This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft File: 2kcnine73_Ktn5igEaKnoufNYNg.mft (raw, json) Hash identifier: 0LKINFb429A1KuaK0Ufj0tttogKa21x3JYVmPANxvqc= Subject key identifier: 90:AA:9D:B6:BB:A0:FA:48:23:E4:0C:9D:2D:FD:48:54:D4:8C:04:EF Authority key identifier: DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 Certificate issuer: /CN=A91393BE/serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Certificate serial: 0105 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft Manifest number: 0102 Signing time: Fri 19 Dec 2025 04:11:42 +0000 Manifest this update: Fri 19 Dec 2025 04:11:42 +0000 Manifest next update: Fri 26 Dec 2025 04:11:42 +0000 Files and hashes: 1: 2kcnine73_Ktn5igEaKnoufNYNg.crl (hash: ljf0l+EkyQlr+YM9qm9rMgONLOCju+d1MNdQJx6Oatc=) 2: 05A966C652DB11EF990CB840C4F9AE02.roa (hash: uXZnZkbG2vzbvvdgakCXJGAe3jQgXul+4/g2eod9UgM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:11:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91393BE, serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Validity Not Before: Dec 19 04:11:42 2025 GMT Not After : Dec 26 04:11:42 2025 GMT Subject: CN=6944d07e-0150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:6e:fa:a0:69:fc:8d:f8:4b:35:97:33:a6:96: 54:ea:2c:56:aa:2a:3b:39:ba:b7:ee:65:64:3e:e0: 2d:aa:dd:fc:7e:c6:c3:62:30:f9:56:20:d3:e3:5f: 7c:6e:02:fe:f1:9f:00:88:76:02:f5:5e:48:c2:27: 7d:71:b9:0c:42:f1:04:3e:1f:55:7b:69:c0:b9:28: 15:57:5d:59:37:da:2e:6a:46:0c:d9:de:98:4d:91: cf:f2:7e:48:9c:f3:2f:12:f0:dc:86:a5:b9:ca:db: e5:77:8a:36:75:2e:7c:9d:66:0c:c8:a9:c7:c0:73: 2e:0e:0f:fc:46:a6:4a:30:63:da:fb:b0:a2:97:d6: 27:46:ca:a9:bd:0f:7b:bd:e8:e3:61:c9:f6:01:f2: 65:34:99:c1:b3:12:af:39:14:14:17:54:b8:3d:bb: 0c:15:92:16:f3:f6:3c:56:a9:a0:2f:88:58:6c:a3: d7:66:9d:16:a8:45:6b:22:84:9a:0f:41:29:1b:e8: 5b:4c:c3:47:4d:e9:e2:fd:50:da:2b:f4:a8:ca:08: f4:f2:3e:df:fe:0e:7b:43:1a:0d:c2:f7:78:66:ca: 8c:b3:c8:65:28:dd:36:67:fe:20:1c:46:0e:47:a8: e4:cb:a9:dd:d2:16:bb:92:a4:42:4d:7c:18:0d:bf: 14:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:AA:9D:B6:BB:A0:FA:48:23:E4:0C:9D:2D:FD:48:54:D4:8C:04:EF X509v3 Authority Key Identifier: keyid:DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:e8:b5:a6:08:bf:62:46:59:2a:8d:5f:25:27:a2:e3:a2:34: 59:24:ea:ea:b0:fe:8e:d3:f1:c8:47:a4:52:73:8e:c8:3b:2f: 75:57:58:4c:ad:98:a6:01:92:47:5f:4b:f6:62:b9:10:a1:d7: fc:2a:2d:6f:8b:cf:06:4d:e6:91:90:97:39:39:b9:2d:41:17: ad:ec:a6:73:5d:10:a3:51:ac:16:df:d2:c7:4c:86:cc:42:0f: d8:bc:fc:53:37:cd:20:df:42:6d:bc:06:06:26:bf:f6:d6:c3: dd:61:bb:90:96:02:21:f8:83:79:d3:de:02:92:8e:32:76:5f: 28:60:73:c8:18:3f:7b:06:4d:cd:2f:bb:63:10:77:31:d5:49: 69:5e:f4:ba:a3:30:a0:fc:17:f0:77:f8:5a:53:89:95:be:55: 9d:be:33:ed:b7:69:86:b7:c1:1f:f8:6a:68:f2:fa:20:56:2b: 4c:17:e5:e6:49:3c:56:e3:eb:15:27:2a:e8:45:d7:d0:3c:c0: bb:e3:2d:cc:c1:b4:f6:e8:af:29:c6:08:06:92:07:48:1b:d0: 6c:07:7d:ec:3d:01:54:ae:cd:85:9b:7c:09:0a:68:85:d6:9d: 4e:65:ec:8b:07:c6:ae:43:07:37:cc:2d:74:53:1d:db:24:dc: 8b:04:51:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzQkUxMTAvBgNVBAUTKERBNDcyNzhBNzdCQkRGRjJBRDlGOThBMDExQTJBN0Ey RTdDRDYwRDgwHhcNMjUxMjE5MDQxMTQyWhcNMjUxMjI2MDQxMTQyWjAYMRYwFAYD VQQDDA02OTQ0ZDA3ZS0wMTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo276oGn8jfhLNZczppZU6ixWqio7Obq37mVkPuAtqt38fsbDYjD5ViDT4198 bgL+8Z8AiHYC9V5Iwid9cbkMQvEEPh9Ve2nAuSgVV11ZN9ouakYM2d6YTZHP8n5I nPMvEvDchqW5ytvld4o2dS58nWYMyKnHwHMuDg/8RqZKMGPa+7Cil9YnRsqpvQ97 vejjYcn2AfJlNJnBsxKvORQUF1S4PbsMFZIW8/Y8VqmgL4hYbKPXZp0WqEVrIoSa D0EpG+hbTMNHTeni/VDaK/Soygj08j7f/g57QxoNwvd4ZsqMs8hlKN02Z/4gHEYO R6jky6nd0ha7kqRCTXwYDb8UuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJCqnba7 oPpII+QMnS39SFTUjATvMB8GA1UdIwQYMBaAFNpHJ4p3u9/yrZ+YoBGip6LnzWDY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTNCRS83NzQxNjE0QzUy RDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNfS3RuNWlnRWFLbm91Zk5Z TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY25pbmU3M19LdG41aWdFYUtub3VmTllOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTNCRS83NzQxNjE0QzUyRDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNf S3RuNWlnRWFLbm91Zk5ZTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCT6LWmCL9iRlkqjV8lJ6LjojRZJOrqsP6O0/HIR6RSc47IOy91V1hM rZimAZJHX0v2YrkQodf8Ki1vi88GTeaRkJc5ObktQRet7KZzXRCjUawW39LHTIbM Qg/YvPxTN80g30JtvAYGJr/21sPdYbuQlgIh+IN5094Cko4ydl8oYHPIGD97Bk3N L7tjEHcx1UlpXvS6ozCg/Bfwd/haU4mVvlWdvjPtt2mGt8Ef+Gpo8vogVitMF+Xm STxW4+sVJyroRdfQPMC74y3MwbT26K8pxggGkgdIG9BsB33sPQFUrs2Fm3wJCmiF 1p1OZeyLB8auQwc3zC10Ux3bJNyLBFFo -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:39 2025 by rpki-client