This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft File: XSeFtU0WPtAepUGLz6NPG3RWtxM.mft (raw, json) Hash identifier: CGGCrY0LbwQopNTzKXp1EFGUUMmvfpKrwXYZgXpn5rs= Subject key identifier: 90:C8:42:9C:CF:2F:7C:A4:6D:54:9B:F8:ED:7D:C8:7E:18:53:CB:55 Authority key identifier: 5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 Certificate issuer: /CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Certificate serial: 04FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft Manifest number: 04E4 Signing time: Thu 18 Dec 2025 23:07:36 +0000 Manifest this update: Thu 18 Dec 2025 23:07:35 +0000 Manifest next update: Thu 25 Dec 2025 23:07:35 +0000 Files and hashes: 1: XSeFtU0WPtAepUGLz6NPG3RWtxM.crl (hash: FfqBGJXn9dtBM3fr+pS6EIQiXp7jaaFL1mONFeus9Rc=) 2: 1F77EFA44C4011EC952D5A23C4F9AE02.roa (hash: 8xg5MTXXpBnfX0/pQTijWkIRf1MFFgkaGBEoo218ZXc=) 3: ACE844F047AA11ECA0F05026C4F9AE02.roa (hash: rDIISPx2Jw6kCtly/sr/saYDXZ1Vwq2i5nDputMMqM0=) 4: 6337963E4C3D11ECB5FF844FC4F9AE02.roa (hash: aTXEi1LzXTl0g2LyujQDHdlXFvir0+qlzsPxrUIKoNA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:07:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1279 (0x4ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CC5, serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Validity Not Before: Dec 18 23:07:35 2025 GMT Not After : Dec 25 23:07:35 2025 GMT Subject: CN=69448938-cdc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4d:b4:8c:d9:41:4d:65:60:d1:45:d4:9f:75: 28:a4:b1:9f:61:8d:2a:2b:9b:9e:95:a4:c9:b1:c6: b3:c3:d8:62:e7:e6:42:f9:0a:a8:0c:4c:de:47:74: e4:ec:1f:72:ec:27:37:00:f6:04:b2:95:96:11:8a: 7c:f4:c9:b0:c2:86:45:76:49:01:eb:1d:61:01:e7: f2:dd:09:f7:9b:21:eb:58:df:ba:fc:b2:27:55:ae: 45:23:15:61:be:85:01:97:44:04:1f:73:3e:f7:05: 2a:cb:cc:69:35:79:0a:ba:a3:6d:0f:89:ca:b6:1e: 39:d5:75:0d:07:cc:88:a4:83:15:9a:2a:4b:70:f2: f5:b4:ab:97:e7:e8:f4:79:3a:a1:85:3c:47:4e:07: 88:df:aa:8a:9b:88:74:1b:3e:22:d4:19:28:91:15: 58:1d:4d:72:2f:da:69:e7:94:56:f9:78:bc:58:f3: 71:c3:25:e0:73:37:bd:17:35:85:5d:35:85:a8:e6: 83:91:5e:4b:f2:db:7d:c0:84:05:57:71:41:6d:41: e8:73:c9:95:b0:f2:be:6f:ed:84:24:14:07:f5:84: cf:db:47:18:26:4e:3c:e6:ac:86:37:a4:27:23:de: 8e:38:f2:88:71:49:10:0b:67:53:aa:0b:f2:c9:61: 64:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:C8:42:9C:CF:2F:7C:A4:6D:54:9B:F8:ED:7D:C8:7E:18:53:CB:55 X509v3 Authority Key Identifier: keyid:5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:d2:15:14:2f:31:41:5a:c2:40:6f:2a:c4:58:5c:53:4e:ae: ef:51:fe:d1:4a:f2:bb:9e:89:ed:57:8f:ed:13:91:bb:f8:f4: 65:ce:49:61:cb:f9:6c:6d:76:be:56:ac:24:a6:ca:50:cb:a4: d2:ac:5d:f9:eb:93:e4:6c:3f:7c:a4:d0:bd:91:0e:2c:12:de: 5f:96:93:0d:73:7b:bd:6a:4a:e3:6b:1c:08:ef:48:7f:f6:f6: ed:83:83:8e:16:2d:c8:5d:d4:2b:da:0b:fc:36:8d:b8:93:05: 95:11:d6:cd:4b:5b:34:3c:ba:fe:fc:c9:01:f8:48:1d:19:01: e8:52:d9:20:2f:b4:44:ce:8a:86:70:d0:0b:e3:9a:1e:df:c2: 05:76:da:99:65:72:a0:a9:e2:c0:86:57:86:9e:fb:59:34:e9: 1d:46:42:fd:18:c1:d4:37:d6:55:cb:fd:ac:67:7a:e1:50:fd: bf:85:0c:24:8b:0f:8c:07:19:13:dd:c2:8f:3a:7a:63:87:7a: f4:6c:1a:f8:84:5c:0f:01:fb:c4:6d:5b:fe:e0:fc:52:dd:7a: e6:5f:dd:20:8a:c0:22:62:21:4d:43:2e:86:f5:b6:46:63:96: 27:72:eb:c7:75:37:04:e1:c3:c6:a2:e4:86:27:ac:48:39:08: 9f:6d:90:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQzUxMTAvBgNVBAUTKDVEMjc4NUI1NEQxNjNFRDAxRUE1NDE4QkNGQTM0RjFC NzQ1NkI3MTMwHhcNMjUxMjE4MjMwNzM1WhcNMjUxMjI1MjMwNzM1WjAYMRYwFAYD VQQDDA02OTQ0ODkzOC1jZGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy020jNlBTWVg0UXUn3UopLGfYY0qK5uelaTJscazw9hi5+ZC+QqoDEzeR3Tk 7B9y7Cc3APYEspWWEYp89MmwwoZFdkkB6x1hAefy3Qn3myHrWN+6/LInVa5FIxVh voUBl0QEH3M+9wUqy8xpNXkKuqNtD4nKth451XUNB8yIpIMVmipLcPL1tKuX5+j0 eTqhhTxHTgeI36qKm4h0Gz4i1BkokRVYHU1yL9pp55RW+Xi8WPNxwyXgcze9FzWF XTWFqOaDkV5L8tt9wIQFV3FBbUHoc8mVsPK+b+2EJBQH9YTP20cYJk485qyGN6Qn I96OOPKIcUkQC2dTqgvyyWFkUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJDIQpzP L3ykbVSb+O19yH4YU8tVMB8GA1UdIwQYMBaAFF0nhbVNFj7QHqVBi8+jTxt0VrcT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NDNS8yQUM0RDMzRTQ2 QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0QWVwVUdMejZOUEczUld0 eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTZUZ0VTBXUHRBZXBVR0x6Nk5QRzNSV3R4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NDNS8yQUM0RDMzRTQ2QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0 QWVwVUdMejZOUEczUld0eE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDP0hUULzFBWsJAbyrEWFxTTq7vUf7RSvK7nontV4/tE5G7+PRlzklh y/lsbXa+VqwkpspQy6TSrF3565PkbD98pNC9kQ4sEt5flpMNc3u9akrjaxwI70h/ 9vbtg4OOFi3IXdQr2gv8No24kwWVEdbNS1s0PLr+/MkB+EgdGQHoUtkgL7REzoqG cNAL45oe38IFdtqZZXKgqeLAhleGnvtZNOkdRkL9GMHUN9ZVy/2sZ3rhUP2/hQwk iw+MBxkT3cKPOnpjh3r0bBr4hFwPAfvEbVv+4PxS3XrmX90gisAiYiFNQy6G9bZG Y5YncuvHdTcE4cPGouSGJ6xIOQifbZDd -----END CERTIFICATE-----Generated at Sat Dec 20 01:34:26 2025 by rpki-client