This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.mft File: pkvkSssA5L2uRJGw-gzXCZ0scnw.mft (raw, json) Hash identifier: 9fQwWu8jvuX3RoaKiMezVUSa9ZAHUVTdLjeBA5gO72s= Subject key identifier: C1:23:51:DB:11:D5:AB:3D:EC:F8:B3:DE:5D:61:B2:6E:88:CE:26:31 Authority key identifier: A6:4B:E4:4A:CB:00:E4:BD:AE:44:91:B0:FA:0C:D7:09:9D:2C:72:7C Certificate issuer: /CN=A91288D9/serialNumber=A64BE44ACB00E4BDAE4491B0FA0CD7099D2C727C Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pkvkSssA5L2uRJGw-gzXCZ0scnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.mft Manifest number: CA Signing time: Wed 24 Dec 2025 18:40:58 +0000 Manifest this update: Wed 24 Dec 2025 18:40:57 +0000 Manifest next update: Wed 31 Dec 2025 18:40:57 +0000 Files and hashes: 1: pkvkSssA5L2uRJGw-gzXCZ0scnw.crl (hash: pQQk2nszpvUvJeRFxZR4kBV+ptvWTJYqyEy2JJyoLUg=) 2: 8D431594FFDF11EF8DF72930C4F9AE02.roa (hash: pDBpwWzy3RFOzY6mOa1pibkze94QAdG3zJbynRenhAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.crl rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pkvkSssA5L2uRJGw-gzXCZ0scnw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 15:20:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91288D9, serialNumber=A64BE44ACB00E4BDAE4491B0FA0CD7099D2C727C Validity Not Before: Dec 24 18:40:57 2025 GMT Not After : Dec 31 18:40:57 2025 GMT Subject: CN=694c33ba-8cb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:cb:12:76:8d:36:29:74:24:9e:89:3a:ee:75: 1b:02:8b:7e:8f:8e:90:94:21:10:27:dc:5b:c3:fa: 77:88:8b:13:8e:fb:5b:8d:42:3e:e6:33:66:fe:56: 4f:c1:4e:04:21:df:02:60:fa:89:b2:ff:9a:18:cb: 9e:a5:89:ca:19:dc:09:94:a1:5e:3a:77:f1:0a:3f: c4:d3:6a:0e:17:e6:61:80:a3:19:d4:e9:6c:d1:eb: e9:ea:7f:e0:48:7e:f1:f7:5c:5a:58:fc:b0:2f:df: 5a:58:5f:aa:5d:12:ce:1d:8f:ae:35:84:23:af:fc: a4:c0:e2:23:d9:68:c9:5f:de:f5:c7:97:ae:06:f0: e5:ec:1a:9d:bf:cf:ca:87:99:2c:72:e6:5d:c9:fc: a1:3d:39:5b:48:88:a4:48:10:56:39:a2:8c:0e:02: d0:71:7a:29:c5:4e:f1:2e:55:79:30:28:fa:39:d4: 6f:f4:25:3a:ce:7b:90:7b:02:b8:5e:82:65:e5:e8: e1:1e:35:83:9c:ec:17:22:34:23:04:47:ff:dd:9f: 4b:76:28:63:13:75:f3:42:57:1e:07:48:d0:1b:c0: 9a:d4:1d:c6:d3:64:61:e8:66:0f:1d:42:5d:d1:72: 1c:82:bb:e4:a6:58:01:a3:84:d6:07:88:63:00:65: 83:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:23:51:DB:11:D5:AB:3D:EC:F8:B3:DE:5D:61:B2:6E:88:CE:26:31 X509v3 Authority Key Identifier: keyid:A6:4B:E4:4A:CB:00:E4:BD:AE:44:91:B0:FA:0C:D7:09:9D:2C:72:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pkvkSssA5L2uRJGw-gzXCZ0scnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:bb:7a:26:5d:7a:3f:03:79:e9:a6:60:ae:56:58:e5:d2:2b: db:3d:c8:28:64:dc:10:47:a6:01:76:1a:de:b7:97:29:8b:93: d4:81:68:24:99:c0:36:17:82:3a:14:41:09:07:0f:cc:65:eb: 84:a9:85:1b:0b:9a:82:69:4d:21:37:6a:92:0a:41:89:36:a8: da:dd:de:e8:0f:9f:f8:e5:0b:89:75:47:53:58:53:1e:6a:64: 55:80:fe:0f:6f:af:75:e0:6e:b6:dc:47:45:36:3c:9a:a4:78: 94:85:5e:b4:2b:d2:73:41:00:71:84:6d:d4:8c:3b:6d:a8:da: 0c:ab:02:9d:ce:6e:7c:24:c0:86:63:ee:f0:b3:97:82:87:c6: a7:21:57:2e:1f:73:47:85:05:5a:3f:6b:2f:ca:c9:f0:af:27: 5e:00:e2:18:14:23:5e:91:f7:49:40:e3:de:1f:cd:1b:ca:76: bf:0d:18:f2:2b:38:73:53:4d:bd:3e:ff:33:4c:53:ee:b3:93: b9:e6:5e:46:c9:8c:6f:16:90:c8:58:3c:9c:4d:89:40:60:32: a7:83:e7:84:12:a4:0c:5b:5b:a7:84:13:07:00:8b:ef:2c:26: 8a:d5:7a:6b:cd:89:a9:a3:57:1f:22:1c:3e:af:8b:8a:d5:0f: e0:97:f4:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg4RDkxMTAvBgNVBAUTKEE2NEJFNDRBQ0IwMEU0QkRBRTQ0OTFCMEZBMENENzA5 OUQyQzcyN0MwHhcNMjUxMjI0MTg0MDU3WhcNMjUxMjMxMTg0MDU3WjAYMRYwFAYD VQQDDA02OTRjMzNiYS04Y2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2csSdo02KXQknok67nUbAot+j46QlCEQJ9xbw/p3iIsTjvtbjUI+5jNm/lZP wU4EId8CYPqJsv+aGMuepYnKGdwJlKFeOnfxCj/E02oOF+ZhgKMZ1Ols0evp6n/g SH7x91xaWPywL99aWF+qXRLOHY+uNYQjr/ykwOIj2WjJX971x5euBvDl7Bqdv8/K h5kscuZdyfyhPTlbSIikSBBWOaKMDgLQcXopxU7xLlV5MCj6OdRv9CU6znuQewK4 XoJl5ejhHjWDnOwXIjQjBEf/3Z9LdihjE3XzQlceB0jQG8Ca1B3G02Rh6GYPHUJd 0XIcgrvkplgBo4TWB4hjAGWDAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMEjUdsR 1as97Piz3l1hsm6IziYxMB8GA1UdIwQYMBaAFKZL5ErLAOS9rkSRsPoM1wmdLHJ8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODhEOS9GODNFM0ZDRUFE QkMxMUVGQjMwMjk4M0VDNEY5QUUwMi9wa3ZrU3NzQTVMMnVSSkd3LWd6WENaMHNj bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BrdmtTc3NBNUwydVJKR3ctZ3pYQ1owc2Nudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODhEOS9GODNFM0ZDRUFEQkMxMUVGQjMwMjk4M0VDNEY5QUUwMi9wa3ZrU3NzQTVM MnVSSkd3LWd6WENaMHNjbncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1u3omXXo/A3nppmCuVljl0ivbPcgoZNwQR6YBdhret5cpi5PUgWgk mcA2F4I6FEEJBw/MZeuEqYUbC5qCaU0hN2qSCkGJNqja3d7oD5/45QuJdUdTWFMe amRVgP4Pb6914G623EdFNjyapHiUhV60K9JzQQBxhG3UjDttqNoMqwKdzm58JMCG Y+7ws5eCh8anIVcuH3NHhQVaP2svysnwrydeAOIYFCNekfdJQOPeH80byna/DRjy KzhzU029Pv8zTFPus5O55l5GyYxvFpDIWDycTYlAYDKng+eEEqQMW1unhBMHAIvv LCaK1XprzYmpo1cfIhw+r4uK1Q/gl/QJ -----END CERTIFICATE-----Generated at Wed Dec 24 21:21:52 2025 by rpki-client