This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft File: kI54kDTxhBXYdZwmo0brgQ71pBU.mft (raw, json) Hash identifier: TvCZOZ9NrkqhFtr0a7pNRNcMPz8cJ+Fpz2npZQ5Fs8M= Subject key identifier: F2:F5:88:BA:A4:52:6D:24:EF:28:F0:25:D8:EC:84:C9:7F:4D:6F:94 Authority key identifier: 90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 Certificate issuer: /CN=A911B4ED/serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Certificate serial: 01DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft Manifest number: 01D6 Signing time: Tue 23 Dec 2025 01:49:06 +0000 Manifest this update: Tue 23 Dec 2025 01:49:05 +0000 Manifest next update: Tue 30 Dec 2025 01:49:05 +0000 Files and hashes: 1: kI54kDTxhBXYdZwmo0brgQ71pBU.crl (hash: ts2YiLGuo/kWERwYFWfYSa2z5FW/VCIh76jks55zNQ4=) 2: 86A2CEB60F3E11EEA4C55465C4F9AE02.roa (hash: feRFh9Ht2rEY2jS2ePhZA2T4F0vbXp37hvleoPM6Wus=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:49:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 474 (0x1da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B4ED, serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Validity Not Before: Dec 23 01:49:05 2025 GMT Not After : Dec 30 01:49:05 2025 GMT Subject: CN=6949f512-5081 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e8:ad:4f:04:36:a5:68:de:97:19:04:e0:e6: aa:33:e1:47:13:60:b4:2a:51:58:50:93:94:70:bf: e3:81:f4:4a:1e:bd:27:3d:f1:6d:e5:96:87:69:13: ad:3a:6a:be:cc:6f:79:4a:4f:c6:fb:e9:37:6a:dc: a2:c1:2a:38:68:25:d8:4a:9f:c6:8f:f4:ea:f1:ce: 48:1e:7e:cd:ec:ee:1e:3e:b1:cb:98:d0:22:c1:06: 5b:6d:e3:9a:3a:3f:2f:17:54:b3:5c:6b:df:f6:e1: 7a:f9:46:02:08:d9:9b:f6:78:07:05:5c:80:3e:11: 06:c9:f3:7d:c8:11:4d:01:c1:81:2f:65:39:b6:51: e4:bf:f2:45:13:33:be:03:cc:7c:29:0a:21:f4:fc: e9:64:fe:9e:17:dd:a2:aa:85:70:a4:2a:f0:15:43: ee:f9:10:4d:5d:50:46:98:cd:9f:9f:a2:c1:d0:54: 1c:c2:d4:cf:4d:bd:5e:a9:35:6e:63:f0:7d:7c:66: 9d:d7:40:b1:d9:c0:02:33:0c:3d:f8:ae:64:e1:80: 8e:f2:9c:54:c3:33:6d:42:f0:43:ef:6f:e5:ef:70: 6b:0e:e0:de:24:72:ac:b8:8a:c4:76:74:de:5c:9f: 31:5e:2b:f7:97:65:fc:08:2d:aa:19:6e:e2:5e:e7: 44:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:F5:88:BA:A4:52:6D:24:EF:28:F0:25:D8:EC:84:C9:7F:4D:6F:94 X509v3 Authority Key Identifier: keyid:90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:8c:75:c7:eb:80:3f:eb:f2:b7:a4:39:c5:a2:bc:e8:4f:23: 63:2f:7b:00:21:0e:92:09:d2:66:94:3b:4d:0c:6a:bb:62:df: d3:95:43:a9:3d:8d:78:d8:a8:43:13:18:58:bf:b7:67:46:3e: 19:e6:05:a5:17:2f:86:11:05:3c:f5:e1:79:0f:56:42:34:b0: 77:cd:93:02:28:6d:60:67:b7:89:ba:9b:ed:3b:2b:ea:4e:61: a8:b0:1b:12:31:b3:30:c1:ff:86:8c:a5:f1:a8:f5:6a:76:88: cf:04:6b:c9:62:fb:51:61:c2:9a:18:87:70:fa:4b:cf:e3:4c: e3:60:88:a4:75:d1:a3:dd:72:63:63:49:f0:68:d6:3b:86:79: 53:29:50:67:53:a4:54:15:85:76:51:ae:e3:2c:4f:96:e7:c0: de:ba:ce:53:3e:06:79:e7:63:71:c4:5c:0c:b6:02:fb:90:fa: 5c:42:dc:2d:94:d4:e3:cd:0e:ba:63:28:16:45:66:38:21:7b: 7f:5a:8c:09:de:b0:e2:80:f5:ec:d9:45:d0:59:23:38:ac:94: e5:1f:85:c9:80:07:8d:75:33:0e:5c:a1:92:e8:f9:36:21:66: ad:2a:8e:aa:30:ec:1c:4a:c6:a5:41:97:e8:79:97:a4:47:f8: 94:c0:2e:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0RUQxMTAvBgNVBAUTKDkwOEU3ODkwMzRGMTg0MTVEODc1OUMyNkEzNDZFQjgx MEVGNUE0MTUwHhcNMjUxMjIzMDE0OTA1WhcNMjUxMjMwMDE0OTA1WjAYMRYwFAYD VQQDDA02OTQ5ZjUxMi01MDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAquitTwQ2pWjelxkE4OaqM+FHE2C0KlFYUJOUcL/jgfRKHr0nPfFt5ZaHaROt Omq+zG95Sk/G++k3atyiwSo4aCXYSp/Gj/Tq8c5IHn7N7O4ePrHLmNAiwQZbbeOa Oj8vF1SzXGvf9uF6+UYCCNmb9ngHBVyAPhEGyfN9yBFNAcGBL2U5tlHkv/JFEzO+ A8x8KQoh9PzpZP6eF92iqoVwpCrwFUPu+RBNXVBGmM2fn6LB0FQcwtTPTb1eqTVu Y/B9fGad10Cx2cACMww9+K5k4YCO8pxUwzNtQvBD72/l73BrDuDeJHKsuIrEdnTe XJ8xXiv3l2X8CC2qGW7iXudE1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPL1iLqk Um0k7yjwJdjshMl/TW+UMB8GA1UdIwQYMBaAFJCOeJA08YQV2HWcJqNG64EO9aQV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjRFRC9GQTRCMEFDNDBG MzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhCWFlkWndtbzBicmdRNzFw QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJNTRrRFR4aEJYWWRad21vMGJyZ1E3MXBCVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjRFRC9GQTRCMEFDNDBGMzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhC WFlkWndtbzBicmdRNzFwQlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrjHXH64A/6/K3pDnForzoTyNjL3sAIQ6SCdJmlDtNDGq7Yt/TlUOp PY142KhDExhYv7dnRj4Z5gWlFy+GEQU89eF5D1ZCNLB3zZMCKG1gZ7eJupvtOyvq TmGosBsSMbMwwf+GjKXxqPVqdojPBGvJYvtRYcKaGIdw+kvP40zjYIikddGj3XJj Y0nwaNY7hnlTKVBnU6RUFYV2Ua7jLE+W58Deus5TPgZ552NxxFwMtgL7kPpcQtwt lNTjzQ66YygWRWY4IXt/WowJ3rDigPXs2UXQWSM4rJTlH4XJgAeNdTMOXKGS6Pk2 IWatKo6qMOwcSsalQZfoeZekR/iUwC5/ -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:36 2025 by rpki-client