This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.mft File: XPuiiRbqwHsjWQlIVdieFqCBS6w.mft (raw, json) Hash identifier: 1gygfT1pJML/+6D/fozOu/+JIbsvKEoaWBTjWONz/jY= Subject key identifier: 90:00:B1:E8:1B:B0:D0:F6:B7:45:8F:7A:FD:A2:93:EC:8F:2D:EA:8C Authority key identifier: 5C:FB:A2:89:16:EA:C0:7B:23:59:09:48:55:D8:9E:16:A0:81:4B:AC Certificate issuer: /CN=A918E843/serialNumber=5CFBA28916EAC07B2359094855D89E16A0814BAC Certificate serial: 0BAF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPuiiRbqwHsjWQlIVdieFqCBS6w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.mft Manifest number: 0BA0 Signing time: Sat 20 Dec 2025 18:33:34 +0000 Manifest this update: Sat 20 Dec 2025 18:33:34 +0000 Manifest next update: Sat 27 Dec 2025 18:33:34 +0000 Files and hashes: 1: XPuiiRbqwHsjWQlIVdieFqCBS6w.crl (hash: dLZnfx205t+sSm1c8/WVSKG5+26v9wXsHYeYzfnP3ko=) 2: 01553E10396311EAB24C5A5FC4F9AE02.roa (hash: Jhq/OLItI0gDhEIBYho+XP9iO0Y/7Srvb27SpQGuffU=) 3: 3EA26CE6396011EABC88BD55C4F9AE02.roa (hash: z+/TKQAcf6VE8NuqmnIeG+tuqaOl0QxpRj3ReMN+jL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.crl rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPuiiRbqwHsjWQlIVdieFqCBS6w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:33:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2991 (0xbaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E843, serialNumber=5CFBA28916EAC07B2359094855D89E16A0814BAC Validity Not Before: Dec 20 18:33:34 2025 GMT Not After : Dec 27 18:33:34 2025 GMT Subject: CN=6946ebfe-c2ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:32:a7:d6:8f:4d:68:9d:d4:07:09:d2:9b:1a: 5d:64:f2:e8:80:74:9c:73:b1:c1:22:fc:9b:05:99: 12:cf:96:13:00:0b:b9:9e:22:59:e5:72:08:4f:00: 78:a4:80:37:56:40:28:e1:9a:6a:e5:24:9a:63:d7: 15:11:6d:ee:fd:8c:c7:6d:6e:2f:56:82:aa:ca:e3: dd:61:78:40:77:55:59:58:e1:d5:82:94:bd:3e:3d: 49:f1:82:85:45:c4:07:32:61:90:fb:aa:e8:43:c7: bc:ca:e4:b7:04:97:80:bc:a2:c9:03:65:55:47:a4: f6:8b:31:55:35:c7:ca:91:bd:62:52:72:db:45:71: 6d:35:77:33:21:cf:54:dc:60:57:0f:a8:2d:9d:c6: ea:1d:cb:2d:6c:0e:2f:93:94:80:8c:6b:56:d0:36: a2:75:b2:0b:e5:82:09:00:30:fb:53:54:55:81:20: fe:1d:59:0e:a7:88:1f:51:ba:88:53:6e:59:2a:11: 5e:1c:34:49:23:ae:95:d2:a5:38:70:70:5f:d4:7b: 02:eb:e0:79:9f:0d:01:04:76:d8:3c:9d:31:de:39: 38:06:f1:b7:58:5d:c6:45:6b:61:8b:3b:56:48:d9: a7:5b:1c:cb:54:a3:25:bc:22:34:69:49:30:f4:e1: d6:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:00:B1:E8:1B:B0:D0:F6:B7:45:8F:7A:FD:A2:93:EC:8F:2D:EA:8C X509v3 Authority Key Identifier: keyid:5C:FB:A2:89:16:EA:C0:7B:23:59:09:48:55:D8:9E:16:A0:81:4B:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPuiiRbqwHsjWQlIVdieFqCBS6w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:1e:2e:ea:25:60:23:ce:86:92:18:eb:4a:41:ee:f0:d0:08: 24:bd:bc:90:4d:d7:f2:55:06:eb:a7:67:62:b7:c9:0d:8d:3b: 7d:4b:e6:03:f7:37:0e:71:84:8a:1e:97:12:98:9a:e6:8d:fe: 82:ef:e1:dc:85:c5:d2:ec:56:db:c8:0c:bb:3f:93:05:f1:20: 5c:29:8d:9d:f5:13:8e:5a:12:d0:6c:ec:bc:91:df:4b:d7:c8: c8:bf:2a:68:a3:d7:84:66:75:07:6d:cc:07:d6:14:d3:71:66: 77:58:7b:57:32:47:07:68:fb:e9:62:72:e4:a9:46:6c:2f:c2: ca:53:bd:fe:5c:05:7a:21:4b:df:54:14:9a:b2:82:80:c0:42: 59:51:66:a4:2a:ad:59:7d:66:3e:9b:88:91:2c:19:f2:7f:6a: 2d:34:64:6a:65:6b:6b:a8:61:51:c0:29:18:7c:46:24:06:80: 2f:14:22:6d:d3:e1:87:d9:4b:45:3d:3d:67:b6:99:dc:e8:fa: 49:0c:b9:0a:82:16:36:91:70:79:a8:38:f1:de:b4:ea:45:5d: 3d:fb:78:77:32:12:ff:ee:ba:4e:7d:7a:00:73:4f:3c:af:b2: fb:98:75:e0:f7:e5:6e:77:bf:17:c1:ad:ff:50:e1:be:41:aa: 5f:84:a7:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC68wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4NDMxMTAvBgNVBAUTKDVDRkJBMjg5MTZFQUMwN0IyMzU5MDk0ODU1RDg5RTE2 QTA4MTRCQUMwHhcNMjUxMjIwMTgzMzM0WhcNMjUxMjI3MTgzMzM0WjAYMRYwFAYD VQQDDA02OTQ2ZWJmZS1jMmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1zKn1o9NaJ3UBwnSmxpdZPLogHScc7HBIvybBZkSz5YTAAu5niJZ5XIITwB4 pIA3VkAo4Zpq5SSaY9cVEW3u/YzHbW4vVoKqyuPdYXhAd1VZWOHVgpS9Pj1J8YKF RcQHMmGQ+6roQ8e8yuS3BJeAvKLJA2VVR6T2izFVNcfKkb1iUnLbRXFtNXczIc9U 3GBXD6gtncbqHcstbA4vk5SAjGtW0DaidbIL5YIJADD7U1RVgSD+HVkOp4gfUbqI U25ZKhFeHDRJI66V0qU4cHBf1HsC6+B5nw0BBHbYPJ0x3jk4BvG3WF3GRWthiztW SNmnWxzLVKMlvCI0aUkw9OHW2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJAAsegb sND2t0WPev2ik+yPLeqMMB8GA1UdIwQYMBaAFFz7ookW6sB7I1kJSFXYnhaggUus MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTg0My85NTdCQ0I0NDM5 NUYxMUVBQkI4NTQ3NTVDNEY5QUUwMi9YUHVpaVJicXdIc2pXUWxJVmRpZUZxQ0JT NncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hQdWlpUmJxd0hzaldRbElWZGllRnFDQlM2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTg0My85NTdCQ0I0NDM5NUYxMUVBQkI4NTQ3NTVDNEY5QUUwMi9YUHVpaVJicXdI c2pXUWxJVmRpZUZxQ0JTNncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNHi7qJWAjzoaSGOtKQe7w0AgkvbyQTdfyVQbrp2dit8kNjTt9S+YD 9zcOcYSKHpcSmJrmjf6C7+HchcXS7FbbyAy7P5MF8SBcKY2d9ROOWhLQbOy8kd9L 18jIvypoo9eEZnUHbcwH1hTTcWZ3WHtXMkcHaPvpYnLkqUZsL8LKU73+XAV6IUvf VBSasoKAwEJZUWakKq1ZfWY+m4iRLBnyf2otNGRqZWtrqGFRwCkYfEYkBoAvFCJt 0+GH2UtFPT1ntpnc6PpJDLkKghY2kXB5qDjx3rTqRV09+3h3MhL/7rpOfXoAc088 r7L7mHXg9+Vud78Xwa3/UOG+QapfhKfc -----END CERTIFICATE-----Generated at Sun Dec 21 13:06:55 2025 by rpki-client