This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft File: Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft (raw, json) Hash identifier: 2bBj2Z1u3R9U/h4K/ixWJsJEbpx79dW5qsCqclNKios= Subject key identifier: 8F:EC:0E:D7:15:41:97:FC:AA:B0:D3:95:D8:A4:E2:60:D1:B5:FB:D3 Authority key identifier: 5E:BD:A7:FA:A8:01:C5:A2:74:DC:23:D1:71:F8:8B:46:A1:1E:41:54 Certificate issuer: /CN=A91B4F01/serialNumber=5EBDA7FAA801C5A274DC23D171F88B46A11E4154 Certificate serial: 04D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft Manifest number: 04D2 Signing time: Fri 26 Dec 2025 22:54:52 +0000 Manifest this update: Fri 26 Dec 2025 22:54:52 +0000 Manifest next update: Fri 02 Jan 2026 22:54:52 +0000 Files and hashes: 1: Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl (hash: UU8W8Jej0js4GHwp3UQBoSD4/w2bVY2CKotG8qsaodg=) 2: BD115AB24B7C11ECA63C0038C4F9AE02.roa (hash: iNguqikYlo9COHrXlTgVi6du45F1xLlvF3vppgdvlzs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Jan 2026 22:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1239 (0x4d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4F01, serialNumber=5EBDA7FAA801C5A274DC23D171F88B46A11E4154 Validity Not Before: Dec 26 22:54:52 2025 GMT Not After : Jan 2 22:54:52 2026 GMT Subject: CN=694f123c-a90f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e8:18:56:b6:69:c5:36:fb:47:00:40:06:52: 00:a6:67:b2:e9:93:e4:e1:d1:a5:3c:1c:ab:87:d3: bb:b1:9d:58:be:ca:80:c4:5c:03:ef:3d:e4:47:f7: 78:dd:8c:1a:0a:bc:a0:87:8f:9f:43:f3:ea:1b:57: 92:77:44:6e:48:90:60:63:5b:6a:94:db:a5:c8:72: 3e:9d:83:71:d8:7d:b2:e1:d9:57:7d:b4:6a:59:66: 58:e9:41:d2:d4:18:7c:ac:a7:0d:76:a7:91:2b:c0: 11:c0:89:42:d9:50:1f:a9:62:d5:b8:47:5f:7c:7d: 72:45:0a:75:86:b0:51:35:9e:18:f8:c4:58:a4:18: 8d:25:ac:95:ff:85:40:0b:04:f3:68:6a:10:8f:21: 6f:6a:ea:ab:aa:09:9e:0b:46:ba:10:46:b5:f5:61: 27:3e:61:f9:25:6f:72:17:bc:a9:4c:10:cf:bb:bc: 46:6a:87:b6:7b:4a:9b:7e:17:c4:69:ff:9c:c3:87: b6:c5:d7:87:47:95:ce:98:c1:01:49:01:4f:d9:ff: 04:35:3f:e3:e5:08:9d:0a:f0:78:47:ff:14:31:62: 07:a0:27:20:5a:53:10:68:44:63:b3:c6:a9:cb:bb: f1:c2:3f:90:22:ff:3d:75:df:29:6f:25:fc:48:76: 6e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:EC:0E:D7:15:41:97:FC:AA:B0:D3:95:D8:A4:E2:60:D1:B5:FB:D3 X509v3 Authority Key Identifier: keyid:5E:BD:A7:FA:A8:01:C5:A2:74:DC:23:D1:71:F8:8B:46:A1:1E:41:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:60:e9:57:84:36:e1:37:5f:79:cd:3e:46:9c:ef:d4:89:d5: 5f:7b:9b:71:fc:cc:e1:44:44:c7:ee:0b:e0:a5:9a:32:53:ec: 82:2f:f6:02:d7:3f:93:9c:20:f4:72:ed:98:cf:53:d1:c7:ff: f5:91:b0:60:43:4b:f3:99:28:02:ee:89:60:4d:38:07:e0:2f: 0a:0b:7d:96:a7:c5:8e:7e:2b:29:d0:24:56:51:77:f4:e6:4b: 46:ba:e8:dd:be:8a:11:8c:96:3d:21:a5:f0:50:e4:37:1a:59: 25:ea:29:94:a5:b2:c2:66:8d:09:bd:2d:60:e6:2d:49:0a:63: 49:d3:f8:dd:7a:53:c5:25:39:88:3b:47:d0:5f:f2:af:65:8e: fd:e7:d8:b1:a0:73:4d:8e:0b:39:0c:3c:32:c8:2b:e8:b6:3a: 98:0a:fe:29:07:2b:4d:5b:5e:55:35:eb:a4:a8:7e:87:cd:24: 23:84:83:53:a7:3c:4e:43:1f:eb:a0:63:b9:f4:05:a8:bd:45: fc:4d:a8:a3:d5:c0:4b:ed:6c:c0:74:58:de:9c:d0:63:7f:5d: 21:ca:90:f8:96:3b:1a:4f:3e:e1:a0:39:47:51:38:4e:42:a8: d6:db:fe:00:d1:12:78:e2:d8:71:c7:dc:ca:05:8d:65:7c:f9: 36:2e:4f:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRGMDExMTAvBgNVBAUTKDVFQkRBN0ZBQTgwMUM1QTI3NERDMjNEMTcxRjg4QjQ2 QTExRTQxNTQwHhcNMjUxMjI2MjI1NDUyWhcNMjYwMTAyMjI1NDUyWjAYMRYwFAYD VQQDDA02OTRmMTIzYy1hOTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOgYVrZpxTb7RwBABlIApmey6ZPk4dGlPByrh9O7sZ1YvsqAxFwD7z3kR/d4 3YwaCrygh4+fQ/PqG1eSd0RuSJBgY1tqlNulyHI+nYNx2H2y4dlXfbRqWWZY6UHS 1Bh8rKcNdqeRK8ARwIlC2VAfqWLVuEdffH1yRQp1hrBRNZ4Y+MRYpBiNJayV/4VA CwTzaGoQjyFvauqrqgmeC0a6EEa19WEnPmH5JW9yF7ypTBDPu7xGaoe2e0qbfhfE af+cw4e2xdeHR5XOmMEBSQFP2f8ENT/j5QidCvB4R/8UMWIHoCcgWlMQaERjs8ap y7vxwj+QIv89dd8pbyX8SHZujwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI/sDtcV QZf8qrDTldik4mDRtfvTMB8GA1UdIwQYMBaAFF69p/qoAcWidNwj0XH4i0ahHkFU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEYwMS9BNzAwQTg0NDRC NzgxMUVDODZFNTBBMzBDNEY5QUUwMi9YcjJuLXFnQnhhSjAzQ1BSY2ZpTFJxRWVR VlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hyMm4tcWdCeGFKMDNDUFJjZmlMUnFFZVFWUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEYwMS9BNzAwQTg0NDRCNzgxMUVDODZFNTBBMzBDNEY5QUUwMi9YcjJuLXFnQnhh SjAzQ1BSY2ZpTFJxRWVRVlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7YOlXhDbhN195zT5GnO/UidVfe5tx/MzhRETH7gvgpZoyU+yCL/YC 1z+TnCD0cu2Yz1PRx//1kbBgQ0vzmSgC7olgTTgH4C8KC32Wp8WOfisp0CRWUXf0 5ktGuujdvooRjJY9IaXwUOQ3Glkl6imUpbLCZo0JvS1g5i1JCmNJ0/jdelPFJTmI O0fQX/KvZY7959ixoHNNjgs5DDwyyCvotjqYCv4pBytNW15VNeukqH6HzSQjhINT pzxOQx/roGO59AWovUX8Taij1cBL7WzAdFjenNBjf10hypD4ljsaTz7hoDlHUThO QqjW2/4A0RJ44thxx9zKBY1lfPk2Lk/D -----END CERTIFICATE-----Generated at Sun Dec 28 23:27:30 2025 by rpki-client