This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft File: kDfAsp43CSqDhSzkuIW3dqfB47Y.mft (raw, json) Hash identifier: X0O9MPqJ6lYy/Bo4/BdK265kSAzMgkTAU4ct1TWECsM= Subject key identifier: 8A:29:F2:38:E1:F8:83:E9:9C:CF:14:B0:74:11:EE:3E:0E:EB:B0:8D Authority key identifier: 90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 Certificate issuer: /CN=A91957D1/serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Certificate serial: 0183 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft Manifest number: 017F Signing time: Fri 19 Dec 2025 02:54:31 +0000 Manifest this update: Fri 19 Dec 2025 02:54:30 +0000 Manifest next update: Fri 26 Dec 2025 02:54:30 +0000 Files and hashes: 1: kDfAsp43CSqDhSzkuIW3dqfB47Y.crl (hash: QZn90RukfddXi2hnODRmXPLbeum21PfrRq/3Vi3YTpc=) 2: 72CE4D80958411EEB3748B58C4F9AE02.roa (hash: GyK0WIBreUywAdxh5kO624MwwPbx0zTO9wpPeKdWbNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:54:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 387 (0x183) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957D1, serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Validity Not Before: Dec 19 02:54:30 2025 GMT Not After : Dec 26 02:54:30 2025 GMT Subject: CN=6944be67-97f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:28:ad:f6:11:22:e3:62:09:2f:87:cc:0c:6d: b6:10:3e:c9:b7:6a:8d:0f:61:0b:1c:f5:16:6d:35: 15:56:e9:00:bd:d5:e7:01:83:ba:a7:90:72:c8:4a: 85:b3:bf:fd:4e:46:7c:b0:d1:23:9b:95:c1:20:c9: 2e:c6:9c:71:8c:e6:3a:89:54:4b:91:a8:62:c7:8c: 49:43:92:f4:0e:d9:29:dc:b2:5f:96:24:16:47:cf: 1b:13:01:9c:0f:45:d5:8a:0c:92:ca:21:6f:80:c0: 1a:97:4e:d4:99:8e:dd:82:bb:8a:12:26:fc:57:50: 7e:f7:ab:81:8d:7f:b6:99:19:35:7a:f3:1d:af:e2: df:d4:bb:bf:bd:71:de:eb:6a:bd:02:7a:c2:21:9b: bc:df:74:9f:cf:8c:09:80:04:e1:91:49:b2:d4:2a: 05:48:ac:69:64:64:2f:04:ed:df:2a:d4:fc:9b:f2: fd:9a:62:a6:cd:8d:eb:08:92:37:a8:d2:1f:b8:65: 3c:12:3a:7c:d4:cc:69:ee:1e:df:ba:e4:1e:f4:e7: 5a:c0:65:47:6b:a2:4b:da:29:56:9f:93:ff:1b:8c: 08:91:cd:fb:ec:90:3e:e3:5b:bf:61:c5:8d:08:94: 12:0c:27:41:ae:fa:14:2a:a7:f4:c3:69:12:d2:81: 18:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:29:F2:38:E1:F8:83:E9:9C:CF:14:B0:74:11:EE:3E:0E:EB:B0:8D X509v3 Authority Key Identifier: keyid:90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:0f:62:04:d4:a5:9e:d4:8b:e8:0b:21:a5:11:b5:d0:0f:a3: be:95:c8:e1:60:c0:54:80:8a:b3:33:e7:b3:ff:34:6b:db:10: 94:1b:26:3c:e3:da:16:02:07:9c:1e:0f:58:13:00:84:1e:88: ed:55:23:2a:78:fa:12:55:bc:af:de:e4:0d:55:70:2b:2e:ef: 48:68:f1:9c:1e:eb:87:79:7a:9d:fa:93:91:c5:91:ae:ea:88: 6e:04:d5:95:17:f3:7a:34:20:53:ac:c7:01:bd:3b:59:3a:82: 5b:1f:8f:a3:15:f7:4b:47:c9:63:bd:f6:f5:75:24:34:45:d1: 95:c0:03:b9:05:ea:6c:6d:8c:b7:8c:9b:6f:7a:71:c5:2d:ed: 3f:3b:b6:dd:da:72:27:5b:2c:17:1d:4e:e5:04:bc:d0:62:9c: 10:21:10:ce:67:7f:6c:d7:7f:64:b9:96:f9:ac:4d:61:23:23: 9a:d1:62:aa:c8:de:f0:3e:e2:bd:58:a5:6c:32:ba:2c:e6:43: e7:85:1f:3b:bf:e4:67:4f:98:6d:10:1b:d9:d1:a4:c2:91:b9: fc:84:1d:82:5f:40:69:01:c4:a8:84:95:5e:a1:10:89:fb:d2: 7c:8c:1a:1a:71:e2:17:1b:03:85:48:62:18:81:d3:23:24:b6: 40:c4:b0:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU3RDExMTAvBgNVBAUTKDkwMzdDMEIyOUUzNzA5MkE4Mzg1MkNFNEI4ODVCNzc2 QTdDMUUzQjYwHhcNMjUxMjE5MDI1NDMwWhcNMjUxMjI2MDI1NDMwWjAYMRYwFAYD VQQDDA02OTQ0YmU2Ny05N2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlCit9hEi42IJL4fMDG22ED7Jt2qND2ELHPUWbTUVVukAvdXnAYO6p5ByyEqF s7/9TkZ8sNEjm5XBIMkuxpxxjOY6iVRLkahix4xJQ5L0Dtkp3LJfliQWR88bEwGc D0XVigySyiFvgMAal07UmY7dgruKEib8V1B+96uBjX+2mRk1evMdr+Lf1Lu/vXHe 62q9AnrCIZu833Sfz4wJgAThkUmy1CoFSKxpZGQvBO3fKtT8m/L9mmKmzY3rCJI3 qNIfuGU8Ejp81Mxp7h7fuuQe9OdawGVHa6JL2ilWn5P/G4wIkc377JA+41u/YcWN CJQSDCdBrvoUKqf0w2kS0oEYvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIop8jjh +IPpnM8UsHQR7j4O67CNMB8GA1UdIwQYMBaAFJA3wLKeNwkqg4Us5LiFt3anweO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTdEMS9GMDUzNzc5NDkz QkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NTcURoU3prdUlXM2RxZkI0 N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEZkFzcDQzQ1NxRGhTemt1SVczZHFmQjQ3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTdEMS9GMDUzNzc5NDkzQkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NT cURoU3prdUlXM2RxZkI0N1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfD2IE1KWe1IvoCyGlEbXQD6O+lcjhYMBUgIqzM+ez/zRr2xCUGyY8 49oWAgecHg9YEwCEHojtVSMqePoSVbyv3uQNVXArLu9IaPGcHuuHeXqd+pORxZGu 6ohuBNWVF/N6NCBTrMcBvTtZOoJbH4+jFfdLR8ljvfb1dSQ0RdGVwAO5BepsbYy3 jJtvenHFLe0/O7bd2nInWywXHU7lBLzQYpwQIRDOZ39s139kuZb5rE1hIyOa0WKq yN7wPuK9WKVsMros5kPnhR87v+RnT5htEBvZ0aTCkbn8hB2CX0BpAcSohJVeoRCJ +9J8jBoaceIXGwOFSGIYgdMjJLZAxLCr -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:32 2025 by rpki-client