This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft File: K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft (raw, json) Hash identifier: XOhk8MgeP7zKj/1w7vgk0GMjcmJA7tf/QR4Fqdp1+GY= Subject key identifier: 01:D2:0B:A5:7E:84:99:43:93:3A:64:95:ED:2B:E0:7E:9D:7D:5E:20 Authority key identifier: 2B:CA:12:D4:6D:46:11:ED:6E:F1:88:6F:36:44:68:DF:3D:02:ED:E5 Certificate issuer: /CN=A91AE25A/serialNumber=2BCA12D46D4611ED6EF1886F364468DF3D02EDE5 Certificate serial: 01B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft Manifest number: 01B6 Signing time: Tue 23 Dec 2025 02:06:49 +0000 Manifest this update: Tue 23 Dec 2025 02:06:49 +0000 Manifest next update: Tue 30 Dec 2025 02:06:49 +0000 Files and hashes: 1: K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl (hash: gHOHPTfp6qlRW9w5Bs8m6SrRGd9vBanIvXx3FAtdfrY=) 2: AB366D1C409611EE92C55F40C4F9AE02.roa (hash: bUZufHm2YUJjKX7UE+iKB/iI+xqEJZ46mEmd8NCr+x8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:06:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 441 (0x1b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE25A, serialNumber=2BCA12D46D4611ED6EF1886F364468DF3D02EDE5 Validity Not Before: Dec 23 02:06:49 2025 GMT Not After : Dec 30 02:06:49 2025 GMT Subject: CN=6949f939-5c1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:d8:89:ee:26:c7:e0:92:7b:4c:8f:ca:b8:9d: 51:92:93:94:a7:2b:af:ff:fc:85:39:f4:76:ef:a7: e9:c4:2e:f3:ce:2f:97:4d:38:d1:b2:90:b3:4d:85: 51:8b:39:07:cf:e7:66:d9:a5:68:4e:7a:de:d7:6f: a7:5a:32:15:05:30:66:c6:53:57:79:4a:fd:c2:e1: e4:a9:91:5d:63:73:bb:d9:56:d0:5d:dd:72:f4:b0: a8:c5:75:fe:29:06:10:41:5d:65:90:bd:25:bf:60: 30:ce:db:ba:c6:d0:11:ed:1d:db:8f:dc:85:62:98: 80:dc:17:a1:ca:8b:ce:a7:e9:00:1d:df:f7:10:77: 37:48:ce:63:51:72:4c:82:76:ea:86:7e:9f:a3:fb: 7a:4e:45:27:43:ce:13:e8:56:9e:7e:76:a9:25:8c: e1:05:1a:0f:1f:3f:b6:45:2e:36:6f:26:4e:83:11: a6:fe:bb:50:d4:b3:ad:22:12:75:5e:f3:61:8b:d0: 59:e3:ed:12:45:5d:11:db:d0:90:a7:75:0b:10:c3: 94:67:b7:f2:cf:d4:8a:20:d8:37:3c:90:ba:d5:97: 37:7a:96:be:0f:fe:d9:9c:66:31:a9:8a:0a:b4:90: 18:ab:d6:f0:ee:c0:5e:68:e0:84:3d:e1:76:7f:13: 98:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:D2:0B:A5:7E:84:99:43:93:3A:64:95:ED:2B:E0:7E:9D:7D:5E:20 X509v3 Authority Key Identifier: keyid:2B:CA:12:D4:6D:46:11:ED:6E:F1:88:6F:36:44:68:DF:3D:02:ED:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:7d:ee:eb:7f:a0:3b:b2:01:10:90:0c:8a:68:bd:6a:e7:09: 29:06:97:3f:32:da:d2:70:fa:7e:b5:41:71:f5:c7:c6:df:11: fe:b5:31:42:f9:c9:ae:91:59:9e:71:b7:e5:48:d4:b3:bb:91: 9a:ad:24:a3:d9:8a:40:5a:2b:e1:cd:58:ac:6e:c7:bd:8e:70: 3f:57:67:55:d1:43:ff:cb:91:c3:e5:6c:d3:2f:18:36:c1:41: 39:9d:7e:3a:02:c4:cf:69:64:f5:88:1c:a6:d2:35:35:e8:b5: 92:e5:26:b6:6b:1c:b8:58:29:c4:3c:e3:dc:36:7d:fb:69:4a: c9:74:1c:e8:8d:a3:04:8f:92:11:22:a8:d2:17:d9:07:e4:7d: 6b:35:7a:0e:0d:2b:4f:26:16:e8:fd:3b:d7:15:2f:c0:75:b2: 31:db:c2:be:64:2b:29:cf:c5:ed:22:29:90:5d:bb:9f:2b:06: ef:d5:d1:41:60:da:4d:6c:37:20:a4:68:73:9e:62:4a:f8:35: 27:15:38:8b:ab:02:93:f7:87:14:88:cb:7d:f6:e2:69:db:1e: b9:bc:10:28:60:e6:97:f6:de:22:dd:18:b6:12:24:b0:f7:d5: 3a:6b:ce:cd:c0:cd:1a:2f:e8:18:60:0c:8b:b9:8f:fe:2f:75: 2d:9e:a1:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUyNUExMTAvBgNVBAUTKDJCQ0ExMkQ0NkQ0NjExRUQ2RUYxODg2RjM2NDQ2OERG M0QwMkVERTUwHhcNMjUxMjIzMDIwNjQ5WhcNMjUxMjMwMDIwNjQ5WjAYMRYwFAYD VQQDDA02OTQ5ZjkzOS01YzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5NiJ7ibH4JJ7TI/KuJ1RkpOUpyuv//yFOfR276fpxC7zzi+XTTjRspCzTYVR izkHz+dm2aVoTnre12+nWjIVBTBmxlNXeUr9wuHkqZFdY3O72VbQXd1y9LCoxXX+ KQYQQV1lkL0lv2Awztu6xtAR7R3bj9yFYpiA3BehyovOp+kAHd/3EHc3SM5jUXJM gnbqhn6fo/t6TkUnQ84T6FaefnapJYzhBRoPHz+2RS42byZOgxGm/rtQ1LOtIhJ1 XvNhi9BZ4+0SRV0R29CQp3ULEMOUZ7fyz9SKINg3PJC61Zc3epa+D/7ZnGYxqYoK tJAYq9bw7sBeaOCEPeF2fxOYDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAHSC6V+ hJlDkzpkle0r4H6dfV4gMB8GA1UdIwQYMBaAFCvKEtRtRhHtbvGIbzZEaN89Au3l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTI1QS8yQzk2RjUwODQw OTYxMUVFQjQ2RTZGM0ZDNEY5QUUwMi9LOG9TMUcxR0VlMXU4WWh2TmtSbzN6MEM3 ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s4b1MxRzFHRWUxdThZaHZOa1JvM3owQzdlVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTI1QS8yQzk2RjUwODQwOTYxMUVFQjQ2RTZGM0ZDNEY5QUUwMi9LOG9TMUcxR0Vl MXU4WWh2TmtSbzN6MEM3ZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzfe7rf6A7sgEQkAyKaL1q5wkpBpc/MtrScPp+tUFx9cfG3xH+tTFC +cmukVmecbflSNSzu5GarSSj2YpAWivhzVisbse9jnA/V2dV0UP/y5HD5WzTLxg2 wUE5nX46AsTPaWT1iBym0jU16LWS5Sa2axy4WCnEPOPcNn37aUrJdBzojaMEj5IR IqjSF9kH5H1rNXoODStPJhbo/TvXFS/AdbIx28K+ZCspz8XtIimQXbufKwbv1dFB YNpNbDcgpGhznmJK+DUnFTiLqwKT94cUiMt99uJp2x65vBAoYOaX9t4i3Ri2EiSw 99U6a87NwM0aL+gYYAyLuY/+L3UtnqG0 -----END CERTIFICATE-----Generated at Tue Dec 23 13:19:46 2025 by rpki-client