This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/xkGJ9Yz3LB9zvrJAelIntqLOlmE.mft File: xkGJ9Yz3LB9zvrJAelIntqLOlmE.mft (raw, json) Hash identifier: AxABBgL9V6gSoGgIFy2nJu68kPxrFz3PXP5SkDAJ7HU= Subject key identifier: 36:D7:0A:B9:A5:57:06:94:ED:B8:1F:20:8C:44:3A:F4:23:37:EA:9A Authority key identifier: C6:41:89:F5:8C:F7:2C:1F:73:BE:B2:40:7A:52:27:B6:A2:CE:96:61 Certificate issuer: /CN=A91D7E61/serialNumber=C64189F58CF72C1F73BEB2407A5227B6A2CE9661 Certificate serial: 04EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkGJ9Yz3LB9zvrJAelIntqLOlmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/xkGJ9Yz3LB9zvrJAelIntqLOlmE.mft Manifest number: 04EA Signing time: Thu 18 Dec 2025 23:03:38 +0000 Manifest this update: Thu 18 Dec 2025 23:03:38 +0000 Manifest next update: Thu 25 Dec 2025 23:03:38 +0000 Files and hashes: 1: xkGJ9Yz3LB9zvrJAelIntqLOlmE.crl (hash: 5sPAzq3/5C0ifwUbsebnU6aoM3JZrOECynmibhTDXhg=) 2: 073DC606407F11EC87F77579C4F9AE02.roa (hash: NDBRaEu7/3p0dY7kfIAusQPnP5MsQ4tVX9/7zI105Q8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/xkGJ9Yz3LB9zvrJAelIntqLOlmE.crl rsync://rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/xkGJ9Yz3LB9zvrJAelIntqLOlmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkGJ9Yz3LB9zvrJAelIntqLOlmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1263 (0x4ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7E61, serialNumber=C64189F58CF72C1F73BEB2407A5227B6A2CE9661 Validity Not Before: Dec 18 23:03:38 2025 GMT Not After : Dec 25 23:03:38 2025 GMT Subject: CN=6944884a-5fa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:0c:9a:c7:47:81:c6:bf:ec:f1:38:26:c0:36: cc:5a:79:56:aa:38:a9:7a:64:78:53:8d:76:71:6f: 3b:07:dc:be:81:2a:cf:4a:80:bf:0b:85:77:c1:4b: 54:49:46:ea:db:79:96:79:2f:29:d9:bf:49:10:9a: 50:26:2f:09:b3:bf:9d:69:32:d0:5c:2e:11:cd:7d: ea:e2:9b:48:e9:64:86:eb:ce:d5:bf:45:68:62:7b: cd:8f:a8:d9:9a:3d:b9:92:c9:16:79:f4:8e:f8:24: 46:65:12:8d:dd:f0:87:a3:67:86:7e:3c:63:fc:d4: 91:91:2b:7b:91:93:5f:6b:f8:e0:6c:df:5a:4f:52: 91:45:d2:d0:fe:e4:d3:38:c4:6b:89:59:87:71:6b: 98:24:6d:72:bd:86:df:2b:10:c2:ab:5d:d5:31:b6: a4:59:60:b5:3a:e9:14:99:e0:15:44:63:e7:f5:3c: 16:c4:09:c2:bf:5b:62:bb:39:0f:ae:f0:37:3d:9f: ef:5d:70:62:4b:b3:26:0b:89:29:ac:9b:bd:30:c7: 1e:69:b4:0e:c7:8b:db:33:11:d9:8b:49:76:06:35: 73:c5:e5:b1:db:c9:58:6a:15:a9:75:62:e3:75:d3: 49:d2:66:f1:e1:33:94:95:cc:73:14:c1:4f:00:d1: 32:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:D7:0A:B9:A5:57:06:94:ED:B8:1F:20:8C:44:3A:F4:23:37:EA:9A X509v3 Authority Key Identifier: keyid:C6:41:89:F5:8C:F7:2C:1F:73:BE:B2:40:7A:52:27:B6:A2:CE:96:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/xkGJ9Yz3LB9zvrJAelIntqLOlmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkGJ9Yz3LB9zvrJAelIntqLOlmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/xkGJ9Yz3LB9zvrJAelIntqLOlmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:82:b5:1b:32:7e:d6:86:40:ed:e6:45:af:d9:d0:19:0c:67: e5:3e:33:26:ca:6d:d6:61:fe:c9:f7:1a:0a:46:a5:87:8f:65: 87:f2:10:2e:ed:90:37:6d:dd:27:f2:76:25:59:30:a3:32:7e: eb:08:a9:77:56:71:6f:26:6e:d2:64:af:d4:40:75:4a:d1:b2: 84:08:dc:35:58:1e:0d:9f:3c:28:cc:4a:70:59:6a:e7:6e:89: 69:96:3c:27:2d:5c:6e:1b:1c:4b:7c:c8:03:c3:47:64:eb:42: 10:4b:d2:89:39:af:55:18:f7:f5:14:e0:4f:89:80:ed:4b:37: 14:0c:6e:8d:d7:cd:29:2b:8f:c2:5b:c6:c0:b0:77:f1:a7:17: 9b:75:03:0a:d9:59:51:fa:f8:30:af:e3:33:ab:b1:a0:ec:2c: 02:da:6c:c2:e9:66:e3:13:04:f4:a1:0a:4e:a7:2d:d1:83:d2: d0:28:57:46:65:87:87:f0:53:ed:a4:91:88:58:70:a2:c1:10: 3a:e9:e8:22:35:7e:ca:46:d9:d8:88:d8:75:92:e6:eb:c9:47: a4:e7:95:3f:e8:5c:db:c5:2f:f0:3b:f0:eb:97:7a:78:56:e5: 6e:06:c6:26:af:09:9c:36:8e:a0:d2:2b:69:ec:ee:5d:cb:c0: e5:fd:2a:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDdFNjExMTAvBgNVBAUTKEM2NDE4OUY1OENGNzJDMUY3M0JFQjI0MDdBNTIyN0I2 QTJDRTk2NjEwHhcNMjUxMjE4MjMwMzM4WhcNMjUxMjI1MjMwMzM4WjAYMRYwFAYD VQQDDA02OTQ0ODg0YS01ZmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2wyax0eBxr/s8TgmwDbMWnlWqjipemR4U412cW87B9y+gSrPSoC/C4V3wUtU SUbq23mWeS8p2b9JEJpQJi8Js7+daTLQXC4RzX3q4ptI6WSG687Vv0VoYnvNj6jZ mj25kskWefSO+CRGZRKN3fCHo2eGfjxj/NSRkSt7kZNfa/jgbN9aT1KRRdLQ/uTT OMRriVmHcWuYJG1yvYbfKxDCq13VMbakWWC1OukUmeAVRGPn9TwWxAnCv1tiuzkP rvA3PZ/vXXBiS7MmC4kprJu9MMceabQOx4vbMxHZi0l2BjVzxeWx28lYahWpdWLj ddNJ0mbx4TOUlcxzFMFPANEyRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbXCrml VwaU7bgfIIxEOvQjN+qaMB8GA1UdIwQYMBaAFMZBifWM9ywfc76yQHpSJ7aizpZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEN0U2MS9GNTk0REM4MDQw N0IxMUVDQkYzOEI0NTJDNEY5QUUwMi94a0dKOVl6M0xCOXp2ckpBZWxJbnRxTE9s bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hrR0o5WXozTEI5enZySkFlbEludHFMT2xtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE N0U2MS9GNTk0REM4MDQwN0IxMUVDQkYzOEI0NTJDNEY5QUUwMi94a0dKOVl6M0xC OXp2ckpBZWxJbnRxTE9sbUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWgrUbMn7WhkDt5kWv2dAZDGflPjMmym3WYf7J9xoKRqWHj2WH8hAu 7ZA3bd0n8nYlWTCjMn7rCKl3VnFvJm7SZK/UQHVK0bKECNw1WB4NnzwozEpwWWrn bolpljwnLVxuGxxLfMgDw0dk60IQS9KJOa9VGPf1FOBPiYDtSzcUDG6N180pK4/C W8bAsHfxpxebdQMK2VlR+vgwr+Mzq7Gg7CwC2mzC6WbjEwT0oQpOpy3Rg9LQKFdG ZYeH8FPtpJGIWHCiwRA66egiNX7KRtnYiNh1kubryUek55U/6FzbxS/wO/Drl3p4 VuVuBsYmrwmcNo6g0itp7O5dy8Dl/SpA -----END CERTIFICATE-----Generated at Fri Dec 19 22:00:22 2025 by rpki-client