This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft File: kzrI56xL07WCmJ_Mty_JJ9cWQks.mft (raw, json) Hash identifier: ehkvA8yyMdug43yWjK6aoLuneiy4D4GURHYxKiVd3Pk= Subject key identifier: 86:FC:AA:93:4A:CD:7B:F4:B4:46:0A:04:69:EE:58:7E:7D:E4:A7:6E Authority key identifier: 93:3A:C8:E7:AC:4B:D3:B5:82:98:9F:CC:B7:2F:C9:27:D7:16:42:4B Certificate issuer: /CN=A91C79E1/serialNumber=933AC8E7AC4BD3B582989FCCB72FC927D716424B Certificate serial: 0885 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft Manifest number: 087F Signing time: Mon 22 Dec 2025 19:55:27 +0000 Manifest this update: Mon 22 Dec 2025 19:55:27 +0000 Manifest next update: Mon 29 Dec 2025 19:55:27 +0000 Files and hashes: 1: kzrI56xL07WCmJ_Mty_JJ9cWQks.crl (hash: SnrSEJ2rdGbkEV7fHHLJB/4u01kzd9wDVrA/tfafF5Y=) 2: 26D0F9B82A6611ECB12FB439C4F9AE02.roa (hash: o8uKSFAZOoKiAV/aw+gEXp611EqrXFJMlAGF3VnwD9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.crl rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2181 (0x885) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C79E1, serialNumber=933AC8E7AC4BD3B582989FCCB72FC927D716424B Validity Not Before: Dec 22 19:55:27 2025 GMT Not After : Dec 29 19:55:27 2025 GMT Subject: CN=6949a22f-b284 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:10:7e:b6:d3:6c:0e:38:68:d5:cb:4c:8a:5a: b9:0c:9e:47:42:0d:2a:80:25:11:0a:fb:cb:0b:b1: 7c:d5:d0:35:eb:a9:a7:27:5a:93:44:31:bc:db:86: 00:02:6f:37:8c:ff:0c:04:ab:25:f3:07:cb:46:01: 40:57:87:05:9d:89:16:6d:57:60:03:54:92:63:59: de:7d:9f:e9:56:0c:c2:1f:a8:e1:3c:d4:54:21:a2: b0:a6:cc:32:b6:ff:29:d0:64:49:21:9e:10:7d:79: 05:57:da:09:89:21:f1:e5:2f:2c:d9:83:b8:25:28: 85:d3:b3:ce:ec:ea:eb:e6:43:63:2d:da:59:f2:9d: 5a:56:e9:d2:11:42:4b:97:3a:05:6a:f9:cb:b9:b8: 9b:44:31:fa:2a:30:29:39:42:52:cb:ee:8d:c6:53: 22:38:0d:9f:84:94:7d:15:c7:d3:c0:75:4a:26:f3: e5:b6:99:5d:4f:07:9a:ac:fc:5f:ff:24:e6:08:98: cc:88:79:4f:63:12:9e:32:df:0e:79:b5:5a:24:b3: d1:99:ae:5b:13:73:93:bd:81:f4:84:3f:68:e2:51: b7:c6:d3:f9:5d:dd:6c:83:1f:e7:49:97:96:c5:c1: 76:85:30:29:d1:20:21:e6:94:08:f5:45:37:9e:09: 34:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:FC:AA:93:4A:CD:7B:F4:B4:46:0A:04:69:EE:58:7E:7D:E4:A7:6E X509v3 Authority Key Identifier: keyid:93:3A:C8:E7:AC:4B:D3:B5:82:98:9F:CC:B7:2F:C9:27:D7:16:42:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:b0:ff:0a:b4:8d:27:6a:58:8f:78:4d:4c:f3:e3:73:15:24: a2:af:5d:1a:2b:8e:08:bd:18:09:c6:90:fe:cb:f6:9a:fb:7b: 32:b6:b0:39:a7:7a:dc:c3:12:2f:0a:a3:a5:36:e6:13:37:c2: 20:6e:ae:3b:c5:f3:82:01:d5:82:7c:6e:05:e3:46:e4:4b:5c: cf:e6:5e:92:e2:cd:ef:7f:bc:e7:ad:3d:36:b6:bb:9e:bf:70: ad:d1:19:19:92:f5:89:29:09:f1:dd:bf:e2:17:de:34:a2:0c: 3c:40:73:03:ee:bf:ff:bf:66:ec:e9:c1:c1:2d:83:af:d9:12: 34:cb:91:80:32:47:3b:c5:e9:41:bd:14:12:c6:d3:67:77:db: 6f:f3:aa:d6:f1:91:22:b2:3f:96:f1:cb:f7:54:25:06:27:10: 22:fe:5f:8f:a3:c1:2d:d6:c5:55:ff:f8:17:ca:ad:be:77:81: 20:21:9d:9e:f3:79:9b:3f:ea:2b:f8:e7:55:66:e0:03:84:d3: 54:36:1d:de:5f:c4:b3:1d:f8:5c:61:b5:b5:48:ba:ba:04:c3: 31:d4:24:d8:6b:e2:27:4b:76:e5:cb:f3:c0:9b:2b:7a:82:86: b3:72:ec:53:8c:2b:29:ed:65:4c:92:2d:5f:a9:9e:58:30:09: 86:b3:c9:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc5RTExMTAvBgNVBAUTKDkzM0FDOEU3QUM0QkQzQjU4Mjk4OUZDQ0I3MkZDOTI3 RDcxNjQyNEIwHhcNMjUxMjIyMTk1NTI3WhcNMjUxMjI5MTk1NTI3WjAYMRYwFAYD VQQDDA02OTQ5YTIyZi1iMjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqRB+ttNsDjho1ctMilq5DJ5HQg0qgCURCvvLC7F81dA166mnJ1qTRDG824YA Am83jP8MBKsl8wfLRgFAV4cFnYkWbVdgA1SSY1nefZ/pVgzCH6jhPNRUIaKwpswy tv8p0GRJIZ4QfXkFV9oJiSHx5S8s2YO4JSiF07PO7Orr5kNjLdpZ8p1aVunSEUJL lzoFavnLubibRDH6KjApOUJSy+6NxlMiOA2fhJR9FcfTwHVKJvPltpldTwearPxf /yTmCJjMiHlPYxKeMt8OebVaJLPRma5bE3OTvYH0hD9o4lG3xtP5Xd1sgx/nSZeW xcF2hTAp0SAh5pQI9UU3ngk0RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIb8qpNK zXv0tEYKBGnuWH595KduMB8GA1UdIwQYMBaAFJM6yOesS9O1gpifzLcvySfXFkJL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzlFMS82NTU2RjhEQUQ3 ODQxMUVBOUM1RDk2NDBDNEY5QUUwMi9renJJNTZ4TDA3V0NtSl9NdHlfSko5Y1dR a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6ckk1NnhMMDdXQ21KX010eV9KSjljV1Frcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzlFMS82NTU2RjhEQUQ3ODQxMUVBOUM1RDk2NDBDNEY5QUUwMi9renJJNTZ4TDA3 V0NtSl9NdHlfSko5Y1dRa3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4sP8KtI0naliPeE1M8+NzFSSir10aK44IvRgJxpD+y/aa+3sytrA5 p3rcwxIvCqOlNuYTN8Igbq47xfOCAdWCfG4F40bkS1zP5l6S4s3vf7znrT02true v3Ct0RkZkvWJKQnx3b/iF940ogw8QHMD7r//v2bs6cHBLYOv2RI0y5GAMkc7xelB vRQSxtNnd9tv86rW8ZEisj+W8cv3VCUGJxAi/l+Po8Et1sVV//gXyq2+d4EgIZ2e 83mbP+or+OdVZuADhNNUNh3eX8SzHfhcYbW1SLq6BMMx1CTYa+InS3bly/PAmyt6 goazcuxTjCsp7WVMki1fqZ5YMAmGs8lY -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:45 2025 by rpki-client