This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E8B/04DE2B92BE2211F0B38DB519C4F9AE02/Xb7wLCg84I1tzonzkSoMMKcBkMg.mft File: Xb7wLCg84I1tzonzkSoMMKcBkMg.mft (raw, json) Hash identifier: 4SL7AU6vK6BWm5++oshQN63eViVYR9OTwtStEQ8komo= Subject key identifier: 98:32:55:B7:AA:F2:E1:4B:F3:97:91:BD:5A:B1:0A:7B:CB:EC:AC:07 Authority key identifier: 5D:BE:F0:2C:28:3C:E0:8D:6D:CE:89:F3:91:2A:0C:30:A7:01:90:C8 Certificate issuer: /CN=A91E3E8B/serialNumber=5DBEF02C283CE08D6DCE89F3912A0C30A70190C8 Certificate serial: 15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xb7wLCg84I1tzonzkSoMMKcBkMg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E8B/04DE2B92BE2211F0B38DB519C4F9AE02/Xb7wLCg84I1tzonzkSoMMKcBkMg.mft Manifest number: 15 Signing time: Fri 19 Dec 2025 06:47:38 +0000 Manifest this update: Fri 19 Dec 2025 06:47:38 +0000 Manifest next update: Fri 26 Dec 2025 06:47:38 +0000 Files and hashes: 1: Xb7wLCg84I1tzonzkSoMMKcBkMg.crl (hash: 9Pj1EJRZzXPJwn6jm4HojNjNFYhuVUZZQ6s87rRcgA8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E8B/04DE2B92BE2211F0B38DB519C4F9AE02/Xb7wLCg84I1tzonzkSoMMKcBkMg.crl rsync://rpki.apnic.net/member_repository/A91E3E8B/04DE2B92BE2211F0B38DB519C4F9AE02/Xb7wLCg84I1tzonzkSoMMKcBkMg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xb7wLCg84I1tzonzkSoMMKcBkMg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 06:47:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E8B, serialNumber=5DBEF02C283CE08D6DCE89F3912A0C30A70190C8 Validity Not Before: Dec 19 06:47:38 2025 GMT Not After : Dec 26 06:47:38 2025 GMT Subject: CN=6944f50a-707e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:99:99:88:99:d5:74:5d:f2:53:bf:b8:40:f8: c8:84:fc:b1:46:72:15:92:2a:a4:76:9d:03:12:ac: d6:37:df:d4:95:86:56:aa:32:6c:bb:ef:49:15:f3: 33:49:36:d2:32:e3:1d:db:f8:23:8b:60:08:a0:41: 37:fc:32:5f:18:d7:34:c2:b2:4a:38:13:2d:25:fc: cf:01:5a:56:cf:e8:27:a1:ef:71:5b:fa:4c:90:33: 43:e2:a6:31:f3:c2:bd:55:12:09:de:05:9c:a3:7d: 17:9b:78:6c:4c:a2:ec:d3:8a:c5:94:81:58:cf:47: 0f:df:74:cc:0a:af:f0:ec:c4:87:85:72:e5:4a:88: 7a:fb:ee:9d:a7:76:e5:ed:63:f7:be:1f:84:38:cd: fd:fe:ae:5b:a1:f9:3c:e2:33:69:ff:a7:69:91:1e: af:bf:08:74:66:a2:06:9e:7d:87:92:8a:d8:1a:fc: 3f:b0:94:07:a7:1f:4f:f3:2a:77:ed:40:bd:19:08: 38:34:db:87:3c:7f:ed:20:77:93:e2:ad:5d:f8:ea: fd:ca:1e:d0:19:31:94:41:09:dc:f6:01:f0:5c:52: 11:53:6c:a7:11:24:9e:2f:58:68:26:88:b2:66:a5: ea:46:85:9d:40:f0:d4:da:46:88:b7:98:13:61:98: ea:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:32:55:B7:AA:F2:E1:4B:F3:97:91:BD:5A:B1:0A:7B:CB:EC:AC:07 X509v3 Authority Key Identifier: keyid:5D:BE:F0:2C:28:3C:E0:8D:6D:CE:89:F3:91:2A:0C:30:A7:01:90:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E8B/04DE2B92BE2211F0B38DB519C4F9AE02/Xb7wLCg84I1tzonzkSoMMKcBkMg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xb7wLCg84I1tzonzkSoMMKcBkMg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E8B/04DE2B92BE2211F0B38DB519C4F9AE02/Xb7wLCg84I1tzonzkSoMMKcBkMg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:c7:a3:88:3d:0e:02:76:1e:51:d7:e1:d4:0c:8d:97:25:41: 2c:2e:26:67:b2:d0:c0:f5:9d:a1:dc:97:62:f4:80:1c:78:97: 41:a0:82:98:c3:f8:35:12:e0:9b:05:db:22:ec:c9:79:e6:8e: 4c:9e:ef:9a:90:ec:1c:ca:b6:83:69:7a:85:33:79:b6:23:65: 03:23:c8:df:8c:ba:56:c0:a7:f4:8c:8b:d2:ca:bc:28:28:73: 42:d6:62:d3:72:76:b6:a8:32:36:3e:3a:e5:67:74:ae:51:06: 63:e3:44:c9:c4:fc:24:7f:a9:db:c8:6c:c3:da:1b:de:a6:c8: 0b:fa:d9:b0:da:2e:24:fc:f3:a0:21:86:7c:a2:bf:05:2b:ee: 54:dc:f4:fc:54:d9:7a:21:ad:b6:29:63:e8:eb:2a:62:6e:72: 70:b5:aa:1e:ed:1e:52:57:ad:c8:4e:c4:99:c5:3c:9f:64:86: 08:1d:ed:99:e3:f4:57:a0:6d:5e:de:e3:fd:30:de:fa:02:98: 24:69:74:0c:b7:07:76:9b:50:e9:e0:e9:3a:a0:2d:38:42:de: f6:a6:18:3a:f7:05:93:ba:ba:a1:f0:da:1a:55:04:fd:c4:90: 61:66:f2:da:7a:56:cd:69:ad:cf:13:55:76:e7:c4:58:21:c4: f0:72:49:48 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF M0U4QjExMC8GA1UEBRMoNURCRUYwMkMyODNDRTA4RDZEQ0U4OUYzOTEyQTBDMzBB NzAxOTBDODAeFw0yNTEyMTkwNjQ3MzhaFw0yNTEyMjYwNjQ3MzhaMBgxFjAUBgNV BAMMDTY5NDRmNTBhLTcwN2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcmZmImdV0XfJTv7hA+MiE/LFGchWSKqR2nQMSrNY339SVhlaqMmy770kV8zNJ NtIy4x3b+COLYAigQTf8Ml8Y1zTCsko4Ey0l/M8BWlbP6Ceh73Fb+kyQM0PipjHz wr1VEgneBZyjfRebeGxMouzTisWUgVjPRw/fdMwKr/DsxIeFcuVKiHr77p2nduXt Y/e+H4Q4zf3+rluh+TziM2n/p2mRHq+/CHRmogaefYeSitga/D+wlAenH0/zKnft QL0ZCDg024c8f+0gd5PirV346v3KHtAZMZRBCdz2AfBcUhFTbKcRJJ4vWGgmiLJm pepGhZ1A8NTaRoi3mBNhmOpjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmDJVt6ry 4Uvzl5G9WrEKe8vsrAcwHwYDVR0jBBgwFoAUXb7wLCg84I1tzonzkSoMMKcBkMgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzRThCLzA0REUyQjkyQkUy MjExRjBCMzhEQjUxOUM0RjlBRTAyL1hiN3dMQ2c4NEkxdHpvbnprU29NTUtjQmtN Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWGI3d0xDZzg0STF0em9uemtTb01NS2NCa01nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUz RThCLzA0REUyQjkyQkUyMjExRjBCMzhEQjUxOUM0RjlBRTAyL1hiN3dMQ2c4NEkx dHpvbnprU29NTUtjQmtNZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE/Ho4g9DgJ2HlHX4dQMjZclQSwuJmey0MD1naHcl2L0gBx4l0GggpjD +DUS4JsF2yLsyXnmjkye75qQ7BzKtoNpeoUzebYjZQMjyN+MulbAp/SMi9LKvCgo c0LWYtNydraoMjY+OuVndK5RBmPjRMnE/CR/qdvIbMPaG96myAv62bDaLiT886Ah hnyivwUr7lTc9PxU2XohrbYpY+jrKmJucnC1qh7tHlJXrchOxJnFPJ9khggd7Znj 9FegbV7e4/0w3voCmCRpdAy3B3abUOng6TqgLThC3vamGDr3BZO6uqHw2hpVBP3E kGFm8tp6Vs1prc8TVXbnxFghxPBySUg= -----END CERTIFICATE-----Generated at Fri Dec 19 17:42:12 2025 by rpki-client