This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft File: XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft (raw, json) Hash identifier: DdJkPqM8hjLziqhduzZr3aEvjBG+TLmv7aDbAzNRmek= Subject key identifier: D0:A3:DC:7F:CD:EA:55:FC:3D:E1:25:27:B0:93:D6:D6:4E:49:AB:14 Authority key identifier: 5E:78:64:2B:03:CC:37:E2:6F:D4:15:E7:D7:61:BE:48:47:36:C5:66 Certificate issuer: /CN=A91E7B89/serialNumber=5E78642B03CC37E26FD415E7D761BE484736C566 Certificate serial: 04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnhkKwPMN-Jv1BXn12G-SEc2xWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft Manifest number: 03 Signing time: Fri 19 Dec 2025 07:02:09 +0000 Manifest this update: Fri 19 Dec 2025 07:02:09 +0000 Manifest next update: Fri 26 Dec 2025 07:02:09 +0000 Files and hashes: 1: XnhkKwPMN-Jv1BXn12G-SEc2xWY.crl (hash: Rt9PuuQ8QzsHua1scJrzCpy/nCuoUpy7ExklwPtfADw=) 2: 72480DC0D9A111F0989DD75268D3641D.roa (hash: nxYL3Wuobzg2i8iYKqWQVhQYvBYI0L/O9fatJEnTKyc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.crl rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnhkKwPMN-Jv1BXn12G-SEc2xWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 07:02:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7B89, serialNumber=5E78642B03CC37E26FD415E7D761BE484736C566 Validity Not Before: Dec 19 07:02:09 2025 GMT Not After : Dec 26 07:02:09 2025 GMT Subject: CN=6944f871-5f10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d5:8e:76:48:f1:57:3f:e4:a6:65:da:93:e0: 5e:5d:30:71:cd:25:0c:8f:ed:75:00:ef:9d:d9:c4: 65:7c:69:fc:25:5d:5d:64:32:f9:8b:07:a3:e3:9a: 73:f0:ce:ae:de:48:e1:7f:95:91:eb:f0:db:05:59: ce:bc:35:c0:83:92:81:51:de:f1:9b:10:e4:b5:42: 40:18:3b:70:13:b6:a9:40:e9:20:a7:f9:b8:ec:a7: 96:34:04:cd:bf:4a:74:75:55:34:cf:34:de:44:8b: c0:16:06:49:3f:b0:1a:34:68:8e:fe:74:b9:40:5f: 61:4a:2d:5e:41:e2:45:2a:f8:58:22:8c:e0:af:c7: 07:e5:b1:5f:7c:80:23:57:e4:2c:a5:70:6f:d0:2c: 1e:88:63:39:b5:fb:6d:ff:f8:83:94:b1:d4:e8:bf: d2:14:a6:02:44:13:9c:5e:81:51:73:7d:62:62:ce: c8:40:6e:3b:25:f4:28:45:cd:b7:37:81:3a:2d:a2: ed:b8:e4:ff:87:f4:6d:59:12:c4:c4:5b:bf:47:a5: 75:d7:6c:60:ca:11:a2:64:c3:69:c7:60:84:48:38: 3e:c1:f6:79:db:c2:e5:3e:11:e6:49:4e:ff:91:ab: af:8b:84:00:53:d4:58:65:1f:2d:7f:ae:5a:e2:fd: c2:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:A3:DC:7F:CD:EA:55:FC:3D:E1:25:27:B0:93:D6:D6:4E:49:AB:14 X509v3 Authority Key Identifier: keyid:5E:78:64:2B:03:CC:37:E2:6F:D4:15:E7:D7:61:BE:48:47:36:C5:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnhkKwPMN-Jv1BXn12G-SEc2xWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:43:ae:20:fd:d7:3a:fb:51:01:1b:6d:ca:df:94:b6:c2:95: 09:20:60:1c:90:2e:93:4c:3f:52:f4:62:1f:54:2c:79:df:94: 3d:d1:0e:c7:78:e6:91:88:da:ad:e4:f4:7b:4c:08:f6:f1:f9: 98:22:90:8b:95:b0:ee:b8:f6:62:6b:79:03:1b:05:15:d6:a2: 40:17:f6:25:a3:bb:64:c5:0e:b3:37:85:b7:04:84:3c:2b:37: 4e:cf:a4:a8:d2:e4:5a:fc:6b:f2:3c:f9:4a:bc:ad:63:0d:06: 49:2e:6d:79:d0:1b:49:5a:68:85:09:9d:bd:8c:ea:44:78:40: 3d:16:17:e9:43:87:6c:5d:1a:cd:46:f0:83:45:40:f7:52:2a: 2e:11:bd:7f:5f:62:81:3b:3b:ab:59:27:bd:ec:11:96:6c:34: 14:53:e6:de:98:f6:e2:ed:0b:01:f4:4a:d7:01:b3:9d:f7:08: 5f:a7:25:42:fb:d7:8a:1a:f4:31:a9:f6:aa:2d:80:f3:65:26: 4b:ec:df:8c:68:3f:00:64:23:84:c7:ea:76:71:82:d8:ad:03: b7:3d:ce:08:57:cd:ef:d5:6b:aa:68:58:93:1b:56:89:eb:90: 5b:e6:c9:9f:3a:f8:30:19:40:19:8d:e9:e0:4a:47:50:9e:be: 05:4d:d9:89 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF N0I4OTExMC8GA1UEBRMoNUU3ODY0MkIwM0NDMzdFMjZGRDQxNUU3RDc2MUJFNDg0 NzM2QzU2NjAeFw0yNTEyMTkwNzAyMDlaFw0yNTEyMjYwNzAyMDlaMBgxFjAUBgNV BAMMDTY5NDRmODcxLTVmMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDW1Y52SPFXP+SmZdqT4F5dMHHNJQyP7XUA753ZxGV8afwlXV1kMvmLB6PjmnPw zq7eSOF/lZHr8NsFWc68NcCDkoFR3vGbEOS1QkAYO3ATtqlA6SCn+bjsp5Y0BM2/ SnR1VTTPNN5Ei8AWBkk/sBo0aI7+dLlAX2FKLV5B4kUq+FgijOCvxwflsV98gCNX 5CylcG/QLB6IYzm1+23/+IOUsdTov9IUpgJEE5xegVFzfWJizshAbjsl9ChFzbc3 gTotou245P+H9G1ZEsTEW79HpXXXbGDKEaJkw2nHYIRIOD7B9nnbwuU+EeZJTv+R q6+LhABT1FhlHy1/rlri/cI7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0KPcf83q Vfw94SUnsJPW1k5JqxQwHwYDVR0jBBgwFoAUXnhkKwPMN+Jv1BXn12G+SEc2xWYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU3Qjg5LzQxQkU0RjQ0RDlB MDExRjA5MzEzMEUwNzY4RDM2NDFEL1huaGtLd1BNTi1KdjFCWG4xMkctU0VjMnhX WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWG5oa0t3UE1OLUp2MUJYbjEyRy1TRWMyeFdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU3 Qjg5LzQxQkU0RjQ0RDlBMDExRjA5MzEzMEUwNzY4RDM2NDFEL1huaGtLd1BNTi1K djFCWG4xMkctU0VjMnhXWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGRDriD91zr7UQEbbcrflLbClQkgYByQLpNMP1L0Yh9ULHnflD3RDsd4 5pGI2q3k9HtMCPbx+ZgikIuVsO649mJreQMbBRXWokAX9iWju2TFDrM3hbcEhDwr N07PpKjS5Fr8a/I8+Uq8rWMNBkkubXnQG0laaIUJnb2M6kR4QD0WF+lDh2xdGs1G 8INFQPdSKi4RvX9fYoE7O6tZJ73sEZZsNBRT5t6Y9uLtCwH0StcBs533CF+nJUL7 14oa9DGp9qotgPNlJkvs34xoPwBkI4TH6nZxgtitA7c9zghXze/Va6poWJMbVonr kFvmyZ86+DAZQBmN6eBKR1CevgVN2Yk= -----END CERTIFICATE-----Generated at Fri Dec 19 18:43:54 2025 by rpki-client