This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft File: kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft (raw, json) Hash identifier: s/UByad809khnaTn21hTkWU1/42amBPy6DWGTed3R4I= Subject key identifier: 86:1A:21:6D:5A:EC:66:0B:D6:3D:22:E3:E8:5A:E5:B1:2E:A8:2C:1F Authority key identifier: 91:2A:B3:9F:C7:BB:CB:EF:1C:F2:67:E9:D3:F7:19:C9:A4:F0:A1:14 Certificate issuer: /CN=A91478C3/serialNumber=912AB39FC7BBCBEF1CF267E9D3F719C9A4F0A114 Certificate serial: 0EC5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft Manifest number: 0EBC Signing time: Mon 22 Dec 2025 17:18:49 +0000 Manifest this update: Mon 22 Dec 2025 17:18:49 +0000 Manifest next update: Mon 29 Dec 2025 17:18:49 +0000 Files and hashes: 1: kSqzn8e7y-8c8mfp0_cZyaTwoRQ.crl (hash: yiHubpGE/vGF3kpxe+MzcPkrhV6IHfQzwCqGHa4oBSI=) 2: 36477FF69D2E11E99A95DC2AC4F9AE02.roa (hash: alUOeCKJ2MY0GW2hS2QrAY4PPh9KutpvKrc9XRXM1WU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.crl rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:18:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3781 (0xec5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91478C3, serialNumber=912AB39FC7BBCBEF1CF267E9D3F719C9A4F0A114 Validity Not Before: Dec 22 17:18:49 2025 GMT Not After : Dec 29 17:18:49 2025 GMT Subject: CN=69497d79-aec9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:03:8e:7b:9d:47:75:af:19:47:12:ca:ad:af: 48:1a:16:55:17:d2:d5:cd:0f:f8:8d:b1:b2:7d:6d: 77:ae:98:af:68:2b:25:62:b5:8a:dd:87:a6:aa:b4: b4:6a:a8:4f:29:1f:87:19:24:d8:55:cd:7b:88:55: 00:6c:90:b1:cb:b1:19:37:f5:bd:ea:72:a3:d2:71: a8:7f:3f:7b:75:bb:34:fe:0e:82:38:d2:2a:fd:20: 79:0b:91:cb:a4:71:d9:39:a9:13:1b:c2:65:4e:63: 48:3c:3e:7a:42:c9:d0:2b:7a:6a:54:d2:61:a9:e4: 1b:b5:d6:38:54:dd:da:b1:36:85:6d:6c:9d:fe:31: 8c:72:8b:5e:d4:6d:7b:25:b7:44:54:c6:90:8f:e4: 5e:b2:13:83:18:a2:d5:81:ae:72:81:d8:09:4a:e9: e7:dd:2a:c9:5c:e7:e4:e4:94:d2:d3:86:09:0f:a2: 93:9b:2f:ff:8d:4f:ea:ab:39:7f:8c:3a:2b:64:2c: 4d:76:87:1c:33:b0:d3:4a:11:1a:53:19:d0:83:37: bf:ef:06:ef:2b:2f:3c:e4:0e:c4:c8:5d:a3:c1:01: 84:9e:9a:6b:ae:53:e0:78:1d:b1:7d:43:fe:8a:ee: a3:06:c3:19:bc:08:f0:86:ca:ec:65:72:25:81:35: 24:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:1A:21:6D:5A:EC:66:0B:D6:3D:22:E3:E8:5A:E5:B1:2E:A8:2C:1F X509v3 Authority Key Identifier: keyid:91:2A:B3:9F:C7:BB:CB:EF:1C:F2:67:E9:D3:F7:19:C9:A4:F0:A1:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:75:f8:47:c3:42:0f:2c:0b:f5:54:ba:a2:c3:10:e8:3a:ae: 68:3b:2e:a6:87:b8:2c:33:c3:16:17:a5:2f:dd:c0:51:64:c2: 1b:d6:8d:16:8e:48:3d:2a:22:d3:c7:22:d5:40:e1:99:bb:b0: 08:ef:63:0f:ed:f1:49:82:ef:a0:86:10:e5:ff:d0:76:7c:3d: a9:37:74:e4:38:9a:85:87:c3:e0:2a:1d:33:c5:6b:fe:35:15: 3e:6b:22:41:8d:d5:0d:c5:87:96:e6:f0:e9:07:4d:0b:0b:49: 1e:ae:73:a4:24:91:72:c5:43:03:f2:9c:be:56:f9:93:2f:0b: b0:ed:7b:96:8f:76:91:8f:0c:2d:0a:e2:f2:d5:e7:34:e1:fd: 40:9d:8f:64:3c:97:0d:c9:1c:a7:82:85:ae:d1:0f:62:a5:fc: ad:af:a4:08:b9:06:96:5a:82:5a:68:ef:a2:b9:74:5e:73:2f: 9a:80:5e:d9:ba:91:9d:73:03:fd:69:8e:13:5b:80:25:55:29: 30:42:81:72:99:62:30:c5:95:cd:bb:f5:21:93:6a:68:cc:8c: b0:39:8e:06:36:da:fe:ab:2b:22:20:8f:53:8d:c5:cd:27:37: ad:68:5a:a8:35:1a:83:60:dc:da:fc:58:40:2c:12:5e:6b:48: 76:5e:f3:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NDc4QzMxMTAvBgNVBAUTKDkxMkFCMzlGQzdCQkNCRUYxQ0YyNjdFOUQzRjcxOUM5 QTRGMEExMTQwHhcNMjUxMjIyMTcxODQ5WhcNMjUxMjI5MTcxODQ5WjAYMRYwFAYD VQQDDA02OTQ5N2Q3OS1hZWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxwOOe51Hda8ZRxLKra9IGhZVF9LVzQ/4jbGyfW13rpivaCslYrWK3YemqrS0 aqhPKR+HGSTYVc17iFUAbJCxy7EZN/W96nKj0nGofz97dbs0/g6CONIq/SB5C5HL pHHZOakTG8JlTmNIPD56QsnQK3pqVNJhqeQbtdY4VN3asTaFbWyd/jGMcote1G17 JbdEVMaQj+ReshODGKLVga5ygdgJSunn3SrJXOfk5JTS04YJD6KTmy//jU/qqzl/ jDorZCxNdoccM7DTShEaUxnQgze/7wbvKy885A7EyF2jwQGEnpprrlPgeB2xfUP+ iu6jBsMZvAjwhsrsZXIlgTUkkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIYaIW1a 7GYL1j0i4+ha5bEuqCwfMB8GA1UdIwQYMBaAFJEqs5/Hu8vvHPJn6dP3Gcmk8KEU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzhDMy9FM0Q5MTk0QzlE MkMxMUU5ODAyMjE4MjlDNEY5QUUwMi9rU3F6bjhlN3ktOGM4bWZwMF9jWnlhVHdv UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTcXpuOGU3eS04YzhtZnAwX2NaeWFUd29SUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzhDMy9FM0Q5MTk0QzlEMkMxMUU5ODAyMjE4MjlDNEY5QUUwMi9rU3F6bjhlN3kt OGM4bWZwMF9jWnlhVHdvUlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4dfhHw0IPLAv1VLqiwxDoOq5oOy6mh7gsM8MWF6Uv3cBRZMIb1o0W jkg9KiLTxyLVQOGZu7AI72MP7fFJgu+ghhDl/9B2fD2pN3TkOJqFh8PgKh0zxWv+ NRU+ayJBjdUNxYeW5vDpB00LC0kernOkJJFyxUMD8py+VvmTLwuw7XuWj3aRjwwt CuLy1ec04f1AnY9kPJcNyRyngoWu0Q9ipfytr6QIuQaWWoJaaO+iuXRecy+agF7Z upGdcwP9aY4TW4AlVSkwQoFymWIwxZXNu/Uhk2pozIywOY4GNtr+qysiII9TjcXN JzetaFqoNRqDYNza/FhALBJea0h2XvNR -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:44 2025 by rpki-client