This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft File: XK9B9ks3Umh5jipdqgwUAADNdHM.mft (raw, json) Hash identifier: B77lIMgvCZUA0ehp6HTL7SN5ej9bbrK6g6wixbnE5mY= Subject key identifier: 39:79:2A:F0:D8:11:42:21:1B:87:05:9E:A3:38:1B:AA:B9:3A:8E:13 Authority key identifier: 5C:AF:41:F6:4B:37:52:68:79:8E:2A:5D:AA:0C:14:00:00:CD:74:73 Certificate issuer: /CN=A91ED73E/serialNumber=5CAF41F64B375268798E2A5DAA0C140000CD7473 Certificate serial: 144B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft Manifest number: 143F Signing time: Thu 18 Dec 2025 16:45:56 +0000 Manifest this update: Thu 18 Dec 2025 16:45:56 +0000 Manifest next update: Thu 25 Dec 2025 16:45:56 +0000 Files and hashes: 1: XK9B9ks3Umh5jipdqgwUAADNdHM.crl (hash: wa/4+1dqzK1EIO5tcOipbDX0zini6/nW03T0HkDaGa0=) 2: 1983150A3BB911EEB0CA4809C4F9AE02.roa (hash: SmYPi2RSloxSaKTT7RKvc8hMxfYT7RAYE5IrJ7qdRzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.crl rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 16:45:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5195 (0x144b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED73E, serialNumber=5CAF41F64B375268798E2A5DAA0C140000CD7473 Validity Not Before: Dec 18 16:45:56 2025 GMT Not After : Dec 25 16:45:56 2025 GMT Subject: CN=69442fc4-2968 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:ba:e3:9c:fe:00:83:47:86:71:e4:1e:f8:c8: e7:4f:c9:06:64:eb:a7:58:53:77:87:c7:df:89:e2: 12:d6:5d:15:e2:34:af:76:85:7b:77:d7:83:24:75: f6:f1:e5:8f:4c:80:a9:86:6a:38:23:31:6f:ce:6a: cc:f8:f2:9f:a2:71:63:68:70:62:95:60:64:4a:fd: 32:4e:b8:eb:ed:3e:5b:60:d2:e5:62:44:15:05:3c: 19:d5:eb:af:aa:70:97:a0:c5:f6:1e:6c:f7:63:a7: a7:04:fc:95:4b:d4:3e:52:a8:49:62:4d:64:ee:a2: ba:84:e3:75:61:7d:62:de:12:45:ca:9c:a7:34:59: 16:3f:13:75:2c:9d:f6:6d:d9:16:f4:ef:0d:6f:65: 55:3f:3b:80:b8:5a:b4:30:e0:1c:16:db:81:2f:70: c6:9e:d2:37:06:dd:f4:d8:71:c0:6b:96:22:55:a0: 27:ad:1a:b9:93:df:04:b0:93:7d:10:db:5a:d4:bc: 41:4a:09:9f:c2:c6:d1:3f:f7:cb:af:f0:2c:28:73: b0:ac:02:1a:9d:a8:14:21:be:67:c2:8c:0c:a6:81: 35:f2:f3:99:ee:d8:ab:75:dd:80:66:6f:a2:62:1c: b5:d7:74:ce:a8:57:31:94:76:03:65:8d:41:79:88: 24:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:79:2A:F0:D8:11:42:21:1B:87:05:9E:A3:38:1B:AA:B9:3A:8E:13 X509v3 Authority Key Identifier: keyid:5C:AF:41:F6:4B:37:52:68:79:8E:2A:5D:AA:0C:14:00:00:CD:74:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:c6:b2:1a:86:82:70:83:a4:3e:94:b6:b9:8b:b7:1f:90:d8: e2:b9:74:83:c8:e6:50:49:08:c9:bf:8f:b1:4b:3e:e4:95:03: ba:a5:a5:3e:be:02:f1:18:9e:e2:72:bc:a3:f0:74:f8:95:a2: d4:a4:82:e5:4b:84:c9:82:e8:7f:07:f6:8a:ed:6e:a5:96:2a: 6b:e2:31:a7:d9:a1:28:43:39:38:df:48:3f:1a:b0:1e:65:a0: 62:2a:44:8a:5e:06:fa:e6:4c:6c:20:79:4f:34:89:e8:65:72: 5f:65:f3:4b:bf:fa:e3:c5:c6:13:32:d5:16:1e:07:7c:04:ae: cd:9a:ec:23:85:f8:1b:b7:56:47:a8:93:18:52:48:9b:fc:05: 6b:de:fb:e2:8a:80:30:af:af:3b:1b:b9:e3:62:bd:c7:67:d4: df:ef:6b:d6:1d:ce:69:46:21:5b:39:16:ad:63:79:11:b7:c2: fc:bc:98:d0:0a:f4:53:af:c2:7c:a3:46:f5:29:04:ed:ae:3b: 7d:be:52:7d:cb:a2:97:19:54:0f:ed:85:e6:b1:a0:8b:61:99: 61:8c:19:82:9a:c2:d8:da:b7:fc:c5:1f:38:42:cd:0d:23:9c: 4f:57:c5:b5:18:73:97:b0:23:bb:8d:7a:ff:67:89:e5:a6:88: ad:b6:fa:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ3M0UxMTAvBgNVBAUTKDVDQUY0MUY2NEIzNzUyNjg3OThFMkE1REFBMEMxNDAw MDBDRDc0NzMwHhcNMjUxMjE4MTY0NTU2WhcNMjUxMjI1MTY0NTU2WjAYMRYwFAYD VQQDDA02OTQ0MmZjNC0yOTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlbrjnP4Ag0eGceQe+MjnT8kGZOunWFN3h8ffieIS1l0V4jSvdoV7d9eDJHX2 8eWPTICphmo4IzFvzmrM+PKfonFjaHBilWBkSv0yTrjr7T5bYNLlYkQVBTwZ1euv qnCXoMX2Hmz3Y6enBPyVS9Q+UqhJYk1k7qK6hON1YX1i3hJFypynNFkWPxN1LJ32 bdkW9O8Nb2VVPzuAuFq0MOAcFtuBL3DGntI3Bt302HHAa5YiVaAnrRq5k98EsJN9 ENta1LxBSgmfwsbRP/fLr/AsKHOwrAIanagUIb5nwowMpoE18vOZ7tirdd2AZm+i Yhy113TOqFcxlHYDZY1BeYgkgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDl5KvDY EUIhG4cFnqM4G6q5Oo4TMB8GA1UdIwQYMBaAFFyvQfZLN1JoeY4qXaoMFAAAzXRz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDczRS8wMUI4MjEwQTg5 ODkxMUU4Qjk4QkVDM0FDNEY5QUUwMi9YSzlCOWtzM1VtaDVqaXBkcWd3VUFBRE5k SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hLOUI5a3MzVW1oNWppcGRxZ3dVQUFETmRITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDczRS8wMUI4MjEwQTg5ODkxMUU4Qjk4QkVDM0FDNEY5QUUwMi9YSzlCOWtzM1Vt aDVqaXBkcWd3VUFBRE5kSE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADxrIahoJwg6Q+lLa5i7cfkNjiuXSDyOZQSQjJv4+xSz7klQO6paU+ vgLxGJ7icryj8HT4laLUpILlS4TJguh/B/aK7W6llipr4jGn2aEoQzk430g/GrAe ZaBiKkSKXgb65kxsIHlPNInoZXJfZfNLv/rjxcYTMtUWHgd8BK7Nmuwjhfgbt1ZH qJMYUkib/AVr3vviioAwr687G7njYr3HZ9Tf72vWHc5pRiFbORatY3kRt8L8vJjQ CvRTr8J8o0b1KQTtrjt9vlJ9y6KXGVQP7YXmsaCLYZlhjBmCmsLY2rf8xR84Qs0N I5xPV8W1GHOXsCO7jXr/Z4nlpoittvoz -----END CERTIFICATE-----Generated at Fri Dec 19 17:47:54 2025 by rpki-client