This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft File: Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft (raw, json) Hash identifier: 14KIRint7CUj3RMS2hHAM1l5kiJDYvkwZpGw+tzwppk= Subject key identifier: 11:00:E9:7B:4B:DE:61:61:F7:7A:D6:14:C9:50:A0:35:6A:02:46:9D Authority key identifier: 29:AD:B3:9B:62:0E:AE:3C:B8:AF:CA:2C:A1:85:F5:C4:87:6F:D0:43 Certificate issuer: /CN=A91FC985/serialNumber=29ADB39B620EAE3CB8AFCA2CA185F5C4876FD043 Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft Manifest number: 98 Signing time: Fri 19 Dec 2025 05:29:08 +0000 Manifest this update: Fri 19 Dec 2025 05:29:08 +0000 Manifest next update: Fri 26 Dec 2025 05:29:08 +0000 Files and hashes: 1: Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl (hash: hVdAJplcHlDp20vt0gWVhJ9oKfW2OBW/3ibxFgvu5gQ=) 2: DA3E289CF5B811EFA1046714C4F9AE02.roa (hash: ghtYYnHvBHOXjjafNw/o3b7nWMJznKoJtYacsPdc8uY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:29:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC985, serialNumber=29ADB39B620EAE3CB8AFCA2CA185F5C4876FD043 Validity Not Before: Dec 19 05:29:08 2025 GMT Not After : Dec 26 05:29:08 2025 GMT Subject: CN=6944e2a4-8ae9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:9b:9b:38:78:15:42:32:1d:a1:b7:01:42:44: 23:61:a1:b2:9f:cc:b3:08:b0:f4:b4:aa:8a:4f:b8: 5c:29:f8:c8:5e:03:dc:f5:78:87:5a:14:56:73:c9: ca:50:70:5c:eb:96:0f:76:6d:97:7d:3c:27:d7:d2: b7:dc:b7:88:33:dc:d6:72:1f:e1:6a:81:af:b2:87: f0:3a:11:75:63:c7:c1:b4:0e:42:68:b7:2c:5a:b8: 30:21:2a:1b:58:51:20:f6:cd:45:96:4b:5a:56:c0: 51:83:a0:26:5a:dc:07:ef:c7:ef:4b:71:48:d8:a5: d9:d5:6a:02:81:df:a0:0c:84:b4:76:56:1d:82:71: 71:b6:09:79:23:e4:36:94:d0:89:f3:ff:9c:51:33: a4:6c:5e:b3:e5:4d:61:c9:d6:f8:6c:48:19:dc:4e: f9:ab:43:4f:e5:08:ef:c6:41:7d:43:8d:32:fc:3d: 1f:d9:9d:25:7f:7e:b5:c1:ed:a7:da:60:f5:51:50: 8c:c7:d5:73:60:fa:da:55:66:b3:e7:cf:78:cd:ad: 86:d9:da:37:ff:8d:c2:cd:44:de:c5:c5:85:d0:14: 8f:d5:44:13:a9:e7:b1:82:13:69:a9:9b:24:da:f2: a1:17:24:d2:0a:6c:fc:f6:6b:3d:33:23:87:1b:32: ff:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:00:E9:7B:4B:DE:61:61:F7:7A:D6:14:C9:50:A0:35:6A:02:46:9D X509v3 Authority Key Identifier: keyid:29:AD:B3:9B:62:0E:AE:3C:B8:AF:CA:2C:A1:85:F5:C4:87:6F:D0:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:96:3b:ce:fc:f0:f8:3f:e0:e0:34:5b:68:84:e5:a9:30:88: 17:c1:0d:d3:8f:f2:34:3a:4b:82:bc:67:1a:94:d5:21:65:1f: ea:32:2c:03:bd:8f:59:75:e0:8f:93:00:77:67:e6:34:8c:c3: 58:c2:9f:32:de:e0:1e:12:d0:40:5a:83:2c:69:11:76:39:b9: bb:3e:02:f4:ad:17:08:5a:c8:58:ce:ef:54:75:3d:5f:54:aa: 66:40:87:14:62:37:2a:74:37:32:6f:df:ce:2f:94:0f:fa:7e: bf:4d:c1:8d:bf:97:ad:1c:92:ef:51:36:5d:c2:c5:2d:f2:d0: 66:21:e6:cb:27:99:b7:2f:09:bf:75:8d:8d:9b:41:54:cb:1c: ee:85:62:e7:58:05:21:23:08:d0:b8:aa:a9:04:c7:e3:88:28: a8:e9:d8:2e:ac:ac:44:b5:08:ea:d1:bf:bb:ab:aa:4c:b7:1e: 64:96:ba:38:55:fa:03:ce:64:07:57:1d:15:bf:05:a5:62:53: 8a:a8:d1:78:21:6b:38:ba:bd:a1:ad:16:8a:d9:07:cf:32:ed: c2:85:c8:39:cd:2e:3c:74:a0:3a:85:b1:2c:37:7f:02:b0:bd: 63:5a:3d:9a:25:84:be:01:e0:c0:36:19:fe:80:4a:e5:08:68: 09:52:d7:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM5ODUxMTAvBgNVBAUTKDI5QURCMzlCNjIwRUFFM0NCOEFGQ0EyQ0ExODVGNUM0 ODc2RkQwNDMwHhcNMjUxMjE5MDUyOTA4WhcNMjUxMjI2MDUyOTA4WjAYMRYwFAYD VQQDDA02OTQ0ZTJhNC04YWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0pubOHgVQjIdobcBQkQjYaGyn8yzCLD0tKqKT7hcKfjIXgPc9XiHWhRWc8nK UHBc65YPdm2XfTwn19K33LeIM9zWch/haoGvsofwOhF1Y8fBtA5CaLcsWrgwISob WFEg9s1FlktaVsBRg6AmWtwH78fvS3FI2KXZ1WoCgd+gDIS0dlYdgnFxtgl5I+Q2 lNCJ8/+cUTOkbF6z5U1hydb4bEgZ3E75q0NP5QjvxkF9Q40y/D0f2Z0lf361we2n 2mD1UVCMx9VzYPraVWaz5894za2G2do3/43CzUTexcWF0BSP1UQTqeexghNpqZsk 2vKhFyTSCmz89ms9MyOHGzL/TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBEA6XtL 3mFh93rWFMlQoDVqAkadMB8GA1UdIwQYMBaAFCmts5tiDq48uK/KLKGF9cSHb9BD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzk4NS82NzNBQTJGNEY1 QjcxMUVGOEMxRkY2MTFDNEY5QUUwMi9LYTJ6bTJJT3JqeTRyOG9zb1lYMXhJZHYw RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0thMnptMklPcmp5NHI4b3NvWVgxeElkdjBFTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Qzk4NS82NzNBQTJGNEY1QjcxMUVGOEMxRkY2MTFDNEY5QUUwMi9LYTJ6bTJJT3Jq eTRyOG9zb1lYMXhJZHYwRU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIljvO/PD4P+DgNFtohOWpMIgXwQ3Tj/I0OkuCvGcalNUhZR/qMiwD vY9ZdeCPkwB3Z+Y0jMNYwp8y3uAeEtBAWoMsaRF2Obm7PgL0rRcIWshYzu9UdT1f VKpmQIcUYjcqdDcyb9/OL5QP+n6/TcGNv5etHJLvUTZdwsUt8tBmIebLJ5m3Lwm/ dY2Nm0FUyxzuhWLnWAUhIwjQuKqpBMfjiCio6dgurKxEtQjq0b+7q6pMtx5klro4 VfoDzmQHVx0VvwWlYlOKqNF4IWs4ur2hrRaK2QfPMu3Chcg5zS48dKA6hbEsN38C sL1jWj2aJYS+AeDANhn+gErlCGgJUtfO -----END CERTIFICATE-----Generated at Sat Dec 20 22:09:11 2025 by rpki-client