This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft File: KxuyStzbFPbix7uy2Iq62x3diY0.mft (raw, json) Hash identifier: 8oHEgVZREFxTkZToc6UhNRWkjFzyhCJ/WO1feErNf7c= Subject key identifier: AE:5F:4E:05:22:2B:27:83:4C:66:EC:7B:93:7B:82:BD:45:22:1A:02 Authority key identifier: 2B:1B:B2:4A:DC:DB:14:F6:E2:C7:BB:B2:D8:8A:BA:DB:1D:DD:89:8D Certificate issuer: /CN=A91A80D2/serialNumber=2B1BB24ADCDB14F6E2C7BBB2D88ABADB1DDD898D Certificate serial: 0367 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft Manifest number: 0361 Signing time: Mon 22 Dec 2025 23:56:20 +0000 Manifest this update: Mon 22 Dec 2025 23:56:20 +0000 Manifest next update: Mon 29 Dec 2025 23:56:20 +0000 Files and hashes: 1: KxuyStzbFPbix7uy2Iq62x3diY0.crl (hash: iwnthwoprSTCG11v9GbnXbeG5h1wiJNOYexLBZ/AgyY=) 2: 95CA439CDAE211ECA14A8254C4F9AE02.roa (hash: 16TIMxSDuDuwbvd9GQ+m4o06d2DMg8lDV7WSYdSxPbs=) 3: 3486D47412D511EFB1EF161DC4F9AE02.roa (hash: Crj6EQEsFsVZ7Rl37tD7+KlB9qlhMrOAHvL0KyIGgkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.crl rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:56:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 871 (0x367) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A80D2, serialNumber=2B1BB24ADCDB14F6E2C7BBB2D88ABADB1DDD898D Validity Not Before: Dec 22 23:56:20 2025 GMT Not After : Dec 29 23:56:20 2025 GMT Subject: CN=6949daa4-6592 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:b4:43:52:1a:b1:10:48:63:b0:9c:82:e9:81: 92:d8:9c:d4:57:26:41:1e:86:b3:df:13:61:fc:2f: 14:79:9f:e7:d7:de:b7:c3:85:64:ca:30:40:4d:a4: e4:6e:b6:69:0d:f1:82:e5:e1:08:6e:2c:60:85:88: db:fa:e7:ed:d3:39:f5:93:14:aa:8b:44:11:bb:50: fe:2f:17:8a:13:78:2a:b7:25:de:ea:91:99:94:24: 27:f0:2b:1c:f4:ae:f7:06:ec:e9:4d:ae:4e:ed:2b: be:ba:74:9f:34:1d:62:c7:3c:26:27:f1:e4:bb:65: fa:df:23:f2:21:b6:f0:f1:4e:6f:75:70:08:c9:b8: aa:07:ff:3b:69:c3:1d:1a:84:ef:3b:18:76:8d:ef: 82:b1:37:a3:1a:a2:0b:a5:42:8b:25:3d:bd:3f:5d: 26:b0:6f:38:4d:bb:20:bf:1c:33:81:0f:d2:00:d5: e2:63:1a:5b:40:81:c2:8c:dd:7a:0b:b5:30:34:c4: 7e:5f:cc:5e:2c:72:71:17:51:fa:1f:bc:1a:cc:99: 4a:34:7f:f5:13:51:c2:b2:cb:2d:c8:7c:7d:c3:4c: e7:81:29:8e:7e:5c:dd:e4:fb:c5:b7:bf:dc:0f:25: 25:3f:d3:e6:18:bd:c5:28:d9:10:a7:cd:a0:b7:eb: 20:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:5F:4E:05:22:2B:27:83:4C:66:EC:7B:93:7B:82:BD:45:22:1A:02 X509v3 Authority Key Identifier: keyid:2B:1B:B2:4A:DC:DB:14:F6:E2:C7:BB:B2:D8:8A:BA:DB:1D:DD:89:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:9c:a5:19:75:f2:40:5a:c3:aa:75:74:a1:95:b6:3d:90:12: 36:98:54:c8:d1:53:2c:09:fe:88:15:86:11:64:64:a2:b6:35: 97:6d:fc:00:1e:64:f2:d4:fb:52:87:5b:c2:c5:82:0d:15:fb: f0:1b:08:fb:91:d0:5c:d7:8d:f5:05:c7:b6:bd:6e:bc:cf:6c: a2:c4:94:a4:39:66:aa:2e:f3:04:9e:df:70:17:c8:dd:9f:99: 58:e5:83:db:59:cd:7a:36:10:99:2f:35:33:4e:3a:b2:b1:80: 29:f7:6e:1f:04:38:2e:cd:83:1e:51:cc:10:74:b7:aa:1a:63: 61:b3:73:c1:b6:d9:16:e2:7c:3f:4c:e5:f3:57:f7:2b:d8:22: 0c:06:1e:fc:86:4f:e1:85:2e:de:15:10:22:92:5f:97:e1:b1: 08:74:6e:c5:7a:e9:85:47:1c:9e:2b:0a:f2:22:25:48:31:d7: 13:65:44:bc:73:95:17:b6:d0:25:44:d6:ed:2d:9d:dd:e8:2c: e7:b6:e9:c0:5c:c1:5f:34:36:75:6f:db:95:9f:b8:c1:46:bf: 86:bf:da:43:8a:07:da:e7:0c:64:9b:ec:87:3e:4f:12:2f:16: ea:eb:51:b4:b3:fa:4a:b0:97:0f:f3:e6:91:d1:bb:8b:1c:d5: 06:a2:5a:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgwRDIxMTAvBgNVBAUTKDJCMUJCMjRBRENEQjE0RjZFMkM3QkJCMkQ4OEFCQURC MURERDg5OEQwHhcNMjUxMjIyMjM1NjIwWhcNMjUxMjI5MjM1NjIwWjAYMRYwFAYD VQQDDA02OTQ5ZGFhNC02NTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAh7RDUhqxEEhjsJyC6YGS2JzUVyZBHoaz3xNh/C8UeZ/n1963w4VkyjBATaTk brZpDfGC5eEIbixghYjb+uft0zn1kxSqi0QRu1D+LxeKE3gqtyXe6pGZlCQn8Csc 9K73BuzpTa5O7Su+unSfNB1ixzwmJ/Hku2X63yPyIbbw8U5vdXAIybiqB/87acMd GoTvOxh2je+CsTejGqILpUKLJT29P10msG84TbsgvxwzgQ/SANXiYxpbQIHCjN16 C7UwNMR+X8xeLHJxF1H6H7wazJlKNH/1E1HCssstyHx9w0zngSmOflzd5PvFt7/c DyUlP9PmGL3FKNkQp82gt+sgcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK5fTgUi KyeDTGbse5N7gr1FIhoCMB8GA1UdIwQYMBaAFCsbskrc2xT24se7stiKutsd3YmN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODBEMi9ENDI4RDBDNkRB REUxMUVDODc3MTE0NTBDNEY5QUUwMi9LeHV5U3R6YkZQYml4N3V5MklxNjJ4M2Rp WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t4dXlTdHpiRlBiaXg3dXkySXE2MngzZGlZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODBEMi9ENDI4RDBDNkRBREUxMUVDODc3MTE0NTBDNEY5QUUwMi9LeHV5U3R6YkZQ Yml4N3V5MklxNjJ4M2RpWTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASnKUZdfJAWsOqdXShlbY9kBI2mFTI0VMsCf6IFYYRZGSitjWXbfwA HmTy1PtSh1vCxYINFfvwGwj7kdBc1431Bce2vW68z2yixJSkOWaqLvMEnt9wF8jd n5lY5YPbWc16NhCZLzUzTjqysYAp924fBDguzYMeUcwQdLeqGmNhs3PBttkW4nw/ TOXzV/cr2CIMBh78hk/hhS7eFRAikl+X4bEIdG7FeumFRxyeKwryIiVIMdcTZUS8 c5UXttAlRNbtLZ3d6CzntunAXMFfNDZ1b9uVn7jBRr+Gv9pDigfa5wxkm+yHPk8S Lxbq61G0s/pKsJcP8+aR0buLHNUGolo2 -----END CERTIFICATE-----Generated at Tue Dec 23 15:24:59 2025 by rpki-client