This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft File: XZRtT0edN7zhcAywut1RosPfYg8.mft (raw, json) Hash identifier: ikJS+hUpQ2xlgj0gN9ZEX00VuwJme8n87sYe01zK884= Subject key identifier: F4:BB:18:BC:F8:79:5F:EB:4C:9D:B1:85:B4:3C:5A:AF:3A:86:32:C4 Authority key identifier: 5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F Certificate issuer: /CN=A9152787/serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Certificate serial: E0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft Manifest number: DD Signing time: Sun 21 Dec 2025 04:43:33 +0000 Manifest this update: Sun 21 Dec 2025 04:43:32 +0000 Manifest next update: Sun 28 Dec 2025 04:43:32 +0000 Files and hashes: 1: XZRtT0edN7zhcAywut1RosPfYg8.crl (hash: G7KXU7r8O1ZeV1E86VlvneD3o9yblK/8j3vnFZAgFGM=) 2: CB24F37C033711F0B76A8520C4F9AE02.roa (hash: 98s3ds+kGQSvl0ncwBjphBprg+/d5JhkpC63UpEc2Nk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 04:43:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 224 (0xe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787, serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Validity Not Before: Dec 21 04:43:32 2025 GMT Not After : Dec 28 04:43:32 2025 GMT Subject: CN=69477af5-69b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:13:8b:5f:f7:49:45:2c:fa:33:f0:06:0e:41: 7b:ed:a9:43:2d:4a:a9:31:2e:de:b0:0a:7a:6a:cd: f3:5d:0d:67:21:a9:2d:0b:4f:35:ca:39:d3:3f:4b: c0:4b:1b:d2:81:12:af:1f:35:06:4c:f6:bc:71:36: 5e:5a:c3:f5:76:21:65:e3:8a:76:f0:9c:2b:b9:3b: 5e:86:5c:bb:1e:90:48:55:11:25:b6:12:10:27:b4: af:ee:a3:1a:22:42:46:73:12:88:eb:74:19:f6:e1: f5:3a:eb:ab:75:93:0d:42:86:71:ed:18:90:2b:4b: 33:51:0c:68:78:73:ef:82:be:89:a4:cb:db:2a:66: 32:22:57:5c:0e:88:cb:a1:3d:0d:95:c3:ac:99:52: bd:88:d8:af:81:b8:6f:93:1f:9e:ab:03:01:18:cd: 32:10:7b:5e:78:f5:19:6f:b1:16:d4:45:54:2b:08: 30:6e:8d:89:c1:98:83:d7:71:fa:ea:2a:a3:f7:a0: 5d:3a:b3:83:71:f6:8f:0a:96:b0:60:e9:a6:2a:e7: ed:44:33:b9:ef:0b:8c:4c:54:2b:7c:66:61:13:ef: f2:af:43:83:6b:45:ed:d5:04:6e:cb:e8:24:56:8b: 15:59:9d:af:cd:2a:5f:87:07:6f:a5:90:0c:52:2b: 25:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:BB:18:BC:F8:79:5F:EB:4C:9D:B1:85:B4:3C:5A:AF:3A:86:32:C4 X509v3 Authority Key Identifier: keyid:5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:ff:11:d6:17:0f:de:5b:10:20:41:37:d0:bd:af:fc:17:5c: 45:0c:94:c9:ac:bd:a7:4e:d6:07:ae:f3:7f:cb:17:18:01:eb: 92:20:a1:8f:d9:f2:7b:f4:36:e1:d5:70:34:d1:b5:3a:5d:71: d9:d4:92:90:9f:1a:d1:39:34:22:8e:55:c5:c9:d7:0e:bd:0a: 39:b8:75:3b:06:31:cc:7a:3a:72:5c:7f:29:1c:75:4c:f7:d6: d9:b5:22:f3:86:7c:5e:f3:73:3a:b3:df:c4:13:77:d7:c1:74: 10:a3:11:39:f6:18:8e:cd:1f:d1:d0:1d:c3:7b:2c:0b:90:73: ff:f9:d1:f8:e2:e9:77:08:66:e9:25:c1:7e:27:e0:56:3e:c1: df:6f:d5:e3:9a:f9:d4:90:d5:0b:48:d3:95:5b:18:4c:66:87: fe:5c:68:b3:f5:5a:1d:81:69:bb:05:9b:02:d4:a1:50:c2:ca: a3:fb:b8:80:c3:d8:81:42:d0:9f:1b:c8:89:c3:a9:52:03:0c: 54:d5:82:24:2a:10:f5:32:78:a7:f4:7e:70:b2:d7:56:be:d1: ea:bf:40:15:3b:9b:ff:dd:6a:87:54:4b:ba:88:94:3a:08:23: fa:b4:8c:e0:fe:0d:2c:4a:77:ac:8d:87:e6:e5:d3:49:04:17: 2e:9f:c7:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI3ODcxMTAvBgNVBAUTKDVEOTQ2RDRGNDc5RDM3QkNFMTcwMENCMEJBREQ1MUEy QzNERjYyMEYwHhcNMjUxMjIxMDQ0MzMyWhcNMjUxMjI4MDQ0MzMyWjAYMRYwFAYD VQQDDA02OTQ3N2FmNS02OWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzhOLX/dJRSz6M/AGDkF77alDLUqpMS7esAp6as3zXQ1nIaktC081yjnTP0vA SxvSgRKvHzUGTPa8cTZeWsP1diFl44p28JwruTtehly7HpBIVRElthIQJ7Sv7qMa IkJGcxKI63QZ9uH1OuurdZMNQoZx7RiQK0szUQxoeHPvgr6JpMvbKmYyIldcDojL oT0NlcOsmVK9iNivgbhvkx+eqwMBGM0yEHteePUZb7EW1EVUKwgwbo2JwZiD13H6 6iqj96BdOrODcfaPCpawYOmmKuftRDO57wuMTFQrfGZhE+/yr0ODa0Xt1QRuy+gk VosVWZ2vzSpfhwdvpZAMUislawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPS7GLz4 eV/rTJ2xhbQ8Wq86hjLEMB8GA1UdIwQYMBaAFF2UbU9HnTe84XAMsLrdUaLD32IP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mjc4Ny8yMjg2NTYyQThG NzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43emhjQXl3dXQxUm9zUGZZ ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1haUnRUMGVkTjd6aGNBeXd1dDFSb3NQZllnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Mjc4Ny8yMjg2NTYyQThGNzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43 emhjQXl3dXQxUm9zUGZZZzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7/xHWFw/eWxAgQTfQva/8F1xFDJTJrL2nTtYHrvN/yxcYAeuSIKGP 2fJ79Dbh1XA00bU6XXHZ1JKQnxrROTQijlXFydcOvQo5uHU7BjHMejpyXH8pHHVM 99bZtSLzhnxe83M6s9/EE3fXwXQQoxE59hiOzR/R0B3DeywLkHP/+dH44ul3CGbp JcF+J+BWPsHfb9XjmvnUkNULSNOVWxhMZof+XGiz9VodgWm7BZsC1KFQwsqj+7iA w9iBQtCfG8iJw6lSAwxU1YIkKhD1Mnin9H5wstdWvtHqv0AVO5v/3WqHVEu6iJQ6 CCP6tIzg/g0sSnesjYfm5dNJBBcun8cr -----END CERTIFICATE-----Generated at Mon Dec 22 03:51:37 2025 by rpki-client