This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft File: knWZPcnEM_JdNYCsd-OV0GaWSD0.mft (raw, json) Hash identifier: m98daf/8unWxFPQe85Yy3YojhLoKHzRwMJC8IWMEhM4= Subject key identifier: 4A:E5:DB:CD:0F:C9:0C:3D:5B:2F:38:EE:10:27:12:94:48:D3:D7:9F Authority key identifier: 92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D Certificate issuer: /CN=A91276A3/serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Certificate serial: 0750 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft Manifest number: 0747 Signing time: Sat 20 Dec 2025 21:03:24 +0000 Manifest this update: Sat 20 Dec 2025 21:03:23 +0000 Manifest next update: Sat 27 Dec 2025 21:03:23 +0000 Files and hashes: 1: knWZPcnEM_JdNYCsd-OV0GaWSD0.crl (hash: fr4KYuIvtkDlO362L3ubuf5tArmpmLzV7eL0X5lfoBI=) 2: 57BAE77C517D11EB8949D438C4F9AE02.roa (hash: W8Pbilr3L/+CfQDONlD1s3S+g13SAXBwRt28BIl7t2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 21:03:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1872 (0x750) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91276A3, serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Validity Not Before: Dec 20 21:03:23 2025 GMT Not After : Dec 27 21:03:23 2025 GMT Subject: CN=69470f1b-a7c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:02:de:a2:8b:cc:77:21:28:e5:2b:6f:a0:be: d6:16:52:b7:b2:ec:13:7b:43:ee:b0:ca:f9:0b:b5: fe:19:8c:d1:e1:d7:03:50:f3:3b:54:e4:29:80:4a: 6f:72:0b:61:f2:8d:4e:b7:51:8a:06:69:c4:a7:b2: 42:c4:65:ed:a3:94:7f:bc:71:91:6d:98:f4:07:50: ba:1f:d5:1e:4e:ab:a0:99:f0:d6:e6:2e:f0:48:dc: d1:48:fd:48:af:f7:b5:99:65:e6:e9:0e:28:dc:0d: b1:35:e0:c5:27:dc:b6:63:c2:37:d1:3b:40:56:9f: 3d:ec:5b:a7:ee:45:c6:15:d6:6a:ff:a4:49:54:f8: f8:c9:44:9d:b7:aa:6b:1a:a3:2f:37:67:1f:6e:15: d8:45:98:72:5b:c8:38:35:89:7f:37:9b:ce:58:61: 5b:b8:0e:c0:a4:1c:45:16:67:33:bf:a4:aa:0e:8f: be:8d:62:01:0c:89:30:6f:f9:54:35:ea:f1:56:74: d0:f1:3e:45:d5:c9:1c:cc:bb:92:4a:b8:b8:03:3b: ab:61:24:d4:4b:a0:63:3a:8c:9e:d9:1e:cf:51:aa: 6e:35:6b:bf:db:8e:72:67:d5:b5:77:c6:fa:c7:bf: 64:9c:6c:fc:af:dd:7d:d0:89:e2:3f:d1:85:7b:2d: e3:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:E5:DB:CD:0F:C9:0C:3D:5B:2F:38:EE:10:27:12:94:48:D3:D7:9F X509v3 Authority Key Identifier: keyid:92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:74:0e:4f:4c:b8:a7:8e:63:8b:7c:98:87:57:ba:f0:b9:ed: fa:27:57:65:83:e1:f4:5a:86:95:90:78:3e:ac:df:17:dc:52: 29:aa:1b:f0:e6:d7:dc:d2:bf:28:e5:03:12:83:39:69:94:c0: 62:7b:d5:e5:58:39:1b:38:e5:58:df:fd:94:74:49:da:80:61: 59:66:e2:3f:b0:e6:c0:12:77:34:44:db:aa:f0:cd:d4:e5:14: ca:76:38:58:13:d7:b9:36:01:60:bd:20:4b:e2:92:20:0d:db: b3:3d:7a:c8:76:d7:72:ea:1a:81:de:58:81:52:eb:8c:5e:a9: d3:a5:41:43:bf:11:9a:c7:f8:6f:33:c3:c0:75:f8:b3:cf:2c: b3:df:d9:9b:75:21:80:bf:73:dc:9c:ae:99:38:45:da:8c:84: 0b:eb:ad:61:34:21:20:09:52:4d:5d:ce:1e:2f:d6:14:0b:97: 1d:42:b8:72:d0:be:d0:17:53:5c:6d:de:81:a3:49:27:f1:4c: 8e:00:e0:98:88:3a:78:10:f7:78:db:92:2f:a8:53:c2:c9:40: a2:f2:5c:29:56:a9:0c:4d:ed:73:a4:5b:e8:8f:35:a7:8f:1a: dc:ea:e4:d1:7e:1e:5a:ff:5b:9a:3a:58:f7:70:29:cf:17:ff: 36:57:f4:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2QTMxMTAvBgNVBAUTKDkyNzU5OTNEQzlDNDMzRjI1RDM1ODBBQzc3RTM5NUQw NjY5NjQ4M0QwHhcNMjUxMjIwMjEwMzIzWhcNMjUxMjI3MjEwMzIzWjAYMRYwFAYD VQQDDA02OTQ3MGYxYi1hN2MyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4wLeoovMdyEo5StvoL7WFlK3suwTe0PusMr5C7X+GYzR4dcDUPM7VOQpgEpv cgth8o1Ot1GKBmnEp7JCxGXto5R/vHGRbZj0B1C6H9UeTqugmfDW5i7wSNzRSP1I r/e1mWXm6Q4o3A2xNeDFJ9y2Y8I30TtAVp897Fun7kXGFdZq/6RJVPj4yUSdt6pr GqMvN2cfbhXYRZhyW8g4NYl/N5vOWGFbuA7ApBxFFmczv6SqDo++jWIBDIkwb/lU NerxVnTQ8T5F1ckczLuSSri4AzurYSTUS6BjOoye2R7PUapuNWu/245yZ9W1d8b6 x79knGz8r9190IniP9GFey3jZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFErl280P yQw9Wy847hAnEpRI09efMB8GA1UdIwQYMBaAFJJ1mT3JxDPyXTWArHfjldBmlkg9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzZBMy84MzIwQkQxQzUx N0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1fSmROWUNzZC1PVjBHYVdT RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tuV1pQY25FTV9KZE5ZQ3NkLU9WMEdhV1NEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzZBMy84MzIwQkQxQzUxN0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1f SmROWUNzZC1PVjBHYVdTRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqdA5PTLinjmOLfJiHV7rwue36J1dlg+H0WoaVkHg+rN8X3FIpqhvw 5tfc0r8o5QMSgzlplMBie9XlWDkbOOVY3/2UdEnagGFZZuI/sObAEnc0RNuq8M3U 5RTKdjhYE9e5NgFgvSBL4pIgDduzPXrIdtdy6hqB3liBUuuMXqnTpUFDvxGax/hv M8PAdfizzyyz39mbdSGAv3PcnK6ZOEXajIQL661hNCEgCVJNXc4eL9YUC5cdQrhy 0L7QF1Ncbd6Bo0kn8UyOAOCYiDp4EPd425IvqFPCyUCi8lwpVqkMTe1zpFvojzWn jxrc6uTRfh5a/1uaOlj3cCnPF/82V/Qw -----END CERTIFICATE-----Generated at Mon Dec 22 02:52:42 2025 by rpki-client