This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/KpPhRZdmUGGV3_yZtSM2K-WsDWs.mft File: KpPhRZdmUGGV3_yZtSM2K-WsDWs.mft (raw, json) Hash identifier: RbNjw4tN6fbnd29TaAGytu0Kxg+ipmtfPB7ePLbXMcU= Subject key identifier: 01:04:F0:B0:D6:8C:FA:3A:56:8B:FA:04:2D:AA:0A:1E:F6:76:35:62 Authority key identifier: 2A:93:E1:45:97:66:50:61:95:DF:FC:99:B5:23:36:2B:E5:AC:0D:6B Certificate issuer: /CN=A91233D4/serialNumber=2A93E1459766506195DFFC99B523362BE5AC0D6B Certificate serial: 0ABE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpPhRZdmUGGV3_yZtSM2K-WsDWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/KpPhRZdmUGGV3_yZtSM2K-WsDWs.mft Manifest number: 0AAC Signing time: Sat 20 Dec 2025 19:02:16 +0000 Manifest this update: Sat 20 Dec 2025 19:02:15 +0000 Manifest next update: Sat 27 Dec 2025 19:02:15 +0000 Files and hashes: 1: KpPhRZdmUGGV3_yZtSM2K-WsDWs.crl (hash: RBLRjnp2zGB5/WpV9JGLhbOPN6WWNWqZX2anzA0ON84=) 2: A08B108A78D411EAA8C57711C4F9AE02.roa (hash: 3OpBGXXCJTXlZTJu94VcICtCah5ixfAdvhW279UITTY=) 3: A1D479B878D411EAA8C57711C4F9AE02.roa (hash: OYgq0o9dgNrqTYjdakq5qNzK/yt9wMabsIU2jLZbz/U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/KpPhRZdmUGGV3_yZtSM2K-WsDWs.crl rsync://rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/KpPhRZdmUGGV3_yZtSM2K-WsDWs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpPhRZdmUGGV3_yZtSM2K-WsDWs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 19:02:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2750 (0xabe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91233D4, serialNumber=2A93E1459766506195DFFC99B523362BE5AC0D6B Validity Not Before: Dec 20 19:02:15 2025 GMT Not After : Dec 27 19:02:15 2025 GMT Subject: CN=6946f2b7-1066 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:38:42:7d:38:ac:28:8f:8c:e5:e2:3a:cf:18: 8d:b3:f6:09:f1:62:65:a9:21:23:25:26:b3:50:1a: ee:ab:5b:63:ab:e0:c5:83:07:eb:e8:42:6f:f8:a8: fd:6e:e1:9f:29:1c:0c:24:69:e5:7f:c4:5c:10:4f: 30:a2:6e:cd:20:6d:6d:46:27:95:e1:a2:48:0b:37: 71:67:ec:91:da:5b:b8:31:9c:9c:7a:01:fe:11:22: 1c:f2:a7:1f:3a:d1:66:57:54:dc:f4:66:21:10:a1: 96:d7:df:34:69:f4:ed:4b:d4:66:5b:e8:eb:75:c3: 0a:e8:3a:2c:ba:7e:67:68:8b:d4:dc:fe:85:ae:8f: ed:53:69:04:42:0c:2d:29:be:c7:c3:0d:bd:32:b4: 05:87:a6:8e:45:15:0c:ed:22:e2:17:57:44:87:80: 60:91:5a:f3:c2:00:6d:36:06:bd:96:53:b5:05:35: c2:48:31:20:90:49:cf:74:66:6d:53:d5:46:c4:87: af:bf:2b:6b:3b:a4:f2:93:21:a6:4a:64:17:d9:1f: 32:02:79:1d:c0:57:f8:30:32:59:41:29:72:b7:9c: d1:98:8f:60:28:5e:1a:69:a2:3e:fb:d7:c2:7f:60: 7a:83:60:4f:11:55:f7:9a:f3:e6:cf:b9:c3:72:c9: 4d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:04:F0:B0:D6:8C:FA:3A:56:8B:FA:04:2D:AA:0A:1E:F6:76:35:62 X509v3 Authority Key Identifier: keyid:2A:93:E1:45:97:66:50:61:95:DF:FC:99:B5:23:36:2B:E5:AC:0D:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/KpPhRZdmUGGV3_yZtSM2K-WsDWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpPhRZdmUGGV3_yZtSM2K-WsDWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/KpPhRZdmUGGV3_yZtSM2K-WsDWs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:f6:b6:ab:8a:1f:3c:33:e2:42:14:ff:f9:7d:32:c7:11:ee: e5:e8:8c:60:21:85:49:7b:98:b1:b8:82:c6:96:70:7d:e9:43: a8:15:c1:92:59:47:d1:78:e9:c8:59:5b:55:e2:e0:95:16:ce: 02:70:79:e8:3a:fa:3e:6f:6f:77:bf:8f:cd:5b:db:a5:7b:b9: 0e:2d:0c:77:c7:c3:20:45:36:f4:78:05:24:78:c9:0f:6d:20: f0:6f:45:60:68:ab:c1:f1:ef:c7:b7:d7:41:67:2c:cd:d4:6f: 1f:9e:11:4d:e9:12:83:7b:0a:1a:3a:72:1a:18:a7:26:97:89: ff:8c:00:18:36:ea:cd:a7:fe:19:a1:8a:88:c6:63:bf:63:a4: b4:79:81:d6:fc:9d:da:f4:23:ff:c7:27:8d:72:fc:01:55:af: c8:06:94:da:78:9d:30:d0:6c:ba:d4:ee:95:1f:a4:35:78:22: f6:a4:c3:69:17:1e:b2:c9:a8:a0:0f:04:30:6d:a6:22:e1:6a: f7:94:c6:73:a2:f7:c7:b4:99:d0:a3:6f:1e:1a:ac:23:5e:36: 7e:94:34:81:c5:f2:21:25:77:62:0c:fc:42:b8:b7:7f:df:9f: ff:8a:07:6e:5b:2a:0a:8f:c6:ce:2d:39:e0:5a:d2:52:7d:e8: 29:d8:10:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCr4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjMzRDQxMTAvBgNVBAUTKDJBOTNFMTQ1OTc2NjUwNjE5NURGRkM5OUI1MjMzNjJC RTVBQzBENkIwHhcNMjUxMjIwMTkwMjE1WhcNMjUxMjI3MTkwMjE1WjAYMRYwFAYD VQQDDA02OTQ2ZjJiNy0xMDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwThCfTisKI+M5eI6zxiNs/YJ8WJlqSEjJSazUBruq1tjq+DFgwfr6EJv+Kj9 buGfKRwMJGnlf8RcEE8wom7NIG1tRieV4aJICzdxZ+yR2lu4MZycegH+ESIc8qcf OtFmV1Tc9GYhEKGW1980afTtS9RmW+jrdcMK6Dosun5naIvU3P6Fro/tU2kEQgwt Kb7Hww29MrQFh6aORRUM7SLiF1dEh4BgkVrzwgBtNga9llO1BTXCSDEgkEnPdGZt U9VGxIevvytrO6TykyGmSmQX2R8yAnkdwFf4MDJZQSlyt5zRmI9gKF4aaaI++9fC f2B6g2BPEVX3mvPmz7nDcslNLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAEE8LDW jPo6Vov6BC2qCh72djViMB8GA1UdIwQYMBaAFCqT4UWXZlBhld/8mbUjNivlrA1r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzNENC8yNUEwNjE4MDZC MUYxMUVBODEzMEE2NUZDNEY5QUUwMi9LcFBoUlpkbVVHR1YzX3ladFNNMkstV3NE V3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0twUGhSWmRtVUdHVjNfeVp0U00ySy1Xc0RXcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzNENC8yNUEwNjE4MDZCMUYxMUVBODEzMEE2NUZDNEY5QUUwMi9LcFBoUlpkbVVH R1YzX3ladFNNMkstV3NEV3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAV9rarih88M+JCFP/5fTLHEe7l6IxgIYVJe5ixuILGlnB96UOoFcGS WUfReOnIWVtV4uCVFs4CcHnoOvo+b293v4/NW9ule7kOLQx3x8MgRTb0eAUkeMkP bSDwb0VgaKvB8e/Ht9dBZyzN1G8fnhFN6RKDewoaOnIaGKcml4n/jAAYNurNp/4Z oYqIxmO/Y6S0eYHW/J3a9CP/xyeNcvwBVa/IBpTaeJ0w0Gy61O6VH6Q1eCL2pMNp Fx6yyaigDwQwbaYi4Wr3lMZzovfHtJnQo28eGqwjXjZ+lDSBxfIhJXdiDPxCuLd/ 35//igduWyoKj8bOLTngWtJSfegp2BAk -----END CERTIFICATE-----Generated at Sun Dec 21 16:45:07 2025 by rpki-client