This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft File: XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft (raw, json) Hash identifier: 2ZLnwCglbVpPOvM2URag1HrYm2DRqIc5dbnNG1YvyEA= Subject key identifier: 5F:D1:B5:38:02:F7:78:5C:F6:EE:6D:22:22:E3:2F:90:9C:67:6A:2C Authority key identifier: 5C:2C:58:27:C4:E8:99:BC:2A:50:34:06:C5:CB:09:B1:8E:13:3F:C6 Certificate issuer: /CN=A9153F9E/serialNumber=5C2C5827C4E899BC2A503406C5CB09B18E133FC6 Certificate serial: 073F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCxYJ8TombwqUDQGxcsJsY4TP8Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft Manifest number: 073F Signing time: Wed 31 Dec 2025 21:16:56 +0000 Manifest this update: Wed 31 Dec 2025 21:16:55 +0000 Manifest next update: Wed 07 Jan 2026 21:16:55 +0000 Files and hashes: 1: XCxYJ8TombwqUDQGxcsJsY4TP8Y.crl (hash: YFWS/82K3ceiCvm5t9+IyB3V85KTs4z958KQ9+I6/gA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.crl rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCxYJ8TombwqUDQGxcsJsY4TP8Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 21:16:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1855 (0x73f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153F9E, serialNumber=5C2C5827C4E899BC2A503406C5CB09B18E133FC6 Validity Not Before: Dec 31 21:16:55 2025 GMT Not After : Jan 7 21:16:55 2026 GMT Subject: CN=695592c8-b602 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ba:a2:62:62:f0:20:83:c6:01:a3:da:7a:11: 39:96:9d:b8:71:49:c3:42:4c:d3:28:49:dc:e0:75: 39:a8:a2:57:58:89:a1:95:3a:e2:00:97:e2:8b:f5: 1a:71:1f:37:57:26:66:36:9d:92:12:f2:17:16:6d: 76:11:29:23:33:f2:82:f7:40:5e:50:47:7a:41:ab: dd:2b:71:c0:db:34:60:30:d0:bd:0c:34:a0:e7:5a: e8:8f:a8:c0:a2:f3:cc:d6:f3:0b:e7:8e:f4:16:1b: 94:46:c7:e2:4e:f6:9c:7d:f3:ff:45:d6:da:be:8d: c9:97:b4:af:b6:b7:bc:3a:03:9a:0c:52:d5:69:74: 94:6f:7e:f3:e9:00:6e:78:88:30:7c:f4:54:3f:15: c7:0b:c8:dd:7b:84:f0:56:4e:76:60:2e:d2:6e:80: 5c:d1:34:23:00:85:5d:c4:41:f7:b5:7c:84:23:f8: 7b:a1:15:b4:6a:10:13:d4:5e:68:66:d7:f4:9d:60: 4a:4a:28:f4:74:e9:b4:fc:ba:47:34:e8:cb:c5:fd: b2:0b:b0:4b:a5:08:43:07:0c:fc:f6:ac:a6:fb:d0: 55:ec:3d:8d:7f:b3:fe:39:14:70:bd:46:65:ef:fe: 17:de:ae:60:22:e6:40:79:00:8a:1a:55:d5:55:59: 64:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:D1:B5:38:02:F7:78:5C:F6:EE:6D:22:22:E3:2F:90:9C:67:6A:2C X509v3 Authority Key Identifier: keyid:5C:2C:58:27:C4:E8:99:BC:2A:50:34:06:C5:CB:09:B1:8E:13:3F:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCxYJ8TombwqUDQGxcsJsY4TP8Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:1a:e3:68:11:3a:13:aa:00:2c:98:76:93:8b:1f:4f:24:db: 31:84:e1:ec:18:49:89:c1:c5:3d:30:fa:b4:ba:d8:1f:8c:bc: c3:04:d2:78:54:2b:8c:76:72:b0:a2:87:77:d9:65:fa:ff:89: 85:97:56:6f:3c:34:57:46:b2:c1:f9:73:46:96:29:ea:0e:04: cf:32:90:64:e4:75:e3:35:13:c5:7d:a7:57:c2:ba:88:c6:52: ac:09:f5:24:92:83:84:4d:92:2c:17:b8:6c:e4:08:a7:c2:d1: 69:e8:9a:ea:85:52:19:99:e2:4c:6c:9d:a7:72:03:86:fe:7d: a6:4e:98:c3:8c:ce:53:47:c4:dd:56:79:60:6c:26:b8:23:68: d3:95:d5:33:8d:2c:50:c6:4c:02:6a:62:65:80:c1:ec:19:e9: bb:fe:cc:33:ad:be:37:a5:ed:1e:4b:c4:70:2b:14:b2:d2:94: bc:b2:7a:27:b2:cd:25:f7:97:ff:b1:d1:2c:8e:ab:a5:b5:df: 23:5f:c6:c3:85:18:7e:50:75:61:5a:55:a6:7d:b2:c5:a0:d0: 55:16:f7:a8:dc:4b:b6:c8:1a:62:ca:b8:b0:a4:67:46:44:db: d7:1d:0b:9d:4c:70:53:d9:95:82:c8:e5:79:b2:16:b1:3c:8d: 0a:38:97:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNGOUUxMTAvBgNVBAUTKDVDMkM1ODI3QzRFODk5QkMyQTUwMzQwNkM1Q0IwOUIx OEUxMzNGQzYwHhcNMjUxMjMxMjExNjU1WhcNMjYwMTA3MjExNjU1WjAYMRYwFAYD VQQDDA02OTU1OTJjOC1iNjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0bqiYmLwIIPGAaPaehE5lp24cUnDQkzTKEnc4HU5qKJXWImhlTriAJfii/Ua cR83VyZmNp2SEvIXFm12ESkjM/KC90BeUEd6QavdK3HA2zRgMNC9DDSg51roj6jA ovPM1vML5470FhuURsfiTvacffP/Rdbavo3Jl7Svtre8OgOaDFLVaXSUb37z6QBu eIgwfPRUPxXHC8jde4TwVk52YC7SboBc0TQjAIVdxEH3tXyEI/h7oRW0ahAT1F5o Ztf0nWBKSij0dOm0/LpHNOjLxf2yC7BLpQhDBwz89qym+9BV7D2Nf7P+ORRwvUZl 7/4X3q5gIuZAeQCKGlXVVVlkoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF/RtTgC 93hc9u5tIiLjL5CcZ2osMB8GA1UdIwQYMBaAFFwsWCfE6Jm8KlA0BsXLCbGOEz/G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0Y5RS8wMEQ4Qzg4QzUz QUYxMUVCOTkzMDA5MTZDNEY5QUUwMi9YQ3hZSjhUb21id3FVRFFHeGNzSnNZNFRQ OFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hDeFlKOFRvbWJ3cVVEUUd4Y3NKc1k0VFA4WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0Y5RS8wMEQ4Qzg4QzUzQUYxMUVCOTkzMDA5MTZDNEY5QUUwMi9YQ3hZSjhUb21i d3FVRFFHeGNzSnNZNFRQOFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPGuNoEToTqgAsmHaTix9PJNsxhOHsGEmJwcU9MPq0utgfjLzDBNJ4 VCuMdnKwood32WX6/4mFl1ZvPDRXRrLB+XNGlinqDgTPMpBk5HXjNRPFfadXwrqI xlKsCfUkkoOETZIsF7hs5AinwtFp6JrqhVIZmeJMbJ2ncgOG/n2mTpjDjM5TR8Td VnlgbCa4I2jTldUzjSxQxkwCamJlgMHsGem7/swzrb43pe0eS8RwKxSy0pS8snon ss0l95f/sdEsjqultd8jX8bDhRh+UHVhWlWmfbLFoNBVFveo3Eu2yBpiyriwpGdG RNvXHQudTHBT2ZWCyOV5shaxPI0KOJeQ -----END CERTIFICATE-----Generated at Thu Jan 1 07:20:17 2026 by rpki-client