMjJGQzU3 NkI0Nzg4NkQwHhcNMjUxMjIwMjM0NjU0WhcNMjUxMjI3MjM0NjU0WjAYMRYwFAYD VQQDDA02OTQ3MzU2Zi03MDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmTjb2PcRwjydDTQ1Yc00kl3DtBMhcuZ/f7FxSy2VAmKFr0iHjocyktBkz59c NQ2Ym9uIgXotxRQsZT0G4hIHeJwlj9ACgpjt5i2gn8Vf+1B7A3Twdc2Qor1UmcYJ wParVYRldVvETDMBPLCV3kCKIh1Z9cCGv1iO50OhTA18DiUnxuKyx9ElkTtKlIZ3 tGQTZqZpVME0R5Se2LI81sRrDjCO5frnw0GABZ03chk7EQADpf7v3rW15mOoXs9O tcx6Q9f3F6kQEDq/E64s+BrCGPk9jzG7G5741JUKAmyMtqno6+wACeYAXS4YSaO9 DFAWx2IMnDiSW9lSUQCKNmPrbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMFcz8uQ dasWvBmWMbdBQXKWEiaCMB8GA1UdIwQYMBaAFMQ9GcbTlxEqKv7UZmEi/FdrR4ht MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0E1Qy82NTEwRTMxMEE0 NTkxMUVDQTg3RkQ4MERDNEY5QUUwMi94RDBaeHRPWEVTb3FfdFJtWVNMOFYydEhp RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hEMFp4dE9YRVNvcV90Um1ZU0w4VjJ0SGlHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0E1Qy82NTEwRTMxMEE0NTkxMUVDQTg3RkQ4MERDNEY5QUUwMi94RDBaeHRPWEVT b3FfdFJtWVNMOFYydEhpRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJepYH6+48Q151t/5Wffsm5kTc4ao10Vc2huOsRbYryG0oFawP2/1T ROLlfznmWRt0OIBYQf0OCBZRSAXUnGvAj5rlE8lJn6znFnD63/L80j4y0bUkWn3h lt2uKkK4TMnkzIE5Ud+Gmhh1c/0y56ngI/p4iMMCTHPgEySj8rkmha5M+FLaDMcZ B2gH7NIkRRm+ldjRL8e/m1koJ2uvdHHju8D7BFWtCOc8mpijqfcXj1DH4rZi5v0I Al0wQHshKsNhM7wCpOFUxlodGrYvxEKAiYaPhM2Ey2veb6GKv5Df6arObD+SiOZp tyGVO3hRqxLrXkOPvZtF8Pzr4F9/6EQm -----END CERTIFICATE-----Generated at Sun Dec 21 12:48:09 2025 by rpki-client