This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft File: kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft (raw, json) Hash identifier: yVdYKUue8r/cWp8nYcDyjfFLd834NFbc7op1wt83YSo= Subject key identifier: BE:9E:5B:39:12:CE:6F:88:B8:73:58:CB:B2:42:4A:9A:48:31:56:D2 Authority key identifier: 93:04:23:4E:73:90:49:14:3A:85:91:A3:74:5A:53:E4:B9:2A:D8:D8 Certificate issuer: /CN=A91DE323/serialNumber=9304234E739049143A8591A3745A53E4B92AD8D8 Certificate serial: 01B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft Manifest number: 01B2 Signing time: Tue 23 Dec 2025 02:13:54 +0000 Manifest this update: Tue 23 Dec 2025 02:13:54 +0000 Manifest next update: Tue 30 Dec 2025 02:13:54 +0000 Files and hashes: 1: kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl (hash: Z15iIXeyiiSn3QZvIUbHakqpkgT2KW+T3HqQoLonjSE=) 2: 3AB9E692C0D211EEB7BBBE4FC4F9AE02.roa (hash: A0mC9X2UnmVuFudZOyuXLKDdp8UzNcimAQJMyA4hcow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:13:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 441 (0x1b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE323, serialNumber=9304234E739049143A8591A3745A53E4B92AD8D8 Validity Not Before: Dec 23 02:13:54 2025 GMT Not After : Dec 30 02:13:54 2025 GMT Subject: CN=6949fae2-133f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ba:99:6a:c6:c1:e9:c2:0d:d6:65:4f:e0:d8: b8:fc:dd:62:b9:d8:b6:ff:37:d1:8e:91:5f:46:dc: 59:3d:c1:ba:aa:95:21:c8:75:45:87:45:1d:3b:3f: 4d:6e:be:e0:29:95:d4:ae:f9:6d:97:09:dc:3d:ac: d7:71:7f:7c:eb:35:c5:28:8d:da:ba:b6:ad:ed:22: a1:20:11:8b:d3:a7:3c:19:17:26:f1:bb:c0:4d:b8: a1:cb:87:e4:7c:92:9a:e2:d6:9b:66:b9:13:41:1c: 62:b5:55:f7:7e:8b:5e:34:c8:ee:41:7d:58:c3:b7: cf:76:76:71:c4:af:f2:36:9c:3f:32:d6:92:51:e2: 89:88:27:78:14:2b:08:e5:39:e0:c4:1a:83:fe:f0: 56:0d:93:8d:f6:a9:dc:4d:1e:dc:a3:68:cf:6f:bf: c3:c4:ba:0b:48:a4:37:34:87:68:a2:55:b1:13:4c: 74:be:d5:ab:b9:a4:ba:1e:b0:3b:51:ef:09:f4:52: 68:39:33:28:28:28:e9:10:0a:e9:71:4a:f7:86:02: 59:c0:72:f8:5f:7e:20:13:ae:7f:43:db:e8:39:37: a7:e3:24:aa:b9:ee:94:65:38:4b:45:37:54:d9:f8: a6:c4:6d:86:6a:49:eb:57:b9:56:ac:71:35:dc:c1: f3:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:9E:5B:39:12:CE:6F:88:B8:73:58:CB:B2:42:4A:9A:48:31:56:D2 X509v3 Authority Key Identifier: keyid:93:04:23:4E:73:90:49:14:3A:85:91:A3:74:5A:53:E4:B9:2A:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:68:5f:8f:7a:d4:f1:6a:77:3c:4c:a5:ae:72:34:8c:6d:fc: f3:aa:1f:d9:2e:ee:69:3d:35:36:82:1b:5f:27:97:5f:d6:17: 98:b1:51:22:33:93:5c:a7:19:c0:4f:95:4e:75:21:ba:09:25: 94:a2:da:a7:36:6d:05:0f:fd:e4:b2:85:2b:f1:62:47:b0:28: 99:49:a9:6d:24:61:d1:d8:ce:bd:e6:6f:f2:2b:fd:da:55:d0: 12:02:2a:a5:51:84:0f:60:78:49:8b:40:cb:12:10:48:93:ab: e9:61:d8:fb:b2:99:b0:be:01:d1:f3:06:d4:33:05:12:bc:75: 45:5d:6f:6a:13:f1:11:0a:7f:30:2a:9f:39:82:af:34:ce:66: 00:d2:77:7c:35:12:e6:47:89:67:35:f8:13:8d:c3:f8:5e:96: c9:91:aa:5a:7d:c7:9a:b7:a5:ed:57:b1:f9:1b:1a:cc:74:54: ed:31:87:da:b2:20:4f:29:ad:56:2e:d8:31:7d:4b:1b:70:a2: f2:76:72:f5:2a:d1:4a:61:d3:78:b4:49:53:09:c2:ec:2e:76: 18:f2:f7:b8:e7:26:22:3a:5c:d2:9b:7d:47:27:db:05:3a:c8: 15:e0:20:4a:6a:c9:fd:4c:02:96:30:d6:3e:f8:58:64:a5:6b: a9:52:c3:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUzMjMxMTAvBgNVBAUTKDkzMDQyMzRFNzM5MDQ5MTQzQTg1OTFBMzc0NUE1M0U0 QjkyQUQ4RDgwHhcNMjUxMjIzMDIxMzU0WhcNMjUxMjMwMDIxMzU0WjAYMRYwFAYD VQQDDA02OTQ5ZmFlMi0xMzNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq7qZasbB6cIN1mVP4Ni4/N1iudi2/zfRjpFfRtxZPcG6qpUhyHVFh0UdOz9N br7gKZXUrvltlwncPazXcX986zXFKI3aurat7SKhIBGL06c8GRcm8bvATbihy4fk fJKa4tabZrkTQRxitVX3foteNMjuQX1Yw7fPdnZxxK/yNpw/MtaSUeKJiCd4FCsI 5TngxBqD/vBWDZON9qncTR7co2jPb7/DxLoLSKQ3NIdoolWxE0x0vtWruaS6HrA7 Ue8J9FJoOTMoKCjpEArpcUr3hgJZwHL4X34gE65/Q9voOTen4ySque6UZThLRTdU 2fimxG2GaknrV7lWrHE13MHzAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL6eWzkS zm+IuHNYy7JCSppIMVbSMB8GA1UdIwQYMBaAFJMEI05zkEkUOoWRo3RaU+S5KtjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTMyMy85RTYxRTQyNDUy NUYxMUVFODBCQTBENzRDNEY5QUUwMi9rd1FqVG5PUVNSUTZoWkdqZEZwVDVMa3Ey TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t3UWpUbk9RU1JRNmhaR2pkRnBUNUxrcTJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTMyMy85RTYxRTQyNDUyNUYxMUVFODBCQTBENzRDNEY5QUUwMi9rd1FqVG5PUVNS UTZoWkdqZEZwVDVMa3EyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtaF+PetTxanc8TKWucjSMbfzzqh/ZLu5pPTU2ghtfJ5df1heYsVEi M5NcpxnAT5VOdSG6CSWUotqnNm0FD/3ksoUr8WJHsCiZSaltJGHR2M695m/yK/3a VdASAiqlUYQPYHhJi0DLEhBIk6vpYdj7spmwvgHR8wbUMwUSvHVFXW9qE/ERCn8w Kp85gq80zmYA0nd8NRLmR4lnNfgTjcP4XpbJkapafceat6XtV7H5GxrMdFTtMYfa siBPKa1WLtgxfUsbcKLydnL1KtFKYdN4tElTCcLsLnYY8ve45yYiOlzSm31HJ9sF OsgV4CBKasn9TAKWMNY++FhkpWupUsMM -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:36 2025 by rpki-client