This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft File: XAo1I_02RadjWvJRmtzQAuEy-84.mft (raw, json) Hash identifier: i9c3J1SmgO11b5JN+IK+23YWa9ccplgVqHO7VbDhYF8= Subject key identifier: ED:D8:9F:2C:7A:B0:72:5C:2E:11:7B:28:D0:02:15:20:C3:CE:EC:3A Authority key identifier: 5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE Certificate issuer: /CN=A91B0F90/serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE Certificate serial: B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft Manifest number: A7 Signing time: Fri 19 Dec 2025 05:26:06 +0000 Manifest this update: Fri 19 Dec 2025 05:26:06 +0000 Manifest next update: Fri 26 Dec 2025 05:26:06 +0000 Files and hashes: 1: XAo1I_02RadjWvJRmtzQAuEy-84.crl (hash: kK0sbFk+pTrDCbfqGmXKM+jcGR0tuxrSMz7lwOIVcHc=) 2: 304DD002EFAB11EF97C9610FC4F9AE02.roa (hash: nY9SnH3XV0jBQtfc+UOqx27pO7JEzdlFPgYbBdgEcrs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:26:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 177 (0xb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0F90, serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE Validity Not Before: Dec 19 05:26:06 2025 GMT Not After : Dec 26 05:26:06 2025 GMT Subject: CN=6944e1ee-0f38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:6d:d2:d2:5d:23:db:c5:a1:53:e7:3d:e6:c5: 1c:c0:92:89:68:52:09:af:b0:cd:e7:6a:87:cc:ce: 99:bc:06:49:69:63:39:4d:5e:2f:bf:b7:72:97:5f: cb:e8:b4:f9:fa:d8:ee:44:f2:de:7f:aa:37:ad:76: 29:4f:a5:e4:0c:3f:c9:c6:4b:c8:aa:3d:a6:34:c3: b9:62:fb:6d:62:3f:0c:0c:cb:06:e0:6e:a3:70:60: 8f:aa:c0:46:89:ca:6f:c6:86:ef:59:e9:8e:36:27: fa:81:50:b3:8d:ee:2b:92:ef:a7:8c:78:e0:4e:e0: 26:96:a0:69:21:c8:51:25:d5:60:5a:57:60:e2:87: 2f:98:29:41:60:d1:1a:bd:6e:9b:f3:76:ea:9f:9c: 63:35:2b:71:1d:42:ac:a0:49:a8:fb:3b:32:16:b8: de:9f:55:13:12:51:37:9e:0f:ee:6a:b9:4b:f4:49: a8:b2:75:5f:a1:dd:ce:86:5f:c9:f0:74:15:18:bf: 12:f2:14:63:53:ab:46:71:95:ef:8e:5b:1a:cf:45: 00:58:a0:44:7a:04:ca:cf:0a:4a:69:0a:3c:0e:24: 3c:95:fe:d1:37:a7:f2:6d:0c:c5:5c:b4:b1:b2:e7: 26:1e:8b:00:b2:ae:3d:b6:03:01:7c:33:35:4b:2e: 8e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:D8:9F:2C:7A:B0:72:5C:2E:11:7B:28:D0:02:15:20:C3:CE:EC:3A X509v3 Authority Key Identifier: keyid:5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:09:03:ae:ee:a0:e2:e1:28:3d:12:07:d8:78:39:19:bf:8a: c5:bc:05:48:c5:f0:8b:05:4d:a4:64:11:90:1b:74:84:92:1a: e4:03:f0:c4:6a:07:2c:6c:78:7c:3b:8f:84:c5:eb:13:b7:02: 5e:14:c8:bb:77:c2:5c:0d:05:b9:9d:57:57:b0:35:c1:59:50: 98:88:02:47:27:7a:e3:e5:a2:e3:88:01:ef:06:13:08:92:fe: 55:3e:40:6e:81:f1:be:47:10:2e:14:ba:64:bc:8b:8d:5c:16: 78:b8:ab:f1:05:f9:8e:30:cc:fb:ef:ba:fc:ee:78:77:1b:29: 22:d2:b8:05:c4:38:0b:f5:1c:f6:db:9a:76:9f:9d:3e:14:8a: b6:25:52:c5:dc:7a:3c:37:bc:92:b8:91:13:85:fd:e7:2e:6e: 4d:6a:7d:9b:2f:ed:8a:7c:3f:34:43:f2:a9:87:bf:6d:d6:0d: 32:f4:67:bc:ed:84:09:70:2d:4a:93:cb:02:0a:b1:b1:1c:b3: 5a:e4:f5:79:73:ea:e8:2c:4e:7a:3f:d0:1f:04:08:08:bb:49: 86:57:c0:6c:52:8c:6d:7b:1d:ef:09:bb:55:d8:bb:19:0a:50: 41:5a:71:2a:33:e6:12:0e:20:09:6e:ef:3d:f9:64:c6:a1:8b: fc:ca:9d:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBGOTAxMTAvBgNVBAUTKDVDMEEzNTIzRkQzNjQ1QTc2MzVBRjI1MTlBRENEMDAy RTEzMkZCQ0UwHhcNMjUxMjE5MDUyNjA2WhcNMjUxMjI2MDUyNjA2WjAYMRYwFAYD VQQDDA02OTQ0ZTFlZS0wZjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApG3S0l0j28WhU+c95sUcwJKJaFIJr7DN52qHzM6ZvAZJaWM5TV4vv7dyl1/L 6LT5+tjuRPLef6o3rXYpT6XkDD/JxkvIqj2mNMO5YvttYj8MDMsG4G6jcGCPqsBG icpvxobvWemONif6gVCzje4rku+njHjgTuAmlqBpIchRJdVgWldg4ocvmClBYNEa vW6b83bqn5xjNStxHUKsoEmo+zsyFrjen1UTElE3ng/uarlL9EmosnVfod3Ohl/J 8HQVGL8S8hRjU6tGcZXvjlsaz0UAWKBEegTKzwpKaQo8DiQ8lf7RN6fybQzFXLSx sucmHosAsq49tgMBfDM1Sy6OAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO3Ynyx6 sHJcLhF7KNACFSDDzuw6MB8GA1UdIwQYMBaAFFwKNSP9NkWnY1ryUZrc0ALhMvvO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMEY5MC8wNDc3OUI5Q0VE ODExMUVGQTAwMzY2MTZDNEY5QUUwMi9YQW8xSV8wMlJhZGpXdkpSbXR6UUF1RXkt ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBbzFJXzAyUmFkald2SlJtdHpRQXVFeS04NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MEY5MC8wNDc3OUI5Q0VEODExMUVGQTAwMzY2MTZDNEY5QUUwMi9YQW8xSV8wMlJh ZGpXdkpSbXR6UUF1RXktODQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWCQOu7qDi4Sg9EgfYeDkZv4rFvAVIxfCLBU2kZBGQG3SEkhrkA/DE agcsbHh8O4+ExesTtwJeFMi7d8JcDQW5nVdXsDXBWVCYiAJHJ3rj5aLjiAHvBhMI kv5VPkBugfG+RxAuFLpkvIuNXBZ4uKvxBfmOMMz777r87nh3Gyki0rgFxDgL9Rz2 25p2n50+FIq2JVLF3Ho8N7ySuJEThf3nLm5Nan2bL+2KfD80Q/Kph79t1g0y9Ge8 7YQJcC1Kk8sCCrGxHLNa5PV5c+roLE56P9AfBAgIu0mGV8BsUoxtex3vCbtV2LsZ ClBBWnEqM+YSDiAJbu89+WTGoYv8yp0F -----END CERTIFICATE-----Generated at Fri Dec 19 20:27:44 2025 by rpki-client