This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft File: kJUWWXx2-jz_qxUgjArpiGY0qgM.mft (raw, json) Hash identifier: G66uW7rtJEx/iRUqNnGFrQ3WgGwo1T1Q7nTSoJqwnVA= Subject key identifier: 25:57:DB:ED:5D:50:A3:48:3F:55:08:30:08:DF:A9:44:B8:41:BC:F0 Authority key identifier: 90:95:16:59:7C:76:FA:3C:FF:AB:15:20:8C:0A:E9:88:66:34:AA:03 Certificate issuer: /CN=A91847A2/serialNumber=909516597C76FA3CFFAB15208C0AE9886634AA03 Certificate serial: 0B0C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft Manifest number: 0B04 Signing time: Wed 10 Dec 2025 18:32:26 +0000 Manifest this update: Wed 10 Dec 2025 18:32:25 +0000 Manifest next update: Wed 17 Dec 2025 18:32:25 +0000 Files and hashes: 1: kJUWWXx2-jz_qxUgjArpiGY0qgM.crl (hash: FFsGJOCm3JZxOEZ4Hmilhn2XIhRGOvnN6wOCV4MgZEk=) 2: 54EDB8542E1811EBB4E80B1FC4F9AE02.roa (hash: 3V95dG8EwbjGC7EMndTVlVAHQWvt90W2HKQwUZ++P/E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.crl rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 18:32:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2828 (0xb0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847A2, serialNumber=909516597C76FA3CFFAB15208C0AE9886634AA03 Validity Not Before: Dec 10 18:32:25 2025 GMT Not After : Dec 17 18:32:25 2025 GMT Subject: CN=6939bcba-483d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:85:c5:60:65:51:6c:b0:64:32:03:5e:b6:59: 54:40:2c:7b:24:c5:cd:97:3a:f9:8c:73:05:f3:24: 77:ff:4f:84:0a:0c:f5:d7:11:75:f2:eb:e8:e4:94: 30:ec:ca:85:9b:ef:e0:f1:39:c4:dc:96:0b:20:5a: 0d:59:ed:dc:e6:04:52:b2:16:5b:82:c4:72:c4:0d: 49:16:4d:91:4d:1f:b3:22:c1:3b:3e:0f:0e:1b:fd: 87:72:c2:c8:6c:96:cc:8d:8d:98:ed:80:9e:9d:44: fb:32:0a:d5:3c:2a:49:35:8b:4b:1e:5b:6f:1c:1f: 12:c3:5c:20:14:7f:8c:5a:1a:56:69:89:9c:9d:fe: ed:12:5b:70:bf:27:1a:05:57:8d:57:19:d8:71:c9: a2:92:28:77:46:bc:5b:d4:db:4e:8b:f8:04:5e:72: 0b:d2:b2:de:ca:68:1f:be:32:09:1d:fc:4d:8e:48: bd:76:dd:16:b8:0b:20:1f:00:31:45:45:5c:84:87: f5:93:f5:38:2c:f1:c0:8c:1a:1d:44:39:59:9e:99: 54:13:0e:0b:c7:ac:80:55:fa:fe:55:6c:fc:e7:40: 77:a1:75:30:a6:f9:83:63:9f:a7:7d:8b:49:16:f6: cb:9c:0b:47:ae:4e:43:8f:54:a0:44:cb:a6:94:79: d6:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:57:DB:ED:5D:50:A3:48:3F:55:08:30:08:DF:A9:44:B8:41:BC:F0 X509v3 Authority Key Identifier: keyid:90:95:16:59:7C:76:FA:3C:FF:AB:15:20:8C:0A:E9:88:66:34:AA:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:79:6f:63:e4:6f:92:62:81:65:61:39:a2:41:0e:b7:35:2c: 6c:fb:c3:f5:15:8b:d6:61:c6:91:5c:89:be:95:f8:21:00:d2: db:69:45:10:7b:48:27:f6:bc:8a:f2:9f:b2:22:4d:69:b9:58: 01:b3:71:b1:1f:78:ff:f3:7c:ea:72:e9:b5:a9:af:b4:96:73: 77:16:dd:e2:08:37:21:75:d7:dd:41:97:a4:6c:2f:66:ed:17: 3f:54:37:de:a7:c3:c6:27:f5:3a:49:d3:dd:37:ff:35:21:b4: 60:25:7a:13:a3:6a:b1:3e:52:da:65:5a:fe:32:d8:19:0e:3e: 51:12:e8:1e:a0:e6:7a:e7:2f:ae:55:21:42:72:ea:f2:4d:ef: f6:21:50:7e:31:d2:3c:e5:2e:1e:77:2c:ae:e8:d3:9d:1d:a2: 48:c8:55:f0:6b:87:00:2a:0f:8d:4a:b9:0b:5e:2c:85:5a:cd: 93:63:2d:b2:d8:9b:b4:9f:cf:73:78:d8:b2:13:76:4b:28:75: f4:d9:2d:43:39:b6:c4:db:79:b4:54:8b:06:53:8a:6b:8a:ab: 11:d3:5e:ac:08:67:c3:4b:43:c3:1a:4a:ce:7c:cf:cf:ec:68: 8a:16:32:e8:db:0b:21:92:eb:c6:91:42:ff:32:5b:41:fc:7d: 73:4b:96:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QTIxMTAvBgNVBAUTKDkwOTUxNjU5N0M3NkZBM0NGRkFCMTUyMDhDMEFFOTg4 NjYzNEFBMDMwHhcNMjUxMjEwMTgzMjI1WhcNMjUxMjE3MTgzMjI1WjAYMRYwFAYD VQQDEw02OTM5YmNiYS00ODNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsIXFYGVRbLBkMgNetllUQCx7JMXNlzr5jHMF8yR3/0+ECgz11xF18uvo5JQw 7MqFm+/g8TnE3JYLIFoNWe3c5gRSshZbgsRyxA1JFk2RTR+zIsE7Pg8OG/2HcsLI bJbMjY2Y7YCenUT7MgrVPCpJNYtLHltvHB8Sw1wgFH+MWhpWaYmcnf7tEltwvyca BVeNVxnYccmikih3Rrxb1NtOi/gEXnIL0rLeymgfvjIJHfxNjki9dt0WuAsgHwAx RUVchIf1k/U4LPHAjBodRDlZnplUEw4Lx6yAVfr+VWz850B3oXUwpvmDY5+nfYtJ FvbLnAtHrk5Dj1SgRMumlHnWMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCVX2+1d UKNIP1UIMAjfqUS4QbzwMB8GA1UdIwQYMBaAFJCVFll8dvo8/6sVIIwK6YhmNKoD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdBMi9BRUQzRDM1RTU5 NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rSlVXV1h4Mi1qel9xeFVnakFycGlHWTBx Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tKVVdXWHgyLWp6X3F4VWdqQXJwaUdZMHFnTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdBMi9BRUQzRDM1RTU5NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rSlVXV1h4Mi1q el9xeFVnakFycGlHWTBxZ00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBveW9j5G+SYoFlYTmiQQ63NSxs+8P1FYvWYcaRXIm+lfghANLbaUUQ e0gn9ryK8p+yIk1puVgBs3GxH3j/83zqcum1qa+0lnN3Ft3iCDchddfdQZekbC9m 7Rc/VDfep8PGJ/U6SdPdN/81IbRgJXoTo2qxPlLaZVr+MtgZDj5REugeoOZ65y+u VSFCcuryTe/2IVB+MdI85S4edyyu6NOdHaJIyFXwa4cAKg+NSrkLXiyFWs2TYy2y 2Ju0n89zeNiyE3ZLKHX02S1DObbE23m0VIsGU4priqsR016sCGfDS0PDGkrOfM/P 7GiKFjLo2wshkuvGkUL/MltB/H1zS5aI -----END CERTIFICATE-----Generated at Thu Dec 11 04:14:08 2025 by rpki-client