This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft File: xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft (raw, json) Hash identifier: rp5Jre2ov3I75wSyJwOpZ+vk9Njo6FdDcSdq+M3qwNs= Subject key identifier: 08:E6:42:79:C6:02:0E:59:39:CF:CD:A9:69:07:90:6A:73:F7:F9:53 Authority key identifier: C4:3D:19:C6:D3:97:11:2A:2A:FE:D4:66:61:22:FC:57:6B:47:88:6D Certificate issuer: /CN=A914CA5C/serialNumber=C43D19C6D397112A2AFED4666122FC576B47886D Certificate serial: 03F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xD0ZxtOXESoq_tRmYSL8V2tHiG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft Manifest number: 03F0 Signing time: Wed 24 Dec 2025 23:39:45 +0000 Manifest this update: Wed 24 Dec 2025 23:39:44 +0000 Manifest next update: Wed 31 Dec 2025 23:39:44 +0000 Files and hashes: 1: xD0ZxtOXESoq_tRmYSL8V2tHiG0.crl (hash: xAHz3IB13GWP42Mobic8mFieyY6v86How5hV2XiixVg=) 2: 0484BF6EF76311EC93951455C4F9AE02.roa (hash: ycFGkMxe7h4Ku30iu/P421qHyOaZ/lm2w5Y03BcYNz8=) 3: 3F7E8DCAA45C11EC845FEA36C4F9AE02.roa (hash: DbGKbMecwcykqDAfU21+x6Kvm9Z6g5WTzg4SdqXRisc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.crl rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xD0ZxtOXESoq_tRmYSL8V2tHiG0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 23:39:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1017 (0x3f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CA5C, serialNumber=C43D19C6D397112A2AFED4666122FC576B47886D Validity Not Before: Dec 24 23:39:44 2025 GMT Not After : Dec 31 23:39:44 2025 GMT Subject: CN=694c79c0-2b04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0d:5e:31:76:51:dd:fd:c5:06:2c:9b:b0:8b: 80:03:cd:c2:8e:63:59:ed:f6:17:35:ad:e3:54:3b: 2b:e9:d1:16:41:07:92:41:75:fe:03:cc:fd:38:39: a3:4e:79:9e:f8:08:f4:b3:55:16:d9:00:1f:9d:56: 2b:5f:78:38:75:cf:00:95:da:3f:65:4a:29:e5:f5: b8:63:26:35:18:11:44:29:1e:95:31:70:22:8d:dd: 8e:62:6e:5b:01:90:db:a3:9c:83:47:22:3d:4b:2f: 09:bd:78:51:ed:ed:06:c1:6e:f5:6d:31:02:b4:61: f6:ae:77:fb:4e:5e:fa:62:3e:53:18:ae:6f:1c:86: 52:aa:0f:0c:dd:92:55:0c:db:30:42:b6:d0:17:a7: f1:97:42:ee:d6:96:30:1a:5b:c8:fb:ae:ef:64:61: c7:05:cd:aa:43:e0:2b:92:54:3f:b6:14:63:0a:17: b8:9f:8f:0d:4d:a4:72:62:4c:e7:66:5c:ac:cb:e4: ff:8e:81:b1:72:c2:05:8a:21:9c:ac:b5:a6:86:59: ee:59:c1:45:ec:e5:05:69:ed:8b:60:95:b1:6a:a3: 93:f3:2a:24:5a:60:39:6f:18:84:aa:74:45:b8:fe: 43:64:8f:4b:c2:1b:50:d0:57:1a:a0:74:82:51:55: 41:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:E6:42:79:C6:02:0E:59:39:CF:CD:A9:69:07:90:6A:73:F7:F9:53 X509v3 Authority Key Identifier: keyid:C4:3D:19:C6:D3:97:11:2A:2A:FE:D4:66:61:22:FC:57:6B:47:88:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xD0ZxtOXESoq_tRmYSL8V2tHiG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:87:7b:c0:54:4c:a3:ad:02:89:0a:8d:97:43:63:4f:af:89: 87:60:8d:34:ff:78:9b:50:a2:15:89:de:52:1f:a3:f0:56:19: ea:bb:ec:26:53:77:30:aa:a5:b9:8e:f5:7e:8d:e0:a7:8e:f0: ba:5f:8b:b5:be:8b:b9:c7:85:02:2d:c6:26:39:70:23:51:32: 72:53:bd:16:2c:ae:b0:da:c0:55:75:d3:3b:e2:2d:f0:95:84: b8:80:11:f7:a7:c9:7d:a7:f4:1f:0d:cb:cb:2a:d2:3e:8d:a3: 4f:b1:93:c9:c9:da:f4:17:97:15:e9:d6:9e:cf:f1:73:ec:e2: be:de:00:37:d2:9b:62:aa:fa:31:69:02:e8:b0:c6:a2:f4:07: 73:a9:35:98:17:72:d9:e5:c8:16:6a:bb:15:01:5c:e7:08:e7: 8d:34:5d:70:ba:c5:5d:fd:d5:4b:50:62:4b:c2:7f:2b:18:9a: 3a:54:69:57:ab:ab:d6:0a:fd:73:de:5f:0d:ef:b6:8a:e5:a5: 96:ab:6f:38:e6:cf:b9:91:b7:24:09:33:fc:79:ff:a6:10:28: f3:e2:90:a5:36:6f:3b:62:7c:3a:3c:79:bf:b6:1b:4c:c9:41: 8e:8c:fc:47:8a:f9:27:95:2e:17:89:61:da:34:95:80:e5:44: 41:83:13:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENBNUMxMTAvBgNVBAUTKEM0M0QxOUM2RDM5NzExMkEyQUZFRDQ2NjYxMjJGQzU3 NkI0Nzg4NkQwHhcNMjUxMjI0MjMzOTQ0WhcNMjUxMjMxMjMzOTQ0WjAYMRYwFAYD VQQDDA02OTRjNzljMC0yYjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuA1eMXZR3f3FBiybsIuAA83CjmNZ7fYXNa3jVDsr6dEWQQeSQXX+A8z9ODmj Tnme+Aj0s1UW2QAfnVYrX3g4dc8Aldo/ZUop5fW4YyY1GBFEKR6VMXAijd2OYm5b AZDbo5yDRyI9Sy8JvXhR7e0GwW71bTECtGH2rnf7Tl76Yj5TGK5vHIZSqg8M3ZJV DNswQrbQF6fxl0Lu1pYwGlvI+67vZGHHBc2qQ+ArklQ/thRjChe4n48NTaRyYkzn Zlysy+T/joGxcsIFiiGcrLWmhlnuWcFF7OUFae2LYJWxaqOT8yokWmA5bxiEqnRF uP5DZI9LwhtQ0FcaoHSCUVVBkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAjmQnnG Ag5ZOc/NqWkHkGpz9/lTMB8GA1UdIwQYMBaAFMQ9GcbTlxEqKv7UZmEi/FdrR4ht MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0E1Qy82NTEwRTMxMEE0 NTkxMUVDQTg3RkQ4MERDNEY5QUUwMi94RDBaeHRPWEVTb3FfdFJtWVNMOFYydEhp RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hEMFp4dE9YRVNvcV90Um1ZU0w4VjJ0SGlHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0E1Qy82NTEwRTMxMEE0NTkxMUVDQTg3RkQ4MERDNEY5QUUwMi94RDBaeHRPWEVT b3FfdFJtWVNMOFYydEhpRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYh3vAVEyjrQKJCo2XQ2NPr4mHYI00/3ibUKIVid5SH6PwVhnqu+wm U3cwqqW5jvV+jeCnjvC6X4u1vou5x4UCLcYmOXAjUTJyU70WLK6w2sBVddM74i3w lYS4gBH3p8l9p/QfDcvLKtI+jaNPsZPJydr0F5cV6daez/Fz7OK+3gA30ptiqvox aQLosMai9AdzqTWYF3LZ5cgWarsVAVznCOeNNF1wusVd/dVLUGJLwn8rGJo6VGlX q6vWCv1z3l8N77aK5aWWq2845s+5kbckCTP8ef+mECjz4pClNm87Ynw6PHm/thtM yUGOjPxHivknlS4XiWHaNJWA5URBgxMC -----END CERTIFICATE-----Generated at Thu Dec 25 07:12:05 2025 by rpki-client