This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft File: XpnXCH3VTqLn519cgIcHE4Posp4.mft (raw, json) Hash identifier: spYQQd6STpQE6eGGww8VUHkny0VsFQGR9E1FA0IDGqs= Subject key identifier: 0F:ED:58:A5:02:4F:4D:65:40:67:0A:FC:6C:35:E6:C3:C5:B3:AB:D4 Authority key identifier: 5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E Certificate issuer: /CN=A91F81D3/serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Certificate serial: 0B4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft Manifest number: 0B30 Signing time: Mon 22 Dec 2025 18:46:41 +0000 Manifest this update: Mon 22 Dec 2025 18:46:41 +0000 Manifest next update: Mon 29 Dec 2025 18:46:41 +0000 Files and hashes: 1: XpnXCH3VTqLn519cgIcHE4Posp4.crl (hash: n7MduHFoKpbamHAQJmUT6/LIQCKWFs7E5BPsM0ikmvw=) 2: E4A8C1240A3611F08B9CFD4FC4F9AE02.roa (hash: pW6ZkmsKrYO4khbqPdFp+1VATISq0kaXo2DoENq+wFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:46:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2895 (0xb4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F81D3, serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Validity Not Before: Dec 22 18:46:41 2025 GMT Not After : Dec 29 18:46:41 2025 GMT Subject: CN=69499211-8c9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:15:ec:27:c0:b6:33:8d:d1:50:9f:26:44:55: ba:be:a1:50:36:0a:af:d2:8d:aa:22:a1:fc:33:79: 56:87:3f:10:2d:15:7a:ad:38:63:20:74:1c:d1:cc: 23:08:b6:ad:f4:92:3c:1f:d6:4b:7e:25:fb:f0:a9: 41:cc:1d:c4:1b:58:b0:72:e3:c4:d4:04:be:c2:87: cf:38:54:b3:7e:2f:44:cb:5c:ae:d9:dc:9b:85:ee: e3:73:f6:d0:53:ba:6e:61:59:b4:a6:76:09:e8:ff: 13:95:c9:11:24:7b:12:9b:2b:13:41:83:fc:67:bd: cb:48:3f:a7:b9:f3:76:23:df:bf:a8:e4:2c:8b:bd: a9:83:f9:5a:9a:d0:aa:f3:e6:67:6a:9c:69:ea:c9: a1:c1:61:a0:f9:28:f2:01:b2:38:a6:3d:0c:ba:8b: 9d:f4:ea:96:c1:d2:64:4d:ba:61:5e:60:57:26:79: 44:90:35:ab:ab:d7:0e:bc:cc:7d:28:2a:6a:af:da: 11:04:44:3a:f2:77:06:b3:b3:49:4e:7b:72:cb:2c: 7c:4d:10:84:72:57:01:15:5a:3f:5e:03:9d:12:06: c1:3b:bd:aa:ca:29:a5:0a:a3:2c:fd:ae:12:b0:98: c8:cb:21:dd:f9:41:73:ef:c3:72:b4:26:34:b8:2b: 08:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:ED:58:A5:02:4F:4D:65:40:67:0A:FC:6C:35:E6:C3:C5:B3:AB:D4 X509v3 Authority Key Identifier: keyid:5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:95:74:9a:51:c4:4e:9a:f4:c3:6b:e1:6b:8d:aa:3c:3b:02: 80:de:5d:0f:c5:78:52:f8:fd:8a:01:fa:d8:bd:96:20:26:e3: 76:fc:7c:c5:f3:d3:b6:cb:37:87:47:d1:fe:91:1a:15:f5:0d: f3:c0:01:bf:7c:af:7a:ba:14:37:c9:d3:32:a8:01:95:63:a4: a1:96:4f:32:29:bf:cb:12:45:f7:73:67:d8:1c:cb:2f:bb:19: 11:ea:85:8e:15:8f:6b:91:16:ae:49:fe:27:e6:1d:1a:cf:87: 1e:12:db:3f:6d:3c:5b:ac:6d:ec:92:56:54:07:81:2b:8f:bb: e4:b0:04:86:d1:cd:8b:ef:94:02:b7:1c:2a:c7:5f:85:c4:a8: 85:49:3c:d2:a7:f7:c1:22:c8:4c:53:92:b7:ec:36:95:9d:ad: ee:42:2c:27:cd:70:74:ba:3d:3a:24:79:ce:45:31:cf:68:75: 72:57:fb:7b:65:81:00:43:a6:20:5d:28:1d:f1:cb:02:ff:d8: c3:ad:1c:d0:84:2d:1f:fb:ac:7c:68:8c:fc:38:ce:56:f2:b3: 5c:fd:24:60:83:26:51:13:c6:ae:3e:c5:a3:ca:43:59:cc:08: ae:d2:ac:2d:c9:b9:50:14:04:3f:5b:9b:06:fc:7d:5d:51:54: 1a:75:6e:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxRDMxMTAvBgNVBAUTKDVFOTlENzA4N0RENTRFQTJFN0U3NUY1QzgwODcwNzEz ODNFOEIyOUUwHhcNMjUxMjIyMTg0NjQxWhcNMjUxMjI5MTg0NjQxWjAYMRYwFAYD VQQDDA02OTQ5OTIxMS04YzliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwxXsJ8C2M43RUJ8mRFW6vqFQNgqv0o2qIqH8M3lWhz8QLRV6rThjIHQc0cwj CLat9JI8H9ZLfiX78KlBzB3EG1iwcuPE1AS+wofPOFSzfi9Ey1yu2dybhe7jc/bQ U7puYVm0pnYJ6P8TlckRJHsSmysTQYP8Z73LSD+nufN2I9+/qOQsi72pg/lamtCq 8+Znapxp6smhwWGg+SjyAbI4pj0Muoud9OqWwdJkTbphXmBXJnlEkDWrq9cOvMx9 KCpqr9oRBEQ68ncGs7NJTntyyyx8TRCEclcBFVo/XgOdEgbBO72qyimlCqMs/a4S sJjIyyHd+UFz78NytCY0uCsIGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA/tWKUC T01lQGcK/Gw15sPFs6vUMB8GA1UdIwQYMBaAFF6Z1wh91U6i5+dfXICHBxOD6LKe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODFEMy8wQTg0NTlGNDUy MzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRxTG41MTljZ0ljSEU0UG9z cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hwblhDSDNWVHFMbjUxOWNnSWNIRTRQb3NwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODFEMy8wQTg0NTlGNDUyMzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRx TG41MTljZ0ljSEU0UG9zcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzlXSaUcROmvTDa+Frjao8OwKA3l0PxXhS+P2KAfrYvZYgJuN2/HzF 89O2yzeHR9H+kRoV9Q3zwAG/fK96uhQ3ydMyqAGVY6Shlk8yKb/LEkX3c2fYHMsv uxkR6oWOFY9rkRauSf4n5h0az4ceEts/bTxbrG3sklZUB4Erj7vksASG0c2L75QC txwqx1+FxKiFSTzSp/fBIshMU5K37DaVna3uQiwnzXB0uj06JHnORTHPaHVyV/t7 ZYEAQ6YgXSgd8csC/9jDrRzQhC0f+6x8aIz8OM5W8rNc/SRggyZRE8auPsWjykNZ zAiu0qwtyblQFAQ/W5sG/H1dUVQadW7t -----END CERTIFICATE-----Generated at Wed Dec 24 18:06:53 2025 by rpki-client