This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.mft File: kPaA_KfJMP0f3FM2dTha6Q-0FnI.mft (raw, json) Hash identifier: h/OyazfNp9Io5tTx+auN/J2bNVTjlPSNB3lvN/AaeBQ= Subject key identifier: 71:3D:CB:99:26:67:97:10:23:BC:E2:73:93:53:F8:AE:71:E2:48:FA Authority key identifier: 90:F6:80:FC:A7:C9:30:FD:1F:DC:53:36:75:38:5A:E9:0F:B4:16:72 Certificate issuer: /CN=A91248C9/serialNumber=90F680FCA7C930FD1FDC533675385AE90FB41672 Certificate serial: 019A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kPaA_KfJMP0f3FM2dTha6Q-0FnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.mft Manifest number: 0197 Signing time: Tue 23 Dec 2025 02:26:41 +0000 Manifest this update: Tue 23 Dec 2025 02:26:41 +0000 Manifest next update: Tue 30 Dec 2025 02:26:41 +0000 Files and hashes: 1: kPaA_KfJMP0f3FM2dTha6Q-0FnI.crl (hash: t0vknjiZkgjRjbjPLM2hWfFbCeRm1Sy+110g5Wcib8w=) 2: 4B3C43EA6EF011EE84DC9B0EC4F9AE02.roa (hash: 75EuXED/Rvqy0Mw85Z/q36XD2zcpbxDlIxOgsx3A+Yc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.crl rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kPaA_KfJMP0f3FM2dTha6Q-0FnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:26:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 410 (0x19a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91248C9, serialNumber=90F680FCA7C930FD1FDC533675385AE90FB41672 Validity Not Before: Dec 23 02:26:41 2025 GMT Not After : Dec 30 02:26:41 2025 GMT Subject: CN=6949fde1-8d65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:4b:51:a7:c9:80:4a:e8:bb:54:07:0d:07:0c: 38:60:96:eb:d2:e1:02:03:d8:3a:cb:3a:f8:f4:f2: 91:72:1d:25:79:5f:37:58:cc:92:f8:7f:81:b6:d0: 7a:67:5c:f9:46:fb:fb:7b:58:b5:6a:68:65:f7:0d: 48:ef:c1:2e:5b:b5:1b:7d:56:7c:6d:b5:36:5b:0c: f5:08:f6:39:dd:e3:f8:a6:7d:7a:c9:ef:8e:0d:60: b3:5e:ab:c3:dc:bc:b4:48:5a:9e:1e:e9:bf:fc:7a: d9:5e:31:49:5b:7b:bc:a5:8e:41:1c:b4:56:9c:cb: 83:c2:16:f8:13:18:5b:15:65:5b:19:c3:44:fc:f4: 2d:ac:a1:dc:04:93:0a:26:b8:da:ce:39:4a:7a:e2: 0c:c3:6f:b3:30:f5:cf:99:cf:97:aa:40:cd:6a:ec: b5:65:11:27:a0:56:03:04:44:a8:f5:7a:d4:fa:17: 3d:bf:b6:5e:ec:95:1c:41:9f:ba:7c:54:f0:b4:e6: b4:88:95:4b:df:b0:e9:3f:fb:bf:a1:21:03:e2:b0: ec:88:e9:58:d2:d9:d4:6a:8d:a3:d6:63:23:e0:e2: cb:53:8d:11:bf:62:a4:d8:0c:d7:32:ed:8a:82:4f: b4:01:6f:f8:49:66:05:eb:94:91:61:1f:8e:fd:45: dc:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:3D:CB:99:26:67:97:10:23:BC:E2:73:93:53:F8:AE:71:E2:48:FA X509v3 Authority Key Identifier: keyid:90:F6:80:FC:A7:C9:30:FD:1F:DC:53:36:75:38:5A:E9:0F:B4:16:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kPaA_KfJMP0f3FM2dTha6Q-0FnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:02:72:95:7d:38:ba:19:0c:c9:ba:57:93:a6:0e:39:f4:f9: 44:b4:9c:c4:b1:29:64:b8:35:a1:29:87:2c:f2:d0:32:9f:4c: 53:a8:98:30:79:80:a4:3b:0c:e9:84:22:d5:c6:c7:1d:a2:76: a6:e3:4e:55:9f:92:56:f4:4c:c5:30:4d:51:74:c2:b8:8c:8d: e0:45:b2:95:70:00:39:3a:0a:34:f0:ce:43:3e:3e:c2:f7:71: d2:64:ce:00:24:29:09:4c:e7:d2:a4:29:df:aa:56:f9:db:3b: 9e:19:08:5a:b9:f0:f0:83:4e:9b:30:21:f4:36:13:3d:f2:b4: 73:ae:29:16:dc:95:a6:33:b3:62:9a:cd:41:9c:cd:0b:bf:a0: de:0e:8e:4d:4e:02:53:d5:52:fc:68:b0:9e:60:9e:0b:af:38: e8:bd:93:97:3b:a4:86:5b:3a:98:36:1a:ec:29:88:32:c0:a9: ab:4d:70:37:cf:f5:95:91:95:d8:2c:56:e7:4a:15:70:c6:82: d0:dc:d9:1b:71:3f:5f:d1:45:e8:66:c1:4f:0e:1d:eb:03:d9: 2c:39:8d:d2:0e:9a:18:68:85:33:77:57:91:1a:57:72:eb:a9: 2a:a2:c0:34:97:8a:3a:61:e9:26:3d:64:82:50:ca:c6:76:c4: b5:a8:cf:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ4QzkxMTAvBgNVBAUTKDkwRjY4MEZDQTdDOTMwRkQxRkRDNTMzNjc1Mzg1QUU5 MEZCNDE2NzIwHhcNMjUxMjIzMDIyNjQxWhcNMjUxMjMwMDIyNjQxWjAYMRYwFAYD VQQDDA02OTQ5ZmRlMS04ZDY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2UtRp8mASui7VAcNBww4YJbr0uECA9g6yzr49PKRch0leV83WMyS+H+BttB6 Z1z5Rvv7e1i1amhl9w1I78EuW7UbfVZ8bbU2Wwz1CPY53eP4pn16ye+ODWCzXqvD 3Ly0SFqeHum//HrZXjFJW3u8pY5BHLRWnMuDwhb4ExhbFWVbGcNE/PQtrKHcBJMK JrjazjlKeuIMw2+zMPXPmc+XqkDNauy1ZREnoFYDBESo9XrU+hc9v7Ze7JUcQZ+6 fFTwtOa0iJVL37DpP/u/oSED4rDsiOlY0tnUao2j1mMj4OLLU40Rv2Kk2AzXMu2K gk+0AW/4SWYF65SRYR+O/UXcIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHE9y5km Z5cQI7zic5NT+K5x4kj6MB8GA1UdIwQYMBaAFJD2gPynyTD9H9xTNnU4WukPtBZy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDhDOS9BMDU1QjVCMjZF RUQxMUVFQkMxQUFCNTNDNEY5QUUwMi9rUGFBX0tmSk1QMGYzRk0yZFRoYTZRLTBG bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tQYUFfS2ZKTVAwZjNGTTJkVGhhNlEtMEZuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDhDOS9BMDU1QjVCMjZFRUQxMUVFQkMxQUFCNTNDNEY5QUUwMi9rUGFBX0tmSk1Q MGYzRk0yZFRoYTZRLTBGbkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7AnKVfTi6GQzJuleTpg459PlEtJzEsSlkuDWhKYcs8tAyn0xTqJgw eYCkOwzphCLVxscdonam405Vn5JW9EzFME1RdMK4jI3gRbKVcAA5Ogo08M5DPj7C 93HSZM4AJCkJTOfSpCnfqlb52zueGQhaufDwg06bMCH0NhM98rRzrikW3JWmM7Ni ms1BnM0Lv6DeDo5NTgJT1VL8aLCeYJ4LrzjovZOXO6SGWzqYNhrsKYgywKmrTXA3 z/WVkZXYLFbnShVwxoLQ3NkbcT9f0UXoZsFPDh3rA9ksOY3SDpoYaIUzd1eRGldy 66kqosA0l4o6YekmPWSCUMrGdsS1qM8v -----END CERTIFICATE-----Generated at Wed Dec 24 15:11:20 2025 by rpki-client