This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft File: XnKqfVsdVjLl0z_scvp0M_Sc4po.mft (raw, json) Hash identifier: xZta0kcYw6JJ8KAZWeuO0zOWi3tMU+RPXRpLBBURooU= Subject key identifier: 2B:EA:A7:C3:36:6A:FC:70:B7:34:A8:CC:9F:8B:7D:67:D4:62:9E:BD Authority key identifier: 5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A Certificate issuer: /CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Certificate serial: 01E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft Manifest number: 01C0 Signing time: Sun 21 Dec 2025 02:36:09 +0000 Manifest this update: Sun 21 Dec 2025 02:36:08 +0000 Manifest next update: Sun 28 Dec 2025 02:36:08 +0000 Files and hashes: 1: XnKqfVsdVjLl0z_scvp0M_Sc4po.crl (hash: j9iIxb7LCp3lVYe7dBOTnVSrP2K1GqL785PuzMSByAc=) 2: 36C31E00637111EEA51CA05EC4F9AE02.roa (hash: lY96nEi5CKYTXJTj1z2X+4msAEH0lgBh87K7FsjTVZ8=) 3: 00E626A4A57611EF98285E5FC4F9AE02.roa (hash: 08NPSGEr7+x4MzDThoj8ZzRXxZk450XlydgirrF3WE4=) 4: 99341DD6663D11EE8CBBAE7CC4F9AE02.roa (hash: Kt+JRZe4NSSBGcnDuKjJxIa0JojNpdBSE93Vqrzpq7E=) 5: 678C24C0663F11EEBD955D43C4F9AE02.roa (hash: Rlo1FH4ToBEybkPEC2r5mS4GIe86F2K5uAovVfJDrI8=) 6: 9830B6D8663D11EE8CBBAE7CC4F9AE02.roa (hash: RmkIIPTPM365rnHi3iyE65DKC/DdOKV16KKoUBGaAYI=) 7: 98BE8828663D11EE8CBBAE7CC4F9AE02.roa (hash: OnFM4tWhowHbvjU4usSptKOpZeLKLT7QxFEJy+UEpYk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 02:36:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 486 (0x1e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9E82, serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Validity Not Before: Dec 21 02:36:08 2025 GMT Not After : Dec 28 02:36:08 2025 GMT Subject: CN=69475d19-a7ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:f5:ca:b8:d0:44:dc:0a:f5:87:c1:38:cd:4f: d5:22:f6:c6:a1:b9:d5:d1:ee:9b:d8:2e:93:5c:11: ec:1f:96:ab:f6:b6:3e:8b:17:04:9c:c8:e0:55:b1: bc:89:dd:4e:3d:44:72:b3:65:e7:e5:b6:f0:3e:1a: 6e:2c:a1:0b:27:c2:47:bc:35:7d:5d:c4:17:78:1a: 18:8a:1b:6c:bb:71:df:85:15:93:fe:7e:f8:8e:b9: b9:55:e9:0b:a6:9d:65:b4:39:c6:02:6e:1d:b7:f0: e7:59:00:77:a3:1e:94:69:32:e4:8c:6f:14:33:95: 24:58:e7:1e:74:a9:a4:b3:11:f4:78:6c:56:aa:fd: 7d:1d:4e:80:2e:bf:7f:94:f1:2d:e9:19:08:dc:09: f0:4a:f0:6b:bc:ea:f1:fb:cc:e0:03:b2:d7:35:5f: 91:66:e7:d4:33:97:ed:e3:af:89:63:3a:a9:d6:d3: 5b:68:88:b1:e1:08:31:df:a0:9e:b7:1f:b4:ff:9d: 84:02:fd:6a:2b:95:db:50:15:4e:ea:24:16:74:de: aa:b8:af:a5:40:1d:50:aa:98:51:f3:dc:26:ff:6e: db:0d:07:19:80:c9:3e:bd:a7:90:52:ac:46:ef:fa: d0:1a:10:10:50:95:9c:8a:bd:08:f6:4f:0b:da:1b: d0:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:EA:A7:C3:36:6A:FC:70:B7:34:A8:CC:9F:8B:7D:67:D4:62:9E:BD X509v3 Authority Key Identifier: keyid:5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:f5:81:c2:e6:dd:cc:dd:0d:ab:a4:0c:7b:6e:de:b6:b5:41: 1e:dd:dd:c6:30:41:99:03:82:9c:5f:7a:a9:c2:5e:5b:53:ad: df:c7:16:0f:f9:22:6d:17:9f:57:c0:28:76:34:49:e8:83:67: 9d:57:f1:7d:66:59:33:6a:a9:06:77:e3:41:60:ad:0a:30:48: 61:01:37:f6:3c:35:17:61:1e:b8:cd:8f:71:1e:e0:1c:06:9d: 78:ae:70:ea:63:24:d8:d2:97:fe:1a:2d:9d:36:66:9f:0a:44: 8a:dd:a6:e9:50:96:df:4f:67:ae:03:e8:8f:7d:0f:1c:6a:1f: 6c:2d:ed:8a:a3:97:e2:2f:29:90:92:e5:48:92:8b:71:e4:f2: 03:02:23:bb:b6:4e:bf:de:2c:e5:40:f3:85:8c:f5:1f:ce:8e: 6c:5b:c6:5c:fb:75:63:54:7a:18:10:b5:26:84:14:cc:b5:06: 33:4a:a9:ce:fe:77:e6:ee:a5:e9:5a:7a:07:38:75:19:46:a1: 23:ef:ea:ed:bc:24:8f:21:41:da:c4:25:59:ad:58:49:20:15: 96:18:09:a6:53:14:12:e8:53:01:b6:86:b0:36:40:0b:41:0a: 58:10:dc:d8:83:be:11:19:1a:47:39:c2:00:42:ee:13:8f:15: a6:50:c9:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlFODIxMTAvBgNVBAUTKDVFNzJBQTdENUIxRDU2MzJFNUQzM0ZFQzcyRkE3NDMz RjQ5Q0UyOUEwHhcNMjUxMjIxMDIzNjA4WhcNMjUxMjI4MDIzNjA4WjAYMRYwFAYD VQQDDA02OTQ3NWQxOS1hN2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4PXKuNBE3Ar1h8E4zU/VIvbGobnV0e6b2C6TXBHsH5ar9rY+ixcEnMjgVbG8 id1OPURys2Xn5bbwPhpuLKELJ8JHvDV9XcQXeBoYihtsu3HfhRWT/n74jrm5VekL pp1ltDnGAm4dt/DnWQB3ox6UaTLkjG8UM5UkWOcedKmksxH0eGxWqv19HU6ALr9/ lPEt6RkI3AnwSvBrvOrx+8zgA7LXNV+RZufUM5ft46+JYzqp1tNbaIix4Qgx36Ce tx+0/52EAv1qK5XbUBVO6iQWdN6quK+lQB1QqphR89wm/27bDQcZgMk+vaeQUqxG 7/rQGhAQUJWcir0I9k8L2hvQqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCvqp8M2 avxwtzSozJ+LfWfUYp69MB8GA1UdIwQYMBaAFF5yqn1bHVYy5dM/7HL6dDP0nOKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUU4Mi9FQTdFNUZBNjYz NkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZqTGwwel9zY3ZwME1fU2M0 cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huS3FmVnNkVmpMbDB6X3NjdnAwTV9TYzRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUU4Mi9FQTdFNUZBNjYzNkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZq TGwwel9zY3ZwME1fU2M0cG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCI9YHC5t3M3Q2rpAx7bt62tUEe3d3GMEGZA4KcX3qpwl5bU63fxxYP +SJtF59XwCh2NEnog2edV/F9ZlkzaqkGd+NBYK0KMEhhATf2PDUXYR64zY9xHuAc Bp14rnDqYyTY0pf+Gi2dNmafCkSK3abpUJbfT2euA+iPfQ8cah9sLe2Ko5fiLymQ kuVIkotx5PIDAiO7tk6/3izlQPOFjPUfzo5sW8Zc+3VjVHoYELUmhBTMtQYzSqnO /nfm7qXpWnoHOHUZRqEj7+rtvCSPIUHaxCVZrVhJIBWWGAmmUxQS6FMBtoawNkAL QQpYENzYg74RGRpHOcIAQu4TjxWmUMk0 -----END CERTIFICATE-----Generated at Sun Dec 21 06:43:04 2025 by rpki-client