This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft File: X1zijATRbpUODrzVlVVCSD05VtA.mft (raw, json) Hash identifier: DXIDx3cu66/HMqJ+KTwGt2GlKsVhN+egi9Trtf0KsUk= Subject key identifier: F0:9C:68:54:D8:1F:DF:69:E2:41:63:BD:82:68:02:5B:8E:11:4B:94 Authority key identifier: 5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0 Certificate issuer: /CN=A91F0D86/serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0 Certificate serial: 01A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft Manifest number: 01A0 Signing time: Sat 27 Dec 2025 02:24:21 +0000 Manifest this update: Sat 27 Dec 2025 02:24:20 +0000 Manifest next update: Sat 03 Jan 2026 02:24:20 +0000 Files and hashes: 1: X1zijATRbpUODrzVlVVCSD05VtA.crl (hash: scKL/5Iag72Og4k+nz1RKNukMR3O6OpMOQ3pXvKuxtM=) 2: 85BF2BE4710111F093C54468C4F9AE02.roa (hash: 0DjY0BlkVRPwB3NWf9zy3shKm/xu/h/zeurHbCub9hQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.crl rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 Jan 2026 02:24:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 422 (0x1a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0D86, serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0 Validity Not Before: Dec 27 02:24:20 2025 GMT Not After : Jan 3 02:24:20 2026 GMT Subject: CN=694f4354-f9e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0e:a3:68:5f:63:ee:f9:b6:fe:bb:ab:73:28: 4d:80:04:4c:e7:38:c8:3a:76:2b:15:11:5a:0d:c3: 41:ba:b0:a9:df:b4:45:a4:c9:00:3f:c6:a1:7e:78: d5:8c:66:26:f0:46:ac:95:63:0b:6e:d1:f2:48:58: 04:43:0a:90:55:ad:13:f5:7a:bb:dd:0e:68:9b:34: 2d:9c:28:3e:5e:01:be:e0:f1:8d:f7:41:d2:86:5b: 55:45:b0:c5:aa:1a:b9:fc:a8:f9:48:4f:6f:82:63: d7:7c:c5:4b:fc:54:c6:0c:6f:45:72:06:bc:24:44: 02:44:28:03:9c:14:36:0c:4d:6e:f1:6a:98:07:65: ce:ce:c1:96:57:41:90:76:d1:48:1b:e1:ef:70:26: 9e:0e:ce:3d:c3:dc:1c:4d:11:94:1e:ef:26:f3:4b: 0b:88:d0:f8:8e:62:77:80:6b:ae:eb:2e:8d:69:a3: dc:26:da:00:6f:c2:e2:7d:f7:f4:cc:1d:46:56:d5: bd:fd:bc:47:91:f3:ec:3f:e9:52:46:30:f7:60:68: f4:7e:a3:c3:83:22:ae:da:4d:67:61:bd:4a:58:16: 1f:46:e8:24:68:d5:5d:da:5c:a8:4f:e6:e2:fa:a8: b5:51:57:7b:6a:b0:ef:32:37:e9:9e:af:9c:c9:8b: aa:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:9C:68:54:D8:1F:DF:69:E2:41:63:BD:82:68:02:5B:8E:11:4B:94 X509v3 Authority Key Identifier: keyid:5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:09:38:14:4c:f6:bd:05:59:81:e8:e8:67:c9:94:ec:78:57: 3b:01:ca:0d:37:de:e4:60:c7:1a:24:be:c8:ad:38:f8:87:f3: 7a:12:42:73:6f:c2:e9:5f:29:a7:ba:39:b5:f3:c0:0f:6d:1d: 04:4e:9f:d1:90:2b:01:5c:f5:aa:cf:70:26:01:57:e3:2a:77: 79:2b:37:82:9e:a5:c6:8f:55:92:3e:7a:ca:37:68:e6:d4:61: 0b:4f:49:e3:1d:05:8d:94:0b:4c:87:be:f6:3d:c1:a4:77:08: f7:06:bb:f4:fd:df:51:b3:b1:af:39:f0:f2:49:fc:64:86:ac: 75:af:a7:22:2e:14:0c:b6:50:5b:0e:e8:c5:6e:8c:9a:f8:5b: 1b:26:bc:29:6c:6b:1a:08:98:aa:2d:25:c5:c0:0f:99:ed:b4: 7b:dd:d8:21:51:d1:3d:c0:5c:64:8c:5e:e6:41:f2:d6:3a:9f: 45:9e:84:bf:42:99:41:08:93:d7:90:70:3a:0d:8a:11:1b:b1: fd:64:58:64:5f:db:60:8e:f2:10:f2:9b:e7:7d:38:b4:60:e5: 01:d2:ff:87:7a:fb:49:fc:e3:b0:61:c1:ac:a3:5f:dd:67:33: f6:9f:7f:20:e7:94:f4:ce:f7:71:4f:eb:31:64:f8:72:9c:a3: d6:03:47:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBEODYxMTAvBgNVBAUTKDVGNUNFMjhDMDREMTZFOTUwRTBFQkNENTk1NTU0MjQ4 M0QzOTU2RDAwHhcNMjUxMjI3MDIyNDIwWhcNMjYwMTAzMDIyNDIwWjAYMRYwFAYD VQQDDA02OTRmNDM1NC1mOWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvw6jaF9j7vm2/rurcyhNgARM5zjIOnYrFRFaDcNBurCp37RFpMkAP8ahfnjV jGYm8EaslWMLbtHySFgEQwqQVa0T9Xq73Q5omzQtnCg+XgG+4PGN90HShltVRbDF qhq5/Kj5SE9vgmPXfMVL/FTGDG9Fcga8JEQCRCgDnBQ2DE1u8WqYB2XOzsGWV0GQ dtFIG+HvcCaeDs49w9wcTRGUHu8m80sLiND4jmJ3gGuu6y6NaaPcJtoAb8Lifff0 zB1GVtW9/bxHkfPsP+lSRjD3YGj0fqPDgyKu2k1nYb1KWBYfRugkaNVd2lyoT+bi +qi1UVd7arDvMjfpnq+cyYuqwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPCcaFTY H99p4kFjvYJoAluOEUuUMB8GA1UdIwQYMBaAFF9c4owE0W6VDg681ZVVQkg9OVbQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEQ4Ni82OEU3OTc4QTZD QkQxMUVFQjg0NkYzNzlDNEY5QUUwMi9YMXppakFUUmJwVU9EcnpWbFZWQ1NEMDVW dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gxemlqQVRSYnBVT0RyelZsVlZDU0QwNVZ0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEQ4Ni82OEU3OTc4QTZDQkQxMUVFQjg0NkYzNzlDNEY5QUUwMi9YMXppakFUUmJw VU9EcnpWbFZWQ1NEMDVWdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFCTgUTPa9BVmB6OhnyZTseFc7AcoNN97kYMcaJL7IrTj4h/N6EkJz b8LpXymnujm188APbR0ETp/RkCsBXPWqz3AmAVfjKnd5KzeCnqXGj1WSPnrKN2jm 1GELT0njHQWNlAtMh772PcGkdwj3Brv0/d9Rs7GvOfDySfxkhqx1r6ciLhQMtlBb DujFboya+FsbJrwpbGsaCJiqLSXFwA+Z7bR73dghUdE9wFxkjF7mQfLWOp9FnoS/ QplBCJPXkHA6DYoRG7H9ZFhkX9tgjvIQ8pvnfTi0YOUB0v+HevtJ/OOwYcGso1/d ZzP2n38g55T0zvdxT+sxZPhynKPWA0fb -----END CERTIFICATE-----Generated at Mon Dec 29 00:49:03 2025 by rpki-client