This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft File: xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft (raw, json) Hash identifier: 3hxZ6qTFlHvYh4Lg1I9JYGcZ6suvrU34i7ehHtiHjRQ= Subject key identifier: E6:D9:A2:7E:D9:58:A0:05:55:4A:6E:FC:12:8B:A8:7A:16:D0:75:30 Authority key identifier: C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF Certificate issuer: /CN=A918FD04/serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Certificate serial: 08FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft Manifest number: 1571 Signing time: Tue 30 Dec 2025 18:08:28 +0000 Manifest this update: Tue 30 Dec 2025 18:08:27 +0000 Manifest next update: Tue 06 Jan 2026 18:08:27 +0000 Files and hashes: 1: xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl (hash: N0yeAmZd8Th+mzor6e2ZSP33F0oKF0qRBtuT9Azv+kk=) 2: 7BBC1DD2040611EF909F6C3EC4F9AE02.roa (hash: PO0AZ1fTp3S5+kMx+XcNpi0qfLQExWGMHCA4bw3dxVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 Jan 2026 18:08:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2302 (0x8fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FD04, serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Validity Not Before: Dec 30 18:08:27 2025 GMT Not After : Jan 6 18:08:27 2026 GMT Subject: CN=6954151b-e2c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:e4:49:32:22:8b:eb:67:8b:aa:8c:27:69:0d: cc:70:ab:a9:d7:13:90:6f:1d:a5:d7:f2:8f:ad:61: 12:72:da:98:63:4e:4b:d1:f2:d0:db:c3:a3:cd:92: 01:fa:6f:58:15:d2:8b:73:05:fb:e8:0f:9a:02:7d: 84:de:bb:72:73:5c:2b:21:65:e9:f2:d5:71:d4:5c: b5:2b:1f:6c:bd:76:32:42:2f:d0:fb:44:f8:07:ab: 8e:8b:7f:5a:47:79:c7:39:3f:7b:44:c2:1a:01:7f: 02:fc:77:3c:ea:3d:a0:4e:7b:18:37:e9:bd:e5:e9: d7:f8:d4:ca:6f:f1:25:e7:80:ef:b1:3f:a7:0a:69: cc:24:8a:e1:a6:0b:d2:1b:c1:36:54:38:79:40:3e: b7:81:10:8a:02:76:68:22:e2:51:99:8d:64:8a:0e: 48:22:4d:4b:fe:82:06:d9:fe:b0:19:21:97:7c:e9: 02:72:bb:2c:95:f1:19:7e:a4:73:d3:94:39:be:fc: dd:fc:73:af:27:ee:8c:e4:c5:13:6d:97:85:38:e2: 14:ae:fd:25:3d:1f:1b:0f:4e:13:92:13:e4:59:fd: f9:71:07:ce:d3:7f:30:66:33:dc:c4:f8:42:ca:3d: 7b:60:cc:aa:0c:b5:44:68:d4:08:bb:43:ee:39:b8: a2:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:D9:A2:7E:D9:58:A0:05:55:4A:6E:FC:12:8B:A8:7A:16:D0:75:30 X509v3 Authority Key Identifier: keyid:C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:21:9b:eb:97:50:94:b8:dc:0d:06:cc:58:5e:9b:32:13:0c: 09:0d:c9:37:af:e3:18:10:e8:8d:26:2e:50:ba:63:b5:28:c1: 64:5b:78:66:f3:ea:56:75:ac:9c:d6:bb:cd:3a:aa:d0:63:02: 33:4a:1e:b4:e9:ed:bb:04:ae:97:a1:b1:33:f2:d1:2e:58:05: 00:e3:be:cc:b3:6c:99:86:88:9f:bb:0f:2e:11:32:ae:b8:25: 82:24:af:5d:f7:70:68:02:1c:f7:ef:f8:d0:54:04:26:eb:9c: 9d:3a:0e:d9:1c:7c:05:19:70:b5:67:40:22:41:cd:78:f5:06: 20:80:d2:79:3d:a7:c8:75:9a:81:09:0f:37:c3:18:b2:7a:b9: 67:77:c8:26:92:50:b5:62:02:99:5d:a9:4a:d8:81:4a:b8:d2: 5d:f0:24:cc:b9:30:8d:11:e3:2f:28:86:7b:31:bb:b7:99:f2: a3:4d:65:82:44:81:c1:9d:9e:47:33:ac:89:2b:79:80:be:f1: 9b:e2:a4:1f:84:86:36:16:fb:39:cb:e3:47:30:a3:a9:73:be: 34:92:31:6a:7f:cb:d3:8d:31:25:d3:af:9e:24:29:a3:71:68: bf:06:77:3d:71:2c:de:dc:a3:43:03:3e:dd:e1:a2:a4:f2:9e: 06:0e:3a:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZEMDQxMTAvBgNVBAUTKEM0QTRDMzU0MzU4RkQ0ODIzRjZFQzUzMTMyNzY3NDg1 NEM4NkM2REYwHhcNMjUxMjMwMTgwODI3WhcNMjYwMTA2MTgwODI3WjAYMRYwFAYD VQQDDA02OTU0MTUxYi1lMmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7+RJMiKL62eLqownaQ3McKup1xOQbx2l1/KPrWESctqYY05L0fLQ28OjzZIB +m9YFdKLcwX76A+aAn2E3rtyc1wrIWXp8tVx1Fy1Kx9svXYyQi/Q+0T4B6uOi39a R3nHOT97RMIaAX8C/Hc86j2gTnsYN+m95enX+NTKb/El54DvsT+nCmnMJIrhpgvS G8E2VDh5QD63gRCKAnZoIuJRmY1kig5IIk1L/oIG2f6wGSGXfOkCcrsslfEZfqRz 05Q5vvzd/HOvJ+6M5MUTbZeFOOIUrv0lPR8bD04TkhPkWf35cQfO038wZjPcxPhC yj17YMyqDLVEaNQIu0PuObiimQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFObZon7Z WKAFVUpu/BKLqHoW0HUwMB8GA1UdIwQYMBaAFMSkw1Q1j9SCP27FMTJ2dIVMhsbf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkQwNC8wQUJCRjQ3MjBE RjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJSV9ic1V4TW5aMGhVeUd4 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hLVERWRFdQMUlJX2JzVXhNblowaFV5R3h0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkQwNC8wQUJCRjQ3MjBERjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJ SV9ic1V4TW5aMGhVeUd4dDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqIZvrl1CUuNwNBsxYXpsyEwwJDck3r+MYEOiNJi5QumO1KMFkW3hm 8+pWdayc1rvNOqrQYwIzSh606e27BK6XobEz8tEuWAUA477Ms2yZhoifuw8uETKu uCWCJK9d93BoAhz37/jQVAQm65ydOg7ZHHwFGXC1Z0AiQc149QYggNJ5PafIdZqB CQ83wxiyerlnd8gmklC1YgKZXalK2IFKuNJd8CTMuTCNEeMvKIZ7Mbu3mfKjTWWC RIHBnZ5HM6yJK3mAvvGb4qQfhIY2Fvs5y+NHMKOpc740kjFqf8vTjTEl06+eJCmj cWi/Bnc9cSze3KNDAz7d4aKk8p4GDjrf -----END CERTIFICATE-----Generated at Wed Dec 31 13:27:55 2025 by rpki-client