This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft File: CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft (raw, json) Hash identifier: kDHBv4GGQ6AOX/dAVvGOquQnhF6Kpa5JVwdXwAfpCsk= Subject key identifier: F8:46:91:18:5E:AA:5B:C4:F0:D3:A4:7B:75:F8:F3:CE:56:88:77:31 Authority key identifier: 09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E Certificate issuer: /CN=A91E9D1A/serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Certificate serial: 3530 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft Manifest number: 3510 Signing time: Sat 20 Dec 2025 14:19:11 +0000 Manifest this update: Sat 20 Dec 2025 14:19:10 +0000 Manifest next update: Sat 27 Dec 2025 14:19:10 +0000 Files and hashes: 1: CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl (hash: rTcsTkQs/vf7X+1EarqsOun2WQ+JLQ9+n5Tg0RRs14c=) 2: E404430CB0F811E595E0F761C4F9AE02.roa (hash: aPLpTjVx3H8dG+sQrN1VcBaFu+dKTfAESi5mspAt7yo=) 3: 81C9B5A4BBFA11ED99272016C4F9AE02.roa (hash: 5TYvs++Mvewysf2Y0/6vpFA2+467A8J4q0CP6JqLCQs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:19:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13616 (0x3530) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9D1A, serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Validity Not Before: Dec 20 14:19:10 2025 GMT Not After : Dec 27 14:19:10 2025 GMT Subject: CN=6946b05f-3fb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:33:8f:09:4f:ad:43:79:34:12:46:5a:c2:5e: 2a:25:e0:ae:6e:5b:f9:98:57:8a:15:de:87:aa:78: 54:49:41:6c:c9:25:e9:7d:42:eb:18:2f:17:67:6a: 78:50:32:6b:50:95:54:0f:a0:dd:60:97:b6:10:72: 66:7d:ac:a2:c1:cd:6c:39:b3:34:07:cd:77:48:45: ca:71:e9:2f:d7:ca:90:fa:e0:a4:d4:40:b6:b1:d6: b6:c5:92:13:46:cf:5c:a2:09:3f:29:aa:49:2b:7b: 02:9d:7f:9b:9f:87:cc:27:21:2d:f4:89:f0:dd:0c: 99:a2:ba:76:96:34:1b:46:52:21:50:00:ca:83:25: 76:ee:65:27:0a:b8:34:c0:63:2e:da:16:43:9b:df: 94:ea:f0:dc:9c:28:f3:49:b2:fb:43:57:91:86:97: c7:6b:d4:a8:11:33:11:df:1f:87:31:fb:22:dc:7c: fd:a7:71:36:72:f8:94:3f:de:51:91:51:92:f4:2f: 60:dd:b0:4e:0e:df:25:15:c4:f2:23:fa:7f:6d:00: de:6d:48:d1:de:bc:47:ef:f8:9e:6e:41:a1:8a:a6: ff:21:b5:d5:f1:5b:5e:e5:24:45:e2:de:92:49:70: 64:7c:e6:67:12:87:35:4d:18:1d:a7:a5:09:20:9f: 44:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:46:91:18:5E:AA:5B:C4:F0:D3:A4:7B:75:F8:F3:CE:56:88:77:31 X509v3 Authority Key Identifier: keyid:09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:f6:24:13:6f:4e:a8:ae:dd:12:34:46:3d:7d:2d:5f:4b:69: 66:32:01:4e:ae:32:fa:a2:20:c5:6c:c7:27:68:71:9d:3c:ab: 41:38:7d:ae:cb:c3:d8:18:c3:af:08:1f:62:68:39:9a:1e:3d: 3b:21:26:1d:e5:9c:75:16:3d:87:53:a5:f2:af:1c:79:86:37: 4a:80:70:44:1b:b6:8d:d4:4d:ec:d1:dc:04:71:2e:d8:ba:fa: 8d:50:9e:3a:3d:37:08:19:04:b0:c5:d1:a6:92:4a:c3:0b:79: d2:16:eb:4e:4b:fc:8c:42:aa:fa:9b:69:07:78:e9:27:74:06: b4:d0:05:cd:11:71:5e:35:4f:fe:09:99:34:66:3b:95:96:24: 77:31:74:c2:d8:75:cf:77:ad:c1:88:f2:55:08:be:ea:b1:e4: a5:5f:c2:1a:91:58:f4:0d:ec:98:c9:f6:72:6f:95:9b:0f:e6: 6f:71:26:5d:52:93:e1:a1:9c:e2:0c:5d:58:04:2d:b3:dc:14: f2:af:9e:e0:98:f0:57:25:9c:62:4a:f3:ac:07:2b:93:c0:98: a0:ee:df:41:fc:85:ef:b8:f6:3d:a8:39:34:80:18:1b:f3:e8: 7b:fa:81:d5:12:a3:3f:de:25:c2:39:38:ab:59:a6:f0:27:53: ce:8a:98:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlEMUExMTAvBgNVBAUTKDA5NzZGQzNEMjMxODZENDhDNjcxNzczNzQwODkxQ0Y1 NEUzMUI4MEUwHhcNMjUxMjIwMTQxOTEwWhcNMjUxMjI3MTQxOTEwWjAYMRYwFAYD VQQDDA02OTQ2YjA1Zi0zZmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujOPCU+tQ3k0EkZawl4qJeCublv5mFeKFd6HqnhUSUFsySXpfULrGC8XZ2p4 UDJrUJVUD6DdYJe2EHJmfayiwc1sObM0B813SEXKcekv18qQ+uCk1EC2sda2xZIT Rs9cogk/KapJK3sCnX+bn4fMJyEt9Inw3QyZorp2ljQbRlIhUADKgyV27mUnCrg0 wGMu2hZDm9+U6vDcnCjzSbL7Q1eRhpfHa9SoETMR3x+HMfsi3Hz9p3E2cviUP95R kVGS9C9g3bBODt8lFcTyI/p/bQDebUjR3rxH7/iebkGhiqb/IbXV8Vte5SRF4t6S SXBkfOZnEoc1TRgdp6UJIJ9EfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPhGkRhe qlvE8NOke3X4885WiHcxMB8GA1UdIwQYMBaAFAl2/D0jGG1IxnF3N0CJHPVOMbgO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUQxQS9DNTlCMDJEQTFE NzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJVakdjWGMzUUlrYzlVNHh1 QTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NYYjhQU01ZYlVqR2NYYzNRSWtjOVU0eHVBNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUQxQS9DNTlCMDJEQTFENzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJV akdjWGMzUUlrYzlVNHh1QTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAr9iQTb06ort0SNEY9fS1fS2lmMgFOrjL6oiDFbMcnaHGdPKtBOH2u y8PYGMOvCB9iaDmaHj07ISYd5Zx1Fj2HU6Xyrxx5hjdKgHBEG7aN1E3s0dwEcS7Y uvqNUJ46PTcIGQSwxdGmkkrDC3nSFutOS/yMQqr6m2kHeOkndAa00AXNEXFeNU/+ CZk0ZjuVliR3MXTC2HXPd63BiPJVCL7qseSlX8IakVj0DeyYyfZyb5WbD+ZvcSZd UpPhoZziDF1YBC2z3BTyr57gmPBXJZxiSvOsByuTwJig7t9B/IXvuPY9qDk0gBgb 8+h7+oHVEqM/3iXCOTirWabwJ1POiphp -----END CERTIFICATE-----Generated at Mon Dec 22 14:29:43 2025 by rpki-client