This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.mft File: keKklwM5j7IArA6fpHZpFddL-eU.mft (raw, json) Hash identifier: Ky7QfmV1imhXobO4SxH/FIcj2aMJvwnDDojqcIwxMfc= Subject key identifier: 1F:1E:EF:78:67:95:A6:88:5B:5E:E9:46:7F:8F:6F:A9:9C:B8:0E:66 Authority key identifier: 91:E2:A4:97:03:39:8F:B2:00:AC:0E:9F:A4:76:69:15:D7:4B:F9:E5 Certificate issuer: /CN=A91FD6E4/serialNumber=91E2A49703398FB200AC0E9FA4766915D74BF9E5 Certificate serial: 01D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keKklwM5j7IArA6fpHZpFddL-eU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.mft Manifest number: 01CE Signing time: Tue 23 Dec 2025 01:54:19 +0000 Manifest this update: Tue 23 Dec 2025 01:54:19 +0000 Manifest next update: Tue 30 Dec 2025 01:54:19 +0000 Files and hashes: 1: keKklwM5j7IArA6fpHZpFddL-eU.crl (hash: eHTJjU/GSOmu/O4IpvIkJcqijCU3lhXrz/SwESlDl0E=) 2: 345AD30E1E1311EE846A3261C4F9AE02.roa (hash: tkkYz0ghUklFSNnUvurDs2pFNwSVM0cpaVXq98edoAE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.crl rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keKklwM5j7IArA6fpHZpFddL-eU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:54:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 466 (0x1d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD6E4, serialNumber=91E2A49703398FB200AC0E9FA4766915D74BF9E5 Validity Not Before: Dec 23 01:54:19 2025 GMT Not After : Dec 30 01:54:19 2025 GMT Subject: CN=6949f64b-ded1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:78:5a:1e:ec:e3:c7:9d:6c:dc:06:1f:b9:c2: d1:72:fb:49:d9:3c:17:97:78:bf:d8:0c:76:6c:c1: 39:4e:00:29:73:80:df:52:0f:96:d9:8a:9c:0d:74: af:b8:82:3d:7b:f6:35:e7:c3:c8:3b:ca:95:46:ae: 1b:6b:48:61:8a:9e:9d:67:97:3f:bb:8c:48:d1:d4: 16:7e:9b:a0:3c:8b:aa:54:c8:29:88:81:7f:10:ea: f3:d5:45:fb:0c:bf:fb:a4:e6:da:7c:41:c0:a3:92: 6d:c6:0a:22:6a:84:ab:ea:f2:02:32:e4:68:94:f1: 66:9e:fc:1a:c8:ef:1d:20:fa:08:20:3b:d8:06:76: c5:67:c8:23:14:57:63:3d:56:5c:7d:de:61:d9:d7: 4a:fe:27:53:f6:7e:a5:4b:82:e9:35:85:57:6a:41: 79:62:83:3b:1a:7e:60:97:3a:f9:a7:37:02:ab:a5: b8:9d:7e:12:ba:b1:eb:7e:e8:d0:c4:f5:44:38:69: 65:54:1b:0a:2a:1a:28:74:c3:8d:d3:5c:fd:49:70: f6:ba:ab:ef:41:a6:3c:e9:1b:8b:b0:24:ba:a3:6d: 42:36:75:e1:f4:f0:54:a0:60:f9:ec:37:b0:75:61: 0b:18:f9:27:1a:54:76:2f:f0:a8:27:74:51:c8:84: 8b:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:1E:EF:78:67:95:A6:88:5B:5E:E9:46:7F:8F:6F:A9:9C:B8:0E:66 X509v3 Authority Key Identifier: keyid:91:E2:A4:97:03:39:8F:B2:00:AC:0E:9F:A4:76:69:15:D7:4B:F9:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keKklwM5j7IArA6fpHZpFddL-eU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:37:f1:cb:cd:22:15:d4:a4:8e:34:c5:f9:83:25:de:9c:be: 3b:df:6b:41:42:1f:94:10:71:3a:22:7a:6b:0f:3e:9a:1d:54: 17:5e:63:a8:bd:90:7b:90:86:f3:03:83:39:e8:bb:28:11:05: 1f:e1:fb:b8:81:d9:00:20:a7:55:05:50:03:96:9b:a8:a9:eb: e9:25:88:19:43:4a:53:9d:1a:af:46:47:6f:98:35:a7:ad:f0: f4:b4:ea:99:2a:7f:92:d8:38:b5:42:8e:5a:3f:08:91:84:f1: 01:de:08:ba:6f:9b:70:52:b9:fd:ef:41:64:18:3a:00:4c:f7: f5:4d:e5:ef:27:44:39:de:8f:6c:37:e9:36:0e:e7:4a:e6:e1: 54:db:d2:08:e3:8b:0c:c6:2a:e1:7e:3d:3d:be:1a:17:77:84: e4:d8:be:2d:38:a8:aa:a6:f6:f8:30:ff:ab:f8:4d:9a:2f:b6: 0e:9e:ac:fd:7e:32:2d:32:ba:ca:ec:79:9b:ab:70:0d:43:a8: 65:d4:fc:59:ad:4e:dc:85:6d:75:08:db:1c:e0:7a:e3:19:03: c0:d5:64:72:f5:5d:95:e1:c4:a9:67:30:6c:f7:14:7b:5a:54: 79:c5:1a:45:81:01:3b:93:a4:38:e4:4a:e5:84:4f:8c:61:c8: 6a:85:19:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ2RTQxMTAvBgNVBAUTKDkxRTJBNDk3MDMzOThGQjIwMEFDMEU5RkE0NzY2OTE1 RDc0QkY5RTUwHhcNMjUxMjIzMDE1NDE5WhcNMjUxMjMwMDE1NDE5WjAYMRYwFAYD VQQDDA02OTQ5ZjY0Yi1kZWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3nhaHuzjx51s3AYfucLRcvtJ2TwXl3i/2Ax2bME5TgApc4DfUg+W2YqcDXSv uII9e/Y158PIO8qVRq4ba0hhip6dZ5c/u4xI0dQWfpugPIuqVMgpiIF/EOrz1UX7 DL/7pObafEHAo5JtxgoiaoSr6vICMuRolPFmnvwayO8dIPoIIDvYBnbFZ8gjFFdj PVZcfd5h2ddK/idT9n6lS4LpNYVXakF5YoM7Gn5glzr5pzcCq6W4nX4SurHrfujQ xPVEOGllVBsKKhoodMON01z9SXD2uqvvQaY86RuLsCS6o21CNnXh9PBUoGD57Dew dWELGPknGlR2L/CoJ3RRyISLoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB8e73hn laaIW17pRn+Pb6mcuA5mMB8GA1UdIwQYMBaAFJHipJcDOY+yAKwOn6R2aRXXS/nl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDZFNC9BQkU3RTA1NjFF MEUxMUVFOTE3MEY0MjlDNEY5QUUwMi9rZUtrbHdNNWo3SUFyQTZmcEhacEZkZEwt ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tlS2tsd001ajdJQXJBNmZwSFpwRmRkTC1lVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDZFNC9BQkU3RTA1NjFFMEUxMUVFOTE3MEY0MjlDNEY5QUUwMi9rZUtrbHdNNWo3 SUFyQTZmcEhacEZkZEwtZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLN/HLzSIV1KSONMX5gyXenL4732tBQh+UEHE6InprDz6aHVQXXmOo vZB7kIbzA4M56LsoEQUf4fu4gdkAIKdVBVADlpuoqevpJYgZQ0pTnRqvRkdvmDWn rfD0tOqZKn+S2Di1Qo5aPwiRhPEB3gi6b5twUrn970FkGDoATPf1TeXvJ0Q53o9s N+k2DudK5uFU29II44sMxirhfj09vhoXd4Tk2L4tOKiqpvb4MP+r+E2aL7YOnqz9 fjItMrrK7Hmbq3ANQ6hl1PxZrU7chW11CNsc4HrjGQPA1WRy9V2V4cSpZzBs9xR7 WlR5xRpFgQE7k6Q45ErlhE+MYchqhRn/ -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:06 2025 by rpki-client