This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft File: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft (raw, json) Hash identifier: 291jpYwt/t0F0ZSyfv+N7Dv262hSYgym7mYo6YnFVas= Subject key identifier: E6:52:A6:39:FF:89:00:B0:00:BB:DF:B7:12:92:24:1A:64:BF:FE:8B Authority key identifier: C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 Certificate issuer: /CN=A91E3BF2/serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Certificate serial: 031C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft Manifest number: 0316 Signing time: Fri 19 Dec 2025 00:20:37 +0000 Manifest this update: Fri 19 Dec 2025 00:20:36 +0000 Manifest next update: Fri 26 Dec 2025 00:20:36 +0000 Files and hashes: 1: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl (hash: CEqGNHeuW7ol8NpkFKIHa/SlBtYLMvrCIWiFZcnVM/0=) 2: 6B7C33C8F6C811ECBDF7DD40C4F9AE02.roa (hash: iVRqxqRDbn6K8sleGw8ykyX5wSW8dSg7Li1MPpVmJsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:20:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 796 (0x31c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BF2, serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Validity Not Before: Dec 19 00:20:36 2025 GMT Not After : Dec 26 00:20:36 2025 GMT Subject: CN=69449a54-1bb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b6:5a:98:13:f9:95:05:aa:70:10:58:56:dd: 0a:5d:70:86:88:bc:64:65:be:80:11:93:11:38:7d: e9:90:09:06:00:1c:fd:f7:dc:e5:fd:ad:89:8b:0c: 21:a8:2a:8f:54:fb:ee:ed:65:57:5d:10:bd:07:47: d1:20:2e:cc:5e:a3:bd:70:59:ab:0a:5e:0e:3e:85: 14:9b:25:08:94:f0:82:4a:0e:94:40:08:65:a6:75: 9d:42:86:7a:81:ad:56:e0:46:b5:d3:f2:ed:8d:77: ac:1f:65:8a:15:87:b7:88:e4:f0:0b:b1:81:88:c6: 97:0a:dc:7d:2a:95:3e:a3:2d:a6:91:b7:c6:19:f8: 68:9c:fb:05:a1:af:60:79:58:c6:49:a9:ef:f0:9a: f2:6c:b4:5d:91:cf:73:fd:04:9d:e8:17:e8:ea:c4: bb:89:bf:88:92:de:de:a9:54:d1:36:17:d0:7a:bf: 0f:45:4a:34:9e:b8:eb:48:f7:98:9f:06:60:33:d4: 07:f3:d1:c6:7d:9d:52:eb:d5:cb:ef:99:98:8d:aa: ea:17:5f:01:28:b8:50:49:9a:eb:03:c7:b0:24:85: 3b:a6:77:68:c7:c1:31:0a:0c:74:82:94:a7:91:6b: db:75:77:4d:5b:87:1e:57:7d:69:bb:5d:4d:46:45: 7f:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:52:A6:39:FF:89:00:B0:00:BB:DF:B7:12:92:24:1A:64:BF:FE:8B X509v3 Authority Key Identifier: keyid:C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:1b:86:f2:af:f2:5d:1e:b7:9a:a8:ce:ec:66:2e:47:e5:7a: 65:a7:84:f1:bb:a0:4e:75:50:e3:e7:08:6e:9d:d8:f1:03:80: 56:fe:11:71:bc:f7:80:42:80:ed:82:a2:bf:05:6a:fe:38:10: 28:08:b8:d7:01:9d:c3:34:57:6a:25:b4:a2:ac:30:13:64:10: 29:41:27:cd:f5:b0:38:f8:e9:2f:84:be:44:0f:97:db:e3:63: e0:43:42:92:bb:90:a9:8f:60:6c:ea:a0:7e:fd:7b:c3:5a:43: fa:e9:c8:ea:d3:23:8d:ff:a1:d7:c6:21:15:49:25:90:70:5f: 6c:d4:f8:00:3d:71:90:d8:39:27:cb:5c:82:d7:66:3b:d0:12: c7:50:c8:c9:b3:cc:d5:06:ab:97:20:e8:04:8f:1b:51:9a:c8: bc:2f:b9:3a:a9:e1:a8:1f:ca:66:fe:b6:be:bd:1c:20:0a:53: b1:08:0b:84:13:8e:aa:8f:1d:f7:32:63:db:81:34:7f:4e:d2: a4:aa:fe:79:d8:c8:02:0d:9c:19:55:d8:ff:5d:12:1e:98:ac: a0:5d:f4:8a:c5:f4:6c:56:99:f5:c4:e3:fb:42:92:36:35:5a: 75:35:e4:fd:e2:fd:d9:61:b8:25:0d:b8:95:5f:54:db:db:ea: cd:24:89:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCRjIxMTAvBgNVBAUTKEM0NzFBNTZFRTk0RjA1QjQzN0MwOUVFRTBGNDQyMDNG QTQ1OTI3MzYwHhcNMjUxMjE5MDAyMDM2WhcNMjUxMjI2MDAyMDM2WjAYMRYwFAYD VQQDDA02OTQ0OWE1NC0xYmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbZamBP5lQWqcBBYVt0KXXCGiLxkZb6AEZMROH3pkAkGABz999zl/a2Jiwwh qCqPVPvu7WVXXRC9B0fRIC7MXqO9cFmrCl4OPoUUmyUIlPCCSg6UQAhlpnWdQoZ6 ga1W4Ea10/LtjXesH2WKFYe3iOTwC7GBiMaXCtx9KpU+oy2mkbfGGfhonPsFoa9g eVjGSanv8JrybLRdkc9z/QSd6Bfo6sS7ib+Ikt7eqVTRNhfQer8PRUo0nrjrSPeY nwZgM9QH89HGfZ1S69XL75mYjarqF18BKLhQSZrrA8ewJIU7pndox8ExCgx0gpSn kWvbdXdNW4ceV31pu11NRkV/rwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOZSpjn/ iQCwALvftxKSJBpkv/6LMB8GA1UdIwQYMBaAFMRxpW7pTwW0N8Ce7g9EID+kWSc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JGMi81MDkwOTZBOEY2 QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJiUTN3Sjd1RDBRZ1A2UlpK elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hIR2xidWxQQmJRM3dKN3VEMFFnUDZSWkp6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JGMi81MDkwOTZBOEY2QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJi UTN3Sjd1RDBRZ1A2UlpKelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQG4byr/JdHreaqM7sZi5H5Xplp4Txu6BOdVDj5whundjxA4BW/hFx vPeAQoDtgqK/BWr+OBAoCLjXAZ3DNFdqJbSirDATZBApQSfN9bA4+OkvhL5ED5fb 42PgQ0KSu5Cpj2Bs6qB+/XvDWkP66cjq0yON/6HXxiEVSSWQcF9s1PgAPXGQ2Dkn y1yC12Y70BLHUMjJs8zVBquXIOgEjxtRmsi8L7k6qeGoH8pm/ra+vRwgClOxCAuE E46qjx33MmPbgTR/TtKkqv552MgCDZwZVdj/XRIemKygXfSKxfRsVpn1xOP7QpI2 NVp1NeT94v3ZYbglDbiVX1Tb2+rNJImw -----END CERTIFICATE-----Generated at Fri Dec 19 19:25:34 2025 by rpki-client