This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft File: Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft (raw, json) Hash identifier: qTPwICXaDTfZ0iaBxdVoS/GHJS9WZrdTyd1O2r4aPBI= Subject key identifier: 25:05:7F:19:AB:96:7C:DD:58:66:1B:7D:00:5D:16:62:4C:66:21:67 Authority key identifier: 5E:BD:A7:FA:A8:01:C5:A2:74:DC:23:D1:71:F8:8B:46:A1:1E:41:54 Certificate issuer: /CN=A91B4F01/serialNumber=5EBDA7FAA801C5A274DC23D171F88B46A11E4154 Certificate serial: 04D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft Manifest number: 04D1 Signing time: Wed 24 Dec 2025 22:59:42 +0000 Manifest this update: Wed 24 Dec 2025 22:59:41 +0000 Manifest next update: Wed 31 Dec 2025 22:59:41 +0000 Files and hashes: 1: Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl (hash: jvveuBfa+0V9uThDXB+g2iOZH7Ow5HDurCfqo2dJDaw=) 2: BD115AB24B7C11ECA63C0038C4F9AE02.roa (hash: iNguqikYlo9COHrXlTgVi6du45F1xLlvF3vppgdvlzs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 22:59:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1238 (0x4d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4F01, serialNumber=5EBDA7FAA801C5A274DC23D171F88B46A11E4154 Validity Not Before: Dec 24 22:59:41 2025 GMT Not After : Dec 31 22:59:41 2025 GMT Subject: CN=694c705d-e587 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:0c:e9:6e:74:0a:a0:05:63:b5:7c:84:c1:21: 15:9b:0e:00:a5:07:a4:dd:c2:d7:d5:4a:19:58:dd: 31:3b:f2:47:67:63:d1:bc:8a:6d:f0:11:1c:00:c7: 1e:90:59:1b:4a:51:0c:33:ac:88:f2:6b:98:dc:4a: 3b:25:47:71:4e:3e:8e:3f:1b:0c:12:9d:cc:e7:a1: 8c:b3:df:d0:fd:d0:0e:0f:a3:20:52:00:57:bb:cf: d1:fe:02:d2:a0:42:33:42:87:eb:21:e0:e9:0e:0f: 8f:19:fc:34:66:be:97:3b:93:db:3a:e0:4c:96:a7: f1:ec:d9:02:8d:68:83:05:04:af:34:91:fe:e0:03: 43:e4:a3:11:c4:69:cb:dc:60:78:67:f9:d7:17:37: a5:86:25:c4:f3:dd:fd:cc:3d:f7:5a:01:43:41:b3: 9a:ab:cd:45:aa:67:40:cc:49:5d:99:f8:d1:aa:f6: c3:df:67:a5:22:c6:8f:b5:ac:76:82:1f:1f:10:9a: fe:5b:4f:6b:7b:b2:3d:8e:20:22:03:8c:df:76:37: 19:e6:ea:f4:2b:33:39:94:02:b8:14:97:b0:7c:06: 0f:75:ed:17:1d:a0:da:12:0d:aa:0a:e3:88:b0:0a: a2:31:56:c4:5d:be:a6:98:b7:ab:8f:ea:59:86:9c: 10:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:05:7F:19:AB:96:7C:DD:58:66:1B:7D:00:5D:16:62:4C:66:21:67 X509v3 Authority Key Identifier: keyid:5E:BD:A7:FA:A8:01:C5:A2:74:DC:23:D1:71:F8:8B:46:A1:1E:41:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:f4:cb:ee:51:1e:5b:f5:04:ed:c2:3f:3f:09:74:ea:03:07: 7e:8c:91:cd:be:04:81:82:a9:44:73:e9:82:da:a3:37:6d:5d: 88:f7:f4:e1:08:d4:63:74:b4:71:d3:f4:7d:c6:27:06:b1:93: 63:66:c0:43:52:0d:74:9f:aa:5b:df:1a:4c:b3:0f:75:26:2a: 65:22:22:33:9b:ae:34:7c:f9:f6:ab:15:c7:81:cd:d5:b5:7f: 53:6b:56:ef:61:5a:f0:f6:a1:21:ab:8a:d2:83:82:de:3b:25: 25:e9:5c:9a:07:c4:92:ed:f6:cd:7d:4f:59:56:07:73:54:ea: b7:b2:19:36:6b:bd:29:7f:a6:29:d9:31:b9:14:d3:3a:a0:64: 06:e0:2e:4a:f8:5a:86:aa:0e:57:84:21:fb:bd:3e:11:80:88: 58:cd:c2:4e:cf:f3:e9:83:1d:11:6d:4e:9d:d3:c8:ac:e8:fa: 45:1a:40:72:9b:5c:25:a7:83:6d:96:34:04:e8:37:af:1b:c4: fd:b2:82:34:c5:7e:35:b8:3a:f9:00:79:e8:53:21:0a:7f:d3: eb:b7:e4:9f:0e:be:c7:ce:09:c1:00:b2:87:c7:40:e5:0c:f2: 08:ec:41:da:23:35:a0:dc:97:aa:c4:66:21:fb:7f:5f:0b:fc: 9a:67:10:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRGMDExMTAvBgNVBAUTKDVFQkRBN0ZBQTgwMUM1QTI3NERDMjNEMTcxRjg4QjQ2 QTExRTQxNTQwHhcNMjUxMjI0MjI1OTQxWhcNMjUxMjMxMjI1OTQxWjAYMRYwFAYD VQQDDA02OTRjNzA1ZC1lNTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkQzpbnQKoAVjtXyEwSEVmw4ApQek3cLX1UoZWN0xO/JHZ2PRvIpt8BEcAMce kFkbSlEMM6yI8muY3Eo7JUdxTj6OPxsMEp3M56GMs9/Q/dAOD6MgUgBXu8/R/gLS oEIzQofrIeDpDg+PGfw0Zr6XO5PbOuBMlqfx7NkCjWiDBQSvNJH+4AND5KMRxGnL 3GB4Z/nXFzelhiXE8939zD33WgFDQbOaq81FqmdAzEldmfjRqvbD32elIsaPtax2 gh8fEJr+W09re7I9jiAiA4zfdjcZ5ur0KzM5lAK4FJewfAYPde0XHaDaEg2qCuOI sAqiMVbEXb6mmLerj+pZhpwQsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCUFfxmr lnzdWGYbfQBdFmJMZiFnMB8GA1UdIwQYMBaAFF69p/qoAcWidNwj0XH4i0ahHkFU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEYwMS9BNzAwQTg0NDRC NzgxMUVDODZFNTBBMzBDNEY5QUUwMi9YcjJuLXFnQnhhSjAzQ1BSY2ZpTFJxRWVR VlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hyMm4tcWdCeGFKMDNDUFJjZmlMUnFFZVFWUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEYwMS9BNzAwQTg0NDRCNzgxMUVDODZFNTBBMzBDNEY5QUUwMi9YcjJuLXFnQnhh SjAzQ1BSY2ZpTFJxRWVRVlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBW9MvuUR5b9QTtwj8/CXTqAwd+jJHNvgSBgqlEc+mC2qM3bV2I9/Th CNRjdLRx0/R9xicGsZNjZsBDUg10n6pb3xpMsw91JiplIiIzm640fPn2qxXHgc3V tX9Ta1bvYVrw9qEhq4rSg4LeOyUl6VyaB8SS7fbNfU9ZVgdzVOq3shk2a70pf6Yp 2TG5FNM6oGQG4C5K+FqGqg5XhCH7vT4RgIhYzcJOz/Ppgx0RbU6d08is6PpFGkBy m1wlp4NtljQE6DevG8T9soI0xX41uDr5AHnoUyEKf9Prt+SfDr7HzgnBALKHx0Dl DPII7EHaIzWg3JeqxGYh+39fC/yaZxB5 -----END CERTIFICATE-----Generated at Thu Dec 25 23:05:29 2025 by rpki-client