This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft File: XEzzdpk9EYUoJw3ZUvMCztV18dw.mft (raw, json) Hash identifier: C8REnDLj98OE2Um36B20kOkP7+LmvUH5ZQlrOSQ/HD0= Subject key identifier: 6B:44:F3:C5:57:3A:CB:9E:E4:8D:17:76:0D:E3:49:98:7A:CA:F0:B8 Authority key identifier: 5C:4C:F3:76:99:3D:11:85:28:27:0D:D9:52:F3:02:CE:D5:75:F1:DC Certificate issuer: /CN=A91FBD89/serialNumber=5C4CF376993D118528270DD952F302CED575F1DC Certificate serial: 0574 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft Manifest number: 0574 Signing time: Wed 24 Dec 2025 22:32:59 +0000 Manifest this update: Wed 24 Dec 2025 22:32:59 +0000 Manifest next update: Wed 31 Dec 2025 22:32:59 +0000 Files and hashes: 1: XEzzdpk9EYUoJw3ZUvMCztV18dw.crl (hash: 5aWtyq/4vKDvBnftvvqgYVL7wJIOiFDFYaO5+aObJK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.crl rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 22:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1396 (0x574) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBD89, serialNumber=5C4CF376993D118528270DD952F302CED575F1DC Validity Not Before: Dec 24 22:32:59 2025 GMT Not After : Dec 31 22:32:59 2025 GMT Subject: CN=694c6a1b-31e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:bf:2e:a6:f3:a9:41:3c:69:3d:2a:60:bb:96: f7:92:8a:1d:16:99:6a:7a:d5:ac:a6:50:1b:a3:ab: 85:6d:83:b6:f4:f2:5d:c7:82:6b:0f:4e:68:52:f7: 56:c2:be:68:66:1a:85:0e:fa:78:19:32:54:80:56: b8:6e:71:79:ec:20:f2:62:63:a4:80:09:04:37:ce: 44:47:81:bb:cf:d5:0b:43:17:13:d4:3c:84:65:d2: 7a:da:18:58:20:42:94:86:b9:7a:96:29:c6:80:2e: 03:71:e3:d9:6a:5c:49:6c:4e:5d:ed:e2:8c:53:07: 18:d7:7f:af:2c:e8:98:44:ef:2e:71:f2:d5:8e:6c: 2f:4a:66:a9:0e:8e:1a:9c:18:5a:07:3f:b1:16:dd: 4d:b9:a1:99:ed:37:86:fc:ee:66:a9:ba:0c:96:6d: 35:6c:c7:f8:7a:17:49:98:3a:ec:3d:cf:eb:ee:63: 93:1b:08:10:f4:c1:0f:22:8a:a7:79:ca:f8:79:c1: 27:f0:f6:8d:a5:4f:11:2b:54:d6:bb:ca:6c:53:1b: 89:27:29:93:b7:66:9c:be:65:7e:49:f8:2d:67:8e: 10:57:1f:71:c5:74:0d:3c:a4:1a:17:07:73:58:2f: 1b:75:3a:72:e4:37:b5:21:b8:2a:56:95:2a:d6:fd: f7:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:44:F3:C5:57:3A:CB:9E:E4:8D:17:76:0D:E3:49:98:7A:CA:F0:B8 X509v3 Authority Key Identifier: keyid:5C:4C:F3:76:99:3D:11:85:28:27:0D:D9:52:F3:02:CE:D5:75:F1:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:3c:f7:fa:9e:4a:f0:87:a5:3a:db:a5:e4:78:72:08:81:b7: a2:41:c3:40:c5:17:9d:13:de:fa:b1:e8:34:a8:b4:b8:76:e1: ba:18:45:32:be:b5:ce:6f:66:2c:82:68:07:76:7a:b9:1d:81: 47:fa:a0:b7:9f:a9:85:b1:d3:c1:60:f3:2b:fa:bd:75:36:49: ee:09:d5:fe:54:81:aa:1f:34:8b:d1:5d:83:75:0b:24:a3:8a: b3:bc:ea:14:df:ad:eb:bf:08:ec:df:19:61:ce:ca:18:16:16: a8:3f:87:6d:ec:87:f0:f6:2e:53:7b:0a:da:0d:db:ae:61:7d: 53:d9:c8:15:01:2f:ee:21:6b:81:7e:8a:36:89:b5:dc:d8:de: a7:e9:e5:76:34:c7:34:e9:02:37:29:74:e1:ba:8a:e4:ce:d7: ba:9d:e5:67:bd:4c:a3:cb:ad:8b:87:47:4c:a2:a8:b7:61:6c: 6e:d4:de:33:02:33:29:9a:41:8c:ea:e1:37:8a:b9:6b:3d:14: 76:a1:79:91:7f:87:3f:2b:42:50:f6:ac:11:42:54:b2:16:44: 06:6f:06:60:9e:39:52:7f:4e:c4:91:1d:c6:0c:db:75:7c:9d: da:14:98:d0:31:58:cf:5a:47:25:73:f0:73:85:13:0c:1c:1a: 41:7e:2d:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJEODkxMTAvBgNVBAUTKDVDNENGMzc2OTkzRDExODUyODI3MEREOTUyRjMwMkNF RDU3NUYxREMwHhcNMjUxMjI0MjIzMjU5WhcNMjUxMjMxMjIzMjU5WjAYMRYwFAYD VQQDDA02OTRjNmExYi0zMWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6b8upvOpQTxpPSpgu5b3koodFplqetWsplAbo6uFbYO29PJdx4JrD05oUvdW wr5oZhqFDvp4GTJUgFa4bnF57CDyYmOkgAkEN85ER4G7z9ULQxcT1DyEZdJ62hhY IEKUhrl6linGgC4DcePZalxJbE5d7eKMUwcY13+vLOiYRO8ucfLVjmwvSmapDo4a nBhaBz+xFt1NuaGZ7TeG/O5mqboMlm01bMf4ehdJmDrsPc/r7mOTGwgQ9MEPIoqn ecr4ecEn8PaNpU8RK1TWu8psUxuJJymTt2acvmV+SfgtZ44QVx9xxXQNPKQaFwdz WC8bdTpy5De1IbgqVpUq1v33JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGtE88VX Osue5I0Xdg3jSZh6yvC4MB8GA1UdIwQYMBaAFFxM83aZPRGFKCcN2VLzAs7VdfHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkQ4OS9GMzdDODhFRTBC N0UxMUVDODMxMjk2NDhDNEY5QUUwMi9YRXp6ZHBrOUVZVW9KdzNaVXZNQ3p0VjE4 ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hFenpkcGs5RVlVb0p3M1pVdk1DenRWMThkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkQ4OS9GMzdDODhFRTBCN0UxMUVDODMxMjk2NDhDNEY5QUUwMi9YRXp6ZHBrOUVZ VW9KdzNaVXZNQ3p0VjE4ZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCePPf6nkrwh6U626XkeHIIgbeiQcNAxRedE976seg0qLS4duG6GEUy vrXOb2YsgmgHdnq5HYFH+qC3n6mFsdPBYPMr+r11NknuCdX+VIGqHzSL0V2DdQsk o4qzvOoU363rvwjs3xlhzsoYFhaoP4dt7Ifw9i5TewraDduuYX1T2cgVAS/uIWuB foo2ibXc2N6n6eV2NMc06QI3KXThuorkzte6neVnvUyjy62Lh0dMoqi3YWxu1N4z AjMpmkGM6uE3irlrPRR2oXmRf4c/K0JQ9qwRQlSyFkQGbwZgnjlSf07EkR3GDNt1 fJ3aFJjQMVjPWkclc/BzhRMMHBpBfi3Z -----END CERTIFICATE-----Generated at Thu Dec 25 21:26:00 2025 by rpki-client