This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/XaSteg0ZJFUV5aLYSgxnRwCkP80.mft File: XaSteg0ZJFUV5aLYSgxnRwCkP80.mft (raw, json) Hash identifier: /irt+QZrd+PRgUUbkXKeClePUaWW1CBRFoymVPc2xH8= Subject key identifier: E5:F5:91:66:19:FF:12:31:EA:4A:DC:49:20:51:C0:1C:1F:28:20:4C Authority key identifier: 5D:A4:AD:7A:0D:19:24:55:15:E5:A2:D8:4A:0C:67:47:00:A4:3F:CD Certificate issuer: /CN=A9192BCF/serialNumber=5DA4AD7A0D19245515E5A2D84A0C674700A43FCD Certificate serial: 01BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XaSteg0ZJFUV5aLYSgxnRwCkP80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/XaSteg0ZJFUV5aLYSgxnRwCkP80.mft Manifest number: 01BA Signing time: Fri 19 Dec 2025 02:16:33 +0000 Manifest this update: Fri 19 Dec 2025 02:16:32 +0000 Manifest next update: Fri 26 Dec 2025 02:16:32 +0000 Files and hashes: 1: XaSteg0ZJFUV5aLYSgxnRwCkP80.crl (hash: 562BM2S95juPBZOmGLLOsUXLf6fIsVhUc9JwbHiufXs=) 2: 9062BB863C3F11EE8DA7781AC4F9AE02.roa (hash: Ko2wZOucS0J/Gzb2C9yks7gKzQf0Lz0Srb4aABcYNMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/XaSteg0ZJFUV5aLYSgxnRwCkP80.crl rsync://rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/XaSteg0ZJFUV5aLYSgxnRwCkP80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XaSteg0ZJFUV5aLYSgxnRwCkP80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:16:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 446 (0x1be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192BCF, serialNumber=5DA4AD7A0D19245515E5A2D84A0C674700A43FCD Validity Not Before: Dec 19 02:16:32 2025 GMT Not After : Dec 26 02:16:32 2025 GMT Subject: CN=6944b581-8c11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:50:66:05:9c:49:4a:33:f9:fa:15:d8:64:e9: 40:4b:7a:91:6c:48:72:7a:c4:7a:fa:ce:a0:1e:5c: 52:ba:a8:f5:a0:8f:92:04:5a:96:d4:80:bd:67:2c: 91:83:9d:f3:97:06:fd:98:fc:7b:c4:34:c0:64:57: 6d:c2:ce:cb:08:22:ea:e2:6b:24:d3:53:92:e6:86: da:b1:0b:d2:6a:c0:47:8f:74:ad:97:e4:1b:9e:19: 0e:42:41:3a:5e:cd:eb:db:9c:7a:24:da:3d:3a:dd: 6f:0b:6f:66:6b:5b:03:e3:9e:ec:16:30:2f:b3:f3: 77:94:27:da:72:ca:97:01:88:d2:a2:a8:07:4a:25: bd:7f:9f:78:3d:8b:da:ce:5a:a4:b8:58:87:0c:43: 1e:03:e5:87:23:62:db:c5:8b:f3:f8:b8:eb:e6:f7: 39:17:6e:d5:90:01:a3:83:2f:5b:47:5f:7a:f8:8c: c6:08:9a:34:62:40:f2:ed:38:0a:9f:82:6d:c4:5d: 26:a1:df:8f:9d:af:7a:01:3d:a6:12:f9:55:f7:55: 2f:5e:6f:ee:c8:9a:ef:f1:e5:28:f5:1a:e9:f0:13: ed:32:e7:36:13:ae:03:58:48:d3:b5:59:65:96:d6: 55:88:3a:4a:f3:99:b1:0e:e0:1b:5e:0b:7e:f3:7d: 2b:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:F5:91:66:19:FF:12:31:EA:4A:DC:49:20:51:C0:1C:1F:28:20:4C X509v3 Authority Key Identifier: keyid:5D:A4:AD:7A:0D:19:24:55:15:E5:A2:D8:4A:0C:67:47:00:A4:3F:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/XaSteg0ZJFUV5aLYSgxnRwCkP80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XaSteg0ZJFUV5aLYSgxnRwCkP80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/XaSteg0ZJFUV5aLYSgxnRwCkP80.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:ff:65:90:2c:01:76:dc:ee:19:07:0e:b5:51:6e:9c:bc:6b: da:2d:2b:57:0b:82:88:5d:ff:e8:cf:3d:0e:1f:39:10:63:36: 78:81:cd:08:53:d9:6e:24:af:18:e3:1c:d7:e5:a9:4c:e2:9f: ab:b4:84:96:57:25:8f:60:61:dc:c0:25:e9:40:33:fe:45:6e: 3b:ec:12:70:b6:31:a4:26:fc:fd:dc:ce:3d:d6:ff:b0:25:ae: f5:13:be:85:9c:11:0a:e1:3c:3d:e9:d1:66:07:f4:c8:d8:99: 25:ed:0b:75:e4:d6:58:e1:e1:9e:87:93:02:3c:85:22:45:be: ec:5c:67:ac:79:5b:c7:0b:02:28:9c:c6:72:e5:75:08:33:de: a2:11:68:59:4c:43:0f:b0:8c:0b:b1:bc:e8:4a:5c:83:b2:7e: d2:a9:24:55:f9:a9:79:03:93:26:f7:4c:08:34:d8:f7:19:e8: af:8b:01:40:17:9f:86:2f:b1:05:65:85:c2:13:11:c1:cb:49: a0:85:10:0c:52:a2:f1:74:fc:18:51:59:15:be:62:26:5d:55: e6:11:bc:51:79:87:d3:11:94:83:2d:34:1c:4f:d8:99:da:a6: 14:f7:9b:0c:f1:53:c7:65:9d:85:67:62:71:70:f4:69:4f:0d: fd:e7:92:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJCQ0YxMTAvBgNVBAUTKDVEQTRBRDdBMEQxOTI0NTUxNUU1QTJEODRBMEM2NzQ3 MDBBNDNGQ0QwHhcNMjUxMjE5MDIxNjMyWhcNMjUxMjI2MDIxNjMyWjAYMRYwFAYD VQQDDA02OTQ0YjU4MS04YzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2VBmBZxJSjP5+hXYZOlAS3qRbEhyesR6+s6gHlxSuqj1oI+SBFqW1IC9ZyyR g53zlwb9mPx7xDTAZFdtws7LCCLq4msk01OS5obasQvSasBHj3Stl+QbnhkOQkE6 Xs3r25x6JNo9Ot1vC29ma1sD457sFjAvs/N3lCfacsqXAYjSoqgHSiW9f594PYva zlqkuFiHDEMeA+WHI2LbxYvz+Ljr5vc5F27VkAGjgy9bR196+IzGCJo0YkDy7TgK n4JtxF0mod+Pna96AT2mEvlV91UvXm/uyJrv8eUo9Rrp8BPtMuc2E64DWEjTtVll ltZViDpK85mxDuAbXgt+830rawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOX1kWYZ /xIx6krcSSBRwBwfKCBMMB8GA1UdIwQYMBaAFF2krXoNGSRVFeWi2EoMZ0cApD/N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkJDRi8zMDUyQ0NBNjNC NEQxMUVFOUUxQjA3NzJDNEY5QUUwMi9YYVN0ZWcwWkpGVVY1YUxZU2d4blJ3Q2tQ ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hhU3RlZzBaSkZVVjVhTFlTZ3huUndDa1A4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MkJDRi8zMDUyQ0NBNjNCNEQxMUVFOUUxQjA3NzJDNEY5QUUwMi9YYVN0ZWcwWkpG VVY1YUxZU2d4blJ3Q2tQODAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA//2WQLAF23O4ZBw61UW6cvGvaLStXC4KIXf/ozz0OHzkQYzZ4gc0I U9luJK8Y4xzX5alM4p+rtISWVyWPYGHcwCXpQDP+RW477BJwtjGkJvz93M491v+w Ja71E76FnBEK4Tw96dFmB/TI2Jkl7Qt15NZY4eGeh5MCPIUiRb7sXGeseVvHCwIo nMZy5XUIM96iEWhZTEMPsIwLsbzoSlyDsn7SqSRV+al5A5Mm90wINNj3GeiviwFA F5+GL7EFZYXCExHBy0mghRAMUqLxdPwYUVkVvmImXVXmEbxReYfTEZSDLTQcT9iZ 2qYU95sM8VPHZZ2FZ2JxcPRpTw3955JZ -----END CERTIFICATE-----Generated at Fri Dec 19 20:15:36 2025 by rpki-client