This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft File: 2kcnine73_Ktn5igEaKnoufNYNg.mft (raw, json) Hash identifier: 4Pg8WHedTq4gGBvigvt5Ve8hm39p7+n0Qf2p/SynvSo= Subject key identifier: F7:80:12:5C:EB:CA:DB:B0:92:69:83:A9:49:BC:93:DF:10:83:7E:49 Authority key identifier: DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 Certificate issuer: /CN=A91393BE/serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Certificate serial: 0107 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft Manifest number: 0104 Signing time: Tue 23 Dec 2025 04:01:53 +0000 Manifest this update: Tue 23 Dec 2025 04:01:52 +0000 Manifest next update: Tue 30 Dec 2025 04:01:52 +0000 Files and hashes: 1: 2kcnine73_Ktn5igEaKnoufNYNg.crl (hash: hCl44bQitiusRDJEU144aa1sTQho2m3xWcyBeKkWZmk=) 2: 05A966C652DB11EF990CB840C4F9AE02.roa (hash: uXZnZkbG2vzbvvdgakCXJGAe3jQgXul+4/g2eod9UgM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91393BE, serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Validity Not Before: Dec 23 04:01:52 2025 GMT Not After : Dec 30 04:01:52 2025 GMT Subject: CN=694a1431-5276 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:81:4f:78:0b:47:55:23:ac:8f:17:1c:f0:a6: c3:ba:70:91:92:6d:d5:51:fa:2f:e6:64:df:bb:82: b6:09:14:ba:d6:3f:0f:ed:47:26:2c:ca:79:11:ef: c1:a1:3c:5a:82:39:7c:71:d6:99:d8:9f:a5:c2:b4: 22:7c:4a:b1:cc:87:f1:c5:9e:ce:36:5e:45:48:63: 92:d1:76:27:2c:8e:c7:4b:c0:e4:50:33:f4:59:f3: 0c:c6:0f:9d:d4:ce:53:d0:33:a4:9e:81:3c:d7:77: 2e:1e:a6:4c:ee:1f:a3:e8:7b:37:ff:91:29:bf:41: 16:70:88:30:c1:34:ba:5a:5d:39:13:d3:37:46:93: d4:ae:34:20:a8:43:c2:2d:17:ac:f6:15:13:3f:55: 83:80:3c:fa:dd:75:4f:39:e0:d8:7e:c5:74:4a:55: 01:ed:22:44:d9:d6:1b:48:d3:1a:98:2b:63:c0:b3: 79:5d:95:c4:d3:97:56:13:90:2e:6c:16:dd:5b:52: 8c:6e:8b:47:72:96:51:99:d3:d3:a3:44:a4:65:b9: 84:66:14:c3:fc:57:95:1e:ed:52:21:d1:aa:6b:12: 92:80:43:03:21:ae:6c:46:2c:56:82:1e:b4:9d:a4: 7d:f9:b8:48:d9:8b:1e:2d:cd:54:dc:15:d2:fa:16: 34:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:80:12:5C:EB:CA:DB:B0:92:69:83:A9:49:BC:93:DF:10:83:7E:49 X509v3 Authority Key Identifier: keyid:DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:ef:43:76:da:68:42:8e:b7:4f:8f:b7:c2:88:be:d2:7b:a8: e7:84:94:77:d1:1b:8e:eb:1f:53:47:6d:91:2e:6c:f1:48:73: d9:21:b8:60:90:fb:f1:fa:d7:f5:36:7e:45:72:98:cf:cd:80: 5c:e4:e8:31:87:1a:36:64:49:8e:e5:e5:d1:d0:7a:1f:df:0f: 25:af:d1:a8:19:ed:8e:6a:01:01:1e:ff:8e:29:cd:d3:a5:f3: dc:84:3f:15:75:77:99:cd:53:e7:0d:b3:0a:3e:df:47:cf:c0: 43:e6:66:4d:d8:e8:63:9b:fb:f4:5e:b8:ac:28:02:5e:39:28: 78:d4:84:b7:7c:65:18:c3:69:84:e9:9f:dc:2a:aa:e4:5d:a3: fa:de:13:f5:bd:51:29:28:34:c0:3a:5f:8a:df:aa:f3:13:08: 4f:5a:43:12:c1:62:f3:b4:78:53:8c:c3:ce:bf:0d:4a:b5:da: cb:c7:a3:e7:33:af:95:9d:6a:5c:71:cb:03:85:e4:d9:93:03: 0e:46:79:1b:5e:9c:5a:19:fa:bc:0c:4a:7a:3c:f4:2d:33:aa: 29:4f:15:20:0b:d3:ea:b4:30:7c:ea:58:9d:7a:9d:3b:2f:c4: 86:54:ab:e0:67:c8:14:7d:7b:24:65:c4:e4:6f:16:ba:5a:1e: c0:5f:90:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzQkUxMTAvBgNVBAUTKERBNDcyNzhBNzdCQkRGRjJBRDlGOThBMDExQTJBN0Ey RTdDRDYwRDgwHhcNMjUxMjIzMDQwMTUyWhcNMjUxMjMwMDQwMTUyWjAYMRYwFAYD VQQDDA02OTRhMTQzMS01Mjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsYFPeAtHVSOsjxcc8KbDunCRkm3VUfov5mTfu4K2CRS61j8P7UcmLMp5Ee/B oTxagjl8cdaZ2J+lwrQifEqxzIfxxZ7ONl5FSGOS0XYnLI7HS8DkUDP0WfMMxg+d 1M5T0DOknoE813cuHqZM7h+j6Hs3/5Epv0EWcIgwwTS6Wl05E9M3RpPUrjQgqEPC LRes9hUTP1WDgDz63XVPOeDYfsV0SlUB7SJE2dYbSNMamCtjwLN5XZXE05dWE5Au bBbdW1KMbotHcpZRmdPTo0SkZbmEZhTD/FeVHu1SIdGqaxKSgEMDIa5sRixWgh60 naR9+bhI2YseLc1U3BXS+hY03QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPeAElzr ytuwkmmDqUm8k98Qg35JMB8GA1UdIwQYMBaAFNpHJ4p3u9/yrZ+YoBGip6LnzWDY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTNCRS83NzQxNjE0QzUy RDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNfS3RuNWlnRWFLbm91Zk5Z TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY25pbmU3M19LdG41aWdFYUtub3VmTllOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTNCRS83NzQxNjE0QzUyRDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNf S3RuNWlnRWFLbm91Zk5ZTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCR70N22mhCjrdPj7fCiL7Se6jnhJR30RuO6x9TR22RLmzxSHPZIbhg kPvx+tf1Nn5FcpjPzYBc5Ogxhxo2ZEmO5eXR0Hof3w8lr9GoGe2OagEBHv+OKc3T pfPchD8VdXeZzVPnDbMKPt9Hz8BD5mZN2Ohjm/v0XrisKAJeOSh41IS3fGUYw2mE 6Z/cKqrkXaP63hP1vVEpKDTAOl+K36rzEwhPWkMSwWLztHhTjMPOvw1KtdrLx6Pn M6+VnWpcccsDheTZkwMORnkbXpxaGfq8DEp6PPQtM6opTxUgC9PqtDB86lidep07 L8SGVKvgZ8gUfXskZcTkbxa6Wh7AX5DI -----END CERTIFICATE-----Generated at Wed Dec 24 17:40:33 2025 by rpki-client