This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft File: Xx7oK_cJomzAAJlbR0geVPbzgG4.mft (raw, json) Hash identifier: wqy/GQDMnBy7minVnsBssPs58tc5iCmHUo7PUYlXdmM= Subject key identifier: D7:3A:B9:CC:61:21:DF:6E:43:4E:24:20:FF:72:B0:49:36:19:24:04 Authority key identifier: 5F:1E:E8:2B:F7:09:A2:6C:C0:00:99:5B:47:48:1E:54:F6:F3:80:6E Certificate issuer: /CN=A91F9E0A/serialNumber=5F1EE82BF709A26CC000995B47481E54F6F3806E Certificate serial: 011A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft Manifest number: 0116 Signing time: Fri 19 Dec 2025 04:03:46 +0000 Manifest this update: Fri 19 Dec 2025 04:03:45 +0000 Manifest next update: Fri 26 Dec 2025 04:03:45 +0000 Files and hashes: 1: Xx7oK_cJomzAAJlbR0geVPbzgG4.crl (hash: GS08w7rebI1rrRjfrRMI70emIzGFe6cilSe7iplNRP4=) 2: 9F4A37143EA511EF882FE276C4F9AE02.roa (hash: n1rSG6+YrBdrpyC7jAy4PT81hFwvfJMiF3pinZ5UvAs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.crl rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:03:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9E0A, serialNumber=5F1EE82BF709A26CC000995B47481E54F6F3806E Validity Not Before: Dec 19 04:03:45 2025 GMT Not After : Dec 26 04:03:45 2025 GMT Subject: CN=6944cea1-c786 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:50:65:bd:03:36:fe:e5:5f:c9:49:c4:a3:25: a5:2e:ed:46:9e:2f:bd:44:13:86:75:7a:ab:76:5d: 68:0a:fb:17:7f:41:02:c0:6f:a7:5f:0c:f2:91:79: dc:8b:fa:01:5c:8f:13:04:47:6e:dc:69:8b:a4:4f: ba:d7:74:a0:50:7e:03:b2:9d:ec:a5:9c:40:4b:3a: 2d:b7:96:3d:4e:13:dc:6d:b7:11:b4:61:d4:a9:1c: ea:37:48:1f:f9:7e:1b:c5:d8:3f:58:5f:8e:4e:13: 9f:37:8d:d8:dc:bd:a5:50:e5:35:6c:85:35:6b:8c: 56:e2:cf:90:76:16:97:53:89:9a:e8:85:3c:09:c5: 76:07:b5:af:49:cf:30:c0:fa:af:1b:c3:8b:67:5a: de:d8:41:eb:3c:97:a9:e3:1f:fe:b4:0e:71:0d:e8: b1:b7:6d:78:e5:d2:4b:93:8a:0e:8c:6e:d1:10:38: 18:07:f5:fb:9b:27:7b:4b:6d:7f:d7:7e:d8:d5:ae: 1e:4e:89:3e:15:79:0c:75:4b:9e:9a:7e:5c:8b:8e: 89:c5:d5:16:ed:55:d7:8b:3d:f4:a5:2b:c0:c8:ef: bd:42:e1:73:d5:02:c1:8f:71:20:ec:0c:12:08:4d: 65:42:be:75:14:fc:d8:95:af:70:a2:c2:ed:38:fc: 0a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:3A:B9:CC:61:21:DF:6E:43:4E:24:20:FF:72:B0:49:36:19:24:04 X509v3 Authority Key Identifier: keyid:5F:1E:E8:2B:F7:09:A2:6C:C0:00:99:5B:47:48:1E:54:F6:F3:80:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:b1:c7:13:e6:86:db:0c:5f:73:a9:bc:b8:d5:65:2f:0d:20: 88:fb:f7:5c:99:47:95:73:06:51:e6:45:83:23:60:46:14:e0: 96:27:43:38:1c:ab:1a:24:8e:53:40:56:fb:53:e8:7c:7b:1e: 78:9e:1d:a2:48:d9:a7:cf:a4:2f:7d:b1:af:4e:1d:52:aa:c7: cc:22:1b:ab:de:9d:da:8a:cc:01:cc:4b:1b:96:09:a6:ec:3f: 5a:83:0d:f1:9a:83:60:a5:89:57:f1:75:51:6c:e5:66:e4:e7: 9c:87:08:ef:ce:a2:04:be:58:5e:77:c3:3c:6a:4f:1d:0b:c6: 99:02:95:23:74:e0:52:f2:1c:c0:a8:c5:f5:23:c2:87:15:ff: 90:bd:dc:9a:56:6a:92:a3:50:3d:ff:1b:74:50:6d:8e:85:fc: c7:17:2f:d3:36:38:38:7f:08:6b:cb:2d:fe:92:12:57:5e:68: 02:a0:7f:cb:8a:dc:98:17:51:24:02:d6:58:f4:c8:09:6e:1e: 2f:c5:49:8b:08:7a:0e:b3:e4:12:04:b0:3c:43:6f:32:b2:e3: 1f:23:44:75:b3:46:74:18:59:57:cf:04:5f:ed:e1:c6:26:2e: 6c:a3:e8:5f:0b:c3:2d:be:a0:3c:69:73:d3:d9:a2:85:41:3e: bc:15:c3:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlFMEExMTAvBgNVBAUTKDVGMUVFODJCRjcwOUEyNkNDMDAwOTk1QjQ3NDgxRTU0 RjZGMzgwNkUwHhcNMjUxMjE5MDQwMzQ1WhcNMjUxMjI2MDQwMzQ1WjAYMRYwFAYD VQQDDA02OTQ0Y2VhMS1jNzg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqlBlvQM2/uVfyUnEoyWlLu1Gni+9RBOGdXqrdl1oCvsXf0ECwG+nXwzykXnc i/oBXI8TBEdu3GmLpE+613SgUH4Dsp3spZxASzott5Y9ThPcbbcRtGHUqRzqN0gf +X4bxdg/WF+OThOfN43Y3L2lUOU1bIU1a4xW4s+QdhaXU4ma6IU8CcV2B7WvSc8w wPqvG8OLZ1re2EHrPJep4x/+tA5xDeixt2145dJLk4oOjG7REDgYB/X7myd7S21/ 137Y1a4eTok+FXkMdUuemn5ci46JxdUW7VXXiz30pSvAyO+9QuFz1QLBj3Eg7AwS CE1lQr51FPzYla9wosLtOPwKcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNc6ucxh Id9uQ04kIP9ysEk2GSQEMB8GA1UdIwQYMBaAFF8e6Cv3CaJswACZW0dIHlT284Bu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUUwQS8wM0IwNTJENDNF NjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9YeDdvS19jSm9tekFBSmxiUjBnZVZQYnpn RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1h4N29LX2NKb216QUFKbGJSMGdlVlBiemdHNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUUwQS8wM0IwNTJENDNFNjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9YeDdvS19jSm9t ekFBSmxiUjBnZVZQYnpnRzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6sccT5obbDF9zqby41WUvDSCI+/dcmUeVcwZR5kWDI2BGFOCWJ0M4 HKsaJI5TQFb7U+h8ex54nh2iSNmnz6QvfbGvTh1SqsfMIhur3p3aiswBzEsblgmm 7D9agw3xmoNgpYlX8XVRbOVm5OechwjvzqIEvlhed8M8ak8dC8aZApUjdOBS8hzA qMX1I8KHFf+QvdyaVmqSo1A9/xt0UG2OhfzHFy/TNjg4fwhryy3+khJXXmgCoH/L ityYF1EkAtZY9MgJbh4vxUmLCHoOs+QSBLA8Q28ysuMfI0R1s0Z0GFlXzwRf7eHG Ji5so+hfC8MtvqA8aXPT2aKFQT68FcPx -----END CERTIFICATE-----Generated at Sat Dec 20 21:10:40 2025 by rpki-client