This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft File: kJUWWXx2-jz_qxUgjArpiGY0qgM.mft (raw, json) Hash identifier: LKaU1f2r59QnCGlmukwYzMrXeqv7wz50KUsZDbuQEE8= Subject key identifier: 48:2A:17:CF:DF:01:F5:3C:82:E4:83:12:A5:C6:83:8B:84:2A:82:5A Authority key identifier: 90:95:16:59:7C:76:FA:3C:FF:AB:15:20:8C:0A:E9:88:66:34:AA:03 Certificate issuer: /CN=A91847A2/serialNumber=909516597C76FA3CFFAB15208C0AE9886634AA03 Certificate serial: 0B11 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft Manifest number: 0B09 Signing time: Sat 20 Dec 2025 18:54:23 +0000 Manifest this update: Sat 20 Dec 2025 18:54:22 +0000 Manifest next update: Sat 27 Dec 2025 18:54:22 +0000 Files and hashes: 1: kJUWWXx2-jz_qxUgjArpiGY0qgM.crl (hash: QHv+Ftj/99ff9AbzdCo1lS5Q5JivYVEfBbzsKxs2F68=) 2: 54EDB8542E1811EBB4E80B1FC4F9AE02.roa (hash: 3V95dG8EwbjGC7EMndTVlVAHQWvt90W2HKQwUZ++P/E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.crl rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:54:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2833 (0xb11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847A2, serialNumber=909516597C76FA3CFFAB15208C0AE9886634AA03 Validity Not Before: Dec 20 18:54:22 2025 GMT Not After : Dec 27 18:54:22 2025 GMT Subject: CN=6946f0de-de47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:99:18:56:71:e0:39:6a:5a:b3:91:ff:b4:1e: 70:f5:76:f3:63:27:4e:e5:5c:f1:05:ac:0c:54:81: 72:8e:69:76:0d:d0:a0:83:7f:1a:04:11:17:9b:a1: 3f:87:85:63:98:57:d0:3c:b5:a4:44:3f:e8:2a:8d: c4:c0:1d:88:81:7d:8b:99:f9:e3:19:20:9d:89:08: 4e:79:ee:f7:3f:27:24:02:66:77:69:23:9f:41:a9: 1b:8c:31:e5:c2:97:d1:38:72:74:69:41:e1:ef:04: 91:75:9d:0c:a3:60:6a:f3:98:3f:fc:4d:3f:ef:78: 73:5c:02:05:25:bf:17:53:82:13:de:10:a4:98:82: 47:ae:df:86:0f:e0:1e:d1:ea:25:63:e3:bc:74:0a: aa:7c:5c:11:26:0d:e4:72:dc:24:bd:5c:8d:00:0e: 67:28:0c:01:86:14:b8:9d:75:61:07:e1:b3:e5:29: 0c:18:c7:5f:77:0c:6c:aa:7d:4b:49:1d:a5:ef:3b: c7:25:0d:fc:a5:ca:9d:8e:25:3d:08:e2:8c:f4:87: 29:e2:8f:ba:d4:fe:4f:0d:26:7e:aa:34:fa:fc:70: 6d:74:af:42:d8:b7:15:37:8e:94:dc:5e:a6:0a:97: 7c:14:35:20:a9:94:c6:78:da:ae:16:0d:62:ab:50: 25:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:2A:17:CF:DF:01:F5:3C:82:E4:83:12:A5:C6:83:8B:84:2A:82:5A X509v3 Authority Key Identifier: keyid:90:95:16:59:7C:76:FA:3C:FF:AB:15:20:8C:0A:E9:88:66:34:AA:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:75:88:77:cf:ab:16:3e:ee:96:65:6f:e4:0b:df:3a:3e:92: cd:f6:d3:6d:b9:50:05:38:31:06:19:7e:d3:4a:82:03:fd:b6: 8a:75:6b:5b:e2:7e:84:0b:3a:a0:5d:f9:60:b3:12:df:ad:bb: 1e:51:e5:05:08:e7:d9:5a:4b:e2:67:29:4d:7d:97:fd:bb:79: b7:bd:25:9f:5f:d9:86:74:5b:1a:74:15:22:b1:ee:99:bb:31: ad:f3:55:6b:8d:fc:fb:73:11:82:88:85:30:ae:01:24:e4:f7: c4:b0:cb:7f:6e:40:93:82:c6:e5:3f:cc:d9:aa:1d:4d:b9:34: 4e:8a:6d:74:f8:7a:87:c0:b1:23:20:d9:bc:37:5a:56:13:f5: e9:a9:99:d9:fb:ca:78:33:6a:63:f5:72:ca:dc:80:3f:98:f2: 34:b0:65:16:0f:61:cd:f2:d6:ae:88:54:05:4b:f0:28:04:85: 59:0e:de:62:6d:6e:e8:23:54:45:80:89:c1:e3:f1:2a:22:9c: c3:75:0b:a8:e2:23:49:23:2d:8d:86:2b:36:41:5f:4c:c1:64: 58:9c:0b:09:77:ab:5d:d8:e2:a7:6c:18:5c:f3:41:31:33:b5: ea:79:5c:6e:8f:f0:fc:f4:08:10:9c:9a:17:b9:66:cb:38:62: 18:7a:8b:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QTIxMTAvBgNVBAUTKDkwOTUxNjU5N0M3NkZBM0NGRkFCMTUyMDhDMEFFOTg4 NjYzNEFBMDMwHhcNMjUxMjIwMTg1NDIyWhcNMjUxMjI3MTg1NDIyWjAYMRYwFAYD VQQDDA02OTQ2ZjBkZS1kZTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZkYVnHgOWpas5H/tB5w9XbzYydO5VzxBawMVIFyjml2DdCgg38aBBEXm6E/ h4VjmFfQPLWkRD/oKo3EwB2IgX2LmfnjGSCdiQhOee73PyckAmZ3aSOfQakbjDHl wpfROHJ0aUHh7wSRdZ0Mo2Bq85g//E0/73hzXAIFJb8XU4IT3hCkmIJHrt+GD+Ae 0eolY+O8dAqqfFwRJg3kctwkvVyNAA5nKAwBhhS4nXVhB+Gz5SkMGMdfdwxsqn1L SR2l7zvHJQ38pcqdjiU9COKM9Icp4o+61P5PDSZ+qjT6/HBtdK9C2LcVN46U3F6m Cpd8FDUgqZTGeNquFg1iq1AlBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgqF8/f AfU8guSDEqXGg4uEKoJaMB8GA1UdIwQYMBaAFJCVFll8dvo8/6sVIIwK6YhmNKoD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdBMi9BRUQzRDM1RTU5 NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rSlVXV1h4Mi1qel9xeFVnakFycGlHWTBx Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tKVVdXWHgyLWp6X3F4VWdqQXJwaUdZMHFnTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdBMi9BRUQzRDM1RTU5NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rSlVXV1h4Mi1q el9xeFVnakFycGlHWTBxZ00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjdYh3z6sWPu6WZW/kC986PpLN9tNtuVAFODEGGX7TSoID/baKdWtb 4n6ECzqgXflgsxLfrbseUeUFCOfZWkviZylNfZf9u3m3vSWfX9mGdFsadBUise6Z uzGt81Vrjfz7cxGCiIUwrgEk5PfEsMt/bkCTgsblP8zZqh1NuTROim10+HqHwLEj INm8N1pWE/XpqZnZ+8p4M2pj9XLK3IA/mPI0sGUWD2HN8tauiFQFS/AoBIVZDt5i bW7oI1RFgInB4/EqIpzDdQuo4iNJIy2Nhis2QV9MwWRYnAsJd6td2OKnbBhc80Ex M7XqeVxuj/D89AgQnJoXuWbLOGIYeotU -----END CERTIFICATE-----Generated at Mon Dec 22 14:00:12 2025 by rpki-client