This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft File: XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft (raw, json) Hash identifier: BnTWr5XtM2nX6Hh7c/ansXAQ0vN6rAdbKG1wnr2PVPg= Subject key identifier: 9E:2C:89:72:49:F8:4E:D6:EE:CD:F9:B7:99:3A:6F:A1:9C:F1:62:93 Authority key identifier: 5D:4F:41:2A:E4:80:10:FE:54:87:F0:18:F1:71:A9:C6:46:9D:9A:C5 Certificate issuer: /CN=A91BCA5B/serialNumber=5D4F412AE48010FE5487F018F171A9C6469D9AC5 Certificate serial: 17 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XU9BKuSAEP5Uh_AY8XGpxkadmsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft Manifest number: 15 Signing time: Fri 19 Dec 2025 06:48:23 +0000 Manifest this update: Fri 19 Dec 2025 06:48:22 +0000 Manifest next update: Fri 26 Dec 2025 06:48:22 +0000 Files and hashes: 1: XU9BKuSAEP5Uh_AY8XGpxkadmsU.crl (hash: htHwlhgFK/j2jWJJpFMhBln6u3qojPSYvLgC3bVwUmc=) 2: AF2E6AE2C03B11F09EE7012FC4F9AE02.roa (hash: 7K3qRA/N7rz2jfT0m6Hcbsd9SkfThsmVfXsBZYNY3Xs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.crl rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XU9BKuSAEP5Uh_AY8XGpxkadmsU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 06:48:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCA5B, serialNumber=5D4F412AE48010FE5487F018F171A9C6469D9AC5 Validity Not Before: Dec 19 06:48:22 2025 GMT Not After : Dec 26 06:48:22 2025 GMT Subject: CN=6944f537-5aa8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:cf:a7:c4:01:15:e1:bb:a6:77:e6:7a:62:1a: eb:27:ff:d0:cf:b1:c6:26:f4:a1:52:b1:9a:32:2d: ac:db:ea:37:20:ad:5f:57:6b:6f:d1:6a:e7:0e:89: 44:b2:39:8f:50:71:b5:8e:a8:2e:6d:b6:7e:3c:99: 49:6d:bb:79:28:9b:8d:ec:f0:23:6c:ee:de:3f:a8: 33:4b:83:80:a6:51:b8:be:17:7c:54:d0:c6:f1:82: 49:31:42:21:6d:44:3d:7a:d2:70:b8:26:ce:fe:6c: 4e:bc:10:db:fa:2d:c7:44:6d:57:69:69:ae:02:46: 33:34:17:be:c8:9b:ad:52:4d:f0:f7:3e:51:2d:21: 99:14:ff:ba:5b:94:a7:c9:00:f3:2c:20:60:3f:40: 96:9c:43:38:b9:cf:5e:91:f8:90:b1:c3:11:2d:a5: 0f:96:69:88:2e:a7:b4:e3:2b:11:d0:2a:f1:37:d3: 30:d3:da:1b:10:80:92:14:ae:fe:e4:f7:5c:de:7f: bf:8f:57:f6:02:11:cb:7c:47:42:2c:27:5f:2d:82: 51:b9:dd:b6:ac:ba:81:f1:3e:09:b4:09:aa:83:08: a2:77:7e:b6:0d:4e:20:a8:04:d1:10:e8:af:5f:65: 6c:b5:db:b8:63:9d:fd:fb:e1:29:5f:de:27:3d:be: 46:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:2C:89:72:49:F8:4E:D6:EE:CD:F9:B7:99:3A:6F:A1:9C:F1:62:93 X509v3 Authority Key Identifier: keyid:5D:4F:41:2A:E4:80:10:FE:54:87:F0:18:F1:71:A9:C6:46:9D:9A:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XU9BKuSAEP5Uh_AY8XGpxkadmsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:b1:1a:5c:ad:09:c9:50:92:ae:21:9a:93:94:ac:de:3e:51: 7e:3b:ac:f0:02:04:e9:68:61:0f:7f:45:d0:22:9d:1b:94:42: 17:b1:cc:5d:97:63:33:f4:17:30:5b:9a:99:d9:ac:86:4c:a4: c4:d4:a9:43:03:87:45:1f:0e:ce:c5:27:af:db:42:4f:a6:8c: 35:37:5b:0b:e5:e5:44:9e:86:33:82:83:36:ed:7e:75:f9:31: 05:ef:e5:9c:9c:e9:11:b1:de:2f:d3:15:e0:8a:11:29:50:70: cb:95:76:fb:13:b2:30:2e:49:50:5b:ac:47:7a:73:da:fd:65: c5:b2:af:a0:cd:1a:7b:c6:44:33:54:5c:7e:fb:5e:40:d5:35: 15:bd:08:b3:12:89:1d:b0:d8:81:29:38:ca:7c:38:47:9a:89: 0b:34:cb:34:73:61:23:28:f5:ad:85:df:a1:1f:aa:8c:4a:db: c1:d3:70:0e:86:e3:8f:98:fa:f6:79:df:71:5f:fb:3a:b3:6c: 14:2d:ee:fa:de:51:42:0e:95:5d:fe:e9:85:a1:47:61:0a:c6: 47:73:91:bf:b9:da:6e:92:4d:19:3f:47:e5:cd:3d:86:60:54: 63:7f:48:12:00:77:53:80:a9:2f:90:ce:7e:a5:82:d2:96:93: 37:ca:a2:c9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC Q0E1QjExMC8GA1UEBRMoNUQ0RjQxMkFFNDgwMTBGRTU0ODdGMDE4RjE3MUE5QzY0 NjlEOUFDNTAeFw0yNTEyMTkwNjQ4MjJaFw0yNTEyMjYwNjQ4MjJaMBgxFjAUBgNV BAMMDTY5NDRmNTM3LTVhYTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCQz6fEARXhu6Z35npiGusn/9DPscYm9KFSsZoyLazb6jcgrV9Xa2/RaucOiUSy OY9QcbWOqC5ttn48mUltu3kom43s8CNs7t4/qDNLg4CmUbi+F3xU0MbxgkkxQiFt RD160nC4Js7+bE68ENv6LcdEbVdpaa4CRjM0F77Im61STfD3PlEtIZkU/7pblKfJ APMsIGA/QJacQzi5z16R+JCxwxEtpQ+WaYgup7TjKxHQKvE30zDT2hsQgJIUrv7k 91zef7+PV/YCEct8R0IsJ18tglG53basuoHxPgm0CaqDCKJ3frYNTiCoBNEQ6K9f ZWy127hjnf374Slf3ic9vkZlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUniyJckn4 Ttbuzfm3mTpvoZzxYpMwHwYDVR0jBBgwFoAUXU9BKuSAEP5Uh/AY8XGpxkadmsUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJDQTVCL0QyNUQ4NjhFQzAz QTExRjA4OEEzNDYyQ0M0RjlBRTAyL1hVOUJLdVNBRVA1VWhfQVk4WEdweGthZG1z VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWFU5Qkt1U0FFUDVVaF9BWThYR3B4a2FkbXNVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJD QTVCL0QyNUQ4NjhFQzAzQTExRjA4OEEzNDYyQ0M0RjlBRTAyL1hVOUJLdVNBRVA1 VWhfQVk4WEdweGthZG1zVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGKxGlytCclQkq4hmpOUrN4+UX47rPACBOloYQ9/RdAinRuUQhexzF2X YzP0FzBbmpnZrIZMpMTUqUMDh0UfDs7FJ6/bQk+mjDU3Wwvl5USehjOCgzbtfnX5 MQXv5Zyc6RGx3i/TFeCKESlQcMuVdvsTsjAuSVBbrEd6c9r9ZcWyr6DNGnvGRDNU XH77XkDVNRW9CLMSiR2w2IEpOMp8OEeaiQs0yzRzYSMo9a2F36EfqoxK28HTcA6G 44+Y+vZ533Ff+zqzbBQt7vreUUIOlV3+6YWhR2EKxkdzkb+52m6STRk/R+XNPYZg VGN/SBIAd1OAqS+Qzn6lgtKWkzfKosk= -----END CERTIFICATE-----Generated at Sat Dec 20 00:35:51 2025 by rpki-client