This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft File: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft (raw, json) Hash identifier: RZWwiCLWyoniSiqm/bVRmGO1BFCf1fq5dkxeHEsGjrU= Subject key identifier: CB:D5:EF:D8:86:2F:97:7D:84:F1:6E:D1:10:DB:F5:6D:B9:0A:87:0C Authority key identifier: 46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 Certificate issuer: /CN=A91964B3/serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Certificate serial: 1083 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft Manifest number: 1073 Signing time: Mon 08 Dec 2025 14:23:37 +0000 Manifest this update: Mon 08 Dec 2025 14:23:37 +0000 Manifest next update: Mon 15 Dec 2025 14:23:37 +0000 Files and hashes: 1: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl (hash: rk5Xh++d8BFt5OiYDRIWUO16kEc32tN9LjmEpG+VUS4=) 2: 23B68638C5DD11EABC58FD24C4F9AE02.roa (hash: 7YuoX9OkBSRUQiHpsiuHEMGmDB7ygNEWHmpkRA4QfgE=) 3: 5D563164AF3411EFB5B51A57C4F9AE02.roa (hash: Mjf+9MFV/8wopOF7hLs3Tt14yZvRKLf5RcXcRhi35uI=) 4: 1396434EC90A11EF8577744AC4F9AE02.roa (hash: vv5/sNroDyn31EV1FuwDRkKZ1Ky/CQIEoorZo83v9h8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Dec 2025 14:23:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4227 (0x1083) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3, serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Validity Not Before: Dec 8 14:23:37 2025 GMT Not After : Dec 15 14:23:37 2025 GMT Subject: CN=6936df69-466d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:0d:c8:f7:4e:dd:2b:b0:f1:a1:53:b6:84:30: 8c:af:d7:d8:61:c0:26:ef:6d:16:58:52:bd:f6:d9: e0:c6:d2:41:23:d5:b2:22:5a:b3:77:5d:f5:49:d7: 70:0d:eb:97:e3:c5:d6:00:aa:89:4a:82:b5:58:01: 11:20:f3:e7:12:4c:b9:03:90:be:18:62:e6:16:80: 22:72:7b:6e:15:f9:20:3f:e9:a2:b4:4f:9a:62:22: 9b:48:77:18:29:63:bf:ad:af:84:73:d0:75:28:fb: 19:34:1f:2a:82:c9:b5:f7:53:a9:65:8b:38:95:54: 18:93:f6:9a:fc:83:45:4e:8a:a1:1b:e7:f2:0c:be: 29:23:18:63:90:22:c1:bd:e1:7a:77:3a:98:53:c9: 98:65:58:e0:cb:6c:f6:6e:28:46:5a:36:9b:75:cc: 42:c7:45:0b:2e:86:6e:60:83:6f:4f:a7:5d:a8:c7: 56:70:f4:cd:62:66:5e:2e:d6:df:f7:63:df:41:4b: 94:b1:27:ee:79:b9:3a:fa:fc:5a:b7:26:eb:51:1a: 1f:89:b4:5f:de:c8:45:fa:0a:de:a9:8b:83:a3:4d: 9f:4f:6d:37:dc:93:08:0f:dd:39:f2:37:2a:9f:07: 74:57:fb:b4:60:d5:ec:6a:74:6e:9d:7d:ea:5d:be: 41:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:D5:EF:D8:86:2F:97:7D:84:F1:6E:D1:10:DB:F5:6D:B9:0A:87:0C X509v3 Authority Key Identifier: keyid:46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:b3:23:71:b4:9c:e6:41:22:08:ea:e5:8e:e2:97:11:5b:a9: 5b:4b:78:0e:e9:bc:a5:63:0e:ea:ee:3a:b0:2f:97:23:91:7c: 89:54:00:b3:68:16:d6:4f:c9:e4:99:98:22:f2:8f:92:4c:c5: b1:2c:c9:73:bc:4f:ce:e6:88:3b:da:4f:b4:01:7b:44:5d:0a: 85:8e:f6:6c:d1:6a:90:2e:2b:bf:c8:32:4c:b2:c6:b0:33:fa: 9a:7d:ed:42:d0:05:59:ba:09:a7:9d:58:c8:c2:cc:23:41:26: 6b:b7:9c:bf:80:67:67:3f:85:19:21:9b:9f:72:ca:55:80:df: 91:a1:ad:65:4c:10:1f:9b:4c:5e:3f:30:b0:e5:56:a1:d1:2c: d1:fc:c6:f7:df:a5:48:4f:10:1b:59:af:0e:3a:8d:d5:a5:28: 3f:e3:ef:9f:27:6e:cb:a7:1a:0a:30:4b:75:5b:01:6a:b0:9f: 00:f1:f8:7a:71:a8:46:08:73:3c:51:0f:87:fe:0d:99:e9:ca: dd:4e:7f:b3:41:e7:0e:a3:8e:bd:55:0c:94:bc:bd:ce:66:61: 73:53:57:bb:e7:bf:58:76:7e:4d:2d:90:4a:8b:b2:2d:12:e6: 03:d6:3c:65:40:04:69:23:14:26:15:74:a5:3e:d8:c6:9e:cb: 34:0b:9f:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKDQ2NDg1NEZCNTBBOTkwM0M1MjUzNDE4QzU4M0QwRjMx Qjg0MUQ1OTcwHhcNMjUxMjA4MTQyMzM3WhcNMjUxMjE1MTQyMzM3WjAYMRYwFAYD VQQDEw02OTM2ZGY2OS00NjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArA3I907dK7DxoVO2hDCMr9fYYcAm720WWFK99tngxtJBI9WyIlqzd131Sddw DeuX48XWAKqJSoK1WAERIPPnEky5A5C+GGLmFoAicntuFfkgP+mitE+aYiKbSHcY KWO/ra+Ec9B1KPsZNB8qgsm191OpZYs4lVQYk/aa/INFToqhG+fyDL4pIxhjkCLB veF6dzqYU8mYZVjgy2z2bihGWjabdcxCx0ULLoZuYINvT6ddqMdWcPTNYmZeLtbf 92PfQUuUsSfuebk6+vxatybrURofibRf3shF+greqYuDo02fT2033JMID9058jcq nwd0V/u0YNXsanRunX3qXb5B1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMvV79iG L5d9hPFu0RDb9W25CocMMB8GA1UdIwQYMBaAFEZIVPtQqZA8UlNBjFg9DzG4QdWX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy8yQTU5NDBGMjRC QjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtEeFNVMEdNV0QwUE1iaEIx WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JraFUtMUNwa0R4U1UwR01XRDBQTWJoQjFaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjRCMy8yQTU5NDBGMjRCQjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtE eFNVMEdNV0QwUE1iaEIxWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnsyNxtJzmQSII6uWO4pcRW6lbS3gO6bylYw7q7jqwL5cjkXyJVACz aBbWT8nkmZgi8o+STMWxLMlzvE/O5og72k+0AXtEXQqFjvZs0WqQLiu/yDJMssaw M/qafe1C0AVZugmnnVjIwswjQSZrt5y/gGdnP4UZIZufcspVgN+Roa1lTBAfm0xe PzCw5Vah0SzR/Mb336VITxAbWa8OOo3VpSg/4++fJ27LpxoKMEt1WwFqsJ8A8fh6 cahGCHM8UQ+H/g2Z6crdTn+zQecOo469VQyUvL3OZmFzU1e7579Ydn5NLZBKi7It EuYD1jxlQARpIxQmFXSlPtjGnss0C59v -----END CERTIFICATE-----Generated at Wed Dec 10 05:30:40 2025 by rpki-client