This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft File: KXr2WH-YpJnreNLMrjYW70KfV1A.mft (raw, json) Hash identifier: CcOT/nm53RMG2zyL6My2mG+K1upzsW+/6MvU6jz55oM= Subject key identifier: B9:B4:8C:12:09:7B:9C:4B:42:23:4D:1E:1F:E8:87:37:4D:14:01:4C Authority key identifier: 29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 Certificate issuer: /CN=A91411BC/serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Certificate serial: 1391 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft Manifest number: 1388 Signing time: Mon 22 Dec 2025 16:41:57 +0000 Manifest this update: Mon 22 Dec 2025 16:41:56 +0000 Manifest next update: Mon 29 Dec 2025 16:41:56 +0000 Files and hashes: 1: KXr2WH-YpJnreNLMrjYW70KfV1A.crl (hash: L61X5xyymj7dVg9tPX+F/L4vOkfyEitBgman0LinkNU=) 2: B4996A22AC3411E88623474BC4F9AE02.roa (hash: 7JGYiU3kiC6kUGQIsQnoyjTh5wnU3N3mh36JHRhfnlU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:41:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5009 (0x1391) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91411BC, serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Validity Not Before: Dec 22 16:41:56 2025 GMT Not After : Dec 29 16:41:56 2025 GMT Subject: CN=694974d5-43f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:53:41:65:8d:41:c4:96:91:9a:bd:30:0c:23: ed:34:98:c2:12:9e:44:ce:d6:7a:4d:81:fc:4e:3b: 4f:5c:b6:f7:53:a6:f8:ce:a3:b2:86:1a:dd:a6:f8: b9:f5:ee:60:5f:8c:5c:a3:6c:08:03:65:8f:94:e2: eb:c1:de:a2:52:81:8f:f9:f4:73:09:b0:9c:c6:8b: 14:fc:5b:03:d0:0c:bd:f9:4e:f4:4f:23:3a:5a:f4: 06:c6:72:56:8f:28:16:75:d5:5f:6d:3c:7d:83:8c: 10:bd:76:dd:2a:c3:31:7d:fe:bc:d7:39:0e:0a:9f: 87:67:a4:0f:e1:52:5d:96:c7:6d:c7:39:20:2f:6d: 95:f5:3e:d9:96:69:30:25:c4:80:44:50:10:98:f4: 85:4a:55:26:7f:bc:bd:e5:d2:95:71:c7:17:37:95: ab:ca:d9:ab:14:4e:45:69:86:a0:0b:98:0c:77:38: d7:24:9c:90:75:ea:47:a3:8e:c6:a7:0d:e7:b1:1a: 45:2b:b2:30:63:45:13:1c:be:4f:0d:60:cb:8e:0f: 16:c7:14:8f:1a:73:6b:b0:8c:a1:45:ea:43:84:07: 0e:36:07:23:cb:11:60:e3:1d:df:cf:ad:1e:26:44: 64:d1:2b:bd:fa:85:75:93:f2:21:00:81:d1:c3:a6: b0:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:B4:8C:12:09:7B:9C:4B:42:23:4D:1E:1F:E8:87:37:4D:14:01:4C X509v3 Authority Key Identifier: keyid:29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:e2:16:06:56:44:cb:95:ad:97:6f:63:e8:25:16:f0:05:79: 5c:a0:7d:de:e7:60:8b:30:dc:99:b0:61:48:09:d6:8e:f0:1c: 6e:e9:3a:fd:91:f5:3b:ff:60:4f:50:39:9f:dc:74:90:4b:06: b2:e0:5f:88:ce:44:86:e0:af:e7:89:57:91:c6:c9:ab:fc:70: 71:72:cb:3a:e6:40:0e:62:69:16:6b:7b:12:36:13:07:87:d9: 9d:e5:4b:f9:95:14:0c:24:d8:fd:2c:4b:76:88:1c:e5:53:3c: da:36:a0:3b:01:97:38:a7:4c:4f:60:0b:2e:b6:05:30:5a:a6: ab:5b:64:94:6e:18:04:53:3b:c3:c0:38:56:6e:7b:4f:89:5e: 0d:42:d9:e8:09:30:7d:d0:90:3c:5c:4f:c4:b1:50:1d:e4:3f: 1e:61:c1:be:a6:26:7b:f1:80:cf:12:7c:95:e5:06:29:6f:5b: 44:f9:4f:91:1c:2a:cf:f3:5d:5c:07:fb:90:b2:22:6f:b1:8f: ff:ec:57:fa:9a:d4:f4:3d:b9:fc:66:f9:e0:47:43:f3:4b:29: 13:0e:a4:47:1c:43:c0:0a:34:af:49:97:79:2f:8d:da:18:f4: a1:c9:61:f4:a0:3a:6e:0c:44:3b:54:25:ee:1a:07:6d:50:41: 03:18:02:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE5EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDExQkMxMTAvBgNVBAUTKDI5N0FGNjU4N0Y5OEE0OTlFQjc4RDJDQ0FFMzYxNkVG NDI5RjU3NTAwHhcNMjUxMjIyMTY0MTU2WhcNMjUxMjI5MTY0MTU2WjAYMRYwFAYD VQQDDA02OTQ5NzRkNS00M2Y4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuFNBZY1BxJaRmr0wDCPtNJjCEp5EztZ6TYH8TjtPXLb3U6b4zqOyhhrdpvi5 9e5gX4xco2wIA2WPlOLrwd6iUoGP+fRzCbCcxosU/FsD0Ay9+U70TyM6WvQGxnJW jygWddVfbTx9g4wQvXbdKsMxff681zkOCp+HZ6QP4VJdlsdtxzkgL22V9T7Zlmkw JcSARFAQmPSFSlUmf7y95dKVcccXN5WrytmrFE5FaYagC5gMdzjXJJyQdepHo47G pw3nsRpFK7IwY0UTHL5PDWDLjg8WxxSPGnNrsIyhRepDhAcONgcjyxFg4x3fz60e JkRk0Su9+oV1k/IhAIHRw6awUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLm0jBIJ e5xLQiNNHh/ohzdNFAFMMB8GA1UdIwQYMBaAFCl69lh/mKSZ63jSzK42Fu9Cn1dQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTFCQy9FMzE3MUIwMkFD MzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBKbnJlTkxNcmpZVzcwS2ZW MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tYcjJXSC1ZcEpucmVOTE1yallXNzBLZlYxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTFCQy9FMzE3MUIwMkFDMzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBK bnJlTkxNcmpZVzcwS2ZWMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQ4hYGVkTLla2Xb2PoJRbwBXlcoH3e52CLMNyZsGFICdaO8Bxu6Tr9 kfU7/2BPUDmf3HSQSway4F+IzkSG4K/niVeRxsmr/HBxcss65kAOYmkWa3sSNhMH h9md5Uv5lRQMJNj9LEt2iBzlUzzaNqA7AZc4p0xPYAsutgUwWqarW2SUbhgEUzvD wDhWbntPiV4NQtnoCTB90JA8XE/EsVAd5D8eYcG+piZ78YDPEnyV5QYpb1tE+U+R HCrP811cB/uQsiJvsY//7Ff6mtT0Pbn8ZvngR0PzSykTDqRHHEPACjSvSZd5L43a GPShyWH0oDpuDEQ7VCXuGgdtUEEDGAJT -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:17 2025 by rpki-client