This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft File: XucUYNY3KKxeq5GKVB0NcFFXfU0.mft (raw, json) Hash identifier: ZhTbkN/te3WExB70zIQGM8Sox/+ATGZO+nYt2/5BmsA= Subject key identifier: 23:14:56:07:40:CD:BB:B8:06:0C:DB:B7:0C:4E:F3:82:C9:3D:1E:F1 Authority key identifier: 5E:E7:14:60:D6:37:28:AC:5E:AB:91:8A:54:1D:0D:70:51:57:7D:4D Certificate issuer: /CN=A91B758E/serialNumber=5EE71460D63728AC5EAB918A541D0D7051577D4D Certificate serial: 0150 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft Manifest number: 0150 Signing time: Fri 19 Dec 2025 03:22:06 +0000 Manifest this update: Fri 19 Dec 2025 03:22:05 +0000 Manifest next update: Fri 26 Dec 2025 03:22:05 +0000 Files and hashes: 1: XucUYNY3KKxeq5GKVB0NcFFXfU0.crl (hash: uLjaG76DkHtpM6D5vjK2j4pPzLzpnHmwXQKXpM+gsqQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.crl rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:22:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 336 (0x150) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B758E, serialNumber=5EE71460D63728AC5EAB918A541D0D7051577D4D Validity Not Before: Dec 19 03:22:05 2025 GMT Not After : Dec 26 03:22:05 2025 GMT Subject: CN=6944c4de-e017 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:db:cf:97:ce:8e:8c:85:40:4f:5e:12:df:87: fc:67:28:a7:51:1c:b3:f6:80:90:02:8f:a1:c6:f8: 05:cc:32:df:08:a8:32:17:d9:e1:dd:94:df:2d:3d: b5:59:68:d9:e2:34:48:c3:3a:f2:8d:90:a7:39:a0: 87:86:51:a3:d4:3e:d6:f0:d5:be:39:d1:f5:7e:9a: 58:02:f7:91:75:a3:04:f3:1e:8b:79:80:12:69:a9: 1a:84:ce:0b:8c:18:5e:9e:ee:37:6f:2e:fa:11:b6: d7:88:f6:44:25:be:0c:98:d2:98:e9:06:10:d4:ae: c3:31:34:49:c2:07:5b:a0:ee:61:6c:c2:e0:76:b3: 79:e1:83:2a:3e:dd:bc:dc:9f:cf:31:ef:f4:90:8e: 10:95:2b:cc:b4:8b:34:c8:9b:9b:61:25:35:4a:9b: 01:56:f8:67:b7:eb:68:46:19:87:bd:7f:91:3f:29: 79:7c:31:23:33:46:40:eb:28:7e:26:1e:59:a7:71: 10:65:8a:b4:2c:13:1e:2c:fe:c2:34:8a:41:8c:c9: bc:3a:db:56:ff:68:06:20:81:9b:ba:61:da:2d:08: 68:19:f6:98:e7:fd:a9:c9:68:75:18:15:51:2f:5d: 58:03:e7:9f:fd:29:f3:5f:87:cd:dd:dc:84:79:0e: c5:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:14:56:07:40:CD:BB:B8:06:0C:DB:B7:0C:4E:F3:82:C9:3D:1E:F1 X509v3 Authority Key Identifier: keyid:5E:E7:14:60:D6:37:28:AC:5E:AB:91:8A:54:1D:0D:70:51:57:7D:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:74:fc:7d:6d:d6:4d:ff:36:a2:75:8e:4b:c9:9a:4b:38:a6: 32:e6:39:a0:5f:d2:7b:00:4a:74:a9:d1:a3:2e:28:4e:a8:a2: 1a:3c:19:b4:39:d5:6d:5d:a8:69:0e:56:ad:a8:6c:47:4f:c5: 70:07:01:f3:0a:76:d0:58:58:9b:fb:97:2d:5e:be:f5:1e:dd: bf:4b:d5:35:74:b8:1f:1d:c3:53:6f:dc:fa:e2:ff:0b:7a:b6: e3:65:91:65:be:6f:6a:1d:21:f1:cd:93:ed:e7:97:6d:b6:17: 7a:cc:1a:3f:3e:6e:b7:31:89:e7:7c:00:7b:f9:99:fb:14:5d: 71:8c:18:28:66:4f:a6:a0:04:c2:bc:cc:58:ee:30:e3:72:ac: 43:ec:6d:75:ba:12:0e:76:27:3c:79:ad:bb:a8:aa:b1:00:06: bb:01:10:b2:67:4f:af:74:54:8c:a9:28:f3:4c:33:cc:2a:f2: a5:a7:04:02:98:f3:ad:89:c1:93:c2:fa:69:19:11:d7:3c:a9: 5c:92:ea:aa:64:a9:8e:12:f8:15:56:77:25:a9:e6:57:3c:ff: f8:bb:2b:69:ba:b9:c8:c7:2d:a3:5e:9b:30:c5:3b:7b:90:fb: fe:a7:c1:0a:dc:bf:5d:16:ff:b5:f1:21:f7:20:98:08:6f:d5: a9:fe:71:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc1OEUxMTAvBgNVBAUTKDVFRTcxNDYwRDYzNzI4QUM1RUFCOTE4QTU0MUQwRDcw NTE1NzdENEQwHhcNMjUxMjE5MDMyMjA1WhcNMjUxMjI2MDMyMjA1WjAYMRYwFAYD VQQDDA02OTQ0YzRkZS1lMDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkdvPl86OjIVAT14S34f8ZyinURyz9oCQAo+hxvgFzDLfCKgyF9nh3ZTfLT21 WWjZ4jRIwzryjZCnOaCHhlGj1D7W8NW+OdH1fppYAveRdaME8x6LeYASaakahM4L jBhenu43by76EbbXiPZEJb4MmNKY6QYQ1K7DMTRJwgdboO5hbMLgdrN54YMqPt28 3J/PMe/0kI4QlSvMtIs0yJubYSU1SpsBVvhnt+toRhmHvX+RPyl5fDEjM0ZA6yh+ Jh5Zp3EQZYq0LBMeLP7CNIpBjMm8OttW/2gGIIGbumHaLQhoGfaY5/2pyWh1GBVR L11YA+ef/SnzX4fN3dyEeQ7FxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCMUVgdA zbu4BgzbtwxO84LJPR7xMB8GA1UdIwQYMBaAFF7nFGDWNyisXquRilQdDXBRV31N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzU4RS9FNzk5RjkyMkQ1 M0QxMUVFOEYxRThBODVDNEY5QUUwMi9YdWNVWU5ZM0tLeGVxNUdLVkIwTmNGRlhm VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h1Y1VZTlkzS0t4ZXE1R0tWQjBOY0ZGWGZVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzU4RS9FNzk5RjkyMkQ1M0QxMUVFOEYxRThBODVDNEY5QUUwMi9YdWNVWU5ZM0tL eGVxNUdLVkIwTmNGRlhmVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvdPx9bdZN/zaidY5LyZpLOKYy5jmgX9J7AEp0qdGjLihOqKIaPBm0 OdVtXahpDlatqGxHT8VwBwHzCnbQWFib+5ctXr71Ht2/S9U1dLgfHcNTb9z64v8L erbjZZFlvm9qHSHxzZPt55dtthd6zBo/Pm63MYnnfAB7+Zn7FF1xjBgoZk+moATC vMxY7jDjcqxD7G11uhIOdic8ea27qKqxAAa7ARCyZ0+vdFSMqSjzTDPMKvKlpwQC mPOticGTwvppGRHXPKlckuqqZKmOEvgVVnclqeZXPP/4uytpurnIxy2jXpswxTt7 kPv+p8EK3L9dFv+18SH3IJgIb9Wp/nEb -----END CERTIFICATE-----Generated at Fri Dec 19 17:44:45 2025 by rpki-client