This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.mft File: -XyNrMJ-n8zTOuuFNQsmpIFfELc.mft (raw, json) Hash identifier: FbZMMtXlR9nXYzs5SEk0c83oedEXwPOirSpyedfp7es= Subject key identifier: 6E:B9:67:04:10:7C:3D:28:69:E5:D6:2C:F0:57:DD:1D:58:2E:4D:95 Authority key identifier: F9:7C:8D:AC:C2:7E:9F:CC:D3:3A:EB:85:35:0B:26:A4:81:5F:10:B7 Certificate issuer: /CN=A9196BD8/serialNumber=F97C8DACC27E9FCCD33AEB85350B26A4815F10B7 Certificate serial: 23C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.mft Manifest number: 23A5 Signing time: Thu 18 Dec 2025 15:45:15 +0000 Manifest this update: Thu 18 Dec 2025 15:45:15 +0000 Manifest next update: Thu 25 Dec 2025 15:45:15 +0000 Files and hashes: 1: -XyNrMJ-n8zTOuuFNQsmpIFfELc.crl (hash: uOBvbTLrO7IUnIwch5Q6JqULDRi53c36OgP62yPj8hQ=) 2: A768E6B6FB0811ED860A5143C4F9AE02.roa (hash: yQ+XYCupRjpKC1z+KmqRpy0/MHYgLpl3GjcGFImbs1s=) 3: C73BE8A654F311E7AC64ED3AC4F9AE02.roa (hash: c0fUfF2O4q3/3ooNrYKlqBAmFHkp10eQdlPnj3yP614=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.crl rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 15:45:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9153 (0x23c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196BD8, serialNumber=F97C8DACC27E9FCCD33AEB85350B26A4815F10B7 Validity Not Before: Dec 18 15:45:15 2025 GMT Not After : Dec 25 15:45:15 2025 GMT Subject: CN=6944218b-ce6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:25:c0:07:32:97:15:97:93:97:6c:88:45:92: 33:ec:43:0a:f6:7f:27:b7:f3:cd:e7:8d:1e:49:53: d5:83:9c:ad:bd:1a:e0:39:52:4c:4c:98:c7:3d:3d: 58:8a:49:d2:02:a0:6e:0c:1f:fa:ef:35:74:42:d0: ce:04:55:97:25:8b:27:51:4a:de:53:59:11:69:ef: 0b:16:d6:08:54:2b:ed:58:97:67:ff:fe:40:65:c1: 6f:f3:fc:f4:7f:6d:cc:93:ba:fe:85:4c:1a:0e:ff: 2a:7b:f4:21:c8:48:fb:96:a4:35:44:15:e1:9f:ef: 8c:8e:e5:37:3b:fa:70:e2:b3:c1:4f:6e:66:96:f4: 2b:40:a9:63:f3:9b:84:ec:e4:81:7a:48:89:c0:8b: a8:bd:6f:bb:16:aa:26:c4:bb:e6:7e:f4:c8:5c:10: 45:bc:69:2e:1c:2a:0d:0f:3d:78:3d:be:54:27:95: 12:c4:db:f0:38:cf:e7:cd:6f:69:9a:c9:57:a1:dc: c9:df:2c:70:d3:a7:d3:7e:86:f3:32:5f:75:d8:72: c3:ec:04:30:74:41:41:c7:f4:5b:b1:f6:41:64:31: a4:84:b8:cb:0d:5b:52:b2:49:81:a5:88:97:b8:de: 70:1e:af:c8:16:0f:17:92:62:a3:1c:fe:03:04:6a: 69:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:B9:67:04:10:7C:3D:28:69:E5:D6:2C:F0:57:DD:1D:58:2E:4D:95 X509v3 Authority Key Identifier: keyid:F9:7C:8D:AC:C2:7E:9F:CC:D3:3A:EB:85:35:0B:26:A4:81:5F:10:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:6c:8f:0b:85:9c:69:d7:11:fa:68:81:e1:a2:ab:9c:2f:fd: 12:82:52:e1:f6:1c:d2:3e:e0:93:e2:d9:f9:8e:c5:85:4d:07: 8a:6e:77:85:d8:94:af:71:a6:aa:52:e6:26:6d:39:54:dc:c1: 52:69:fe:ae:d7:e8:04:65:78:cd:db:9d:db:11:ec:a5:b2:51: 6f:03:26:da:e3:57:53:2d:ce:72:20:f1:69:c9:35:66:d1:e2: 85:db:6f:74:28:95:00:9e:ef:15:df:f0:b7:7d:69:71:f3:2b: 96:6a:7c:b0:5c:47:a9:e8:ce:2f:e6:b7:2b:b1:7e:e0:d2:f9: e0:bc:31:03:68:bb:4c:dd:db:1b:b4:6e:b3:d2:f6:41:e5:27: 29:34:8a:72:24:8b:4f:b4:bd:13:2e:12:20:fe:98:69:6a:71: 9f:72:80:bc:af:8a:5d:2c:a4:ff:c2:53:cd:a9:a1:21:da:2c: b4:b7:93:58:4f:ba:5d:8f:85:fb:95:4b:9b:e1:bf:89:85:c6: 4e:b9:9c:c3:20:9c:a9:3a:81:1b:b2:20:61:f6:98:50:4d:4b: fa:bc:28:73:ee:6a:9c:a9:2e:c6:41:44:f1:81:59:b1:9f:46: e1:fe:ea:ae:5c:0d:3f:35:18:67:f0:b2:3c:b9:b8:8a:e6:7f: 8b:05:75:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZCRDgxMTAvBgNVBAUTKEY5N0M4REFDQzI3RTlGQ0NEMzNBRUI4NTM1MEIyNkE0 ODE1RjEwQjcwHhcNMjUxMjE4MTU0NTE1WhcNMjUxMjI1MTU0NTE1WjAYMRYwFAYD VQQDDA02OTQ0MjE4Yi1jZTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0iXABzKXFZeTl2yIRZIz7EMK9n8nt/PN540eSVPVg5ytvRrgOVJMTJjHPT1Y iknSAqBuDB/67zV0QtDOBFWXJYsnUUreU1kRae8LFtYIVCvtWJdn//5AZcFv8/z0 f23Mk7r+hUwaDv8qe/QhyEj7lqQ1RBXhn++MjuU3O/pw4rPBT25mlvQrQKlj85uE 7OSBekiJwIuovW+7FqomxLvmfvTIXBBFvGkuHCoNDz14Pb5UJ5USxNvwOM/nzW9p mslXodzJ3yxw06fTfobzMl912HLD7AQwdEFBx/RbsfZBZDGkhLjLDVtSskmBpYiX uN5wHq/IFg8XkmKjHP4DBGppNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG65ZwQQ fD0oaeXWLPBX3R1YLk2VMB8GA1UdIwQYMBaAFPl8jazCfp/M0zrrhTULJqSBXxC3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkJEOC9DNTgzRDIzMjg3 QTIxMUU1OUU1MUYyNTFDNEY5QUUwMi8tWHlOck1KLW44elRPdXVGTlFzbXBJRmZF TGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YeU5yTUotbjh6VE91dUZOUXNtcElGZkVMYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkJEOC9DNTgzRDIzMjg3QTIxMUU1OUU1MUYyNTFDNEY5QUUwMi8tWHlOck1KLW44 elRPdXVGTlFzbXBJRmZFTGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBbI8LhZxp1xH6aIHhoqucL/0SglLh9hzSPuCT4tn5jsWFTQeKbneF 2JSvcaaqUuYmbTlU3MFSaf6u1+gEZXjN253bEeylslFvAyba41dTLc5yIPFpyTVm 0eKF2290KJUAnu8V3/C3fWlx8yuWanywXEep6M4v5rcrsX7g0vngvDEDaLtM3dsb tG6z0vZB5ScpNIpyJItPtL0TLhIg/phpanGfcoC8r4pdLKT/wlPNqaEh2iy0t5NY T7pdj4X7lUub4b+JhcZOuZzDIJypOoEbsiBh9phQTUv6vChz7mqcqS7GQUTxgVmx n0bh/uquXA0/NRhn8LI8ubiK5n+LBXUX -----END CERTIFICATE-----Generated at Fri Dec 19 18:50:24 2025 by rpki-client