This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft File: XmtaBob1a6DA93-zvzGzhWMiCCQ.mft (raw, json) Hash identifier: BCvu2jU8ZmmNoh/pyQGfTIddbE8gIhKW/tps0oLUIuo= Subject key identifier: 55:EA:F7:0C:FE:B9:D6:3C:B5:DB:FF:8A:2F:63:9E:1A:8C:F8:E2:F4 Authority key identifier: 5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 Certificate issuer: /CN=A91FE107/serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Certificate serial: 234E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft Manifest number: 2334 Signing time: Sat 20 Dec 2025 15:41:28 +0000 Manifest this update: Sat 20 Dec 2025 15:41:28 +0000 Manifest next update: Sat 27 Dec 2025 15:41:28 +0000 Files and hashes: 1: XmtaBob1a6DA93-zvzGzhWMiCCQ.crl (hash: 2UEpA2A1l/jjTLGXuIl4ulDyDaJ60NZeEkZIOxfKXLE=) 2: 44C007B0A0D611EDA2603C4EC4F9AE02.roa (hash: MAOIki/mm/t0sbRkALRqm8AR2/Jy8UBEI5Awsr4aYLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9038 (0x234e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE107, serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Validity Not Before: Dec 20 15:41:28 2025 GMT Not After : Dec 27 15:41:28 2025 GMT Subject: CN=6946c3a8-1c6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:9c:9b:40:f3:86:9b:23:3b:92:e3:f6:f1:9b: 64:eb:d8:67:63:8c:70:0f:80:a2:4e:11:9a:e6:ac: ac:92:dd:58:b2:e6:ec:88:e5:6f:86:7c:39:27:5a: 67:81:64:ba:97:42:af:07:39:c6:5e:7f:e7:71:ed: ad:e4:e0:1c:6b:2b:93:00:2b:c4:e9:a7:bb:65:ab: 5e:99:c1:25:a3:8a:4f:ae:69:a5:52:f7:0f:f4:0f: 6e:16:83:fe:b9:f4:3e:c8:c6:a0:f7:30:05:4e:ab: e7:ea:52:c5:4e:06:88:bb:55:6a:9b:60:e7:08:a6: 9f:f0:e5:b8:ad:84:c4:d3:8d:9f:14:c4:22:55:9e: 56:41:0e:b7:25:39:b1:e9:85:bf:c7:61:3d:06:7e: 54:da:3e:26:7d:fc:a5:9a:b9:dc:08:83:4f:1d:85: 30:e4:fb:6a:8a:58:d5:9a:ae:4e:62:ef:83:84:8d: c3:57:9d:30:95:18:41:ef:61:22:4f:24:7b:32:af: c2:f4:82:40:3e:b2:a8:30:db:80:e5:91:0b:10:eb: 5e:0e:8f:39:9a:7a:f7:ea:a5:50:56:b6:c7:2f:e8: da:b1:0c:61:10:54:ba:93:12:00:63:86:c4:88:12: 1f:dd:19:c2:5e:cd:c3:db:ad:e2:5a:ed:1c:f9:88: e1:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:EA:F7:0C:FE:B9:D6:3C:B5:DB:FF:8A:2F:63:9E:1A:8C:F8:E2:F4 X509v3 Authority Key Identifier: keyid:5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:25:4d:60:1d:7e:20:a8:85:3d:08:8f:49:20:78:13:32:2e: 13:47:be:98:da:e6:2f:10:53:1b:81:20:73:46:2e:f5:48:cb: 44:ff:32:41:1a:7d:2f:8c:74:bf:74:11:39:c7:f6:44:6f:a9: be:83:a3:b6:c0:de:f5:f5:38:b8:5b:f0:af:99:79:fe:34:53: dc:58:c3:06:01:45:bd:d3:c0:21:65:3c:38:58:f3:a4:89:0b: 9a:50:c6:b7:bc:8c:e2:e2:5e:a6:69:a3:a4:39:24:b4:17:f4: 49:5a:aa:2f:cc:ba:91:d3:fd:49:28:08:9a:7e:31:44:13:22: c8:60:9f:74:10:fd:8b:8f:00:d0:6d:fe:f4:cc:9a:83:30:d1: 8a:f3:73:05:9e:91:de:ef:16:7f:f6:6d:bd:ea:0e:cc:26:46: 31:70:11:c1:3f:62:ee:27:00:5c:06:d8:1e:d3:f9:e7:20:c1: 6a:ef:36:a0:fb:57:fc:e9:6e:15:8a:c1:78:b6:d4:32:d2:1c: bf:6d:80:e0:cf:f3:98:61:a0:fe:08:09:e2:6b:bf:d6:0c:a0: 93:09:a0:f3:50:82:52:75:6b:00:2c:eb:38:c1:32:fb:4d:e5: 2b:10:f1:0e:2f:a6:e4:80:b4:81:ce:50:8c:08:52:3a:04:e4: 82:ef:ec:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI04wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUxMDcxMTAvBgNVBAUTKDVFNkI1QTA2ODZGNTZCQTBDMEY3N0ZCM0JGMzFCMzg1 NjMyMjA4MjQwHhcNMjUxMjIwMTU0MTI4WhcNMjUxMjI3MTU0MTI4WjAYMRYwFAYD VQQDDA02OTQ2YzNhOC0xYzZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZybQPOGmyM7kuP28Ztk69hnY4xwD4CiThGa5qyskt1YsubsiOVvhnw5J1pn gWS6l0KvBznGXn/nce2t5OAcayuTACvE6ae7ZatemcElo4pPrmmlUvcP9A9uFoP+ ufQ+yMag9zAFTqvn6lLFTgaIu1Vqm2DnCKaf8OW4rYTE042fFMQiVZ5WQQ63JTmx 6YW/x2E9Bn5U2j4mffylmrncCINPHYUw5PtqiljVmq5OYu+DhI3DV50wlRhB72Ei TyR7Mq/C9IJAPrKoMNuA5ZELEOteDo85mnr36qVQVrbHL+jasQxhEFS6kxIAY4bE iBIf3RnCXs3D263iWu0c+YjhlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFXq9wz+ udY8tdv/ii9jnhqM+OL0MB8GA1UdIwQYMBaAFF5rWgaG9WugwPd/s78xs4VjIggk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTEwNy9FRTM1QzQ0NjlF NjQxMUU1OUQ0OEZCNjBDNEY5QUUwMi9YbXRhQm9iMWE2REE5My16dnpHemhXTWlD Q1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1htdGFCb2IxYTZEQTkzLXp2ekd6aFdNaUNDUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTEwNy9FRTM1QzQ0NjlFNjQxMUU1OUQ0OEZCNjBDNEY5QUUwMi9YbXRhQm9iMWE2 REE5My16dnpHemhXTWlDQ1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWJU1gHX4gqIU9CI9JIHgTMi4TR76Y2uYvEFMbgSBzRi71SMtE/zJB Gn0vjHS/dBE5x/ZEb6m+g6O2wN719Ti4W/CvmXn+NFPcWMMGAUW908AhZTw4WPOk iQuaUMa3vIzi4l6maaOkOSS0F/RJWqovzLqR0/1JKAiafjFEEyLIYJ90EP2LjwDQ bf70zJqDMNGK83MFnpHe7xZ/9m296g7MJkYxcBHBP2LuJwBcBtge0/nnIMFq7zag +1f86W4VisF4ttQy0hy/bYDgz/OYYaD+CAnia7/WDKCTCaDzUIJSdWsALOs4wTL7 TeUrEPEOL6bkgLSBzlCMCFI6BOSC7+x1 -----END CERTIFICATE-----Generated at Sat Dec 20 17:19:04 2025 by rpki-client