This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft File: XAq0JfK0I14cgVaDvWyOi3uAtyc.mft (raw, json) Hash identifier: ZE4OOPSkUC8JSYEoY3iVfNOGvzZuz762WvsRj2yaMqI= Subject key identifier: 6F:03:03:FC:5C:15:8B:E4:12:83:2C:35:5F:90:EA:6A:35:E2:5B:5C Authority key identifier: 5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 Certificate issuer: /CN=A917F8A9/serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Certificate serial: 09EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft Manifest number: 09D4 Signing time: Thu 18 Dec 2025 19:31:42 +0000 Manifest this update: Thu 18 Dec 2025 19:31:41 +0000 Manifest next update: Thu 25 Dec 2025 19:31:41 +0000 Files and hashes: 1: XAq0JfK0I14cgVaDvWyOi3uAtyc.crl (hash: 9q9TBHDYMsuqHscG3zHCbpvSqqhWMlstzeROvEZ0Vak=) 2: 0774A2C894F211EAB30E7682C4F9AE02.roa (hash: Qe2k4Rmt8cYvrQ25NjhCj6HgTDQ2LTBczeZdX5NMi1Q=) 3: 83DC30E0D0DB11EA9336962FC4F9AE02.roa (hash: 1xpqucRPj2sGGfUlw/hjqGcWw2RAvQEPEvj1/o7DLww=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:31:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2539 (0x9eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F8A9, serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Validity Not Before: Dec 18 19:31:41 2025 GMT Not After : Dec 25 19:31:41 2025 GMT Subject: CN=6944569d-11d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:3b:07:bd:a1:1b:b1:7a:de:fb:a9:14:e4:10: 96:b8:ba:e2:a3:a9:d7:dc:0c:73:16:a9:4c:81:48: 65:32:83:9e:65:e8:dd:53:f1:6b:4c:62:0a:5a:6b: 37:85:66:49:8a:26:51:4d:67:51:60:18:89:84:50: 66:74:af:23:46:04:95:d2:d9:e2:0c:2e:27:2c:b7: 38:7c:36:aa:1a:17:01:a1:43:6d:d2:89:49:c5:2d: ef:b9:ee:1e:a6:07:da:88:d1:85:7c:2b:91:81:8d: d5:16:ed:93:45:d9:89:a9:02:1d:12:4a:76:4d:ba: 60:84:00:6c:17:5c:3d:f1:a7:a5:64:13:be:b4:12: 51:df:4d:1c:f6:27:e4:02:17:e5:9a:c1:d4:d5:fe: 8c:4b:11:66:70:67:0d:ee:f0:7f:50:e8:6d:b3:1e: d2:30:c6:ef:38:fb:19:4b:88:78:29:a1:ae:4f:e1: 7b:ff:1e:f0:b6:29:e1:14:78:97:2b:e0:7e:42:a6: 67:c6:dc:1a:d2:a3:ad:8f:93:34:c9:3b:e6:7a:8a: 1c:e7:c1:f7:af:1b:6f:d2:e1:69:68:aa:97:86:42: 52:6a:ab:e5:f8:44:07:f0:0d:38:12:1c:66:41:56: de:16:20:76:2c:27:0b:37:0c:ec:a9:72:92:9c:7e: 9f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:03:03:FC:5C:15:8B:E4:12:83:2C:35:5F:90:EA:6A:35:E2:5B:5C X509v3 Authority Key Identifier: keyid:5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:fe:db:19:40:61:b8:8e:8d:7b:da:52:3b:c0:25:81:cd:d6: 6d:69:b5:ec:64:8b:bc:02:e5:20:ad:16:34:a0:5e:37:69:35: 19:f6:cb:9e:4c:c5:ea:63:06:3f:40:9a:08:39:d7:5d:f2:48: ce:63:87:6e:d5:2d:bf:6a:3e:d8:e5:ea:d8:23:23:cf:75:81: 31:13:ca:81:27:f9:a0:85:df:13:30:e3:24:3b:ea:ff:c9:ad: 32:c1:92:6a:95:a8:46:6b:7c:0f:b6:61:d2:4f:89:9c:b9:6a: 6a:34:08:7e:b9:5f:2b:35:b4:58:04:f8:54:7c:da:f7:83:ee: 6b:0c:d7:f1:a7:76:aa:51:62:d1:77:7b:05:12:21:95:bf:20: 88:da:98:af:89:06:6e:d5:a1:ad:12:91:82:ec:b8:9d:99:9a: 02:31:22:b2:92:5c:53:05:a9:a2:a7:64:01:37:2e:07:13:bb: db:81:14:14:0a:ee:fc:8f:4b:dd:92:d2:9f:31:67:45:d2:fc: 3a:0d:d2:4d:54:01:46:d1:32:36:8e:c3:38:49:99:01:d1:21: b9:10:5e:dc:0a:9a:70:8c:43:0d:cd:24:9d:e9:6c:c2:01:52: d6:49:f0:6a:a4:f8:e5:0d:5c:7a:55:e4:26:af:42:7b:9f:55: ed:cd:2e:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4QTkxMTAvBgNVBAUTKDVDMEFCNDI1RjJCNDIzNUUxQzgxNTY4M0JENkM4RThC N0I4MEI3MjcwHhcNMjUxMjE4MTkzMTQxWhcNMjUxMjI1MTkzMTQxWjAYMRYwFAYD VQQDDA02OTQ0NTY5ZC0xMWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0TsHvaEbsXre+6kU5BCWuLrio6nX3AxzFqlMgUhlMoOeZejdU/FrTGIKWms3 hWZJiiZRTWdRYBiJhFBmdK8jRgSV0tniDC4nLLc4fDaqGhcBoUNt0olJxS3vue4e pgfaiNGFfCuRgY3VFu2TRdmJqQIdEkp2TbpghABsF1w98aelZBO+tBJR300c9ifk AhflmsHU1f6MSxFmcGcN7vB/UOhtsx7SMMbvOPsZS4h4KaGuT+F7/x7wtinhFHiX K+B+QqZnxtwa0qOtj5M0yTvmeooc58H3rxtv0uFpaKqXhkJSaqvl+EQH8A04Ehxm QVbeFiB2LCcLNwzsqXKSnH6fLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG8DA/xc FYvkEoMsNV+Q6mo14ltcMB8GA1UdIwQYMBaAFFwKtCXytCNeHIFWg71sjot7gLcn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjhBOS8yQUEwNDMzMDk0 RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkxNGNnVmFEdld5T2kzdUF0 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBcTBKZkswSTE0Y2dWYUR2V3lPaTN1QXR5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjhBOS8yQUEwNDMzMDk0RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkx NGNnVmFEdld5T2kzdUF0eWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCy/tsZQGG4jo172lI7wCWBzdZtabXsZIu8AuUgrRY0oF43aTUZ9sue TMXqYwY/QJoIOddd8kjOY4du1S2/aj7Y5erYIyPPdYExE8qBJ/mghd8TMOMkO+r/ ya0ywZJqlahGa3wPtmHST4mcuWpqNAh+uV8rNbRYBPhUfNr3g+5rDNfxp3aqUWLR d3sFEiGVvyCI2piviQZu1aGtEpGC7LidmZoCMSKyklxTBamip2QBNy4HE7vbgRQU Cu78j0vdktKfMWdF0vw6DdJNVAFG0TI2jsM4SZkB0SG5EF7cCppwjEMNzSSd6WzC AVLWSfBqpPjlDVx6VeQmr0J7n1XtzS4F -----END CERTIFICATE-----Generated at Fri Dec 19 17:45:58 2025 by rpki-client