This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/xkGJ9Yz3LB9zvrJAelIntqLOlmE.mft File: xkGJ9Yz3LB9zvrJAelIntqLOlmE.mft (raw, json) Hash identifier: Kz2DzCXzbJa+6cof0fK70VNjSumz6fJ9oyvdqciNeqo= Subject key identifier: 0D:13:CE:44:4C:E7:F3:9D:8D:57:E8:F2:17:41:BB:43:C0:71:11:21 Authority key identifier: C6:41:89:F5:8C:F7:2C:1F:73:BE:B2:40:7A:52:27:B6:A2:CE:96:61 Certificate issuer: /CN=A91D7E61/serialNumber=C64189F58CF72C1F73BEB2407A5227B6A2CE9661 Certificate serial: 04F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkGJ9Yz3LB9zvrJAelIntqLOlmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/xkGJ9Yz3LB9zvrJAelIntqLOlmE.mft Manifest number: 04EF Signing time: Sun 28 Dec 2025 22:52:07 +0000 Manifest this update: Sun 28 Dec 2025 22:52:06 +0000 Manifest next update: Sun 04 Jan 2026 22:52:06 +0000 Files and hashes: 1: xkGJ9Yz3LB9zvrJAelIntqLOlmE.crl (hash: 8g1NW35oQFPCU+T9d9APhaMrwN4zl934LQwPJotblKk=) 2: 073DC606407F11EC87F77579C4F9AE02.roa (hash: NDBRaEu7/3p0dY7kfIAusQPnP5MsQ4tVX9/7zI105Q8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/xkGJ9Yz3LB9zvrJAelIntqLOlmE.crl rsync://rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/xkGJ9Yz3LB9zvrJAelIntqLOlmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkGJ9Yz3LB9zvrJAelIntqLOlmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 22:52:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1268 (0x4f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7E61, serialNumber=C64189F58CF72C1F73BEB2407A5227B6A2CE9661 Validity Not Before: Dec 28 22:52:06 2025 GMT Not After : Jan 4 22:52:06 2026 GMT Subject: CN=6951b497-4069 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4c:53:78:a1:ae:9e:2d:35:08:c5:a5:ff:89: 09:79:71:a7:32:42:65:19:c4:cb:2e:90:ae:1c:35: c6:59:6b:c7:3f:fd:43:01:14:4d:0a:59:3b:ec:42: 46:42:9e:0e:f8:be:93:d6:e3:2d:b8:2b:e1:b0:e2: c0:d4:dc:6d:f5:a6:c0:5d:7a:a3:12:a2:8b:78:8e: ce:d6:aa:4d:de:cf:cb:22:3b:d7:65:65:09:51:21: ef:32:0f:f1:94:19:af:53:69:34:55:aa:3d:57:3a: f0:ed:79:c5:7e:46:90:78:0a:f4:fb:b8:9d:bf:f9: 38:ba:bb:9e:8c:28:cd:49:7c:62:dd:5f:6a:1a:32: 22:3b:d6:c9:bd:37:af:93:15:46:db:c0:fc:18:90: d2:23:d4:de:c3:ce:fa:52:9e:de:4d:91:be:52:a5: 45:e5:96:f8:7b:db:63:a1:e9:d5:f4:41:d9:04:e0: 5c:33:51:49:c4:73:27:c3:4f:a2:5f:9c:32:01:b6: b0:4d:9e:b8:98:e2:8e:52:ae:3c:1a:74:da:92:19: d4:ff:3c:17:4e:21:35:79:0b:de:a0:e6:d0:44:39: cd:4d:ee:35:ab:40:2d:ce:b2:fc:0b:18:8e:09:fe: ba:89:96:35:30:8c:26:37:13:22:a7:f4:87:fd:8a: 85:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:13:CE:44:4C:E7:F3:9D:8D:57:E8:F2:17:41:BB:43:C0:71:11:21 X509v3 Authority Key Identifier: keyid:C6:41:89:F5:8C:F7:2C:1F:73:BE:B2:40:7A:52:27:B6:A2:CE:96:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/xkGJ9Yz3LB9zvrJAelIntqLOlmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkGJ9Yz3LB9zvrJAelIntqLOlmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/xkGJ9Yz3LB9zvrJAelIntqLOlmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:1a:27:54:89:5b:f1:4d:80:e7:14:85:7e:3d:1f:88:f8:47: 1f:24:11:e7:d5:42:44:cd:6c:1c:32:92:23:5a:78:56:a8:c3: 9d:d1:23:58:d3:fd:d0:7f:6b:a8:3d:d3:ba:51:97:cb:52:07: 3a:e7:75:11:08:64:67:31:4a:90:c1:4b:64:83:e8:26:fa:b0: 4b:5e:14:b8:df:fb:6a:75:f0:5c:f4:a7:9f:02:94:0d:b4:51: 3c:6a:2f:54:a8:8b:ba:8a:6b:fb:d2:d2:bd:9d:14:87:39:dd: c3:fe:76:ff:6c:1a:86:f0:9a:a4:95:7b:7d:6b:53:df:e8:83: 30:c7:d8:2b:91:e1:60:31:96:d9:ab:d1:13:04:a2:a9:6d:a2: 42:b9:83:71:09:f7:ad:94:93:a1:53:4b:53:4c:ea:d3:db:3a: f6:50:e2:16:b3:60:6b:a4:dc:e7:fe:09:62:53:e3:48:13:ed: c4:65:f9:0f:7d:3b:7d:ed:e8:a9:60:66:54:b7:13:c2:30:1b: 09:45:cf:7e:ed:ef:0d:b0:70:e7:c4:60:6c:2f:27:df:5a:2b: b1:d7:84:92:6a:e1:d5:ae:79:45:56:6b:1c:35:0a:e0:c4:d9: 9e:ea:2d:1e:b8:4b:5a:af:6d:16:7e:50:29:cd:f1:fc:82:39: 00:9f:cb:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDdFNjExMTAvBgNVBAUTKEM2NDE4OUY1OENGNzJDMUY3M0JFQjI0MDdBNTIyN0I2 QTJDRTk2NjEwHhcNMjUxMjI4MjI1MjA2WhcNMjYwMTA0MjI1MjA2WjAYMRYwFAYD VQQDDA02OTUxYjQ5Ny00MDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUxTeKGuni01CMWl/4kJeXGnMkJlGcTLLpCuHDXGWWvHP/1DARRNClk77EJG Qp4O+L6T1uMtuCvhsOLA1Nxt9abAXXqjEqKLeI7O1qpN3s/LIjvXZWUJUSHvMg/x lBmvU2k0Vao9Vzrw7XnFfkaQeAr0+7idv/k4uruejCjNSXxi3V9qGjIiO9bJvTev kxVG28D8GJDSI9Tew876Up7eTZG+UqVF5Zb4e9tjoenV9EHZBOBcM1FJxHMnw0+i X5wyAbawTZ64mOKOUq48GnTakhnU/zwXTiE1eQveoObQRDnNTe41q0AtzrL8CxiO Cf66iZY1MIwmNxMip/SH/YqFywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA0TzkRM 5/OdjVfo8hdBu0PAcREhMB8GA1UdIwQYMBaAFMZBifWM9ywfc76yQHpSJ7aizpZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEN0U2MS9GNTk0REM4MDQw N0IxMUVDQkYzOEI0NTJDNEY5QUUwMi94a0dKOVl6M0xCOXp2ckpBZWxJbnRxTE9s bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hrR0o5WXozTEI5enZySkFlbEludHFMT2xtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE N0U2MS9GNTk0REM4MDQwN0IxMUVDQkYzOEI0NTJDNEY5QUUwMi94a0dKOVl6M0xC OXp2ckpBZWxJbnRxTE9sbUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3GidUiVvxTYDnFIV+PR+I+EcfJBHn1UJEzWwcMpIjWnhWqMOd0SNY 0/3Qf2uoPdO6UZfLUgc653URCGRnMUqQwUtkg+gm+rBLXhS43/tqdfBc9KefApQN tFE8ai9UqIu6imv70tK9nRSHOd3D/nb/bBqG8JqklXt9a1Pf6IMwx9grkeFgMZbZ q9ETBKKpbaJCuYNxCfetlJOhU0tTTOrT2zr2UOIWs2BrpNzn/gliU+NIE+3EZfkP fTt97eipYGZUtxPCMBsJRc9+7e8NsHDnxGBsLyffWiux14SSauHVrnlFVmscNQrg xNme6i0euEtar20WflApzfH8gjkAn8tV -----END CERTIFICATE-----Generated at Tue Dec 30 07:05:21 2025 by rpki-client