This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft File: kKmEULnak4EYotWtU02IKPS5RjQ.mft (raw, json) Hash identifier: itrQ/GGp6EHmHpa59BHd9TvMh+8Fv9ueqHqS29TDfhk= Subject key identifier: FC:40:AD:CE:78:E9:31:43:A1:01:2B:74:84:EA:5F:E9:18:29:22:0A Authority key identifier: 90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 Certificate issuer: /CN=A91EA2CC/serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Certificate serial: 0C8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft Manifest number: 0C76 Signing time: Tue 16 Dec 2025 18:21:17 +0000 Manifest this update: Tue 16 Dec 2025 18:21:16 +0000 Manifest next update: Tue 23 Dec 2025 18:21:16 +0000 Files and hashes: 1: kKmEULnak4EYotWtU02IKPS5RjQ.crl (hash: KR+FrlymD/si2WLPpZwvlRwkSYnU9DAujtQ1Cun6Qfk=) 2: C9989D9EF52011EF88416555C4F9AE02.roa (hash: J1Y3R18xnrLrxVnTd6dnJAcJxU9kFVJTgj8vMihGb8o=) 3: E6144BC6F52011EFB886A255C4F9AE02.roa (hash: aEMS3M29hCCeByUCXZ+uvfYFpf4/VBfRmYpl07QvYhY=) 4: D376CA2E63B311EFBEFCDF10C4F9AE02.roa (hash: G+U7uQFgAb2U+N/txdaeFUXvdA97Z5VnhrdZ+BD6M4c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 18:21:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3212 (0xc8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA2CC, serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Validity Not Before: Dec 16 18:21:16 2025 GMT Not After : Dec 23 18:21:16 2025 GMT Subject: CN=6941a31d-dc8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b2:d0:c8:3f:c0:9a:e7:50:e8:ca:73:4e:56: 99:a5:c5:f7:8a:54:bf:1d:4b:03:89:25:78:3a:51: 25:58:cc:c1:43:12:19:c2:b8:03:00:33:de:8a:3a: e0:fb:43:1a:9d:0a:0f:16:67:83:99:0e:ac:f8:3f: 95:cf:35:f6:c7:8c:6a:6b:7d:74:c2:e5:13:47:38: b3:51:ca:79:35:7c:95:59:b7:f8:73:02:68:b5:6b: 44:68:9c:31:c1:50:f9:15:da:f0:11:95:6b:fe:71: 15:86:4b:69:58:12:5e:89:b5:f2:87:7b:c1:47:4a: 8c:fa:8d:27:43:c8:eb:91:fa:dc:b1:14:59:8e:99: 50:30:cd:08:28:dd:78:13:2a:36:7d:b8:58:85:f2: fe:1b:4e:aa:97:7f:c9:27:25:e8:73:17:25:58:ea: 22:39:70:fe:85:d8:fe:70:72:35:82:ed:50:d6:71: 4b:da:a9:6e:f8:9c:e7:05:d9:4f:58:0c:17:d6:6a: c7:3f:a5:ea:1f:5e:58:e1:04:81:b7:e1:ed:6f:ee: cd:3f:2a:c2:54:27:3f:e7:12:a1:8c:5d:c9:3e:34: 7e:03:4e:8d:cc:63:fd:58:16:50:cf:eb:da:50:c0: bd:54:c7:7a:f4:08:86:1a:7e:a8:c8:f5:72:a0:b6: 25:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:40:AD:CE:78:E9:31:43:A1:01:2B:74:84:EA:5F:E9:18:29:22:0A X509v3 Authority Key Identifier: keyid:90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:00:be:14:dd:b6:4d:e4:f6:5f:5c:e9:f7:4f:72:c4:36:0d: a9:47:3f:6f:ff:29:40:6b:fb:7c:46:d9:7c:76:57:03:7b:13: 25:ee:6f:63:c3:3a:bb:40:18:13:26:44:5c:d6:b0:46:df:14: d7:d1:28:d8:4b:26:b2:82:b1:63:6c:aa:eb:9b:29:e7:83:5f: 81:b6:a3:7e:de:da:e4:f2:c9:f4:d8:74:3e:6d:5e:22:8f:cd: 3b:a5:76:02:d5:0e:ea:cc:7d:01:07:8a:d9:8b:b5:32:55:6f: 1a:31:9f:1f:e2:20:78:48:96:fd:47:06:e5:8e:5e:a5:01:c2: 5d:cd:ba:d7:05:88:1a:49:47:5c:c2:89:a5:cd:44:f7:3f:f8: fc:8c:33:c9:76:d4:ab:d9:b4:9a:eb:11:d3:cb:98:cc:94:58: ec:f3:ec:4e:17:36:2c:3c:4d:94:c5:49:0c:5c:5c:55:73:b4: 1c:cf:fd:cc:d6:f3:a8:88:fd:47:b6:9b:8d:47:60:88:bc:f5: e4:87:98:3d:68:b1:6f:0b:89:06:e3:17:87:81:3f:fb:39:92: dd:b8:71:16:dc:15:e4:73:ef:7a:89:4f:aa:ba:87:eb:01:fa: 00:d5:34:21:4a:fa:a1:e6:d0:ff:2a:42:4b:7f:aa:b2:4c:1b: 6b:27:31:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUEyQ0MxMTAvBgNVBAUTKDkwQTk4NDUwQjlEQTkzODExOEEyRDVBRDUzNEQ4ODI4 RjRCOTQ2MzQwHhcNMjUxMjE2MTgyMTE2WhcNMjUxMjIzMTgyMTE2WjAYMRYwFAYD VQQDDA02OTQxYTMxZC1kYzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApLLQyD/AmudQ6MpzTlaZpcX3ilS/HUsDiSV4OlElWMzBQxIZwrgDADPeijrg +0ManQoPFmeDmQ6s+D+VzzX2x4xqa310wuUTRzizUcp5NXyVWbf4cwJotWtEaJwx wVD5FdrwEZVr/nEVhktpWBJeibXyh3vBR0qM+o0nQ8jrkfrcsRRZjplQMM0IKN14 Eyo2fbhYhfL+G06ql3/JJyXocxclWOoiOXD+hdj+cHI1gu1Q1nFL2qlu+JznBdlP WAwX1mrHP6XqH15Y4QSBt+Htb+7NPyrCVCc/5xKhjF3JPjR+A06NzGP9WBZQz+va UMC9VMd69AiGGn6oyPVyoLYlswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPxArc54 6TFDoQErdITqX+kYKSIKMB8GA1UdIwQYMBaAFJCphFC52pOBGKLVrVNNiCj0uUY0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTJDQy9GMjZFMDZDRTEx RjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0RVlvdFd0VTAySUtQUzVS alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tLbUVVTG5hazRFWW90V3RVMDJJS1BTNVJqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTJDQy9GMjZFMDZDRTExRjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0 RVlvdFd0VTAySUtQUzVSalEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBAL4U3bZN5PZfXOn3T3LENg2pRz9v/ylAa/t8Rtl8dlcDexMl7m9j wzq7QBgTJkRc1rBG3xTX0SjYSyaygrFjbKrrmynng1+BtqN+3trk8sn02HQ+bV4i j807pXYC1Q7qzH0BB4rZi7UyVW8aMZ8f4iB4SJb9Rwbljl6lAcJdzbrXBYgaSUdc womlzUT3P/j8jDPJdtSr2bSa6xHTy5jMlFjs8+xOFzYsPE2UxUkMXFxVc7Qcz/3M 1vOoiP1HtpuNR2CIvPXkh5g9aLFvC4kG4xeHgT/7OZLduHEW3BXkc+96iU+quofr AfoA1TQhSvqh5tD/KkJLf6qyTBtrJzGr -----END CERTIFICATE-----Generated at Thu Dec 18 01:00:33 2025 by rpki-client