This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft File: XDlbosoKv2WIhyaHTHgktpt4mZU.mft (raw, json) Hash identifier: 3eTpePUIKd4+1NvTj9we8DVRW4Jvs6O5LMrGiS4+kdA= Subject key identifier: 23:26:62:C8:5A:EB:2D:47:21:35:B7:9A:C8:F6:44:C9:A2:82:F3:26 Authority key identifier: 5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 Certificate issuer: /CN=A91E66E5/serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Certificate serial: 0EAE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft Manifest number: 0EA1 Signing time: Thu 18 Dec 2025 17:30:02 +0000 Manifest this update: Thu 18 Dec 2025 17:30:01 +0000 Manifest next update: Thu 25 Dec 2025 17:30:01 +0000 Files and hashes: 1: XDlbosoKv2WIhyaHTHgktpt4mZU.crl (hash: CnSpCoBgNftm+jlWsAOp0VcNHZNeMdutPtONZWNjJEs=) 2: AECDA1B0448F11EDACC30815C4F9AE02.roa (hash: xirIMjuaHIPZj6jpdJVKaFKfHlsVW3gI4qvEhU2Je88=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3758 (0xeae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E66E5, serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Validity Not Before: Dec 18 17:30:01 2025 GMT Not After : Dec 25 17:30:01 2025 GMT Subject: CN=69443a1a-b9b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f6:91:20:a9:7a:5e:ac:2a:8d:5f:3d:56:a5: ef:32:9b:55:91:48:bf:23:52:5d:dc:d2:20:b4:f7: 01:29:72:b5:1e:09:66:d2:5e:5c:ee:61:c9:f9:d3: 6c:9c:f0:e3:93:a5:57:e9:62:d3:01:c9:4a:5f:a7: 42:16:02:8b:29:d5:ab:f7:aa:d9:c0:77:a9:97:80: 88:d1:d9:8a:d3:36:eb:1b:00:dc:f3:85:c6:c9:7e: b2:d5:da:91:52:fd:2f:a8:ac:99:66:04:34:d9:c5: f4:db:54:56:d4:36:bc:68:8e:57:7a:c2:15:81:a5: 1f:4d:29:54:4a:90:13:52:cb:b4:c1:5f:3a:6a:fd: 60:a8:94:91:7f:21:69:76:44:ef:8d:54:4d:e5:d0: 71:57:8a:07:f5:96:2f:81:4d:a4:9b:20:c6:25:e3: be:e0:b0:27:78:68:eb:bc:1d:75:c3:fa:aa:1b:e6: cf:ba:1b:f6:5a:5e:6d:e9:d4:1a:e8:95:79:53:1c: 0c:17:cc:48:2c:73:b7:ba:29:10:a3:90:e1:d4:40: f9:17:6a:bf:61:b4:48:9f:7e:a4:87:a7:3b:61:4a: be:62:d3:55:d0:45:f1:d8:8e:a0:1b:1f:71:ca:21: 84:a3:bd:77:fe:55:c2:9d:d2:a7:3c:c5:c7:5b:42: a5:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:26:62:C8:5A:EB:2D:47:21:35:B7:9A:C8:F6:44:C9:A2:82:F3:26 X509v3 Authority Key Identifier: keyid:5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:73:a6:5d:fe:90:1a:9f:f3:3a:25:40:57:f0:f1:7a:4f:ee: b0:82:17:60:d5:8c:bc:89:11:08:f5:27:d0:1e:22:23:8e:e5: a4:b5:b1:86:b4:7b:27:80:3b:bb:05:f1:72:46:4e:68:9d:d7: fd:94:97:ad:aa:9f:f2:6c:ee:65:f9:fa:78:bc:58:59:d0:ef: 71:ec:55:83:b9:5c:a2:8f:1e:08:6f:a6:f1:a6:fd:ea:b5:c8: 47:ef:51:08:37:4f:53:70:3e:6a:b6:00:b0:01:93:f1:e0:f2: cc:d0:be:c4:58:76:62:47:15:3c:0c:b3:f8:10:a8:63:0c:e7: d3:82:bd:ab:e2:4b:8a:f8:4b:49:4d:c8:90:e7:56:00:f0:9d: f3:61:2e:2d:e5:65:6e:75:48:b8:2a:d9:09:39:e6:5e:92:9d: dd:d9:26:f9:c8:95:c1:e9:fb:f2:52:08:2f:68:48:80:85:36: 06:4c:c8:a9:21:eb:e7:cd:e4:99:e7:c3:a2:2a:a7:d8:e6:80: 66:73:46:9d:29:ef:d5:a3:45:f3:66:49:d1:4c:ed:5a:97:21: 45:30:da:ee:ae:37:d3:8a:23:b0:55:79:86:3c:68:48:89:1d: cc:d2:e6:5a:c8:ef:7f:2b:a0:0e:e6:2e:08:5a:56:43:48:8b: 35:31:d4:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY2RTUxMTAvBgNVBAUTKDVDMzk1QkEyQ0EwQUJGNjU4ODg3MjY4NzRDNzgyNEI2 OUI3ODk5OTUwHhcNMjUxMjE4MTczMDAxWhcNMjUxMjI1MTczMDAxWjAYMRYwFAYD VQQDDA02OTQ0M2ExYS1iOWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2faRIKl6XqwqjV89VqXvMptVkUi/I1Jd3NIgtPcBKXK1Hglm0l5c7mHJ+dNs nPDjk6VX6WLTAclKX6dCFgKLKdWr96rZwHepl4CI0dmK0zbrGwDc84XGyX6y1dqR Uv0vqKyZZgQ02cX021RW1Da8aI5XesIVgaUfTSlUSpATUsu0wV86av1gqJSRfyFp dkTvjVRN5dBxV4oH9ZYvgU2kmyDGJeO+4LAneGjrvB11w/qqG+bPuhv2Wl5t6dQa 6JV5UxwMF8xILHO3uikQo5Dh1ED5F2q/YbRIn36kh6c7YUq+YtNV0EXx2I6gGx9x yiGEo713/lXCndKnPMXHW0KlhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCMmYsha 6y1HITW3msj2RMmigvMmMB8GA1UdIwQYMBaAFFw5W6LKCr9liIcmh0x4JLabeJmV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjZFNS81NjQzMDU4NkEy NzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3YyV0loeWFIVEhna3RwdDRt WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEbGJvc29LdjJXSWh5YUhUSGdrdHB0NG1aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjZFNS81NjQzMDU4NkEyNzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3Yy V0loeWFIVEhna3RwdDRtWlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDTc6Zd/pAan/M6JUBX8PF6T+6wghdg1Yy8iREI9SfQHiIjjuWktbGG tHsngDu7BfFyRk5ondf9lJetqp/ybO5l+fp4vFhZ0O9x7FWDuVyijx4Ib6bxpv3q tchH71EIN09TcD5qtgCwAZPx4PLM0L7EWHZiRxU8DLP4EKhjDOfTgr2r4kuK+EtJ TciQ51YA8J3zYS4t5WVudUi4KtkJOeZekp3d2Sb5yJXB6fvyUggvaEiAhTYGTMip IevnzeSZ58OiKqfY5oBmc0adKe/Vo0XzZknRTO1alyFFMNrurjfTiiOwVXmGPGhI iR3M0uZayO9/K6AO5i4IWlZDSIs1MdRs -----END CERTIFICATE-----Generated at Fri Dec 19 23:55:07 2025 by rpki-client