This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft File: XqEcijop4GlzwfEhYR1aXCobBp0.mft (raw, json) Hash identifier: yJugfBOVBlH6bb35qfFpscHrVyE4kle7QORXj0Q32Pw= Subject key identifier: BF:71:28:F3:2F:51:B1:7A:DA:6B:ED:EE:84:16:18:E5:73:02:EC:46 Authority key identifier: 5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D Certificate issuer: /CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Certificate serial: 07BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft Manifest number: 078D Signing time: Sat 20 Dec 2025 20:58:35 +0000 Manifest this update: Sat 20 Dec 2025 20:58:35 +0000 Manifest next update: Sat 27 Dec 2025 20:58:35 +0000 Files and hashes: 1: XqEcijop4GlzwfEhYR1aXCobBp0.crl (hash: Pk4ORc+q+saWkeQA8R5HZ1qhqJXu8l4sfVEARtt5N4k=) 2: 9507206A63A111F092E32646C4F9AE02.roa (hash: rAuvyeznobZzFQMS0Fgkc4tf80FkzwtmDY5jMNACHCg=) 3: 0940732E0E6311EDB98DEA0DC4F9AE02.roa (hash: LjX/y1bmr7lUb6+mhBpoHtfDQ+zCLBR7g1pGcdMOf00=) 4: 0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa (hash: SGNPZCwfC0xAo0xM/Ak76M8pbN3zzIxkj9O1xC+I8EU=) 5: 5A51D464F5FA11EC9B35372AC4F9AE02.roa (hash: xKqf+n8kgniX6QnefZ1ax3dHrgOYPyD34X8HXDWa04o=) 6: 66FC64186D0711F0AC1BE951C4F9AE02.roa (hash: hWwF88GIP3tV+NyMDvSvQLm3VEbfDC65iFXo9VhwYUk=) 7: 94A5320663A111F092E32646C4F9AE02.roa (hash: O5r2+wXt4zH6hxOJA3sUCrB8yg9bHS1XDEYPpgUx1XQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 20:58:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1980 (0x7bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A654C, serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Validity Not Before: Dec 20 20:58:35 2025 GMT Not After : Dec 27 20:58:35 2025 GMT Subject: CN=69470dfb-942c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:da:f6:27:c5:59:74:48:14:c4:fc:27:ae:f5: 2e:f5:a0:61:64:9f:a7:7c:83:4b:38:e0:34:89:21: 49:81:b6:bb:94:c2:ae:8e:d0:c9:6d:ff:80:79:b9: 67:8d:76:ca:54:41:08:ff:aa:4d:a8:4e:59:3c:8b: 71:bd:10:3a:f1:45:c5:99:45:e2:c7:cd:53:80:10: 79:2c:2d:82:d7:0c:f1:54:ed:05:bf:3f:3e:f1:4c: 81:1d:93:49:b7:35:30:aa:f4:d8:a2:81:a2:77:96: da:80:96:1b:89:08:82:e0:03:5e:39:e1:58:96:71: df:1d:86:a9:ff:49:fd:f0:74:61:1d:dd:6f:fb:a8: 5f:26:3b:e1:f1:00:69:bf:0c:7c:8a:59:58:19:26: ca:31:39:f5:c1:4f:81:f0:b6:74:b7:d8:56:2c:52: f7:65:19:ca:c3:6a:ad:ea:1b:50:e5:ae:3a:84:ef: 52:ae:ae:46:01:fd:f7:41:69:df:13:5b:60:af:d9: 00:bb:50:e0:2a:d1:b4:7d:00:95:c6:f8:7c:25:50: b4:8c:2a:b7:47:e5:0d:75:f6:d7:d3:24:69:f0:c2: 4f:44:08:5b:64:1b:b5:30:4c:cb:1e:30:76:3b:fe: 13:09:76:58:03:86:b3:f3:10:3e:59:04:6a:62:be: 4e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:71:28:F3:2F:51:B1:7A:DA:6B:ED:EE:84:16:18:E5:73:02:EC:46 X509v3 Authority Key Identifier: keyid:5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:25:cc:2a:9d:95:8e:f9:28:28:c1:df:2c:a8:97:e4:48:8c: 05:ce:5c:a9:cb:1e:28:b9:d6:a9:6b:3c:d6:f6:76:4a:ff:7c: 87:cf:44:2a:c9:49:65:76:64:99:09:d2:b0:8c:74:e5:c9:9f: f7:a2:86:22:4e:1b:4d:b5:a6:35:30:06:f5:4e:e6:c7:1f:11: ac:c8:0d:d6:49:64:29:19:34:a9:11:7d:75:d2:2b:e1:f4:e7: 95:6b:f9:47:84:2c:6d:1c:c9:7a:d9:2f:17:16:6c:b8:2a:a1: 0f:cd:e0:a4:f7:66:ce:19:66:78:74:01:0e:fd:33:09:5f:8b: dd:b4:60:83:8e:bf:2a:c1:47:f1:9b:b3:01:f7:01:51:86:00: 5d:2f:d6:5a:de:b2:ac:98:f6:cd:e3:3b:58:52:84:4f:05:d1: 69:45:9d:98:70:24:0b:4e:5b:45:6d:a7:8a:04:64:fc:15:db: 64:8f:e3:ee:0e:20:96:45:c4:2f:bb:82:21:83:d1:90:75:3d: 02:5a:b9:8e:59:00:aa:c8:89:db:4b:68:6f:6f:72:40:c6:36: d3:c6:44:9c:0b:a7:42:69:f3:a1:b8:1c:9d:7b:99:90:be:d3: c6:32:7a:14:f8:27:24:2f:cd:28:78:59:5d:82:67:31:54:cb: 35:cf:51:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1NEMxMTAvBgNVBAUTKDVFQTExQzhBM0EyOUUwNjk3M0MxRjEyMTYxMUQ1QTVD MkExQjA2OUQwHhcNMjUxMjIwMjA1ODM1WhcNMjUxMjI3MjA1ODM1WjAYMRYwFAYD VQQDDA02OTQ3MGRmYi05NDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdr2J8VZdEgUxPwnrvUu9aBhZJ+nfINLOOA0iSFJgba7lMKujtDJbf+Aebln jXbKVEEI/6pNqE5ZPItxvRA68UXFmUXix81TgBB5LC2C1wzxVO0Fvz8+8UyBHZNJ tzUwqvTYooGid5bagJYbiQiC4ANeOeFYlnHfHYap/0n98HRhHd1v+6hfJjvh8QBp vwx8illYGSbKMTn1wU+B8LZ0t9hWLFL3ZRnKw2qt6htQ5a46hO9Srq5GAf33QWnf E1tgr9kAu1DgKtG0fQCVxvh8JVC0jCq3R+UNdfbX0yRp8MJPRAhbZBu1MEzLHjB2 O/4TCXZYA4az8xA+WQRqYr5O9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL9xKPMv UbF62mvt7oQWGOVzAuxGMB8GA1UdIwQYMBaAFF6hHIo6KeBpc8HxIWEdWlwqGwad MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjU0Qy81MUE5RUFDQzQx NjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRHbHp3ZkVoWVIxYVhDb2JC cDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxRWNpam9wNEdsendmRWhZUjFhWENvYkJwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjU0Qy81MUE5RUFDQzQxNjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRH bHp3ZkVoWVIxYVhDb2JCcDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8JcwqnZWO+Sgowd8sqJfkSIwFzlypyx4oudapazzW9nZK/3yHz0Qq yUlldmSZCdKwjHTlyZ/3ooYiThtNtaY1MAb1TubHHxGsyA3WSWQpGTSpEX110ivh 9OeVa/lHhCxtHMl62S8XFmy4KqEPzeCk92bOGWZ4dAEO/TMJX4vdtGCDjr8qwUfx m7MB9wFRhgBdL9Za3rKsmPbN4ztYUoRPBdFpRZ2YcCQLTltFbaeKBGT8Fdtkj+Pu DiCWRcQvu4Ihg9GQdT0CWrmOWQCqyInbS2hvb3JAxjbTxkScC6dCafOhuByde5mQ vtPGMnoU+CckL80oeFldgmcxVMs1z1GV -----END CERTIFICATE-----Generated at Sun Dec 21 13:05:49 2025 by rpki-client