This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft File: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft (raw, json) Hash identifier: 8xKRKquSTn1hI1Fnj6nbu4yKRAb6iK3mHHbWSru/qEw= Subject key identifier: 1D:7F:55:30:80:17:37:4A:A2:C1:F5:1B:4B:5D:C0:E3:2B:E6:1E:9B Authority key identifier: 46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 Certificate issuer: /CN=A91964B3/serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Certificate serial: 1089 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft Manifest number: 1079 Signing time: Sat 20 Dec 2025 14:24:24 +0000 Manifest this update: Sat 20 Dec 2025 14:24:23 +0000 Manifest next update: Sat 27 Dec 2025 14:24:23 +0000 Files and hashes: 1: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl (hash: 8rh91jkyGw90JSDTwCXJdgFsyz0qoxKAQsQpoqTC6T0=) 2: 5D563164AF3411EFB5B51A57C4F9AE02.roa (hash: Mjf+9MFV/8wopOF7hLs3Tt14yZvRKLf5RcXcRhi35uI=) 3: 23B68638C5DD11EABC58FD24C4F9AE02.roa (hash: 7YuoX9OkBSRUQiHpsiuHEMGmDB7ygNEWHmpkRA4QfgE=) 4: 1396434EC90A11EF8577744AC4F9AE02.roa (hash: vv5/sNroDyn31EV1FuwDRkKZ1Ky/CQIEoorZo83v9h8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:24:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4233 (0x1089) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3, serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Validity Not Before: Dec 20 14:24:23 2025 GMT Not After : Dec 27 14:24:23 2025 GMT Subject: CN=6946b197-89bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:fb:6d:4e:f5:47:72:e6:bb:98:0b:79:af:f9: c2:de:38:de:3a:dc:ef:dd:3e:a4:23:fb:d0:77:2b: 29:52:93:e9:9a:49:48:71:fc:89:31:17:2e:7c:24: d9:77:a4:69:83:d3:8d:cb:84:7e:d8:9b:62:d9:f8: 18:cf:02:b4:51:29:d0:f0:88:87:cd:29:f2:b8:3c: f6:7f:9d:65:9f:5b:8e:4c:84:1e:8c:43:06:0d:5d: c9:b2:49:4f:64:ad:0f:5d:49:93:40:4a:6c:b3:ba: 8d:30:57:22:7d:85:94:fd:06:1c:84:80:f9:39:8f: 52:f5:d5:74:15:75:dd:d3:a3:bd:68:96:f0:8f:6c: 05:96:9b:07:42:be:e5:a5:0e:a7:99:fc:df:f5:35: f8:5c:fa:63:93:40:b0:1c:05:5a:78:e7:6b:b5:9c: fe:43:13:37:bb:94:98:26:35:bf:b5:2e:79:71:d2: d7:a3:16:17:ba:99:c4:e7:aa:6e:c2:bb:38:1a:ae: 77:31:e0:86:d6:34:29:40:f8:b8:a2:23:60:d0:d4: 70:da:ff:21:87:16:a9:cc:90:48:14:2e:e9:c1:28: 71:c3:d7:21:93:d5:5e:c3:24:c2:02:ea:a1:bd:3d: a0:ad:1e:fe:14:71:c0:ec:82:24:ac:6f:5b:46:4f: c8:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:7F:55:30:80:17:37:4A:A2:C1:F5:1B:4B:5D:C0:E3:2B:E6:1E:9B X509v3 Authority Key Identifier: keyid:46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:3a:06:f7:71:d3:1d:4c:1a:a4:4b:07:44:eb:38:54:81:17: 4f:28:fb:6c:b0:03:95:18:a0:68:bc:ae:c6:0f:b4:60:f3:8f: 03:e2:03:99:b3:ed:eb:64:9a:56:81:58:a0:84:6f:c9:63:68: a5:1a:a7:25:3e:68:e2:e1:73:f2:0f:83:05:cd:1d:cc:4e:e7: 43:e6:62:c2:f5:1f:7c:ef:fd:52:cd:2d:cd:d5:9e:2b:a4:f5: 9e:ce:74:c9:42:b2:e6:94:0c:af:d8:37:87:ff:1e:77:79:4e: d4:a4:51:8c:26:55:6b:d6:28:0a:a8:93:1f:90:97:a1:73:4a: 1a:1d:aa:54:23:a1:50:e8:0f:1b:a9:19:15:98:58:97:f0:22: cc:eb:76:57:20:d0:db:5b:eb:69:a5:dd:17:ec:f5:2d:73:db: d4:a9:37:43:e0:55:df:e9:c6:1c:32:e5:fd:62:fe:ea:76:52: 47:eb:94:47:e6:32:fc:68:48:06:2e:c6:00:a8:58:00:19:83: 67:5d:0e:ee:ad:6d:88:c6:f2:6e:4b:a7:fb:01:a1:13:93:e3: f5:85:a4:ba:14:fb:9b:33:07:a8:5c:3e:f0:25:8f:85:e5:ff: b6:b5:47:c9:c1:e6:4a:8d:ee:b4:bd:29:d7:a8:92:97:8c:56: 2a:ac:f2:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKDQ2NDg1NEZCNTBBOTkwM0M1MjUzNDE4QzU4M0QwRjMx Qjg0MUQ1OTcwHhcNMjUxMjIwMTQyNDIzWhcNMjUxMjI3MTQyNDIzWjAYMRYwFAYD VQQDDA02OTQ2YjE5Ny04OWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlfttTvVHcua7mAt5r/nC3jjeOtzv3T6kI/vQdyspUpPpmklIcfyJMRcufCTZ d6Rpg9ONy4R+2Jti2fgYzwK0USnQ8IiHzSnyuDz2f51ln1uOTIQejEMGDV3JsklP ZK0PXUmTQEpss7qNMFcifYWU/QYchID5OY9S9dV0FXXd06O9aJbwj2wFlpsHQr7l pQ6nmfzf9TX4XPpjk0CwHAVaeOdrtZz+QxM3u5SYJjW/tS55cdLXoxYXupnE56pu wrs4Gq53MeCG1jQpQPi4oiNg0NRw2v8hhxapzJBIFC7pwShxw9chk9VewyTCAuqh vT2grR7+FHHA7IIkrG9bRk/IkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB1/VTCA FzdKosH1G0tdwOMr5h6bMB8GA1UdIwQYMBaAFEZIVPtQqZA8UlNBjFg9DzG4QdWX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy8yQTU5NDBGMjRC QjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtEeFNVMEdNV0QwUE1iaEIx WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JraFUtMUNwa0R4U1UwR01XRDBQTWJoQjFaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjRCMy8yQTU5NDBGMjRCQjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtE eFNVMEdNV0QwUE1iaEIxWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsOgb3cdMdTBqkSwdE6zhUgRdPKPtssAOVGKBovK7GD7Rg848D4gOZ s+3rZJpWgVighG/JY2ilGqclPmji4XPyD4MFzR3MTudD5mLC9R987/1SzS3N1Z4r pPWeznTJQrLmlAyv2DeH/x53eU7UpFGMJlVr1igKqJMfkJehc0oaHapUI6FQ6A8b qRkVmFiX8CLM63ZXINDbW+tppd0X7PUtc9vUqTdD4FXf6cYcMuX9Yv7qdlJH65RH 5jL8aEgGLsYAqFgAGYNnXQ7urW2IxvJuS6f7AaETk+P1haS6FPubMweoXD7wJY+F 5f+2tUfJweZKje60vSnXqJKXjFYqrPLA -----END CERTIFICATE-----Generated at Sun Dec 21 10:38:15 2025 by rpki-client