This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft File: XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft (raw, json) Hash identifier: 20eKpJYPlCbx7iBsw/y33ZUHL0t9Lj6Pb1Eq1PqMJoM= Subject key identifier: 78:27:23:C7:A0:9D:45:05:8B:7F:B4:DD:13:1C:41:37:47:61:51:31 Authority key identifier: 5D:CA:45:28:B9:E4:0C:88:E4:67:A4:3F:DC:12:B7:8F:2B:35:45:E3 Certificate issuer: /CN=A91E4BD2/serialNumber=5DCA4528B9E40C88E467A43FDC12B78F2B3545E3 Certificate serial: 0968 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft Manifest number: 0961 Signing time: Sun 28 Dec 2025 19:31:50 +0000 Manifest this update: Sun 28 Dec 2025 19:31:50 +0000 Manifest next update: Sun 04 Jan 2026 19:31:50 +0000 Files and hashes: 1: XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl (hash: 8Kw6YyjyOo2g+ke0z6XnnC1eMCa90ygIHHPnz5Gps+4=) 2: A862F866AA3111EA9E08C324C4F9AE02.roa (hash: OW41bUAPIGMrqZxgUYQ1U1pF1P2hht2Fk6aRcB2b9ic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 19:31:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2408 (0x968) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4BD2, serialNumber=5DCA4528B9E40C88E467A43FDC12B78F2B3545E3 Validity Not Before: Dec 28 19:31:50 2025 GMT Not After : Jan 4 19:31:50 2026 GMT Subject: CN=695185a6-8915 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:8d:62:b5:12:a8:c2:8e:b3:2c:b0:3f:a1:fc: 34:23:27:b1:9d:30:90:8e:a6:a3:35:dd:09:6e:51: 58:3b:3d:b0:d5:ad:6a:0f:20:cd:bf:00:93:91:87: 69:49:a0:47:aa:4e:91:4c:5f:a2:ed:e7:b5:67:93: 7a:1f:03:0d:5d:2f:7c:4b:a2:0c:6a:fb:ee:96:ff: 84:87:33:32:84:bf:a4:bd:43:0d:e6:0f:12:69:81: 3d:9c:fc:fa:63:2a:34:cc:66:29:6f:be:1b:a0:4b: b8:2c:f2:fa:35:ac:c3:13:aa:ed:74:fb:64:3c:aa: 61:55:fe:df:1d:27:21:89:3f:9d:c8:4a:db:c0:ab: 76:b7:90:b4:85:25:e5:65:b5:86:84:27:12:ff:f1: 4c:60:77:46:50:57:87:9e:04:5c:47:e2:7e:02:bd: 09:de:e2:82:cd:5b:6f:e3:68:ab:1d:8f:5f:60:e7: 0a:95:1c:e8:9d:02:34:61:62:84:fa:7e:b2:f6:7d: 58:58:73:fe:8f:2c:d1:71:87:5b:cf:56:29:77:02: 85:50:3b:d2:53:72:bf:5e:c0:be:64:d2:e6:e7:f5: 90:d1:38:1c:c1:10:26:16:17:98:82:f3:d9:b2:bf: a8:d7:d5:87:0b:52:78:87:da:2e:20:24:74:1f:c6: 83:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:27:23:C7:A0:9D:45:05:8B:7F:B4:DD:13:1C:41:37:47:61:51:31 X509v3 Authority Key Identifier: keyid:5D:CA:45:28:B9:E4:0C:88:E4:67:A4:3F:DC:12:B7:8F:2B:35:45:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:1e:24:5b:8a:34:b2:37:cc:30:a0:2b:bd:3c:95:38:08:2d: a0:69:6f:86:92:9f:c3:a2:1f:d5:81:2f:31:e8:87:17:5a:e5: 6e:a1:ef:82:6d:0e:b8:63:da:d6:c6:45:41:7a:1e:6d:b6:0c: 3a:f9:ac:95:04:40:1a:5a:e6:1b:7b:f5:91:c7:8c:1c:2a:2f: e8:8d:df:6b:63:d8:96:ee:11:86:16:dc:5a:d8:70:d7:af:f4: 10:ed:27:f1:73:71:7b:d4:29:45:c7:73:a5:e6:95:c2:fa:45: 7d:af:19:a7:69:5a:78:14:d3:84:79:3c:df:a4:46:b7:e6:8e: e4:e4:a2:80:fc:d9:75:ce:63:62:3f:93:aa:e0:2c:5f:3b:18: 67:39:93:7a:91:89:cc:15:31:c5:8f:05:12:06:76:54:b6:8c: ce:d5:82:5f:46:1a:16:dc:91:45:98:c0:7e:7e:a2:04:e6:1f: 61:b6:d0:73:0b:88:f3:80:de:b3:46:4e:24:73:e9:6a:c4:78: 67:79:01:18:c1:74:2b:ec:7a:25:d9:9b:ef:8a:e6:dd:1f:c3: 6f:54:24:22:70:15:cc:9c:98:9e:cd:fd:26:19:ff:28:7f:98: 45:39:49:ce:9d:f4:f9:4c:50:d9:90:bb:06:74:6b:9d:3f:e3: 81:c1:bf:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRCRDIxMTAvBgNVBAUTKDVEQ0E0NTI4QjlFNDBDODhFNDY3QTQzRkRDMTJCNzhG MkIzNTQ1RTMwHhcNMjUxMjI4MTkzMTUwWhcNMjYwMTA0MTkzMTUwWjAYMRYwFAYD VQQDDA02OTUxODVhNi04OTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA341itRKowo6zLLA/ofw0IyexnTCQjqajNd0JblFYOz2w1a1qDyDNvwCTkYdp SaBHqk6RTF+i7ee1Z5N6HwMNXS98S6IMavvulv+EhzMyhL+kvUMN5g8SaYE9nPz6 Yyo0zGYpb74boEu4LPL6NazDE6rtdPtkPKphVf7fHSchiT+dyErbwKt2t5C0hSXl ZbWGhCcS//FMYHdGUFeHngRcR+J+Ar0J3uKCzVtv42irHY9fYOcKlRzonQI0YWKE +n6y9n1YWHP+jyzRcYdbz1YpdwKFUDvSU3K/XsC+ZNLm5/WQ0TgcwRAmFheYgvPZ sr+o19WHC1J4h9ouICR0H8aDtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHgnI8eg nUUFi3+03RMcQTdHYVExMB8GA1UdIwQYMBaAFF3KRSi55AyI5GekP9wSt48rNUXj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEJEMi9GNDBCMTE2QUFB MkYxMUVBOUMyOTU5MUVDNEY5QUUwMi9YY3BGS0xua0RJamtaNlFfM0JLM2p5czFS ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjcEZLTG5rRElqa1o2UV8zQkszanlzMVJlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEJEMi9GNDBCMTE2QUFBMkYxMUVBOUMyOTU5MUVDNEY5QUUwMi9YY3BGS0xua0RJ amtaNlFfM0JLM2p5czFSZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlHiRbijSyN8wwoCu9PJU4CC2gaW+Gkp/Doh/VgS8x6IcXWuVuoe+C bQ64Y9rWxkVBeh5ttgw6+ayVBEAaWuYbe/WRx4wcKi/ojd9rY9iW7hGGFtxa2HDX r/QQ7Sfxc3F71ClFx3Ol5pXC+kV9rxmnaVp4FNOEeTzfpEa35o7k5KKA/Nl1zmNi P5Oq4CxfOxhnOZN6kYnMFTHFjwUSBnZUtozO1YJfRhoW3JFFmMB+fqIE5h9httBz C4jzgN6zRk4kc+lqxHhneQEYwXQr7Hol2ZvviubdH8NvVCQicBXMnJiezf0mGf8o f5hFOUnOnfT5TFDZkLsGdGudP+OBwb9p -----END CERTIFICATE-----Generated at Mon Dec 29 14:58:13 2025 by rpki-client