This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft File: XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft (raw, json) Hash identifier: nyi7juf0aMyXmvc1q6kGZYNZooBd7VpiG+f6rpw+8JE= Subject key identifier: 5F:E6:02:A5:90:B9:4E:E7:29:D8:C6:6D:06:AC:D9:81:69:38:19:8E Authority key identifier: 5D:CA:45:28:B9:E4:0C:88:E4:67:A4:3F:DC:12:B7:8F:2B:35:45:E3 Certificate issuer: /CN=A91E4BD2/serialNumber=5DCA4528B9E40C88E467A43FDC12B78F2B3545E3 Certificate serial: 0965 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft Manifest number: 095E Signing time: Mon 22 Dec 2025 19:30:37 +0000 Manifest this update: Mon 22 Dec 2025 19:30:37 +0000 Manifest next update: Mon 29 Dec 2025 19:30:37 +0000 Files and hashes: 1: XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl (hash: O67m6nX0LzZWaNNREvqPo9+FbsLDyt/dkFLF62XM59g=) 2: A862F866AA3111EA9E08C324C4F9AE02.roa (hash: OW41bUAPIGMrqZxgUYQ1U1pF1P2hht2Fk6aRcB2b9ic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:30:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2405 (0x965) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4BD2, serialNumber=5DCA4528B9E40C88E467A43FDC12B78F2B3545E3 Validity Not Before: Dec 22 19:30:37 2025 GMT Not After : Dec 29 19:30:37 2025 GMT Subject: CN=69499c5d-8700 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:13:bd:fc:10:e4:fe:30:ba:a9:f4:b2:5c:c8: 94:ea:00:d2:0f:f5:2f:82:2c:1a:c8:3b:e1:d7:91: 75:74:b6:96:90:c5:fc:41:cc:73:ae:09:dd:0f:45: c7:2d:ad:87:4a:eb:3e:f2:e2:db:3e:f6:46:95:1d: b3:40:1f:e2:11:ec:07:76:aa:c1:c4:3a:c1:be:62: 19:92:55:2d:b0:8e:fc:19:22:69:02:75:07:ab:ce: 57:a8:c1:bf:18:44:53:89:da:45:73:a9:ff:95:d1: 5a:9f:6f:f6:59:15:d4:f6:50:59:20:40:b6:01:c5: 55:49:a0:72:e6:68:a8:8b:39:91:da:0b:a9:8b:eb: bc:32:89:d1:30:fc:0f:b0:65:24:f9:9a:a8:86:76: ac:bd:b6:53:4b:05:a3:69:c3:cd:c5:a6:66:e2:e2: 63:1e:2c:1a:a2:1e:54:65:3c:41:ec:34:ac:9a:d8: b1:73:6e:1f:93:7e:5f:b7:1c:6f:fc:f6:52:12:67: 7e:90:23:1e:c8:a3:73:55:78:d0:70:15:f2:85:69: b3:09:02:56:c2:c7:00:a2:f6:e6:45:77:6c:bb:cd: cd:98:11:44:4f:28:8d:a4:87:93:16:b3:50:fa:de: fb:d3:bc:59:c8:96:e7:ba:a5:e4:29:40:54:1e:26: ac:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:E6:02:A5:90:B9:4E:E7:29:D8:C6:6D:06:AC:D9:81:69:38:19:8E X509v3 Authority Key Identifier: keyid:5D:CA:45:28:B9:E4:0C:88:E4:67:A4:3F:DC:12:B7:8F:2B:35:45:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:3b:1d:38:1f:78:27:7f:71:a4:e2:f6:30:9c:75:2d:7c:a1: cf:d9:f7:3a:37:a8:7e:aa:09:8e:32:22:08:56:d7:54:ff:8e: ac:b6:27:9c:37:00:a4:88:98:dc:de:e2:86:ad:ce:09:78:d3: 6a:0b:a8:a1:d8:cd:4b:6e:d9:46:cb:e6:98:c2:bb:be:26:f5: 79:79:26:11:fa:c6:c7:ac:4a:0c:cb:72:58:30:7f:bc:59:b3: 4d:33:62:7d:26:49:5f:8c:6b:c4:01:48:b1:fb:b7:f3:ec:85: e9:48:d7:c3:a6:d8:3f:c7:a5:4e:48:b3:c7:5b:df:97:b1:f0: 98:58:88:19:d5:9a:f8:5c:e3:70:50:24:eb:5e:ef:cb:f1:8f: bb:33:b8:8a:42:fd:6e:33:a1:62:71:df:31:5d:99:be:92:32: c9:0a:c6:9d:84:c9:2d:af:be:aa:64:b8:f5:dd:7a:76:47:53: e0:23:36:d5:17:e8:f3:fc:6d:f5:0e:7f:fb:85:c9:b0:06:19: 9f:9f:77:dc:b9:6a:db:54:88:02:dd:03:c5:a3:fd:53:98:e6: eb:81:86:42:56:85:f2:f5:1e:d5:44:9f:78:d5:80:bb:6f:a4: 16:d4:3f:52:d9:75:f9:57:ec:fb:7a:8b:97:5f:2a:d3:a2:ff: 3d:c0:78:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRCRDIxMTAvBgNVBAUTKDVEQ0E0NTI4QjlFNDBDODhFNDY3QTQzRkRDMTJCNzhG MkIzNTQ1RTMwHhcNMjUxMjIyMTkzMDM3WhcNMjUxMjI5MTkzMDM3WjAYMRYwFAYD VQQDDA02OTQ5OWM1ZC04NzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1RO9/BDk/jC6qfSyXMiU6gDSD/UvgiwayDvh15F1dLaWkMX8QcxzrgndD0XH La2HSus+8uLbPvZGlR2zQB/iEewHdqrBxDrBvmIZklUtsI78GSJpAnUHq85XqMG/ GERTidpFc6n/ldFan2/2WRXU9lBZIEC2AcVVSaBy5mioizmR2gupi+u8MonRMPwP sGUk+ZqohnasvbZTSwWjacPNxaZm4uJjHiwaoh5UZTxB7DSsmtixc24fk35ftxxv /PZSEmd+kCMeyKNzVXjQcBXyhWmzCQJWwscAovbmRXdsu83NmBFETyiNpIeTFrNQ +t7707xZyJbnuqXkKUBUHiasGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF/mAqWQ uU7nKdjGbQas2YFpOBmOMB8GA1UdIwQYMBaAFF3KRSi55AyI5GekP9wSt48rNUXj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEJEMi9GNDBCMTE2QUFB MkYxMUVBOUMyOTU5MUVDNEY5QUUwMi9YY3BGS0xua0RJamtaNlFfM0JLM2p5czFS ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjcEZLTG5rRElqa1o2UV8zQkszanlzMVJlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEJEMi9GNDBCMTE2QUFBMkYxMUVBOUMyOTU5MUVDNEY5QUUwMi9YY3BGS0xua0RJ amtaNlFfM0JLM2p5czFSZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEOx04H3gnf3Gk4vYwnHUtfKHP2fc6N6h+qgmOMiIIVtdU/46stiec NwCkiJjc3uKGrc4JeNNqC6ih2M1LbtlGy+aYwru+JvV5eSYR+sbHrEoMy3JYMH+8 WbNNM2J9JklfjGvEAUix+7fz7IXpSNfDptg/x6VOSLPHW9+XsfCYWIgZ1Zr4XONw UCTrXu/L8Y+7M7iKQv1uM6Ficd8xXZm+kjLJCsadhMktr76qZLj13Xp2R1PgIzbV F+jz/G31Dn/7hcmwBhmfn3fcuWrbVIgC3QPFo/1TmObrgYZCVoXy9R7VRJ941YC7 b6QW1D9S2XX5V+z7eouXXyrTov89wHh5 -----END CERTIFICATE-----Generated at Wed Dec 24 13:37:19 2025 by rpki-client