This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft File: knWZPcnEM_JdNYCsd-OV0GaWSD0.mft (raw, json) Hash identifier: 6b8nxX9o9lPcWZefr0x9iXk2b5s5np1lWxR0z3UeQDw= Subject key identifier: 70:81:BC:D0:8C:AD:06:8A:1F:37:30:BA:69:6F:C8:D6:0B:99:8C:F2 Authority key identifier: 92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D Certificate issuer: /CN=A91276A3/serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Certificate serial: 0751 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft Manifest number: 0748 Signing time: Mon 22 Dec 2025 20:58:47 +0000 Manifest this update: Mon 22 Dec 2025 20:58:46 +0000 Manifest next update: Mon 29 Dec 2025 20:58:46 +0000 Files and hashes: 1: knWZPcnEM_JdNYCsd-OV0GaWSD0.crl (hash: gUAvxSPFebF7vnBRa2xQMhiGNGYf+HR0utJUVzeW/dY=) 2: 57BAE77C517D11EB8949D438C4F9AE02.roa (hash: W8Pbilr3L/+CfQDONlD1s3S+g13SAXBwRt28BIl7t2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:58:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1873 (0x751) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91276A3, serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Validity Not Before: Dec 22 20:58:46 2025 GMT Not After : Dec 29 20:58:46 2025 GMT Subject: CN=6949b107-f073 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:6e:46:e7:a6:2e:5b:6c:33:b2:b2:91:f3:9e: 6d:7e:25:03:01:ff:c9:ee:34:26:94:7c:fe:ee:ab: 1c:0e:70:cc:61:24:24:f9:77:c6:db:2f:3b:9a:6f: 4a:34:ab:00:3a:58:2d:fe:51:42:99:a8:69:b7:e4: 1c:a4:a3:d1:f1:6f:95:d0:f8:33:22:71:26:e7:85: 65:35:5c:20:2a:8c:03:d3:01:dd:03:cc:4e:df:28: cd:e0:10:06:d2:24:f6:88:42:23:9c:25:c3:5a:0a: 1e:31:5b:b0:2d:3a:56:16:be:ea:83:4f:d9:bf:94: 67:e0:f7:a7:31:ff:d4:d4:37:86:a5:05:a7:49:08: d7:7f:56:38:0e:13:9f:ee:7a:b1:5e:c5:04:e6:46: ee:21:e2:f4:2e:aa:7d:f9:74:37:73:93:b1:17:92: f1:3e:88:9f:bb:8e:d9:7f:c2:ba:46:4c:48:db:68: 52:3d:4a:3f:09:a6:d5:ae:c3:ff:98:a7:77:a8:60: 1a:a6:6e:a3:eb:c5:cf:b3:ad:f9:0b:5e:ee:57:28: 78:93:f8:b7:63:8b:ab:ef:b0:72:7f:37:9f:85:89: d9:5f:b3:d1:fc:90:be:0e:c9:3d:dc:3c:c2:e5:1f: aa:db:ca:fc:45:4f:91:eb:2d:6c:5e:7b:fe:7b:2d: 37:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:81:BC:D0:8C:AD:06:8A:1F:37:30:BA:69:6F:C8:D6:0B:99:8C:F2 X509v3 Authority Key Identifier: keyid:92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption da:1b:a2:46:85:84:ca:38:79:c8:fd:a1:12:74:29:a6:69:cb: ad:17:27:6f:b2:37:04:39:47:b4:dc:2c:69:a3:39:e4:b1:af: d8:da:98:ac:43:3e:7b:f5:b9:6c:7d:1c:a4:f8:06:59:72:52: 9c:5c:64:90:81:9f:c1:d1:2c:a0:33:9d:8f:12:05:58:49:28: 4f:6f:51:5d:31:b4:c5:56:fe:56:84:7a:e2:f7:db:6b:2f:2b: 12:b3:2c:ab:08:fc:c2:ce:ab:ad:44:2b:24:d8:70:8d:ea:ca: 84:82:54:3b:29:1c:ab:37:b1:50:1e:f8:9e:31:ac:3a:e3:dc: 85:10:95:e7:b8:d4:fe:3c:7e:0d:bc:03:05:f2:b5:d9:5d:bd: ef:9d:06:7d:52:e8:08:02:f8:1e:1b:4d:97:09:d0:d3:79:b0: 58:e5:ea:d4:15:b9:f8:e4:d6:f4:dd:2d:e5:59:63:08:18:31: 2f:0a:d6:01:c1:43:cf:d2:4e:c0:e7:42:1f:95:7b:83:35:ff: 73:00:79:f2:b1:90:65:c0:f4:ad:b6:6c:c3:82:1f:64:89:88: 65:b3:56:a1:e3:01:6c:bd:7e:b2:3e:a3:f3:d5:72:d0:fc:7a: e6:16:98:e0:48:6d:a2:e8:56:ab:a3:69:5a:86:0f:67:05:9c: c3:61:d8:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2QTMxMTAvBgNVBAUTKDkyNzU5OTNEQzlDNDMzRjI1RDM1ODBBQzc3RTM5NUQw NjY5NjQ4M0QwHhcNMjUxMjIyMjA1ODQ2WhcNMjUxMjI5MjA1ODQ2WjAYMRYwFAYD VQQDDA02OTQ5YjEwNy1mMDczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0W5G56YuW2wzsrKR855tfiUDAf/J7jQmlHz+7qscDnDMYSQk+XfG2y87mm9K NKsAOlgt/lFCmahpt+QcpKPR8W+V0PgzInEm54VlNVwgKowD0wHdA8xO3yjN4BAG 0iT2iEIjnCXDWgoeMVuwLTpWFr7qg0/Zv5Rn4PenMf/U1DeGpQWnSQjXf1Y4DhOf 7nqxXsUE5kbuIeL0Lqp9+XQ3c5OxF5LxPoifu47Zf8K6RkxI22hSPUo/CabVrsP/ mKd3qGAapm6j68XPs635C17uVyh4k/i3Y4ur77ByfzefhYnZX7PR/JC+Dsk93DzC 5R+q28r8RU+R6y1sXnv+ey03YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHCBvNCM rQaKHzcwumlvyNYLmYzyMB8GA1UdIwQYMBaAFJJ1mT3JxDPyXTWArHfjldBmlkg9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzZBMy84MzIwQkQxQzUx N0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1fSmROWUNzZC1PVjBHYVdT RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tuV1pQY25FTV9KZE5ZQ3NkLU9WMEdhV1NEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzZBMy84MzIwQkQxQzUxN0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1f SmROWUNzZC1PVjBHYVdTRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDaG6JGhYTKOHnI/aESdCmmacutFydvsjcEOUe03Cxpoznksa/Y2pis Qz579blsfRyk+AZZclKcXGSQgZ/B0SygM52PEgVYSShPb1FdMbTFVv5WhHri99tr LysSsyyrCPzCzqutRCsk2HCN6sqEglQ7KRyrN7FQHvieMaw649yFEJXnuNT+PH4N vAMF8rXZXb3vnQZ9UugIAvgeG02XCdDTebBY5erUFbn45Nb03S3lWWMIGDEvCtYB wUPP0k7A50IflXuDNf9zAHnysZBlwPSttmzDgh9kiYhls1ah4wFsvX6yPqPz1XLQ /HrmFpjgSG2i6Faro2lahg9nBZzDYdg+ -----END CERTIFICATE-----Generated at Wed Dec 24 15:42:56 2025 by rpki-client