This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft File: kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft (raw, json) Hash identifier: s25ruy/ZE4eBNanNeLzFhQn0uZAcY2lWKDlG1FGk9A0= Subject key identifier: 63:3C:AC:7B:29:6C:43:45:6E:3A:3B:4F:71:34:84:E5:B1:20:AC:B9 Authority key identifier: 91:9F:A8:19:B2:FF:F1:45:52:1A:F6:64:03:52:78:E7:E7:91:4A:49 Certificate issuer: /CN=A91BB6E3/serialNumber=919FA819B2FFF145521AF664035278E7E7914A49 Certificate serial: 0231 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft Manifest number: 021C Signing time: Tue 23 Dec 2025 01:22:26 +0000 Manifest this update: Tue 23 Dec 2025 01:22:26 +0000 Manifest next update: Tue 30 Dec 2025 01:22:26 +0000 Files and hashes: 1: kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl (hash: 9X4zakzc/L8lHvSdZ3/HBX0UbNRJ3eQPcihJfRgeDpk=) 2: F96174ECC27D11EDB8226F2DC4F9AE02.roa (hash: kXeNIsHETQcXUic6LYufG6XvgVMVgH9sGtHQdmkZT90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:22:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 561 (0x231) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB6E3, serialNumber=919FA819B2FFF145521AF664035278E7E7914A49 Validity Not Before: Dec 23 01:22:26 2025 GMT Not After : Dec 30 01:22:26 2025 GMT Subject: CN=6949eed2-2234 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:b9:4a:fa:a1:4d:ce:ff:ea:eb:ec:80:33:72: 99:b0:64:2f:16:70:27:30:eb:0e:ac:e3:89:55:98: bd:8d:61:47:c0:64:96:fd:48:f4:3a:23:56:75:57: 2b:82:4f:78:83:20:54:8b:f8:e0:e4:38:1d:e0:f0: a3:f0:a2:2b:ab:90:a7:0a:e6:65:4a:ee:ed:81:d6: d8:f5:f1:c9:57:9b:bd:86:0b:c9:53:5c:ec:00:c3: b2:af:a0:ac:ac:9a:9c:8e:18:e0:07:02:10:c1:b3: ff:d5:36:4e:21:16:6a:68:8d:c6:7f:8b:9f:99:1f: ad:bc:57:2b:7d:f0:61:33:b1:01:51:5e:8f:73:5c: f1:9f:d9:5a:75:d6:35:8e:ac:94:6b:33:dd:86:09: 37:69:ab:f2:56:08:c7:b8:b7:74:fb:7a:cc:6c:d7: ea:b1:2b:16:fa:37:20:e2:f8:7a:cb:11:a3:0b:c0: 8a:10:4a:98:7e:ba:1b:df:e2:cc:e3:f5:94:f9:a4: f3:a3:eb:a7:ed:48:74:ae:0f:6c:f3:01:34:c3:da: 18:e2:30:96:6c:76:c2:48:91:fb:c9:8c:82:09:f6: 45:01:60:ce:35:64:7e:03:f7:16:83:c8:fd:3c:84: 95:31:e3:13:f7:89:3d:d9:25:18:f3:c6:8e:b0:9b: 7b:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:3C:AC:7B:29:6C:43:45:6E:3A:3B:4F:71:34:84:E5:B1:20:AC:B9 X509v3 Authority Key Identifier: keyid:91:9F:A8:19:B2:FF:F1:45:52:1A:F6:64:03:52:78:E7:E7:91:4A:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:4a:be:b1:46:c8:f1:d6:f2:32:5f:f7:75:30:d7:66:f6:51: 26:0b:65:a0:6c:53:98:b2:3e:4a:0e:c4:63:9a:f1:92:2a:c8: 86:8e:8c:47:41:dd:56:6b:fa:85:dd:f3:62:c5:12:10:8b:94: a7:ea:c2:43:29:15:0c:62:2a:87:4e:1f:e6:ab:e3:83:a6:b3: 43:d2:1d:38:e5:81:2c:d7:09:c7:c8:70:1e:02:14:58:d3:a3: c3:15:81:a9:12:14:c7:3a:8b:d8:d8:c1:eb:bd:75:47:0c:a2: f9:21:04:bb:93:5a:4c:fa:57:d3:47:cc:1a:3f:19:31:c9:e2: a2:42:b6:f8:f8:5f:a9:29:03:71:ac:ae:da:ab:78:9f:63:ca: 74:86:03:f8:3e:5c:93:3d:49:a3:3b:46:76:68:72:d4:23:c9: c7:8e:3a:43:b4:cc:78:c2:7e:fd:13:1c:6b:31:33:80:f7:37: 0e:9d:d4:62:f8:4d:85:29:f8:6e:b7:a2:62:22:ad:3d:ae:1a: 7c:98:3b:6c:2d:2a:b7:ed:1b:2a:be:fb:75:20:7d:d3:a8:9b: e7:72:9a:25:cb:cc:e2:6c:f8:51:02:0a:24:39:bc:38:9d:0f: e1:c4:17:6d:22:36:ba:fa:3f:c5:ca:4a:c0:4e:65:d7:e6:e1: 44:d4:6d:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI2RTMxMTAvBgNVBAUTKDkxOUZBODE5QjJGRkYxNDU1MjFBRjY2NDAzNTI3OEU3 RTc5MTRBNDkwHhcNMjUxMjIzMDEyMjI2WhcNMjUxMjMwMDEyMjI2WjAYMRYwFAYD VQQDDA02OTQ5ZWVkMi0yMjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnrlK+qFNzv/q6+yAM3KZsGQvFnAnMOsOrOOJVZi9jWFHwGSW/Uj0OiNWdVcr gk94gyBUi/jg5Dgd4PCj8KIrq5CnCuZlSu7tgdbY9fHJV5u9hgvJU1zsAMOyr6Cs rJqcjhjgBwIQwbP/1TZOIRZqaI3Gf4ufmR+tvFcrffBhM7EBUV6Pc1zxn9laddY1 jqyUazPdhgk3aavyVgjHuLd0+3rMbNfqsSsW+jcg4vh6yxGjC8CKEEqYfrob3+LM 4/WU+aTzo+un7Uh0rg9s8wE0w9oY4jCWbHbCSJH7yYyCCfZFAWDONWR+A/cWg8j9 PISVMeMT94k92SUY88aOsJt72wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGM8rHsp bENFbjo7T3E0hOWxIKy5MB8GA1UdIwQYMBaAFJGfqBmy//FFUhr2ZANSeOfnkUpJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjZFMy9BMjJDODE0Q0My NzUxMUVEQjNCNEQ3MjhDNEY5QUUwMi9rWi1vR2JMXzhVVlNHdlprQTFKNDUtZVJT a2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2taLW9HYkxfOFVWU0d2WmtBMUo0NS1lUlNray5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjZFMy9BMjJDODE0Q0MyNzUxMUVEQjNCNEQ3MjhDNEY5QUUwMi9rWi1vR2JMXzhV VlNHdlprQTFKNDUtZVJTa2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8Sr6xRsjx1vIyX/d1MNdm9lEmC2WgbFOYsj5KDsRjmvGSKsiGjoxH Qd1Wa/qF3fNixRIQi5Sn6sJDKRUMYiqHTh/mq+ODprND0h045YEs1wnHyHAeAhRY 06PDFYGpEhTHOovY2MHrvXVHDKL5IQS7k1pM+lfTR8waPxkxyeKiQrb4+F+pKQNx rK7aq3ifY8p0hgP4PlyTPUmjO0Z2aHLUI8nHjjpDtMx4wn79ExxrMTOA9zcOndRi +E2FKfhut6JiIq09rhp8mDtsLSq37Rsqvvt1IH3TqJvncpoly8zibPhRAgokObw4 nQ/hxBdtIja6+j/FykrATmXX5uFE1G2G -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:48 2025 by rpki-client