This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft File: XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft (raw, json) Hash identifier: zNldeW+UsWEzYsI9sFuS1wqRSASbsh4rJtWjjpgAUCQ= Subject key identifier: 1E:9E:61:EF:BB:03:72:B7:D1:22:15:1E:CE:AB:09:A1:47:71:2C:96 Authority key identifier: 5F:1C:53:4A:EE:FF:4E:38:0C:E5:A0:9A:10:84:BF:8F:57:09:ED:08 Certificate issuer: /CN=A91A467D/serialNumber=5F1C534AEEFF4E380CE5A09A1084BF8F5709ED08 Certificate serial: 0B55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft Manifest number: 0B4E Signing time: Sun 28 Dec 2025 18:44:13 +0000 Manifest this update: Sun 28 Dec 2025 18:44:13 +0000 Manifest next update: Sun 04 Jan 2026 18:44:13 +0000 Files and hashes: 1: XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl (hash: PJEF0/odFCBMbXQAz3/9bSMXwSL+T9s7xK+9ccHaijk=) 2: 43272DE249AA11EABABC8610C4F9AE02.roa (hash: ArNuSAGS500F2Au8BkBemb4Fqw5PMgC4H5tbUjnLNK4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 18:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2901 (0xb55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A467D, serialNumber=5F1C534AEEFF4E380CE5A09A1084BF8F5709ED08 Validity Not Before: Dec 28 18:44:13 2025 GMT Not After : Jan 4 18:44:13 2026 GMT Subject: CN=69517a7d-be6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b3:35:3d:8f:07:7e:61:75:8a:db:e5:79:71: ed:48:d6:9a:78:7b:ec:bb:0a:13:41:84:ca:60:60: 8c:91:37:5e:e9:49:22:c9:3e:3d:2b:23:35:f3:0c: 5f:36:75:78:b4:67:95:f6:2f:33:4f:fe:b1:ac:41: 27:08:94:db:f2:8a:95:35:52:e0:64:7d:25:be:4e: 76:65:15:a3:8c:0e:28:f1:b0:5f:3a:aa:87:36:64: 8b:d0:4b:25:04:b6:6b:a3:da:a2:30:3b:63:8f:84: d3:46:8e:d9:51:f3:19:97:d9:56:1f:fe:71:c0:f6: a7:b5:b1:ea:65:12:e7:7c:c4:82:a4:80:65:8f:55: bd:39:a4:85:27:f6:95:d6:e4:b3:b2:66:d4:2a:81: 60:d4:b3:cb:03:23:40:68:43:1c:be:eb:69:e8:29: b6:d2:f1:f5:2f:5a:ae:bd:64:ea:d5:04:d4:d4:8c: dc:0f:c9:e4:16:2e:98:32:81:aa:b0:fb:a7:97:75: fb:7b:84:fc:e2:db:d2:d5:83:29:e2:12:70:d2:a6: 91:e4:96:35:fd:1a:3d:59:0d:fb:e6:79:d5:6d:4d: 0c:34:af:f6:9a:0d:cd:51:49:90:2f:0e:f2:b9:43: 54:63:a7:3d:36:69:be:3f:e2:ab:89:f3:65:ee:11: 55:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:9E:61:EF:BB:03:72:B7:D1:22:15:1E:CE:AB:09:A1:47:71:2C:96 X509v3 Authority Key Identifier: keyid:5F:1C:53:4A:EE:FF:4E:38:0C:E5:A0:9A:10:84:BF:8F:57:09:ED:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:08:58:3d:bf:85:10:82:11:0a:ef:7e:f5:35:b0:8f:d8:3f: 1d:61:f5:9d:a7:08:46:b7:a2:92:07:4b:bb:13:79:6f:74:7a: e3:44:3f:b5:bd:6d:11:94:1c:9d:7b:55:e6:df:92:f8:2a:ad: ed:2b:0a:45:82:46:50:57:65:87:d1:1b:e8:6f:55:04:c9:9d: b7:c7:2e:52:fc:bf:58:3b:8e:5a:b2:70:fc:01:97:20:ad:b9: 7f:e4:1c:69:2a:fd:2a:91:16:88:2a:4e:d4:27:0f:06:b2:67: f6:9d:7d:a9:79:de:80:0c:e0:b5:ea:1e:1d:60:14:3c:a3:21: 43:cf:3f:ec:9b:48:45:e5:26:ff:79:ba:bf:7f:05:36:e2:53: 51:63:e9:a1:88:ba:ce:1b:09:f5:cd:63:dd:6e:48:2f:5f:c4: 20:21:a3:06:59:3b:07:84:51:eb:9d:8b:97:0f:6c:83:a5:34: 16:38:66:8d:91:31:36:40:a4:ca:84:6d:2f:5f:86:06:2e:50: c3:4e:04:7f:ef:8d:af:ca:ea:4f:0a:7b:62:a9:ed:48:14:1a: fb:15:f8:e6:bc:f7:28:71:bf:ab:5f:92:05:23:d6:44:c0:fc: 5b:b7:16:c6:20:5a:11:ae:eb:a9:9f:9e:27:25:17:69:60:f7: ae:da:d2:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ2N0QxMTAvBgNVBAUTKDVGMUM1MzRBRUVGRjRFMzgwQ0U1QTA5QTEwODRCRjhG NTcwOUVEMDgwHhcNMjUxMjI4MTg0NDEzWhcNMjYwMTA0MTg0NDEzWjAYMRYwFAYD VQQDDA02OTUxN2E3ZC1iZTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx7M1PY8HfmF1itvleXHtSNaaeHvsuwoTQYTKYGCMkTde6UkiyT49KyM18wxf NnV4tGeV9i8zT/6xrEEnCJTb8oqVNVLgZH0lvk52ZRWjjA4o8bBfOqqHNmSL0Esl BLZro9qiMDtjj4TTRo7ZUfMZl9lWH/5xwPantbHqZRLnfMSCpIBlj1W9OaSFJ/aV 1uSzsmbUKoFg1LPLAyNAaEMcvutp6Cm20vH1L1quvWTq1QTU1IzcD8nkFi6YMoGq sPunl3X7e4T84tvS1YMp4hJw0qaR5JY1/Ro9WQ375nnVbU0MNK/2mg3NUUmQLw7y uUNUY6c9Nmm+P+KrifNl7hFV4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB6eYe+7 A3K30SIVHs6rCaFHcSyWMB8GA1UdIwQYMBaAFF8cU0ru/044DOWgmhCEv49XCe0I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDY3RC84NDhFN0QxODQ5 QTkxMUVBQTZGREQzMEZDNEY5QUUwMi9YeHhUU3U3X1RqZ001YUNhRUlTX2oxY0o3 UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h4eFRTdTdfVGpnTTVhQ2FFSVNfajFjSjdRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDY3RC84NDhFN0QxODQ5QTkxMUVBQTZGREQzMEZDNEY5QUUwMi9YeHhUU3U3X1Rq Z001YUNhRUlTX2oxY0o3UWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVCFg9v4UQghEK7371NbCP2D8dYfWdpwhGt6KSB0u7E3lvdHrjRD+1 vW0RlByde1Xm35L4Kq3tKwpFgkZQV2WH0Rvob1UEyZ23xy5S/L9YO45asnD8AZcg rbl/5BxpKv0qkRaIKk7UJw8Gsmf2nX2ped6ADOC16h4dYBQ8oyFDzz/sm0hF5Sb/ ebq/fwU24lNRY+mhiLrOGwn1zWPdbkgvX8QgIaMGWTsHhFHrnYuXD2yDpTQWOGaN kTE2QKTKhG0vX4YGLlDDTgR/742vyupPCntiqe1IFBr7FfjmvPcocb+rX5IFI9ZE wPxbtxbGIFoRruupn54nJRdpYPeu2tJo -----END CERTIFICATE-----Generated at Mon Dec 29 03:28:53 2025 by rpki-client