This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft File: X1zijATRbpUODrzVlVVCSD05VtA.mft (raw, json) Hash identifier: BOv+WY40craGWjWJURazfimajKsqSPdKGZTs6tbRXF4= Subject key identifier: EA:7E:39:1B:A5:18:86:68:A3:EA:2F:A1:6C:F6:AC:3E:3D:63:03:62 Authority key identifier: 5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0 Certificate issuer: /CN=A91F0D86/serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0 Certificate serial: 01A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft Manifest number: 019D Signing time: Sun 21 Dec 2025 02:39:21 +0000 Manifest this update: Sun 21 Dec 2025 02:39:20 +0000 Manifest next update: Sun 28 Dec 2025 02:39:20 +0000 Files and hashes: 1: X1zijATRbpUODrzVlVVCSD05VtA.crl (hash: sywKEiHCeddgh8qhgbUY1OScm8+KbpmwgiZ6HXWd76I=) 2: 85BF2BE4710111F093C54468C4F9AE02.roa (hash: 0DjY0BlkVRPwB3NWf9zy3shKm/xu/h/zeurHbCub9hQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.crl rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 02:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 419 (0x1a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0D86, serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0 Validity Not Before: Dec 21 02:39:20 2025 GMT Not After : Dec 28 02:39:20 2025 GMT Subject: CN=69475dd9-6ecc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:63:43:f9:d5:24:2c:1f:3f:1e:34:2d:f6:f3: 73:5b:b8:70:47:38:7f:98:a7:e1:79:ed:2a:95:ca: 04:ac:7f:c7:ec:d8:a8:01:3e:b7:b8:9b:c3:90:47: b6:77:27:13:c1:75:cd:4c:6b:e2:55:b3:87:d5:98: 62:8a:50:44:e4:75:e6:50:fc:21:fb:1b:1f:de:e7: 9e:80:a1:90:d0:2b:f7:9d:0a:69:ab:81:9b:3e:91: 3f:82:fe:0c:f0:77:33:e8:29:4a:50:d2:02:6e:7b: a4:f9:9e:8f:d8:f7:24:3d:e5:78:3e:5a:10:3e:f2: c8:2c:88:4e:1f:0f:6f:79:b7:1e:61:40:f1:59:ef: bd:18:87:3a:45:4f:10:b1:7a:4f:b7:fc:57:d7:90: 3f:c0:57:b4:6f:03:b4:b4:60:47:5e:04:3d:83:22: 6d:00:42:2e:58:a2:3f:95:23:6f:64:84:5a:ef:7e: f4:d9:b1:0e:6b:2f:b1:c4:eb:b0:8a:aa:af:7c:9b: 67:d7:e9:6e:e9:12:4f:1f:de:be:b3:d8:b4:f8:c7: 1b:b6:33:c1:78:ac:d9:ad:ed:cd:a5:eb:4b:75:66: f4:ce:dc:f2:b5:91:f6:0e:39:76:9a:1a:32:1a:52: be:af:35:8f:99:48:9a:66:88:e7:6e:af:0e:d1:84: 86:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:7E:39:1B:A5:18:86:68:A3:EA:2F:A1:6C:F6:AC:3E:3D:63:03:62 X509v3 Authority Key Identifier: keyid:5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:ac:a2:67:37:16:fa:22:be:29:af:17:74:66:de:bb:e0:c3: bd:40:ea:8d:87:16:05:48:1c:03:6f:11:30:42:91:3b:f1:a5: 68:0d:bc:a2:c4:2a:a8:f0:63:55:54:56:df:01:cf:c0:f3:a0: 19:ac:20:67:cd:15:ce:3d:85:e6:01:2c:16:16:97:7f:22:5f: e6:75:f4:fe:fd:d8:71:70:eb:d5:f0:ae:30:5b:a3:d5:22:a4: f1:fc:cb:f5:86:ac:79:bf:eb:db:ef:b0:5b:63:52:18:78:5e: ad:4f:c3:bb:c0:87:11:68:0a:ef:6d:db:4f:8c:9c:81:ee:42: 06:2c:20:a2:c3:bb:5a:52:8c:88:4d:29:74:86:f5:69:10:56: 13:0d:e9:01:52:f4:74:14:ab:a5:1b:61:88:50:bd:d1:3c:d4: a2:79:49:7b:d2:12:d5:72:19:2d:3d:c2:3c:13:48:71:32:23: 0a:d6:72:7b:fd:2e:5d:d9:b5:9f:6c:48:b4:d6:56:90:e2:e3: 42:83:32:5e:81:80:6e:e1:f4:a9:75:17:42:e1:9e:12:2f:07: 03:9b:17:be:9c:16:2e:11:4d:24:b3:0b:5c:17:97:07:df:f5: 2e:a3:35:fe:b4:8a:dc:35:90:e4:cb:7a:d5:f3:49:3a:85:4c: 98:51:d1:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBEODYxMTAvBgNVBAUTKDVGNUNFMjhDMDREMTZFOTUwRTBFQkNENTk1NTU0MjQ4 M0QzOTU2RDAwHhcNMjUxMjIxMDIzOTIwWhcNMjUxMjI4MDIzOTIwWjAYMRYwFAYD VQQDDA02OTQ3NWRkOS02ZWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz2ND+dUkLB8/HjQt9vNzW7hwRzh/mKfhee0qlcoErH/H7NioAT63uJvDkEe2 dycTwXXNTGviVbOH1ZhiilBE5HXmUPwh+xsf3ueegKGQ0Cv3nQppq4GbPpE/gv4M 8Hcz6ClKUNICbnuk+Z6P2PckPeV4PloQPvLILIhOHw9vebceYUDxWe+9GIc6RU8Q sXpPt/xX15A/wFe0bwO0tGBHXgQ9gyJtAEIuWKI/lSNvZIRa73702bEOay+xxOuw iqqvfJtn1+lu6RJPH96+s9i0+McbtjPBeKzZre3NpetLdWb0ztzytZH2Djl2mhoy GlK+rzWPmUiaZojnbq8O0YSGvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOp+ORul GIZoo+ovoWz2rD49YwNiMB8GA1UdIwQYMBaAFF9c4owE0W6VDg681ZVVQkg9OVbQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEQ4Ni82OEU3OTc4QTZD QkQxMUVFQjg0NkYzNzlDNEY5QUUwMi9YMXppakFUUmJwVU9EcnpWbFZWQ1NEMDVW dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gxemlqQVRSYnBVT0RyelZsVlZDU0QwNVZ0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEQ4Ni82OEU3OTc4QTZDQkQxMUVFQjg0NkYzNzlDNEY5QUUwMi9YMXppakFUUmJw VU9EcnpWbFZWQ1NEMDVWdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCarKJnNxb6Ir4prxd0Zt674MO9QOqNhxYFSBwDbxEwQpE78aVoDbyi xCqo8GNVVFbfAc/A86AZrCBnzRXOPYXmASwWFpd/Il/mdfT+/dhxcOvV8K4wW6PV IqTx/Mv1hqx5v+vb77BbY1IYeF6tT8O7wIcRaArvbdtPjJyB7kIGLCCiw7taUoyI TSl0hvVpEFYTDekBUvR0FKulG2GIUL3RPNSieUl70hLVchktPcI8E0hxMiMK1nJ7 /S5d2bWfbEi01laQ4uNCgzJegYBu4fSpdRdC4Z4SLwcDmxe+nBYuEU0kswtcF5cH 3/UuozX+tIrcNZDky3rV80k6hUyYUdEi -----END CERTIFICATE-----Generated at Sun Dec 21 16:14:45 2025 by rpki-client