This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft File: XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft (raw, json) Hash identifier: 9c9+9/A4tJoCUzMs31kJmE7jZD3UFsS+YwlXRFRoxyc= Subject key identifier: BE:33:FF:A2:94:C2:5D:20:D2:CF:C3:57:06:B9:26:CC:1A:79:6C:10 Authority key identifier: 5E:C5:FB:33:4E:E5:2B:90:09:CB:92:3C:69:3B:D2:0F:04:78:A1:44 Certificate issuer: /CN=A918EF87/serialNumber=5EC5FB334EE52B9009CB923C693BD20F0478A144 Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XsX7M07lK5AJy5I8aTvSDwR4oUQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft Manifest number: 6A Signing time: Fri 19 Dec 2025 05:56:35 +0000 Manifest this update: Fri 19 Dec 2025 05:56:35 +0000 Manifest next update: Fri 26 Dec 2025 05:56:35 +0000 Files and hashes: 1: XsX7M07lK5AJy5I8aTvSDwR4oUQ.crl (hash: e1wR0x6jJneaydHPAyFuZZYKHc8K+hceL4GhQJeJ7kc=) 2: C053613E38B311F08DB63209C4F9AE02.roa (hash: uKfaLXcOCNJdE2XGkLLuO2/nisMUjVXsuFOacDhWkTw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.crl rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XsX7M07lK5AJy5I8aTvSDwR4oUQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:56:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EF87, serialNumber=5EC5FB334EE52B9009CB923C693BD20F0478A144 Validity Not Before: Dec 19 05:56:35 2025 GMT Not After : Dec 26 05:56:35 2025 GMT Subject: CN=6944e913-3ab7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:43:90:99:62:bd:96:87:d4:fa:5e:05:68:cf: ea:7d:ab:f2:4f:01:7f:32:22:7d:c0:86:35:a1:d4: 47:33:bd:25:45:41:91:80:b5:c3:08:ea:2c:bc:22: 10:3a:c9:61:1c:a0:d5:6e:a3:68:bf:6f:5d:8e:ba: 98:d7:fc:41:4d:64:bd:1d:8f:ef:e3:aa:b2:96:22: 56:9b:7a:b1:20:41:5d:b3:4f:7e:a7:9c:3d:95:d5: c1:2c:a7:94:85:f4:55:d4:03:53:ec:4e:c9:bd:10: d2:6f:c0:bf:9a:8f:ca:be:ff:10:17:28:a6:8b:a2: f6:db:fe:e1:f0:e5:6d:d7:f8:d4:cf:ed:49:e0:c0: 4b:ad:4a:2e:f8:8a:39:92:b0:ae:c8:7f:81:dc:7e: 97:80:14:d1:ea:f1:f7:cb:f6:db:b0:bc:c7:81:fa: 48:6d:0b:70:8a:6e:65:8b:e3:de:c9:4e:c5:3f:8e: 44:68:67:28:ae:54:e4:5e:80:e5:da:5f:4e:18:6d: dd:8f:1e:c1:e8:5c:7b:8a:89:9a:a0:8c:3b:f1:53: 98:10:cc:44:87:c4:a0:94:da:79:c5:db:04:65:a7: e7:1d:14:f3:c4:d8:7a:49:dc:5e:14:f4:44:2e:72: 43:75:88:d3:bd:ad:a7:14:8a:1d:33:8c:b3:04:f6: bb:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:33:FF:A2:94:C2:5D:20:D2:CF:C3:57:06:B9:26:CC:1A:79:6C:10 X509v3 Authority Key Identifier: keyid:5E:C5:FB:33:4E:E5:2B:90:09:CB:92:3C:69:3B:D2:0F:04:78:A1:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XsX7M07lK5AJy5I8aTvSDwR4oUQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:4a:66:db:55:d0:36:5e:4d:1f:27:a9:a4:d1:15:11:a4:b9: 56:08:63:b4:df:7a:4a:ed:68:05:10:40:c7:da:a3:db:b2:ac: 7b:16:2a:10:0a:40:5a:c9:b2:86:ba:56:f0:0a:f0:bf:4d:62: 23:3e:6b:ac:be:1c:68:06:24:8a:52:8b:b9:fb:93:8a:77:f4: 0f:5f:24:ca:7f:01:9c:23:79:cb:3e:62:75:bb:af:a8:f4:31: d2:a9:0a:8d:15:6d:8b:67:72:cd:b0:cc:83:b1:e9:63:d3:4a: 51:bb:e1:d8:73:45:11:2b:d3:4d:29:c3:dc:55:a5:50:65:bb: d4:21:f4:b3:d5:3d:c1:7b:f7:a0:75:fb:88:08:86:81:e4:98: 1b:33:c7:49:71:5f:6a:90:ef:75:3e:2f:6f:04:67:5b:50:ac: 06:73:50:55:91:25:bf:ac:7d:26:bd:10:8c:89:e6:35:ef:19: 27:c4:50:65:04:72:0b:76:e8:39:27:68:dd:6d:44:2f:5e:f9: 87:30:92:c3:d5:6f:2a:ba:0c:7a:a2:dd:80:e9:6b:f1:a1:6c: 24:e5:fd:20:55:1b:21:ca:28:ac:d1:9c:8d:71:ac:1a:46:4f: 69:22:b2:53:77:ac:86:46:b7:5b:c7:99:86:9a:14:f2:04:bb: 6e:0e:de:91 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RUY4NzExMC8GA1UEBRMoNUVDNUZCMzM0RUU1MkI5MDA5Q0I5MjNDNjkzQkQyMEYw NDc4QTE0NDAeFw0yNTEyMTkwNTU2MzVaFw0yNTEyMjYwNTU2MzVaMBgxFjAUBgNV BAMMDTY5NDRlOTEzLTNhYjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVQ5CZYr2Wh9T6XgVoz+p9q/JPAX8yIn3AhjWh1EczvSVFQZGAtcMI6iy8IhA6 yWEcoNVuo2i/b12OupjX/EFNZL0dj+/jqrKWIlaberEgQV2zT36nnD2V1cEsp5SF 9FXUA1PsTsm9ENJvwL+aj8q+/xAXKKaLovbb/uHw5W3X+NTP7UngwEutSi74ijmS sK7If4HcfpeAFNHq8ffL9tuwvMeB+khtC3CKbmWL497JTsU/jkRoZyiuVORegOXa X04Ybd2PHsHoXHuKiZqgjDvxU5gQzESHxKCU2nnF2wRlp+cdFPPE2HpJ3F4U9EQu ckN1iNO9racUih0zjLME9rtjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvjP/opTC XSDSz8NXBrkmzBp5bBAwHwYDVR0jBBgwFoAUXsX7M07lK5AJy5I8aTvSDwR4oUQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFRjg3LzM0MDA4MDIyMzhC MzExRjA5MTQxODA4NkM0RjlBRTAyL1hzWDdNMDdsSzVBSnk1SThhVHZTRHdSNG9V US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWHNYN00wN2xLNUFKeTVJOGFUdlNEd1I0b1VRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF Rjg3LzM0MDA4MDIyMzhCMzExRjA5MTQxODA4NkM0RjlBRTAyL1hzWDdNMDdsSzVB Snk1SThhVHZTRHdSNG9VUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACRKZttV0DZeTR8nqaTRFRGkuVYIY7TfekrtaAUQQMfao9uyrHsWKhAK QFrJsoa6VvAK8L9NYiM+a6y+HGgGJIpSi7n7k4p39A9fJMp/AZwjecs+YnW7r6j0 MdKpCo0VbYtncs2wzIOx6WPTSlG74dhzRREr000pw9xVpVBlu9Qh9LPVPcF796B1 +4gIhoHkmBszx0lxX2qQ73U+L28EZ1tQrAZzUFWRJb+sfSa9EIyJ5jXvGSfEUGUE cgt26DknaN1tRC9e+YcwksPVbyq6DHqi3YDpa/GhbCTl/SBVGyHKKKzRnI1xrBpG T2kislN3rIZGt1vHmYaaFPIEu24O3pE= -----END CERTIFICATE-----Generated at Sat Dec 20 00:56:21 2025 by rpki-client