This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft File: kDfAsp43CSqDhSzkuIW3dqfB47Y.mft (raw, json) Hash identifier: L+YCqeKdVzQ/Bw05eOuwb+UWjxoTJ4JvgbPbkxGff90= Subject key identifier: 78:6F:AB:51:FB:DF:51:B0:2A:D4:65:FB:2E:D1:DA:5C:4B:9C:53:D2 Authority key identifier: 90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 Certificate issuer: /CN=A91957D1/serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Certificate serial: 0185 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft Manifest number: 0181 Signing time: Tue 23 Dec 2025 02:44:50 +0000 Manifest this update: Tue 23 Dec 2025 02:44:49 +0000 Manifest next update: Tue 30 Dec 2025 02:44:49 +0000 Files and hashes: 1: kDfAsp43CSqDhSzkuIW3dqfB47Y.crl (hash: 4QYCc5oJf1lFYCSz4fqlHduPjpah61BpPtjyJl74KyQ=) 2: 72CE4D80958411EEB3748B58C4F9AE02.roa (hash: GyK0WIBreUywAdxh5kO624MwwPbx0zTO9wpPeKdWbNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:44:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 389 (0x185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957D1, serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Validity Not Before: Dec 23 02:44:49 2025 GMT Not After : Dec 30 02:44:49 2025 GMT Subject: CN=694a0222-716e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:73:ff:00:d8:30:80:e6:d5:d4:34:5b:1f:a1: e3:0b:16:82:de:bb:b1:b6:dd:61:ec:fd:2b:54:7b: a9:29:8c:1f:fd:b2:f1:4e:e1:8c:b1:76:a6:12:8e: 73:69:19:80:36:f9:88:88:a0:fd:6a:79:4b:b8:9a: ce:a2:88:37:ef:52:d2:3b:ae:b1:c6:24:47:c9:9f: 79:60:3a:c8:b5:75:7c:4e:64:ba:68:a8:f6:67:37: 80:d3:8a:ee:64:62:d6:71:48:18:e5:5e:81:d6:73: 48:12:67:99:a7:9e:ec:25:14:7b:dc:e7:f3:be:be: 0a:8f:96:33:1d:40:2c:28:64:65:3f:2e:be:3d:ff: 15:00:d5:b8:d9:8b:b4:b7:ec:ab:8d:17:bb:13:e5: 41:2e:88:1d:c2:c2:d4:57:a6:a4:c6:e5:15:ef:20: 62:89:d8:1f:20:7b:9a:5c:c1:95:3a:dc:3b:46:d8: cf:e3:5d:1e:6e:8b:e5:63:37:2c:b3:c0:39:81:d9: e3:33:bf:2e:b4:20:db:2f:67:df:c0:ff:17:c1:3b: 4c:95:d1:78:97:a1:c5:87:d9:23:41:6e:1d:d6:b9: 69:d8:a4:e0:06:7c:4b:50:69:39:48:47:91:6c:a7: 2c:26:e6:de:a3:0d:f6:d4:22:44:f3:9c:4f:61:ca: ff:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:6F:AB:51:FB:DF:51:B0:2A:D4:65:FB:2E:D1:DA:5C:4B:9C:53:D2 X509v3 Authority Key Identifier: keyid:90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:cf:d7:dd:9d:c0:39:33:a5:bc:7f:74:3a:20:85:de:4f:b3: c9:8b:39:41:da:e4:02:0b:a1:32:a5:86:a3:ee:14:5d:25:4a: 44:af:6b:76:ae:6b:9d:2b:c5:95:59:cf:c2:cd:d4:2b:4f:81: f7:4c:02:19:06:27:42:bc:5c:dd:70:2c:2d:9f:15:7a:5b:dd: d4:90:90:13:f7:87:11:c4:41:2c:55:3f:4d:b5:6e:45:06:21: 7e:7d:3a:37:ba:0c:9b:fe:5c:0d:64:07:d3:8c:62:2c:cf:40: f0:e9:ae:e7:2c:d0:cf:df:67:8c:eb:21:77:34:ce:5e:e3:41: 94:57:e6:44:f2:87:84:d4:52:50:4e:9a:f7:58:2d:41:74:c6: c8:80:4b:22:83:3c:56:32:48:53:5c:e7:b0:ec:70:8e:aa:b5: b1:ab:9c:ba:c4:3f:ae:c7:93:23:52:e6:b9:be:19:23:a0:a7: 23:bc:a2:78:6a:75:d0:c3:0a:6e:14:94:0b:e1:cc:b7:0f:46: 03:35:cd:21:b5:ff:da:d8:0a:a6:ff:2a:8c:dd:90:cd:9c:13: 7e:8d:80:a8:5a:6e:50:b4:4e:c4:28:5c:77:f4:81:db:7a:9e: 3f:a0:71:b1:71:e5:b5:c8:da:c2:40:fd:9d:41:cf:81:5a:69: fa:a0:aa:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU3RDExMTAvBgNVBAUTKDkwMzdDMEIyOUUzNzA5MkE4Mzg1MkNFNEI4ODVCNzc2 QTdDMUUzQjYwHhcNMjUxMjIzMDI0NDQ5WhcNMjUxMjMwMDI0NDQ5WjAYMRYwFAYD VQQDDA02OTRhMDIyMi03MTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo3P/ANgwgObV1DRbH6HjCxaC3ruxtt1h7P0rVHupKYwf/bLxTuGMsXamEo5z aRmANvmIiKD9anlLuJrOoog371LSO66xxiRHyZ95YDrItXV8TmS6aKj2ZzeA04ru ZGLWcUgY5V6B1nNIEmeZp57sJRR73Ofzvr4Kj5YzHUAsKGRlPy6+Pf8VANW42Yu0 t+yrjRe7E+VBLogdwsLUV6akxuUV7yBiidgfIHuaXMGVOtw7RtjP410ebovlYzcs s8A5gdnjM78utCDbL2ffwP8XwTtMldF4l6HFh9kjQW4d1rlp2KTgBnxLUGk5SEeR bKcsJubeow321CJE85xPYcr/kwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHhvq1H7 31GwKtRl+y7R2lxLnFPSMB8GA1UdIwQYMBaAFJA3wLKeNwkqg4Us5LiFt3anweO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTdEMS9GMDUzNzc5NDkz QkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NTcURoU3prdUlXM2RxZkI0 N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEZkFzcDQzQ1NxRGhTemt1SVczZHFmQjQ3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTdEMS9GMDUzNzc5NDkzQkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NT cURoU3prdUlXM2RxZkI0N1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANz9fdncA5M6W8f3Q6IIXeT7PJizlB2uQCC6EypYaj7hRdJUpEr2t2 rmudK8WVWc/CzdQrT4H3TAIZBidCvFzdcCwtnxV6W93UkJAT94cRxEEsVT9NtW5F BiF+fTo3ugyb/lwNZAfTjGIsz0Dw6a7nLNDP32eM6yF3NM5e40GUV+ZE8oeE1FJQ Tpr3WC1BdMbIgEsigzxWMkhTXOew7HCOqrWxq5y6xD+ux5MjUua5vhkjoKcjvKJ4 anXQwwpuFJQL4cy3D0YDNc0htf/a2Aqm/yqM3ZDNnBN+jYCoWm5QtE7EKFx39IHb ep4/oHGxceW1yNrCQP2dQc+BWmn6oKpK -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:22 2025 by rpki-client