This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft File: X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft (raw, json) Hash identifier: OrR0faMUL9mkiMNgRAUTdiQejpaeCAKP2zWgmdhfG3I= Subject key identifier: D9:C6:C9:56:06:BC:CD:B5:44:A6:78:6B:97:DE:56:8D:D0:85:CC:E2 Authority key identifier: 5F:E0:4C:95:7A:6C:BC:54:0A:34:F4:53:D1:3E:3F:80:50:C8:F4:EE Certificate issuer: /CN=A918A51B/serialNumber=5FE04C957A6CBC540A34F453D13E3F8050C8F4EE Certificate serial: 022A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft Manifest number: 0221 Signing time: Sat 27 Dec 2025 01:11:42 +0000 Manifest this update: Sat 27 Dec 2025 01:11:42 +0000 Manifest next update: Sat 03 Jan 2026 01:11:42 +0000 Files and hashes: 1: X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl (hash: VjoIvzPYJHvT2nlYWIZJSPGFfRmT5Jf0SCLn6fO94Ig=) 2: 6A9D79ECD6E311EE94842842C4F9AE02.roa (hash: lxKtarKsATY2wiXkVbh3EFTMWa9NQc/B8XJ8gCOAwlc=) 3: 6B9615FCD6E311EE94842842C4F9AE02.roa (hash: okvmN+fO8yeb8sv3bijRR7qzwb2TLJ+EV1o8F+ji/G8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 Jan 2026 01:11:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 554 (0x22a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A51B, serialNumber=5FE04C957A6CBC540A34F453D13E3F8050C8F4EE Validity Not Before: Dec 27 01:11:42 2025 GMT Not After : Jan 3 01:11:42 2026 GMT Subject: CN=694f324e-5ee8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:22:ef:eb:82:2f:f9:27:3a:4e:6a:02:3e:32: 69:84:be:42:57:1d:df:e3:f1:74:7d:95:b2:b0:18: 43:62:df:52:e7:7d:21:93:99:dc:f0:a0:36:be:46: 85:28:d2:3b:a4:31:7b:4e:03:7f:4c:a8:9f:b2:37: 85:d7:73:16:9e:ec:c1:7d:3b:f5:9f:51:c1:4b:19: da:83:1f:6a:c9:b1:25:d2:80:4a:7d:18:5d:9f:07: 1d:39:c9:da:33:4b:35:a8:94:74:fc:46:39:97:5c: dd:31:cc:57:d1:03:9b:99:f6:ae:fa:0b:62:c3:58: d4:bf:40:ca:74:51:1e:47:eb:21:bd:df:3a:ca:89: 75:58:24:2e:80:63:2c:6a:9f:b8:85:3e:36:61:52: 98:b5:fc:d6:f8:5f:12:bc:3b:85:4c:bf:ef:42:e6: 68:ce:39:54:cf:ce:c3:e3:df:8c:b6:12:b5:bf:d7: 9b:10:6d:d8:49:08:85:f8:16:6b:bc:79:b2:a1:1c: 70:0c:46:6d:33:0c:d9:88:61:55:e5:d7:90:2a:a3: 81:d0:67:08:61:fb:5c:d8:d5:07:71:cc:d6:b0:8d: 89:4f:f9:ad:37:3a:4f:cd:d7:1d:57:1d:65:94:8d: 30:4a:7e:9f:bb:93:d9:b4:57:d3:d4:18:84:01:71: 1d:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:C6:C9:56:06:BC:CD:B5:44:A6:78:6B:97:DE:56:8D:D0:85:CC:E2 X509v3 Authority Key Identifier: keyid:5F:E0:4C:95:7A:6C:BC:54:0A:34:F4:53:D1:3E:3F:80:50:C8:F4:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d7:6e:97:1a:87:94:94:e5:c7:95:e4:46:ab:02:53:84:4d:6c: bd:23:7c:89:e7:91:6e:86:78:ee:12:97:c9:af:91:fd:83:7b: bb:9b:5d:3c:fc:a8:ac:58:08:b9:fa:92:9d:ea:f3:c5:8e:92: 4b:1c:82:86:54:16:a1:0f:5e:e0:9a:fa:c0:49:28:19:a6:19: 4f:ab:94:1c:f6:dd:13:0f:c8:c5:6e:01:9a:6d:ea:de:77:2e: 54:2b:b9:5d:1f:bd:eb:31:34:bb:a1:d1:7f:20:32:16:88:88: 91:a6:73:0e:8e:74:48:63:d6:f9:a2:26:8b:1b:b2:6d:0c:0b: 7d:e3:94:59:78:0d:db:43:9b:8e:4a:ea:db:e5:de:52:d9:66: 52:8e:1a:cc:23:31:46:6e:6a:a9:8d:60:a0:8c:d4:18:09:6f: 74:a6:89:06:ea:24:19:a4:fc:6f:62:29:1a:cf:89:41:5b:16: 79:a4:70:77:f3:b2:ad:44:5b:26:a6:61:bd:89:0d:c8:6a:35: bd:39:92:b5:2e:33:e2:62:05:59:d0:d9:30:6a:eb:db:29:c4: 78:d5:0b:35:35:fa:f7:59:38:49:bc:9c:5a:0b:d3:35:89:f7: c6:7f:be:3a:04:a4:bd:94:ad:a1:ec:ab:db:8a:71:49:e0:2f: c6:23:d6:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE1MUIxMTAvBgNVBAUTKDVGRTA0Qzk1N0E2Q0JDNTQwQTM0RjQ1M0QxM0UzRjgw NTBDOEY0RUUwHhcNMjUxMjI3MDExMTQyWhcNMjYwMTAzMDExMTQyWjAYMRYwFAYD VQQDDA02OTRmMzI0ZS01ZWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwyLv64Iv+Sc6TmoCPjJphL5CVx3f4/F0fZWysBhDYt9S530hk5nc8KA2vkaF KNI7pDF7TgN/TKifsjeF13MWnuzBfTv1n1HBSxnagx9qybEl0oBKfRhdnwcdOcna M0s1qJR0/EY5l1zdMcxX0QObmfau+gtiw1jUv0DKdFEeR+shvd86yol1WCQugGMs ap+4hT42YVKYtfzW+F8SvDuFTL/vQuZozjlUz87D49+MthK1v9ebEG3YSQiF+BZr vHmyoRxwDEZtMwzZiGFV5deQKqOB0GcIYftc2NUHcczWsI2JT/mtNzpPzdcdVx1l lI0wSn6fu5PZtFfT1BiEAXEdfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNnGyVYG vM21RKZ4a5feVo3QhcziMB8GA1UdIwQYMBaAFF/gTJV6bLxUCjT0U9E+P4BQyPTu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTUxQi8wMENBOThGMkEx QTUxMUVEOTEyMzIyNTRDNEY5QUUwMi9YLUJNbFhwc3ZGUUtOUFJUMFQ0X2dGREk5 TzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtQk1sWHBzdkZRS05QUlQwVDRfZ0ZESTlPNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTUxQi8wMENBOThGMkExQTUxMUVEOTEyMzIyNTRDNEY5QUUwMi9YLUJNbFhwc3ZG UUtOUFJUMFQ0X2dGREk5TzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDXbpcah5SU5ceV5EarAlOETWy9I3yJ55FuhnjuEpfJr5H9g3u7m108 /KisWAi5+pKd6vPFjpJLHIKGVBahD17gmvrASSgZphlPq5Qc9t0TD8jFbgGabere dy5UK7ldH73rMTS7odF/IDIWiIiRpnMOjnRIY9b5oiaLG7JtDAt945RZeA3bQ5uO Surb5d5S2WZSjhrMIzFGbmqpjWCgjNQYCW90pokG6iQZpPxvYikaz4lBWxZ5pHB3 87KtRFsmpmG9iQ3IajW9OZK1LjPiYgVZ0NkwauvbKcR41Qs1Nfr3WThJvJxaC9M1 iffGf746BKS9lK2h7KvbinFJ4C/GI9YO -----END CERTIFICATE-----Generated at Sun Dec 28 09:06:35 2025 by rpki-client