This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft File: XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft (raw, json) Hash identifier: gWMO+OOj1w2os8r1cwJ91WjiQUBFGZQPksR2ynROzY8= Subject key identifier: 9D:B6:A4:A4:19:3E:DE:CA:01:CC:A5:87:9F:FF:3E:B5:E3:3D:5A:84 Authority key identifier: 5D:5F:61:90:21:5D:FF:0A:C3:54:32:BC:3A:52:A0:8B:D3:41:B7:00 Certificate issuer: /CN=A91D28E1/serialNumber=5D5F6190215DFF0AC35432BC3A52A08BD341B700 Certificate serial: 017C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XV9hkCFd_wrDVDK8OlKgi9NBtwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft Manifest number: 0179 Signing time: Fri 19 Dec 2025 02:57:53 +0000 Manifest this update: Fri 19 Dec 2025 02:57:53 +0000 Manifest next update: Fri 26 Dec 2025 02:57:53 +0000 Files and hashes: 1: XV9hkCFd_wrDVDK8OlKgi9NBtwA.crl (hash: WbfjVjSs7ra9keloxoqcVDhQeWD4GRSdPO0XQnpL3MI=) 2: 0A576F089A4C11EEBD557E12C4F9AE02.roa (hash: W3PBLvmUcdE3zAX7FZy5vyT9kW67f//Ujbv+JZHmvZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.crl rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XV9hkCFd_wrDVDK8OlKgi9NBtwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 380 (0x17c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D28E1, serialNumber=5D5F6190215DFF0AC35432BC3A52A08BD341B700 Validity Not Before: Dec 19 02:57:53 2025 GMT Not After : Dec 26 02:57:53 2025 GMT Subject: CN=6944bf31-50fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:a6:55:c1:9c:6e:91:00:dc:c4:88:fe:18:5c: 08:4e:2d:cc:6e:5b:d3:33:ad:26:a7:2c:79:ad:53: 4c:7d:68:92:79:70:de:11:29:a8:c6:26:bf:37:df: 87:cd:7b:46:da:e2:99:db:03:63:0c:e2:60:00:a4: 2c:34:4b:ce:50:d6:78:30:e3:96:ff:78:cd:7a:00: 85:e0:9c:28:1e:0a:48:29:f9:e7:04:01:f4:0e:79: ca:9f:8a:1b:7d:06:a5:23:f0:8f:7c:4c:0e:5a:a4: f7:bd:89:5c:dc:c9:85:51:93:27:5a:72:eb:be:26: de:b9:d1:d4:21:a6:b7:27:78:b3:48:de:79:f9:cb: eb:95:19:99:22:f6:b4:26:82:dc:49:87:73:5c:9f: a1:92:4f:e2:8e:cb:5d:e9:a4:eb:e2:49:5d:6d:59: e3:0d:53:5f:ec:db:15:0f:2b:2d:26:4f:3f:3f:59: 4a:71:e0:4f:14:ee:52:26:5e:70:fc:bb:d7:56:cf: 06:95:af:83:47:c9:3d:95:35:4c:30:5d:1a:7e:a7: 39:2c:dd:b4:79:4a:04:7a:39:6e:e7:4c:30:d4:a1: 30:32:2c:f5:2d:06:89:b0:19:0f:18:b6:c2:59:43: b3:a3:73:07:33:c7:b8:b8:3e:64:d5:72:0b:b5:f6: ed:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:B6:A4:A4:19:3E:DE:CA:01:CC:A5:87:9F:FF:3E:B5:E3:3D:5A:84 X509v3 Authority Key Identifier: keyid:5D:5F:61:90:21:5D:FF:0A:C3:54:32:BC:3A:52:A0:8B:D3:41:B7:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XV9hkCFd_wrDVDK8OlKgi9NBtwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:c2:80:ec:4b:6a:88:50:23:ad:4e:c2:1b:18:c9:55:0c:8a: e9:34:1a:a0:2a:55:37:95:7d:84:74:f2:bb:1a:0c:cf:12:ed: 05:bf:d9:52:46:57:36:2f:71:1f:71:de:8a:3e:d8:02:93:a6: e0:86:77:bd:e5:9b:1d:b9:cd:41:b0:0f:22:b5:2d:d2:42:a3: 67:57:d8:d4:28:c3:7e:c0:d7:0f:ed:92:68:0d:9a:fc:16:78: e4:8f:25:b5:42:87:7e:d0:6d:37:1f:58:0d:ed:4c:af:46:3d: bb:98:28:05:50:bb:2c:cc:04:57:e9:5e:98:2b:cc:ae:00:bf: 9d:dc:54:ba:5d:cb:84:ce:70:cd:bc:7e:74:78:d2:46:dc:47: e2:d5:c0:dd:5c:78:b7:3d:ac:00:33:7d:4d:4c:0c:8c:15:13: 4d:53:5e:b4:7c:bb:3c:94:79:72:95:a1:9e:c0:0d:89:d4:df: a3:0a:00:5e:69:9e:c1:30:74:19:e2:42:65:e1:74:5f:46:38: 25:f9:17:58:c8:71:ca:20:f8:7c:5e:89:e2:27:1b:03:5a:51: ea:4b:0c:35:a6:b4:a6:94:0a:1f:ab:47:bc:6c:56:fe:4a:cc: d1:ae:82:6b:40:09:9e:42:e0:89:1e:38:42:fd:ac:f8:ee:3e: c5:b9:28:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI4RTExMTAvBgNVBAUTKDVENUY2MTkwMjE1REZGMEFDMzU0MzJCQzNBNTJBMDhC RDM0MUI3MDAwHhcNMjUxMjE5MDI1NzUzWhcNMjUxMjI2MDI1NzUzWjAYMRYwFAYD VQQDDA02OTQ0YmYzMS01MGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5KZVwZxukQDcxIj+GFwITi3MblvTM60mpyx5rVNMfWiSeXDeESmoxia/N9+H zXtG2uKZ2wNjDOJgAKQsNEvOUNZ4MOOW/3jNegCF4JwoHgpIKfnnBAH0DnnKn4ob fQalI/CPfEwOWqT3vYlc3MmFUZMnWnLrvibeudHUIaa3J3izSN55+cvrlRmZIva0 JoLcSYdzXJ+hkk/ijstd6aTr4kldbVnjDVNf7NsVDystJk8/P1lKceBPFO5SJl5w /LvXVs8Gla+DR8k9lTVMMF0afqc5LN20eUoEejlu50ww1KEwMiz1LQaJsBkPGLbC WUOzo3MHM8e4uD5k1XILtfbt5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ22pKQZ Pt7KAcylh5//PrXjPVqEMB8GA1UdIwQYMBaAFF1fYZAhXf8Kw1QyvDpSoIvTQbcA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjhFMS9CQkUzRDQzQTlB NDkxMUVFOTA5MkUwNzBDNEY5QUUwMi9YVjloa0NGZF93ckRWREs4T2xLZ2k5TkJ0 d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hWOWhrQ0ZkX3dyRFZESzhPbEtnaTlOQnR3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjhFMS9CQkUzRDQzQTlBNDkxMUVFOTA5MkUwNzBDNEY5QUUwMi9YVjloa0NGZF93 ckRWREs4T2xLZ2k5TkJ0d0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9woDsS2qIUCOtTsIbGMlVDIrpNBqgKlU3lX2EdPK7GgzPEu0Fv9lS Rlc2L3Efcd6KPtgCk6bghne95Zsduc1BsA8itS3SQqNnV9jUKMN+wNcP7ZJoDZr8 FnjkjyW1Qod+0G03H1gN7UyvRj27mCgFULsszARX6V6YK8yuAL+d3FS6XcuEznDN vH50eNJG3Efi1cDdXHi3PawAM31NTAyMFRNNU160fLs8lHlylaGewA2J1N+jCgBe aZ7BMHQZ4kJl4XRfRjgl+RdYyHHKIPh8XoniJxsDWlHqSww1prSmlAofq0e8bFb+ SszRroJrQAmeQuCJHjhC/az47j7FuSjI -----END CERTIFICATE-----Generated at Fri Dec 19 20:31:11 2025 by rpki-client