This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft File: XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft (raw, json) Hash identifier: JSCOIoxGFm4hV850gBgxmUDz6EKRMxFlXFFmkvloOcQ= Subject key identifier: B1:15:E1:D9:5D:82:8F:3D:D2:E2:07:B0:29:DB:7E:CD:76:92:E5:A0 Authority key identifier: 5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A Certificate issuer: /CN=A91524AF/serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Certificate serial: 04F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft Manifest number: 04DE Signing time: Wed 24 Dec 2025 23:02:31 +0000 Manifest this update: Wed 24 Dec 2025 23:02:31 +0000 Manifest next update: Wed 31 Dec 2025 23:02:31 +0000 Files and hashes: 1: XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl (hash: cqwSrP1gcB/XLkgzFJ8YywRRyqcicP+jc+KN0ZmaBkA=) 2: 87840F3AFBD111EFB4804F27C4F9AE02.roa (hash: XEGmKD795YZlLqRq5mxXRuhSLfvM8giXSaR4iM1yE7A=) 3: BEB34436FE3211EFAA1D9A4EC4F9AE02.roa (hash: /oIGJsiNfPiS0jjzBJ10XDB1+r2d1oG/ppKU/1Snndc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 23:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1271 (0x4f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91524AF, serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Validity Not Before: Dec 24 23:02:31 2025 GMT Not After : Dec 31 23:02:31 2025 GMT Subject: CN=694c7107-2fc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a3:9d:cd:ae:4f:dc:42:1a:2d:3e:f4:a2:08: 18:1a:01:0a:d0:47:e7:08:35:45:08:e0:c0:67:6a: 46:79:1e:e3:cf:87:3d:67:4f:63:e9:9a:2d:9f:90: e7:ab:be:d8:0c:f3:6f:6d:a0:31:51:af:c2:5b:f0: ff:52:6d:b7:c9:2f:83:21:94:7d:96:d3:ba:68:03: 2a:ff:4b:7f:42:0a:89:43:db:ce:d3:b4:ad:a8:1a: ad:c0:4d:a5:90:ed:81:cf:7a:3c:fe:24:1b:3b:66: e6:59:8d:dd:1f:46:64:7f:3c:82:3e:41:2a:1d:12: 0a:dc:48:ec:88:07:f6:9a:13:d6:40:5c:88:c5:93: 60:0e:eb:19:90:05:e7:04:c0:cd:1b:40:72:91:ad: 46:50:28:4d:a8:7d:55:54:c4:38:82:82:01:47:fb: f1:58:71:01:31:0d:b4:ab:48:5d:33:95:f0:bb:5b: 55:9d:7b:88:3b:ed:fb:42:a4:71:c1:c1:82:c3:48: 4b:95:90:0a:57:fd:e0:d2:24:af:bc:0b:2e:7d:27: 68:a0:1b:fa:63:d4:ef:b8:d5:9d:77:41:69:c5:c4: a8:d1:ab:4a:38:3e:3a:1d:c6:ca:b4:c0:2c:c5:ad: 67:54:d5:eb:fd:a3:4e:b2:89:db:44:46:5c:13:5c: b1:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:15:E1:D9:5D:82:8F:3D:D2:E2:07:B0:29:DB:7E:CD:76:92:E5:A0 X509v3 Authority Key Identifier: keyid:5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:51:59:20:39:27:b8:12:7f:fa:7d:fa:bf:af:c0:da:a0:83: 19:b9:20:28:83:4b:40:7a:fd:13:57:4e:d3:ff:2b:97:1b:b3: ff:6b:a8:74:3f:3c:00:c9:32:fa:3d:f6:f5:0e:87:79:a8:37: d2:46:27:cd:90:b6:dc:31:89:ac:0f:9c:6f:83:7f:17:bb:08: 86:1e:33:b5:fb:43:15:a8:62:a9:de:9f:32:cc:ce:de:1f:ec: 37:4b:00:51:15:cb:b9:1c:81:64:48:86:d2:6a:19:3a:82:08: a6:91:66:6e:48:fb:c7:63:be:9a:8a:1d:d7:a2:1e:e3:8d:86: 9b:ca:6c:4b:b9:98:0a:0d:27:de:eb:77:cc:dd:45:47:87:22: a0:a2:2b:68:b8:14:cd:1f:23:12:98:7d:31:b3:c5:32:9b:2d: c3:6d:95:37:67:fe:e8:21:ac:85:87:3d:4a:d4:ed:15:17:24: 6c:52:17:77:20:3d:aa:1e:c4:b9:fb:e3:f4:59:be:9f:0f:19: 80:e0:ea:69:20:c9:fb:8c:c6:14:cc:26:4c:02:03:f0:7e:5a: 3a:e9:7e:57:6c:ed:c7:7c:cd:7e:62:97:f9:fd:0c:a3:aa:95: f7:45:77:e0:f4:72:8e:fa:f2:9b:f0:20:75:88:e0:6f:60:9f: 77:d4:54:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI0QUYxMTAvBgNVBAUTKDVDMzE1REFGQzUzQTgyRkRENjJDNzIwMDVDNzY0NDMz M0JDMDI5N0EwHhcNMjUxMjI0MjMwMjMxWhcNMjUxMjMxMjMwMjMxWjAYMRYwFAYD VQQDDA02OTRjNzEwNy0yZmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzKOdza5P3EIaLT70oggYGgEK0EfnCDVFCODAZ2pGeR7jz4c9Z09j6Zotn5Dn q77YDPNvbaAxUa/CW/D/Um23yS+DIZR9ltO6aAMq/0t/QgqJQ9vO07StqBqtwE2l kO2Bz3o8/iQbO2bmWY3dH0ZkfzyCPkEqHRIK3EjsiAf2mhPWQFyIxZNgDusZkAXn BMDNG0Byka1GUChNqH1VVMQ4goIBR/vxWHEBMQ20q0hdM5Xwu1tVnXuIO+37QqRx wcGCw0hLlZAKV/3g0iSvvAsufSdooBv6Y9TvuNWdd0FpxcSo0atKOD46HcbKtMAs xa1nVNXr/aNOsonbREZcE1yxHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLEV4dld go890uIHsCnbfs12kuWgMB8GA1UdIwQYMBaAFFwxXa/FOoL91ixyAFx2RDM7wCl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjRBRi83NkM3RjBGNDUx RjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2M1dMSElBWEhaRU16dkFL WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hERmRyOFU2Z3YzV0xISUFYSFpFTXp2QUtYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjRBRi83NkM3RjBGNDUxRjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2 M1dMSElBWEhaRU16dkFLWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsUVkgOSe4En/6ffq/r8DaoIMZuSAog0tAev0TV07T/yuXG7P/a6h0 PzwAyTL6Pfb1Dod5qDfSRifNkLbcMYmsD5xvg38XuwiGHjO1+0MVqGKp3p8yzM7e H+w3SwBRFcu5HIFkSIbSahk6ggimkWZuSPvHY76aih3Xoh7jjYabymxLuZgKDSfe 63fM3UVHhyKgoitouBTNHyMSmH0xs8Uymy3DbZU3Z/7oIayFhz1K1O0VFyRsUhd3 ID2qHsS5++P0Wb6fDxmA4OppIMn7jMYUzCZMAgPwflo66X5XbO3HfM1+Ypf5/Qyj qpX3RXfg9HKO+vKb8CB1iOBvYJ931FTy -----END CERTIFICATE-----Generated at Thu Dec 25 04:31:27 2025 by rpki-client