This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.mft File: xb2KUMrVoF7-V3xJxHFOXZq7f-8.mft (raw, json) Hash identifier: GpHQN6VFFBqyaDPb2tqcGud/eTFQf9aQ2rUsO5VAP84= Subject key identifier: DE:E9:4E:8C:5D:74:1F:A4:EC:D4:9D:4F:13:01:3E:24:44:C9:FE:12 Authority key identifier: C5:BD:8A:50:CA:D5:A0:5E:FE:57:7C:49:C4:71:4E:5D:9A:BB:7F:EF Certificate issuer: /CN=A91E37D1/serialNumber=C5BD8A50CAD5A05EFE577C49C4714E5D9ABB7FEF Certificate serial: 01F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xb2KUMrVoF7-V3xJxHFOXZq7f-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.mft Manifest number: 01F1 Signing time: Wed 17 Dec 2025 02:02:59 +0000 Manifest this update: Wed 17 Dec 2025 02:02:58 +0000 Manifest next update: Wed 24 Dec 2025 02:02:58 +0000 Files and hashes: 1: xb2KUMrVoF7-V3xJxHFOXZq7f-8.crl (hash: kSNDmFrA6ladLXzowDHAEW3YMzFHDYKInzVlZcgvfTg=) 2: 59A00A402C7111EFA821586AC4F9AE02.roa (hash: p1EiKzg6nbrGxBXHUOMKPfqyNz3U7HPnOFjDFgpciCM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.crl rsync://rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xb2KUMrVoF7-V3xJxHFOXZq7f-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Dec 2025 02:02:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 500 (0x1f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E37D1, serialNumber=C5BD8A50CAD5A05EFE577C49C4714E5D9ABB7FEF Validity Not Before: Dec 17 02:02:58 2025 GMT Not After : Dec 24 02:02:58 2025 GMT Subject: CN=69420f53-2a2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:57:0d:2d:a3:22:fe:90:3e:44:62:0b:f9:4b: 18:90:e2:2e:2f:ec:f5:d9:e6:e1:58:9d:3f:9c:c2: 74:0d:38:e5:85:de:5d:d1:e9:6d:45:0a:4b:aa:6a: 99:c2:a9:d0:15:fc:e8:0c:4d:21:63:ab:ad:ca:ce: 5f:12:af:30:f0:eb:49:2d:c7:11:bb:08:ba:e3:fb: 53:04:7d:96:29:5e:f9:cc:b2:10:c3:7d:41:28:b1: 0e:f3:da:83:3e:4b:05:0b:37:36:f8:21:de:62:1e: a2:9c:98:93:86:36:72:cd:a6:51:39:1e:4e:cc:83: 8d:4f:b8:c4:6b:1d:fd:1c:84:b2:1a:09:19:98:a0: aa:36:86:df:73:9f:f3:3a:5b:f5:6f:7b:3d:22:ac: c9:3e:8f:49:c2:e6:df:81:6e:7a:27:60:ac:40:5c: 89:19:cc:1d:52:f7:76:15:2a:09:a5:a6:20:f7:6d: 32:99:7c:96:5c:45:09:47:9e:9b:40:19:bc:64:15: a0:71:65:b0:05:b3:d8:5e:5f:35:b6:01:d6:08:b9: 43:38:60:c6:f1:e1:ae:be:0c:b6:b8:a2:b4:3d:70: 65:dd:59:00:24:40:22:c0:2e:c2:5b:cf:49:ea:0a: 4d:f2:a6:bd:bd:e2:57:75:bf:1c:d0:01:c0:b3:39: 01:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:E9:4E:8C:5D:74:1F:A4:EC:D4:9D:4F:13:01:3E:24:44:C9:FE:12 X509v3 Authority Key Identifier: keyid:C5:BD:8A:50:CA:D5:A0:5E:FE:57:7C:49:C4:71:4E:5D:9A:BB:7F:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xb2KUMrVoF7-V3xJxHFOXZq7f-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:19:42:3d:87:b8:be:b0:8f:eb:a6:a9:f3:92:4d:b9:ae:7f: d0:f3:ee:4f:2b:84:e1:7e:81:5b:5a:b6:fe:db:db:d9:13:49: 3b:f5:d4:2b:7f:64:87:8d:4e:b2:79:27:ff:be:63:33:40:6c: 1e:97:09:6c:07:30:71:eb:d2:3d:90:a3:a6:49:12:14:99:bb: 02:92:0b:3e:6c:fd:f4:5f:1e:30:c1:9e:97:be:04:92:9c:e1: d5:dd:47:d2:ed:db:8e:89:8b:a7:20:4b:5b:38:a4:c9:c4:a9: 68:1e:8c:56:b7:00:e1:72:3b:d5:b5:28:9d:01:af:f1:e7:48: 4f:c4:c5:b7:9b:61:9b:3f:5d:94:e4:46:6b:bd:05:78:56:ae: 84:76:4b:2f:65:d0:c2:00:f5:e2:83:ef:77:70:df:f7:9e:b3: 41:a2:54:9c:44:3b:ac:b5:78:d1:e2:fe:ef:76:e0:44:7e:f4: 88:01:eb:28:b8:a6:fb:d6:48:e2:13:89:73:aa:83:c6:ec:39: fc:f2:99:07:e5:7b:da:d0:0d:70:e1:be:bd:e7:1c:eb:52:01: 11:83:da:2b:bd:c7:ea:af:be:ee:17:a6:06:fb:df:42:20:05: 5a:fb:71:fc:37:81:41:2e:08:09:3b:d1:ad:9a:75:d8:9c:2a: 91:3a:3b:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM3RDExMTAvBgNVBAUTKEM1QkQ4QTUwQ0FENUEwNUVGRTU3N0M0OUM0NzE0RTVE OUFCQjdGRUYwHhcNMjUxMjE3MDIwMjU4WhcNMjUxMjI0MDIwMjU4WjAYMRYwFAYD VQQDDA02OTQyMGY1My0yYTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkFcNLaMi/pA+RGIL+UsYkOIuL+z12ebhWJ0/nMJ0DTjlhd5d0eltRQpLqmqZ wqnQFfzoDE0hY6utys5fEq8w8OtJLccRuwi64/tTBH2WKV75zLIQw31BKLEO89qD PksFCzc2+CHeYh6inJiThjZyzaZROR5OzIONT7jEax39HISyGgkZmKCqNobfc5/z Olv1b3s9IqzJPo9JwubfgW56J2CsQFyJGcwdUvd2FSoJpaYg920ymXyWXEUJR56b QBm8ZBWgcWWwBbPYXl81tgHWCLlDOGDG8eGuvgy2uKK0PXBl3VkAJEAiwC7CW89J 6gpN8qa9veJXdb8c0AHAszkBrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN7pToxd dB+k7NSdTxMBPiREyf4SMB8GA1UdIwQYMBaAFMW9ilDK1aBe/ld8ScRxTl2au3/v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzdEMS8wNUE5OEYwRUUz QjMxMUVEQjJGNERBMjhDNEY5QUUwMi94YjJLVU1yVm9GNy1WM3hKeEhGT1hacTdm LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hiMktVTXJWb0Y3LVYzeEp4SEZPWFpxN2YtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzdEMS8wNUE5OEYwRUUzQjMxMUVEQjJGNERBMjhDNEY5QUUwMi94YjJLVU1yVm9G Ny1WM3hKeEhGT1hacTdmLTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaGUI9h7i+sI/rpqnzkk25rn/Q8+5PK4ThfoFbWrb+29vZE0k79dQr f2SHjU6yeSf/vmMzQGwelwlsBzBx69I9kKOmSRIUmbsCkgs+bP30Xx4wwZ6XvgSS nOHV3UfS7duOiYunIEtbOKTJxKloHoxWtwDhcjvVtSidAa/x50hPxMW3m2GbP12U 5EZrvQV4Vq6EdksvZdDCAPXig+93cN/3nrNBolScRDustXjR4v7vduBEfvSIAeso uKb71kjiE4lzqoPG7Dn88pkH5Xva0A1w4b695xzrUgERg9orvcfqr77uF6YG+99C IAVa+3H8N4FBLggJO9GtmnXYnCqROjsA -----END CERTIFICATE-----Generated at Wed Dec 17 21:43:15 2025 by rpki-client