This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft File: XKzlv2VarPfLxicsXGl_N3oGzow.mft (raw, json) Hash identifier: 96DuRbzJFmkta9PImDbrNKJQ5+G5uBA3tAprwrI7GtM= Subject key identifier: CA:C5:71:1B:96:26:6D:60:61:D4:51:91:92:9E:DC:94:37:D9:02:55 Authority key identifier: 5C:AC:E5:BF:65:5A:AC:F7:CB:C6:27:2C:5C:69:7F:37:7A:06:CE:8C Certificate issuer: /CN=A917C9BF/serialNumber=5CACE5BF655AACF7CBC6272C5C697F377A06CE8C Certificate serial: F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft Manifest number: F3 Signing time: Mon 29 Dec 2025 04:26:29 +0000 Manifest this update: Mon 29 Dec 2025 04:26:29 +0000 Manifest next update: Mon 05 Jan 2026 04:26:29 +0000 Files and hashes: 1: XKzlv2VarPfLxicsXGl_N3oGzow.crl (hash: kU4g1ljzS1uUJiFDCJ5cw6iGXox4sclomZ04NfXfBJc=) 2: 15875DC27B5E11EFAB71253BC4F9AE02.roa (hash: 0W2/njWu/4NeHHOITSUzSzI4ic/vgB1fnauNrzPM4sc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.crl rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 04:26:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 248 (0xf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C9BF, serialNumber=5CACE5BF655AACF7CBC6272C5C697F377A06CE8C Validity Not Before: Dec 29 04:26:29 2025 GMT Not After : Jan 5 04:26:29 2026 GMT Subject: CN=695202f5-fb72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:d6:b7:6f:d1:a4:4e:80:2f:04:02:78:00:92: ea:f4:3e:10:68:46:07:b6:f2:36:ba:7a:49:c7:5d: 18:9f:d9:d3:2d:05:13:e9:06:82:7a:11:61:42:51: c7:4e:2a:9b:52:27:f4:64:7a:9e:25:9b:0c:e3:36: ff:1a:3c:05:ee:a3:6a:fa:ba:90:29:88:d6:d2:df: 54:69:c2:90:0b:89:e2:a1:99:3b:1b:0a:99:a4:3a: c4:d7:f1:bd:56:58:56:5b:fa:49:9a:2c:5b:65:e8: 41:79:45:b4:54:73:a8:9e:6b:a1:e2:20:fc:7c:76: 09:87:22:86:c8:e9:d7:50:92:4c:ec:af:6c:26:d7: 91:df:61:e4:fe:d7:b1:b2:bc:5d:2f:1f:4f:58:08: f6:f5:e1:78:52:cc:a4:b9:ec:89:7a:21:ae:62:ba: 58:12:48:4c:07:eb:a4:ae:32:92:cd:be:b7:a6:48: c7:87:3f:29:f6:cf:7e:73:f9:de:3e:32:44:ca:7e: b3:3d:b6:ca:4e:25:24:bd:2a:5a:71:4e:1a:00:bc: d3:53:e5:ca:17:52:08:79:f0:38:bb:24:e7:cc:5b: 07:36:db:89:fa:9d:6c:ab:91:31:d4:fa:ac:c5:bb: bb:ee:c6:e3:a1:f0:50:0c:31:02:bb:4a:48:d2:f3: 73:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:C5:71:1B:96:26:6D:60:61:D4:51:91:92:9E:DC:94:37:D9:02:55 X509v3 Authority Key Identifier: keyid:5C:AC:E5:BF:65:5A:AC:F7:CB:C6:27:2C:5C:69:7F:37:7A:06:CE:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:bf:2c:d4:f9:8f:73:2f:f2:44:b4:0d:5f:dc:d4:65:c0:7e: 49:20:0a:40:e6:1d:fd:71:db:e0:fa:a2:23:f0:41:9f:b1:84: d4:a0:e6:94:de:ff:af:d4:10:bf:29:a4:d7:f3:80:9e:f4:dd: 49:0a:30:24:ba:f0:f8:47:56:78:a6:66:d2:6f:49:c9:31:36: 3d:ce:7b:04:f7:e2:1e:40:51:57:07:89:71:e7:7d:5c:36:83: 3e:d9:6c:2b:76:94:a9:f8:8d:fd:4d:7f:42:66:83:3b:71:b2: 1b:47:3f:12:a8:f8:21:ca:95:0a:80:e6:3e:ae:91:cc:57:aa: 1a:4d:15:87:23:fd:e7:ad:91:59:4a:9d:22:35:62:17:c5:7c: 49:c2:4f:3f:44:58:36:ad:d6:a9:d7:62:79:bf:13:6e:64:5e: bf:4c:a1:bd:56:99:07:2f:2f:f8:34:a4:87:31:87:15:30:17: 8a:f5:29:f2:2f:a5:26:d2:d6:a5:bb:56:0c:44:84:80:bf:0d: 1b:aa:8c:e2:6b:ca:af:d5:9e:c9:ee:a3:c8:a5:0f:ba:82:5a: 7c:e2:6d:ca:de:67:8e:17:02:bf:52:01:24:c9:aa:7c:e0:e9: 50:60:90:c9:b0:74:cf:fa:69:7d:85:e9:2d:a4:a7:52:5e:bc: 1d:27:5e:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5QkYxMTAvBgNVBAUTKDVDQUNFNUJGNjU1QUFDRjdDQkM2MjcyQzVDNjk3RjM3 N0EwNkNFOEMwHhcNMjUxMjI5MDQyNjI5WhcNMjYwMTA1MDQyNjI5WjAYMRYwFAYD VQQDDA02OTUyMDJmNS1mYjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+Na3b9GkToAvBAJ4AJLq9D4QaEYHtvI2unpJx10Yn9nTLQUT6QaCehFhQlHH TiqbUif0ZHqeJZsM4zb/GjwF7qNq+rqQKYjW0t9UacKQC4nioZk7GwqZpDrE1/G9 VlhWW/pJmixbZehBeUW0VHOonmuh4iD8fHYJhyKGyOnXUJJM7K9sJteR32Hk/tex srxdLx9PWAj29eF4UsykueyJeiGuYrpYEkhMB+ukrjKSzb63pkjHhz8p9s9+c/ne PjJEyn6zPbbKTiUkvSpacU4aALzTU+XKF1IIefA4uyTnzFsHNtuJ+p1sq5Ex1Pqs xbu77sbjofBQDDECu0pI0vNzrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMrFcRuW Jm1gYdRRkZKe3JQ32QJVMB8GA1UdIwQYMBaAFFys5b9lWqz3y8YnLFxpfzd6Bs6M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzlCRi9CRTFENEEzNDdC NEQxMUVGQjAyMzZDNzhDNEY5QUUwMi9YS3psdjJWYXJQZkx4aWNzWEdsX04zb0d6 b3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hLemx2MlZhclBmTHhpY3NYR2xfTjNvR3pvdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzlCRi9CRTFENEEzNDdCNEQxMUVGQjAyMzZDNzhDNEY5QUUwMi9YS3psdjJWYXJQ Zkx4aWNzWEdsX04zb0d6b3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3vyzU+Y9zL/JEtA1f3NRlwH5JIApA5h39cdvg+qIj8EGfsYTUoOaU 3v+v1BC/KaTX84Ce9N1JCjAkuvD4R1Z4pmbSb0nJMTY9znsE9+IeQFFXB4lx531c NoM+2WwrdpSp+I39TX9CZoM7cbIbRz8SqPghypUKgOY+rpHMV6oaTRWHI/3nrZFZ Sp0iNWIXxXxJwk8/RFg2rdap12J5vxNuZF6/TKG9VpkHLy/4NKSHMYcVMBeK9Sny L6Um0talu1YMRISAvw0bqozia8qv1Z7J7qPIpQ+6glp84m3K3meOFwK/UgEkyap8 4OlQYJDJsHTP+ml9hektpKdSXrwdJ15P -----END CERTIFICATE-----Generated at Wed Dec 31 00:02:31 2025 by rpki-client