This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft File: XUXapVj_ZfZmNblniAm4rPBAc9I.mft (raw, json) Hash identifier: W9hxaQ0u0xaL5N8bCLE+/Xblh/1+MnXkfQcjK/mQwlY= Subject key identifier: B9:88:5A:60:A4:8D:7B:30:06:36:13:A8:9E:8C:71:91:AC:7D:95:56 Authority key identifier: 5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2 Certificate issuer: /CN=A91F52FD/serialNumber=5D45DAA558FF65F66635B9678809B8ACF04073D2 Certificate serial: 0648 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft Manifest number: 063F Signing time: Thu 18 Dec 2025 22:05:29 +0000 Manifest this update: Thu 18 Dec 2025 22:05:29 +0000 Manifest next update: Thu 25 Dec 2025 22:05:29 +0000 Files and hashes: 1: XUXapVj_ZfZmNblniAm4rPBAc9I.crl (hash: EEXZMv8t1OJMEsne6J+H3SmvwZDeZwSyxoBrI700REI=) 2: 48459AB0BACF11EBAA321370C4F9AE02.roa (hash: pnHmUa0U0xz9JsAjeRh4Irw7X+bt9zrhkQQo7Oiu4oA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.crl rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:05:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1608 (0x648) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F52FD, serialNumber=5D45DAA558FF65F66635B9678809B8ACF04073D2 Validity Not Before: Dec 18 22:05:29 2025 GMT Not After : Dec 25 22:05:29 2025 GMT Subject: CN=69447aa9-5664 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:6a:40:e5:84:74:b2:f3:da:a5:cb:0b:a5:4b: 58:80:63:0f:ad:83:73:21:55:5f:7b:d2:10:22:b4: 02:33:91:5f:f9:a6:d6:8d:23:35:fe:be:a5:9d:6c: 95:f4:7d:c1:37:95:2b:e8:97:bb:ce:de:f6:15:eb: 46:85:f7:44:ac:49:22:30:0c:bb:61:27:51:8a:2c: 26:d0:4f:69:80:a2:06:00:cd:3e:7f:15:a4:23:e7: ac:2b:1e:39:8b:9a:4a:58:ce:ed:21:1f:38:d5:58: ac:3a:ed:7f:f7:5f:0c:b6:d5:34:eb:34:01:9a:b7: 5b:9a:42:3d:a1:e7:6a:ac:f7:67:1d:a0:f6:45:43: c6:a9:e6:24:1e:c2:17:cf:56:b6:09:8f:56:9b:47: 6f:71:30:a5:d4:16:af:e6:71:ad:87:1b:85:6e:04: a1:c1:59:ea:0a:28:d6:38:ee:03:b7:3b:82:40:48: a2:47:28:fa:ca:e4:57:7d:c8:43:f6:ea:bb:39:77: c2:bd:11:b4:b6:22:0f:39:0e:7e:9b:3f:d7:02:f7: c2:27:67:09:b4:e8:5a:10:c0:6b:29:de:15:ac:20: e2:24:ab:42:0a:cc:f7:f2:dd:f7:12:e4:72:03:89: d3:c7:ce:de:09:2b:1c:4d:32:c8:7e:c1:c7:ab:1f: 32:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:88:5A:60:A4:8D:7B:30:06:36:13:A8:9E:8C:71:91:AC:7D:95:56 X509v3 Authority Key Identifier: keyid:5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:53:51:fe:a4:35:58:55:bd:e9:52:43:ff:37:4c:53:a8:f1: 77:5a:3c:8a:c6:7a:4a:cf:8e:69:d4:26:b8:95:35:36:fc:93: 81:05:7a:21:8a:4b:85:82:f2:40:9e:70:50:34:87:53:d8:6e: 71:74:cd:71:cc:da:2d:fe:e1:b9:3c:02:fe:d0:35:85:9d:05: e4:88:27:55:00:79:8e:47:9d:ae:21:1c:b2:11:f3:51:17:9e: 5c:e7:4f:70:96:4f:16:b7:3f:b7:9a:e1:af:2b:82:8c:08:1c: 37:d9:dc:55:18:2b:6b:2a:ec:be:69:c2:05:26:3f:bb:24:73: 20:e2:b2:f3:f4:e2:76:89:eb:49:56:31:06:bc:27:0c:03:e0: db:a9:56:d0:8a:7b:66:fa:93:f9:59:10:99:c2:7c:7c:e7:a8: ae:03:a9:69:3b:22:e3:33:56:27:57:b7:8f:bb:30:f9:4e:b8: 89:c1:8c:a8:25:b5:c3:16:97:26:ea:05:9f:0b:09:e3:a3:96: ee:d3:05:b3:7b:21:6a:61:aa:8b:92:a0:3f:ac:ce:aa:bf:6f: ef:9d:f2:55:c5:7e:36:67:a0:29:b9:ba:cd:fe:76:da:c0:3b: 78:9d:7d:e5:7e:70:43:b5:64:55:22:94:da:bf:3c:09:a6:1b: ea:53:ba:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyRkQxMTAvBgNVBAUTKDVENDVEQUE1NThGRjY1RjY2NjM1Qjk2Nzg4MDlCOEFD RjA0MDczRDIwHhcNMjUxMjE4MjIwNTI5WhcNMjUxMjI1MjIwNTI5WjAYMRYwFAYD VQQDDA02OTQ0N2FhOS01NjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvGpA5YR0svPapcsLpUtYgGMPrYNzIVVfe9IQIrQCM5Ff+abWjSM1/r6lnWyV 9H3BN5Ur6Je7zt72FetGhfdErEkiMAy7YSdRiiwm0E9pgKIGAM0+fxWkI+esKx45 i5pKWM7tIR841VisOu1/918MttU06zQBmrdbmkI9oedqrPdnHaD2RUPGqeYkHsIX z1a2CY9Wm0dvcTCl1Bav5nGthxuFbgShwVnqCijWOO4DtzuCQEiiRyj6yuRXfchD 9uq7OXfCvRG0tiIPOQ5+mz/XAvfCJ2cJtOhaEMBrKd4VrCDiJKtCCsz38t33EuRy A4nTx87eCSscTTLIfsHHqx8yvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLmIWmCk jXswBjYTqJ6McZGsfZVWMB8GA1UdIwQYMBaAFF1F2qVY/2X2ZjW5Z4gJuKzwQHPS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTJGRC82MjVGMEYwQUJB Q0QxMUVCQUEyMzk3NkRDNEY5QUUwMi9YVVhhcFZqX1pmWm1OYmxuaUFtNHJQQkFj OUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hVWGFwVmpfWmZabU5ibG5pQW00clBCQWM5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTJGRC82MjVGMEYwQUJBQ0QxMUVCQUEyMzk3NkRDNEY5QUUwMi9YVVhhcFZqX1pm Wm1OYmxuaUFtNHJQQkFjOUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIU1H+pDVYVb3pUkP/N0xTqPF3WjyKxnpKz45p1Ca4lTU2/JOBBXoh ikuFgvJAnnBQNIdT2G5xdM1xzNot/uG5PAL+0DWFnQXkiCdVAHmOR52uIRyyEfNR F55c509wlk8Wtz+3muGvK4KMCBw32dxVGCtrKuy+acIFJj+7JHMg4rLz9OJ2ietJ VjEGvCcMA+DbqVbQintm+pP5WRCZwnx856iuA6lpOyLjM1YnV7ePuzD5TriJwYyo JbXDFpcm6gWfCwnjo5bu0wWzeyFqYaqLkqA/rM6qv2/vnfJVxX42Z6ApubrN/nba wDt4nX3lfnBDtWRVIpTavzwJphvqU7rE -----END CERTIFICATE-----Generated at Fri Dec 19 11:42:59 2025 by rpki-client