This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft File: Km8SBBLYIPn_JM0F1ez0nmYtmco.mft (raw, json) Hash identifier: rVqWtOMLsBs8FxTFXMVJHjo1+gJUJCiJy3UXISSdT3k= Subject key identifier: D1:DB:A4:7D:71:57:91:15:65:A8:63:2F:29:AC:36:B2:E4:55:A9:50 Authority key identifier: 2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA Certificate issuer: /CN=A91F240B/serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA Certificate serial: 1FE6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft Manifest number: 1FD8 Signing time: Thu 18 Dec 2025 15:53:49 +0000 Manifest this update: Thu 18 Dec 2025 15:53:49 +0000 Manifest next update: Thu 25 Dec 2025 15:53:49 +0000 Files and hashes: 1: Km8SBBLYIPn_JM0F1ez0nmYtmco.crl (hash: WkjrewqXLdaDz7iiuhCMqjBunAe/GpUBnPIedr+dC4Y=) 2: E352E0A2896F11E7BBF2923CC4F9AE02.roa (hash: bpwG3qWkZqt3c9e2parZM85DcFLWLncfBgOv3ugwly0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.crl rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 15:53:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8166 (0x1fe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F240B, serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA Validity Not Before: Dec 18 15:53:49 2025 GMT Not After : Dec 25 15:53:49 2025 GMT Subject: CN=6944238d-24a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:0f:53:ce:63:da:e7:92:c2:38:11:b9:e1:1d: e4:90:fb:42:c2:1c:b4:7f:73:9b:88:69:d8:4f:18: 17:6a:f6:69:29:3b:35:5b:58:f9:7f:e4:0e:7a:83: 9c:4f:86:28:0c:01:96:75:00:7f:33:3b:3e:45:98: 8e:4c:0f:9b:ff:f5:87:c1:75:ee:17:90:73:cf:55: 44:61:56:20:2f:89:d2:61:6d:7b:ca:06:2d:13:08: 35:4c:00:2f:7e:10:14:1c:ad:2e:0e:8d:4d:b0:18: 2f:bb:11:5d:84:5f:bd:e0:a6:fc:f2:fa:0b:9f:ef: ba:c1:a0:bf:a5:df:7c:e9:1a:ff:cd:da:b6:28:93: 29:d0:7d:38:62:d2:94:68:fe:6b:d6:51:5e:8a:e1: 85:f4:67:20:34:ab:b9:97:6e:ec:3a:a1:4a:94:bb: 14:f2:4f:ce:e4:9a:dc:3c:c2:65:25:8e:f4:df:c0: 7d:0d:b0:ca:98:8c:19:21:55:39:69:96:9c:a3:9d: 08:29:75:81:4f:7f:0d:b7:68:07:6f:31:e3:79:ad: 97:0b:22:42:c9:e7:c1:b5:47:e8:b1:84:b2:25:c6: f6:1b:33:b2:d3:33:af:72:f9:2c:14:60:96:b1:6d: 91:26:8a:19:49:9e:17:e7:3e:26:51:bd:d4:4b:c3: b5:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:DB:A4:7D:71:57:91:15:65:A8:63:2F:29:AC:36:B2:E4:55:A9:50 X509v3 Authority Key Identifier: keyid:2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:26:7d:62:32:5e:81:1a:ba:7c:be:17:65:b8:7d:b5:d3:2e: 3b:a9:c9:3e:fb:60:bb:97:04:73:05:19:ed:aa:20:26:70:e8: 1b:aa:be:9b:6a:05:8a:fb:c6:51:df:25:92:52:b6:0d:7d:30: 5b:13:e8:69:d5:37:28:9d:1c:6d:dd:51:6a:c3:0e:4c:86:14: ba:87:2c:0c:f1:e3:6a:4d:a0:6c:47:a7:1d:23:be:c5:34:83: 06:57:ba:12:2b:d1:f3:09:f9:31:58:50:00:23:64:83:ed:aa: f0:de:8b:71:36:dd:ba:4b:15:50:cb:c1:56:ee:82:0e:eb:19: 31:1f:bd:a5:09:3b:fe:e7:9e:e4:12:62:44:ec:9e:7f:11:f1: ed:a1:54:e8:5a:76:b3:80:a0:de:bc:35:a1:81:4c:f7:3e:fe: 07:26:cf:2e:56:a6:02:29:34:e5:a8:cd:d7:e6:37:76:d9:02: 42:47:e8:0e:98:6e:f1:36:47:db:db:ec:ff:12:87:97:5c:eb: 56:43:77:92:6a:96:53:60:b7:88:58:c0:0e:0b:1d:08:9c:55: d2:c1:36:3d:57:fa:4b:c9:98:49:3d:5d:2d:c6:8c:ff:d5:b7: 02:ed:02:26:64:66:97:e3:15:3f:d9:33:99:bf:1b:ae:c5:84: 86:f2:4c:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICH+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjI0MEIxMTAvBgNVBAUTKDJBNkYxMjA0MTJEODIwRjlGRjI0Q0QwNUQ1RUNGNDlF NjYyRDk5Q0EwHhcNMjUxMjE4MTU1MzQ5WhcNMjUxMjI1MTU1MzQ5WjAYMRYwFAYD VQQDDA02OTQ0MjM4ZC0yNGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7g9TzmPa55LCOBG54R3kkPtCwhy0f3ObiGnYTxgXavZpKTs1W1j5f+QOeoOc T4YoDAGWdQB/Mzs+RZiOTA+b//WHwXXuF5Bzz1VEYVYgL4nSYW17ygYtEwg1TAAv fhAUHK0uDo1NsBgvuxFdhF+94Kb88voLn++6waC/pd986Rr/zdq2KJMp0H04YtKU aP5r1lFeiuGF9GcgNKu5l27sOqFKlLsU8k/O5JrcPMJlJY7038B9DbDKmIwZIVU5 aZaco50IKXWBT38Nt2gHbzHjea2XCyJCyefBtUfosYSyJcb2GzOy0zOvcvksFGCW sW2RJooZSZ4X5z4mUb3US8O14wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNHbpH1x V5EVZahjLymsNrLkValQMB8GA1UdIwQYMBaAFCpvEgQS2CD5/yTNBdXs9J5mLZnK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjQwQi81QjczNkQ5MjQz MzMxMUU2OTU5QTc4MTVDNEY5QUUwMi9LbThTQkJMWUlQbl9KTTBGMWV6MG5tWXRt Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttOFNCQkxZSVBuX0pNMEYxZXowbm1ZdG1jby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjQwQi81QjczNkQ5MjQzMzMxMUU2OTU5QTc4MTVDNEY5QUUwMi9LbThTQkJMWUlQ bl9KTTBGMWV6MG5tWXRtY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByJn1iMl6BGrp8vhdluH210y47qck++2C7lwRzBRntqiAmcOgbqr6b agWK+8ZR3yWSUrYNfTBbE+hp1TconRxt3VFqww5MhhS6hywM8eNqTaBsR6cdI77F NIMGV7oSK9HzCfkxWFAAI2SD7arw3otxNt26SxVQy8FW7oIO6xkxH72lCTv+557k EmJE7J5/EfHtoVToWnazgKDevDWhgUz3Pv4HJs8uVqYCKTTlqM3X5jd22QJCR+gO mG7xNkfb2+z/EoeXXOtWQ3eSapZTYLeIWMAOCx0InFXSwTY9V/pLyZhJPV0txoz/ 1bcC7QImZGaX4xU/2TOZvxuuxYSG8kzB -----END CERTIFICATE-----Generated at Sat Dec 20 14:05:43 2025 by rpki-client