This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft File: XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft (raw, json) Hash identifier: o6Ytr0naX4dixR4utXnToGlBi7Luitptfuk2oO9FLj0= Subject key identifier: FC:0D:60:C1:FF:BE:72:30:12:81:2F:AC:CE:53:37:73:B8:19:7A:88 Authority key identifier: 5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8 Certificate issuer: /CN=A91C9561/serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8 Certificate serial: 035C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft Manifest number: 035B Signing time: Fri 19 Dec 2025 00:10:31 +0000 Manifest this update: Fri 19 Dec 2025 00:10:30 +0000 Manifest next update: Fri 26 Dec 2025 00:10:30 +0000 Files and hashes: 1: XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl (hash: ASZZHLKgk3NKRP/Ro3vpt+TYf3i181nC/DfXUWLD09M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:10:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 860 (0x35c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9561, serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8 Validity Not Before: Dec 19 00:10:30 2025 GMT Not After : Dec 26 00:10:30 2025 GMT Subject: CN=694497f6-6a3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b5:8d:1f:7f:f0:54:fe:23:02:5c:2f:b5:c8: af:5a:32:06:0e:7f:04:a2:6c:c5:63:82:db:02:91: 8b:a3:a9:95:9a:ad:f5:95:f3:f0:bd:6e:5b:a8:93: 5d:73:07:b0:3f:7c:f9:8d:a7:cf:d3:c9:74:20:4d: 96:8f:40:95:2c:1b:e9:ef:82:14:dd:bf:60:88:45: a9:5b:0c:99:ef:a3:c4:ad:99:bd:19:72:81:aa:ac: f1:7e:ca:32:d0:fa:9d:6a:b1:b1:62:cc:1b:c7:56: 40:32:97:b6:bb:de:39:64:23:8b:67:1f:ee:f1:ee: 26:12:b4:4e:26:33:32:79:59:c0:a9:8c:5d:e7:37: 3c:6f:ac:42:07:e5:04:b4:35:68:5d:d7:a5:db:32: b9:03:7e:d1:c4:02:e8:1c:70:77:4a:88:f7:a8:4f: 4d:83:24:e0:83:cb:22:65:a3:99:9a:c7:8f:be:fd: 71:30:1d:75:8f:45:f1:0e:c1:78:98:94:3a:b3:ca: 1e:25:65:35:78:fa:5f:30:f0:3b:7b:f3:1a:0b:6d: 9d:35:92:52:0b:77:40:2f:af:77:95:cf:b7:60:a1: 09:b6:64:5d:81:d8:b1:7b:f9:81:90:93:8f:92:7c: 06:87:d8:74:a8:c7:e9:8a:f8:3c:8e:ca:06:d7:96: 10:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:0D:60:C1:FF:BE:72:30:12:81:2F:AC:CE:53:37:73:B8:19:7A:88 X509v3 Authority Key Identifier: keyid:5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:ba:a4:87:c0:65:d5:2a:c7:1e:f7:1b:d6:a0:74:82:b9:97: 1b:2c:1f:6a:a4:8c:61:2a:9e:4f:71:09:11:08:fe:72:d0:c3: ca:d4:c5:9b:55:97:51:d7:ab:6b:c9:f0:a7:0e:42:3b:7d:6d: e5:69:9b:e1:b9:d9:51:36:bd:74:8c:92:cb:f2:94:0d:94:fb: 17:a9:46:e5:c8:ea:c6:da:a0:a0:70:00:5b:f7:c0:b4:bb:4e: fb:a1:fb:df:f7:52:76:01:f2:51:d6:68:0b:60:b5:6d:0f:1a: c1:76:64:6a:41:36:36:48:4c:02:44:6f:3e:8b:01:c0:75:26: 13:19:36:ba:dc:3a:cc:55:bf:51:ba:14:91:76:0f:71:36:99: 3d:ea:33:de:68:96:5a:19:d0:1b:cb:f5:01:b0:2a:81:4c:ee: c5:a7:d2:e4:96:6b:39:8e:a2:04:89:5d:b8:c2:5b:af:04:95: f0:9d:60:06:bc:e6:5b:16:19:f6:b9:46:0a:87:ee:66:ec:9d: 66:22:3a:d0:26:f9:b7:dd:cb:5a:3d:10:e3:1d:2f:48:c0:59: d8:67:a8:1f:e7:69:66:6e:53:8a:c7:33:fb:a3:c8:68:a2:a9: 8c:3f:db:4a:46:a8:d3:e7:49:37:2e:19:06:36:7b:a4:37:f9: 4c:8b:89:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1NjExMTAvBgNVBAUTKDVFM0NGMDI1MUQ4QTYwMDZCODI4NUJEMDk0OUZDRDlC QTNGOUVCQjgwHhcNMjUxMjE5MDAxMDMwWhcNMjUxMjI2MDAxMDMwWjAYMRYwFAYD VQQDDA02OTQ0OTdmNi02YTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3LWNH3/wVP4jAlwvtcivWjIGDn8EomzFY4LbApGLo6mVmq31lfPwvW5bqJNd cwewP3z5jafP08l0IE2Wj0CVLBvp74IU3b9giEWpWwyZ76PErZm9GXKBqqzxfsoy 0PqdarGxYswbx1ZAMpe2u945ZCOLZx/u8e4mErROJjMyeVnAqYxd5zc8b6xCB+UE tDVoXdel2zK5A37RxALoHHB3Soj3qE9NgyTgg8siZaOZmsePvv1xMB11j0XxDsF4 mJQ6s8oeJWU1ePpfMPA7e/MaC22dNZJSC3dAL693lc+3YKEJtmRdgdixe/mBkJOP knwGh9h0qMfpivg8jsoG15YQzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPwNYMH/ vnIwEoEvrM5TN3O4GXqIMB8GA1UdIwQYMBaAFF488CUdimAGuChb0JSfzZuj+eu4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTU2MS9DOUE4REZEQURB NjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lBYTRLRnZRbEpfTm02UDU2 N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hqendKUjJLWUFhNEtGdlFsSl9ObTZQNTY3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTU2MS9DOUE4REZEQURBNjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lB YTRLRnZRbEpfTm02UDU2N2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQuqSHwGXVKsce9xvWoHSCuZcbLB9qpIxhKp5PcQkRCP5y0MPK1MWb VZdR16tryfCnDkI7fW3laZvhudlRNr10jJLL8pQNlPsXqUblyOrG2qCgcABb98C0 u077ofvf91J2AfJR1mgLYLVtDxrBdmRqQTY2SEwCRG8+iwHAdSYTGTa63DrMVb9R uhSRdg9xNpk96jPeaJZaGdAby/UBsCqBTO7Fp9Lklms5jqIEiV24wluvBJXwnWAG vOZbFhn2uUYKh+5m7J1mIjrQJvm33ctaPRDjHS9IwFnYZ6gf52lmblOKxzP7o8ho oqmMP9tKRqjT50k3LhkGNnukN/lMi4lM -----END CERTIFICATE-----Generated at Fri Dec 19 20:25:41 2025 by rpki-client