This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft File: x5XlnAMMfJKfy-R0Gfxexp4frP0.mft (raw, json) Hash identifier: MIjlGlorn/ZR5kWULdwucLDnwoE/DwaUj3zFjUYL0PY= Subject key identifier: B7:2E:BC:34:7F:93:F8:3A:9F:3A:39:4D:EF:7B:D2:FE:0A:EA:B1:30 Authority key identifier: C7:95:E5:9C:03:0C:7C:92:9F:CB:E4:74:19:FC:5E:C6:9E:1F:AC:FD Certificate issuer: /CN=A91A3FEB/serialNumber=C795E59C030C7C929FCBE47419FC5EC69E1FACFD Certificate serial: 07B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5XlnAMMfJKfy-R0Gfxexp4frP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft Manifest number: 07B2 Signing time: Wed 24 Dec 2025 20:45:19 +0000 Manifest this update: Wed 24 Dec 2025 20:45:19 +0000 Manifest next update: Wed 31 Dec 2025 20:45:19 +0000 Files and hashes: 1: x5XlnAMMfJKfy-R0Gfxexp4frP0.crl (hash: DntRb3d+eNJk403xtFmmDXzE4HBX4d5Kuk5C4twwTjg=) 2: B722FC542A0411EB992DD32EC4F9AE02.roa (hash: wsrS8Hj9tlKWrRYJKi3rNPfDpEOnN9QMK0e9qX0Cib4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.crl rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5XlnAMMfJKfy-R0Gfxexp4frP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 20:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1976 (0x7b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3FEB, serialNumber=C795E59C030C7C929FCBE47419FC5EC69E1FACFD Validity Not Before: Dec 24 20:45:19 2025 GMT Not After : Dec 31 20:45:19 2025 GMT Subject: CN=694c50df-1eba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:56:35:4e:bc:61:d4:26:2b:39:03:53:57:8c: b4:da:99:3d:6c:d2:d4:cc:aa:5b:8c:8a:71:21:7c: 94:0b:bd:87:1f:24:d0:68:0f:45:f8:e3:66:17:44: 0d:1f:f4:d0:5e:e6:cb:7e:ad:9a:8a:d8:89:61:1d: 8c:52:d3:89:0b:64:e4:84:ea:7f:22:71:3a:01:67: fa:c5:01:e1:01:f3:d6:a7:e5:91:53:39:bf:64:37: 57:96:98:d7:ad:06:5c:e7:53:cd:18:45:2d:75:8b: 9a:ce:df:a1:6d:61:4d:db:59:b6:ff:df:06:20:30: c4:1c:8b:5f:08:42:e9:b6:36:6e:bf:4f:0d:56:da: c6:14:41:43:66:b7:44:40:0d:12:ad:1e:41:3f:39: 72:14:82:3b:d8:f7:9e:82:88:37:31:af:e9:04:49: bc:08:62:b5:72:19:82:29:a6:c6:d9:76:26:bf:b5: a3:5b:e4:6a:43:76:1f:84:c2:89:db:6d:29:88:bf: 23:66:db:aa:63:5f:87:e3:8a:fb:82:5c:51:35:73: 6f:f7:10:30:c1:ce:ff:28:61:af:e7:9b:9e:24:be: 79:ea:69:c1:cd:70:92:fc:87:42:f3:4f:fb:19:ce: 13:68:75:92:8c:70:bd:00:49:60:56:90:6e:62:96: fc:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:2E:BC:34:7F:93:F8:3A:9F:3A:39:4D:EF:7B:D2:FE:0A:EA:B1:30 X509v3 Authority Key Identifier: keyid:C7:95:E5:9C:03:0C:7C:92:9F:CB:E4:74:19:FC:5E:C6:9E:1F:AC:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5XlnAMMfJKfy-R0Gfxexp4frP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:8a:ad:47:c8:e1:78:89:15:78:c8:b9:bf:1d:3a:f9:c5:33: c1:55:b7:fc:ec:d6:ad:6c:dd:e0:81:71:7b:15:92:87:47:df: ea:a3:b5:67:be:65:d5:7a:3a:15:ad:cd:aa:6a:4f:a3:e7:95: a3:0e:48:f2:c7:0d:53:1f:59:83:0b:3c:71:42:1d:6f:03:46: 4f:0e:76:43:06:9c:9e:80:c9:35:1c:ee:8e:53:4c:b0:11:c8: 52:db:2e:20:07:07:88:13:90:a7:7d:0d:e5:49:19:3a:73:89: 0e:1a:f8:66:cc:20:47:e8:ba:1d:5d:e3:51:86:9a:50:61:98: 1c:61:b4:31:d9:49:01:b9:a3:e6:53:cc:f1:72:37:a2:f7:30: f8:11:5c:e4:fc:cd:fb:b6:27:6b:3e:a3:8b:61:a8:71:b3:f2: 55:b2:c9:1c:09:60:8d:68:d3:f9:46:73:80:04:3f:aa:0e:7f: 33:db:f5:2b:22:ef:78:e3:01:44:20:dc:e8:1e:89:d0:48:95: 35:1e:0b:b5:d2:e6:f2:b8:76:28:a7:11:eb:fd:bb:57:f2:ec: fd:b6:f2:99:55:2e:7e:81:8a:fd:e1:26:87:4d:80:73:d6:e0: 51:4b:18:79:c6:84:d5:e9:6b:4b:56:99:51:19:88:ec:b4:57: 9a:8a:9c:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNGRUIxMTAvBgNVBAUTKEM3OTVFNTlDMDMwQzdDOTI5RkNCRTQ3NDE5RkM1RUM2 OUUxRkFDRkQwHhcNMjUxMjI0MjA0NTE5WhcNMjUxMjMxMjA0NTE5WjAYMRYwFAYD VQQDDA02OTRjNTBkZi0xZWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwVY1Trxh1CYrOQNTV4y02pk9bNLUzKpbjIpxIXyUC72HHyTQaA9F+ONmF0QN H/TQXubLfq2aitiJYR2MUtOJC2TkhOp/InE6AWf6xQHhAfPWp+WRUzm/ZDdXlpjX rQZc51PNGEUtdYuazt+hbWFN21m2/98GIDDEHItfCELptjZuv08NVtrGFEFDZrdE QA0SrR5BPzlyFII72Peegog3Ma/pBEm8CGK1chmCKabG2XYmv7WjW+RqQ3YfhMKJ 220piL8jZtuqY1+H44r7glxRNXNv9xAwwc7/KGGv55ueJL556mnBzXCS/IdC80/7 Gc4TaHWSjHC9AElgVpBuYpb82QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLcuvDR/ k/g6nzo5Te970v4K6rEwMB8GA1UdIwQYMBaAFMeV5ZwDDHySn8vkdBn8XsaeH6z9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0ZFQi9CMDE4QUQ5NjI5 MTkxMUVCOTg1NDk4NUNDNEY5QUUwMi94NVhsbkFNTWZKS2Z5LVIwR2Z4ZXhwNGZy UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g1WGxuQU1NZkpLZnktUjBHZnhleHA0ZnJQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0ZFQi9CMDE4QUQ5NjI5MTkxMUVCOTg1NDk4NUNDNEY5QUUwMi94NVhsbkFNTWZK S2Z5LVIwR2Z4ZXhwNGZyUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKiq1HyOF4iRV4yLm/HTr5xTPBVbf87NatbN3ggXF7FZKHR9/qo7Vn vmXVejoVrc2qak+j55WjDkjyxw1TH1mDCzxxQh1vA0ZPDnZDBpyegMk1HO6OU0yw EchS2y4gBweIE5CnfQ3lSRk6c4kOGvhmzCBH6LodXeNRhppQYZgcYbQx2UkBuaPm U8zxcjei9zD4EVzk/M37tidrPqOLYahxs/JVsskcCWCNaNP5RnOABD+qDn8z2/Ur Iu944wFEINzoHonQSJU1Hgu10ubyuHYopxHr/btX8uz9tvKZVS5+gYr94SaHTYBz 1uBRSxh5xoTV6WtLVplRGYjstFeaipxd -----END CERTIFICATE-----Generated at Thu Dec 25 15:40:45 2025 by rpki-client