This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft File: KaAJAT90Md42nADKtUcWypNFJtM.mft (raw, json) Hash identifier: ppnrUQqusBKOwoEOhvij5OgDwpxnXlXPDrW6MC8XayA= Subject key identifier: 71:51:17:A9:B4:E4:71:19:7C:F3:CC:F8:25:00:2C:C2:24:05:6B:0B Authority key identifier: 29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 Certificate issuer: /CN=A91651CF/serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Certificate serial: E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft Manifest number: E3 Signing time: Tue 23 Dec 2025 04:27:21 +0000 Manifest this update: Tue 23 Dec 2025 04:27:21 +0000 Manifest next update: Tue 30 Dec 2025 04:27:21 +0000 Files and hashes: 1: KaAJAT90Md42nADKtUcWypNFJtM.crl (hash: l4ZGIWhHPQr2bMdCadzNxs0uiT/Gn5Qz/c+NgiymVVs=) 2: C731AFD03B9A11F0B7924C1FC4F9AE02.roa (hash: EmmsOqkiT007YavefYEjF7jWl6E1fCl7urJJNV6C63g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:27:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91651CF, serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Validity Not Before: Dec 23 04:27:21 2025 GMT Not After : Dec 30 04:27:21 2025 GMT Subject: CN=694a1a29-dd12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:cb:ff:10:c6:35:fd:c4:da:51:94:51:e5:be: 83:bd:61:52:57:01:5a:22:25:07:73:fa:b4:98:1c: 9b:1e:53:30:b8:cc:93:25:a2:76:17:dd:1b:4c:d1: 7c:2f:8e:a3:ff:cf:ed:3b:22:8e:39:41:07:80:f9: 29:26:43:56:52:b9:f4:85:47:36:38:a7:83:cb:7a: 3b:8a:c5:0c:67:99:5e:c7:39:01:56:ab:51:b7:bc: 60:99:32:c6:a8:db:b5:aa:7e:74:d5:eb:89:26:fd: c0:50:37:9d:cf:7d:b9:62:1f:78:e0:26:94:0e:82: 9f:4f:8c:ee:8e:f8:d1:f6:d4:6c:04:26:02:80:b7: 55:99:1e:8a:88:48:6e:f9:61:a6:28:a8:45:78:63: 11:6b:3b:e2:eb:85:69:5d:d4:b6:e5:dd:ef:72:05: 9e:4c:36:98:a1:0f:c5:cb:d9:84:91:b3:b4:5d:bb: cc:97:6b:9d:1e:e0:f5:d1:79:cb:2b:44:34:72:72: bc:31:6e:88:fb:f8:ed:ff:8d:64:51:6e:f4:42:b5: 84:f9:91:0d:19:f7:72:14:84:06:5d:11:84:f6:36: af:55:c8:4b:4c:7f:12:72:42:2a:ae:44:01:77:8c: ac:6f:2c:fd:29:cd:e4:6c:ff:13:fc:f5:fb:66:ff: 67:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:51:17:A9:B4:E4:71:19:7C:F3:CC:F8:25:00:2C:C2:24:05:6B:0B X509v3 Authority Key Identifier: keyid:29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:1d:f6:09:42:80:10:e3:e2:87:46:6d:2e:b3:03:23:9e:21: 8f:7e:f4:69:ea:8c:78:60:b0:f5:fa:fe:4c:43:de:b3:26:8f: ac:90:c2:6b:61:88:80:11:13:03:2b:fb:ba:ae:a5:05:9c:05: 0e:44:ec:58:ba:65:22:b6:a2:6f:55:37:ce:6b:6e:6b:6e:ff: e9:99:a3:1a:81:e0:97:d3:e7:0d:b3:aa:55:68:f6:69:20:72: 05:92:41:c4:f8:b5:c9:31:19:9c:5e:8a:23:3a:c2:78:e7:73: f5:f3:1b:ab:92:d1:7b:04:e5:0a:b6:f3:27:88:3f:5a:f5:f5: 5a:d4:78:6c:99:bc:4b:73:0a:85:c1:bf:0f:44:ec:ac:45:e2: 01:56:aa:4a:08:62:c1:c6:38:a5:02:ac:f2:e5:a3:a8:cc:7a: 50:64:45:23:3d:cb:79:fd:69:65:e1:42:e2:0a:19:14:26:70: 0b:3a:43:a8:70:20:00:6a:bf:74:18:51:fa:81:11:4e:7a:30: 21:d9:43:9b:98:80:d1:ee:7a:1d:ef:c9:57:ac:31:9a:3f:94: 1e:46:7d:f6:01:97:ec:1a:3f:98:07:31:8c:f6:cb:60:3b:cd: a7:ca:f7:ec:d5:02:99:ac:de:b6:60:d6:d1:84:8a:1c:65:90: fc:47:80:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUxQ0YxMTAvBgNVBAUTKDI5QTAwOTAxM0Y3NDMxREUzNjlDMDBDQUI1NDcxNkNB OTM0NTI2RDMwHhcNMjUxMjIzMDQyNzIxWhcNMjUxMjMwMDQyNzIxWjAYMRYwFAYD VQQDDA02OTRhMWEyOS1kZDEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Mv/EMY1/cTaUZRR5b6DvWFSVwFaIiUHc/q0mBybHlMwuMyTJaJ2F90bTNF8 L46j/8/tOyKOOUEHgPkpJkNWUrn0hUc2OKeDy3o7isUMZ5lexzkBVqtRt7xgmTLG qNu1qn501euJJv3AUDedz325Yh944CaUDoKfT4zujvjR9tRsBCYCgLdVmR6KiEhu +WGmKKhFeGMRazvi64VpXdS25d3vcgWeTDaYoQ/Fy9mEkbO0XbvMl2udHuD10XnL K0Q0cnK8MW6I+/jt/41kUW70QrWE+ZENGfdyFIQGXRGE9javVchLTH8SckIqrkQB d4ysbyz9Kc3kbP8T/PX7Zv9nowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHFRF6m0 5HEZfPPM+CUALMIkBWsLMB8GA1UdIwQYMBaAFCmgCQE/dDHeNpwAyrVHFsqTRSbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTFDRi8zMDQzNjM1Qzg2 RDcxMUVGODU0REQ0N0JDNEY5QUUwMi9LYUFKQVQ5ME1kNDJuQURLdFVjV3lwTkZK dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0thQUpBVDkwTWQ0Mm5BREt0VWNXeXBORkp0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTFDRi8zMDQzNjM1Qzg2RDcxMUVGODU0REQ0N0JDNEY5QUUwMi9LYUFKQVQ5ME1k NDJuQURLdFVjV3lwTkZKdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0HfYJQoAQ4+KHRm0uswMjniGPfvRp6ox4YLD1+v5MQ96zJo+skMJr YYiAERMDK/u6rqUFnAUOROxYumUitqJvVTfOa25rbv/pmaMageCX0+cNs6pVaPZp IHIFkkHE+LXJMRmcXoojOsJ453P18xurktF7BOUKtvMniD9a9fVa1HhsmbxLcwqF wb8PROysReIBVqpKCGLBxjilAqzy5aOozHpQZEUjPct5/Wll4ULiChkUJnALOkOo cCAAar90GFH6gRFOejAh2UObmIDR7nod78lXrDGaP5QeRn32AZfsGj+YBzGM9stg O82nyvfs1QKZrN62YNbRhIocZZD8R4CB -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:26 2025 by rpki-client