This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft File: _0KzQ2BElUaW_-CLDuGXXGxbjW0.mft (raw, json) Hash identifier: KuQR7yaoDIf3Pfcmb5FhdDOrbrH2Ye9/5YpJU/z7Kj0= Subject key identifier: 02:17:98:E9:7E:0D:30:A1:FD:25:4D:60:1D:59:84:DE:C1:26:F3:68 Authority key identifier: FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D Certificate issuer: /CN=A91864A7/serialNumber=FF42B3436044954696FFE08B0EE1975C6C5B8D6D Certificate serial: 021E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft Manifest number: 020E Signing time: Fri 19 Dec 2025 01:36:44 +0000 Manifest this update: Fri 19 Dec 2025 01:36:44 +0000 Manifest next update: Fri 26 Dec 2025 01:36:44 +0000 Files and hashes: 1: _0KzQ2BElUaW_-CLDuGXXGxbjW0.crl (hash: e2iKzjdoPFe4y4sjrY3KsrgVgbKqGWhtNUqy+GdaUrY=) 2: D62511F6C41D11F08D2E621EC4F9AE02.roa (hash: KbkzuU5qC68AOUq0JQmcukOnqpcHO3TNFWyQWU16A8E=) 3: B34D1A26F6C811EEBC4BE00BC4F9AE02.roa (hash: P40/jJ7W+/O+PiJ/8mhL5CI3A7Dxo/gaXDncIVQuKdo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:36:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 542 (0x21e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91864A7, serialNumber=FF42B3436044954696FFE08B0EE1975C6C5B8D6D Validity Not Before: Dec 19 01:36:44 2025 GMT Not After : Dec 26 01:36:44 2025 GMT Subject: CN=6944ac2c-e791 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:3e:3f:d2:e0:fd:f2:0a:f5:40:f0:a1:0f:e7: e9:97:48:6e:4c:85:99:8e:00:53:e8:07:1b:55:5d: ae:51:15:b3:85:bf:d2:3c:2a:9d:82:be:24:3c:54: ce:ce:c7:8e:64:04:59:ef:c3:30:34:de:15:cb:a2: 87:ab:9d:c4:a7:61:ad:3f:68:29:3c:d5:4c:dc:6c: 16:8b:0b:f9:33:80:ef:49:4d:ad:68:35:51:d4:43: 18:df:a0:54:33:2e:25:ed:24:a6:fd:35:dc:0b:21: 13:7a:14:96:cc:60:95:08:a0:35:46:e1:ef:3f:a4: ae:ce:f1:71:65:f6:3d:1f:73:a1:dc:03:56:89:4b: 3c:40:ef:9b:ca:0d:cd:37:02:0b:52:c4:35:b6:49: 72:2d:c8:55:d4:1c:3c:53:8f:9b:b2:01:3b:22:44: 7e:2e:be:a1:f3:3d:63:bb:36:d6:f2:d8:9b:13:c7: 07:44:0c:64:59:2e:54:e8:07:ed:5c:9c:fe:10:eb: be:06:45:a2:9c:9c:a2:60:db:20:25:74:cd:0f:2d: 01:06:43:6c:6d:ba:0d:a7:ce:64:71:d9:e9:6e:74: 05:6e:2d:11:df:10:2c:ae:64:e4:ac:c6:fa:b2:a0: 11:ec:9e:f3:bb:ce:ef:51:16:a5:50:4a:ef:52:72: 42:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:17:98:E9:7E:0D:30:A1:FD:25:4D:60:1D:59:84:DE:C1:26:F3:68 X509v3 Authority Key Identifier: keyid:FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:51:18:67:d9:db:c3:61:be:de:98:e7:43:1f:5c:81:db:95: 6a:d2:39:5f:75:58:d2:da:44:f7:81:fe:1d:a9:6c:47:91:8f: e0:f6:6a:3c:53:4c:78:f1:8f:a3:36:e5:94:16:5e:7b:45:e8: 08:9f:54:08:71:33:7e:22:e8:6b:46:aa:d6:eb:86:ce:f2:ab: 75:5d:16:35:3d:02:3d:e6:7a:21:33:fc:33:90:b0:6f:a2:58: a1:50:5e:cd:3e:2f:84:ac:b8:60:ae:44:82:ae:41:f1:81:65: 00:87:8c:e2:f5:23:02:51:72:c2:f9:5d:16:bf:a9:6c:09:5b: 97:09:f8:c1:37:d8:89:75:22:24:91:c3:0a:d4:b9:cb:ab:e3: b2:19:5b:a5:b3:53:11:4b:e0:ca:50:70:41:39:56:ac:bf:33: bb:2b:70:5f:dc:b4:f8:1a:55:01:44:d2:01:7d:36:6b:5a:ce: 3e:0d:aa:4b:e7:37:cb:df:72:f6:f4:76:3e:b4:c0:bd:a8:99: 6c:43:8e:24:60:a1:e2:c7:f3:c9:96:97:76:37:bd:22:d0:5e: 48:48:e1:97:51:55:1c:87:e5:b7:51:4c:71:2e:1a:83:00:2d: 57:d4:59:bd:28:7e:c9:51:78:ab:2f:81:9f:a8:ce:46:27:13: e7:7d:5f:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY0QTcxMTAvBgNVBAUTKEZGNDJCMzQzNjA0NDk1NDY5NkZGRTA4QjBFRTE5NzVD NkM1QjhENkQwHhcNMjUxMjE5MDEzNjQ0WhcNMjUxMjI2MDEzNjQ0WjAYMRYwFAYD VQQDDA02OTQ0YWMyYy1lNzkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxD4/0uD98gr1QPChD+fpl0huTIWZjgBT6AcbVV2uURWzhb/SPCqdgr4kPFTO zseOZARZ78MwNN4Vy6KHq53Ep2GtP2gpPNVM3GwWiwv5M4DvSU2taDVR1EMY36BU My4l7SSm/TXcCyETehSWzGCVCKA1RuHvP6SuzvFxZfY9H3Oh3ANWiUs8QO+byg3N NwILUsQ1tklyLchV1Bw8U4+bsgE7IkR+Lr6h8z1juzbW8tibE8cHRAxkWS5U6Aft XJz+EOu+BkWinJyiYNsgJXTNDy0BBkNsbboNp85kcdnpbnQFbi0R3xAsrmTkrMb6 sqAR7J7zu87vURalUErvUnJCuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAIXmOl+ DTCh/SVNYB1ZhN7BJvNoMB8GA1UdIwQYMBaAFP9Cs0NgRJVGlv/giw7hl1xsW41t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjRBNy9DODA1NUZENkM5 MjUxMUVEODA5MzYxNDlDNEY5QUUwMi9fMEt6UTJCRWxVYVdfLUNMRHVHWFhHeGJq VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18wS3pRMkJFbFVhV18tQ0xEdUdYWEd4YmpXMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjRBNy9DODA1NUZENkM5MjUxMUVEODA5MzYxNDlDNEY5QUUwMi9fMEt6UTJCRWxV YVdfLUNMRHVHWFhHeGJqVzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiURhn2dvDYb7emOdDH1yB25Vq0jlfdVjS2kT3gf4dqWxHkY/g9mo8 U0x48Y+jNuWUFl57RegIn1QIcTN+IuhrRqrW64bO8qt1XRY1PQI95nohM/wzkLBv olihUF7NPi+ErLhgrkSCrkHxgWUAh4zi9SMCUXLC+V0Wv6lsCVuXCfjBN9iJdSIk kcMK1LnLq+OyGVuls1MRS+DKUHBBOVasvzO7K3Bf3LT4GlUBRNIBfTZrWs4+DapL 5zfL33L29HY+tMC9qJlsQ44kYKHix/PJlpd2N70i0F5ISOGXUVUch+W3UUxxLhqD AC1X1Fm9KH7JUXirL4GfqM5GJxPnfV8m -----END CERTIFICATE-----Generated at Fri Dec 19 10:03:55 2025 by rpki-client