This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft File: kuYzl488XC0IYKzbDh3VEhAOie8.mft (raw, json) Hash identifier: 8xwr1C9EFRIf5j4zuDA7u+eZ2WRldsuBJACXj+Th7mc= Subject key identifier: BF:E1:E8:A6:E9:B3:61:31:63:2B:1E:21:9E:D7:AB:5D:EF:3C:B6:61 Authority key identifier: 92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF Certificate issuer: /CN=A91A15FB/serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Certificate serial: 011D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft Manifest number: 011A Signing time: Fri 19 Dec 2025 03:55:53 +0000 Manifest this update: Fri 19 Dec 2025 03:55:52 +0000 Manifest next update: Fri 26 Dec 2025 03:55:52 +0000 Files and hashes: 1: kuYzl488XC0IYKzbDh3VEhAOie8.crl (hash: PuC3A70nuH8m9yvPuQhGinGN/kGgrr9NyTlPLIVfrJY=) 2: F67388B8C8EE11F0B296D571C4F9AE02.roa (hash: c5ZB2ZHBUWip+FpUZrCGdjuP34/HCD1gUejKT/4LLsI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:55:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 285 (0x11d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A15FB, serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Validity Not Before: Dec 19 03:55:52 2025 GMT Not After : Dec 26 03:55:52 2025 GMT Subject: CN=6944ccc9-47ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:70:ac:fb:d8:11:dc:0a:a2:55:f8:e8:77:f7: c5:fe:61:9a:56:ec:c4:5f:33:e7:fe:23:74:21:47: d1:c1:68:9d:f0:46:34:3f:cd:52:2f:ea:92:41:0d: 15:dc:d2:91:3e:9c:83:6d:d0:64:6f:c2:2d:db:68: 87:90:6f:04:c3:56:e5:ed:ca:06:2f:22:ea:03:de: 62:11:b3:a1:41:be:82:c5:09:bc:d0:72:4a:a3:4c: 27:e3:ea:61:5e:09:db:42:5d:b8:c6:31:a3:b6:54: 57:de:22:61:3c:b3:a3:ae:b6:6a:a6:f2:77:7e:51: c4:a5:5e:09:f8:89:40:98:37:26:2a:b5:19:60:2b: 0c:a3:e1:01:ba:35:61:16:dd:65:f5:66:15:a3:8a: c9:91:bf:30:d8:04:6b:a7:b0:f0:5b:84:a1:b7:f3: 67:ed:6d:e0:c7:05:a6:68:8c:02:7b:0a:e2:5f:e7: 2c:99:d5:ff:97:b4:c9:4c:ff:98:51:87:a8:ce:a1: 0a:41:01:5a:c1:79:77:94:40:43:c7:09:77:d8:a2: 6e:3d:30:1f:ab:fc:74:a4:fe:c5:e0:ee:8e:b0:2b: c3:77:ab:dd:fd:56:34:4e:94:b3:a3:63:84:7b:0d: 91:53:e4:dd:45:9d:07:a0:6f:cf:f1:50:44:4d:39: cc:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:E1:E8:A6:E9:B3:61:31:63:2B:1E:21:9E:D7:AB:5D:EF:3C:B6:61 X509v3 Authority Key Identifier: keyid:92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:1c:85:04:75:69:ff:d5:8f:c8:ee:83:81:0c:72:9a:fa:76: 63:bf:29:a2:f9:f5:3e:4d:c7:33:35:dd:ca:56:cd:5a:81:f9: 3f:f6:58:12:bb:a6:08:fe:89:51:f4:c1:47:ad:cc:4b:79:9d: e3:f0:6c:57:07:4d:88:33:22:bb:65:65:fa:9a:4f:93:44:75: 0c:86:5e:30:2d:ed:b1:97:43:a1:12:b6:44:c1:bb:40:e1:ef: 20:65:d6:c5:a4:5a:25:9e:3c:12:3a:7d:d5:ff:94:f1:a7:89: 31:6b:f9:63:18:a8:8d:7f:b3:96:02:85:59:78:88:fb:ef:d2: 06:28:9c:e9:1d:36:78:b3:6a:2f:1d:c7:98:de:49:08:6d:0e: 7b:1c:5f:5f:3f:5e:2d:cd:ab:82:3f:d9:57:6d:fa:4e:36:82: 9b:dd:0c:fa:5f:0c:3f:3d:2c:a5:0d:52:d6:d0:ff:c8:cd:72: cd:60:25:b8:02:59:34:f1:ad:b8:de:e4:e9:9c:9f:76:cc:63: 12:a7:b9:43:74:7c:22:55:76:87:15:c0:83:f5:3d:f3:46:83: 43:df:ba:81:0d:73:a3:56:2b:2b:b2:f4:22:86:c1:da:fb:a8: 1e:de:84:78:33:8a:f9:3d:8f:a5:e1:a8:63:ab:c2:9c:c8:cc: 54:69:c6:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE1RkIxMTAvBgNVBAUTKDkyRTYzMzk3OEYzQzVDMkQwODYwQUNEQjBFMURENTEy MTAwRTg5RUYwHhcNMjUxMjE5MDM1NTUyWhcNMjUxMjI2MDM1NTUyWjAYMRYwFAYD VQQDDA02OTQ0Y2NjOS00N2NhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHCs+9gR3AqiVfjod/fF/mGaVuzEXzPn/iN0IUfRwWid8EY0P81SL+qSQQ0V 3NKRPpyDbdBkb8It22iHkG8Ew1bl7coGLyLqA95iEbOhQb6CxQm80HJKo0wn4+ph XgnbQl24xjGjtlRX3iJhPLOjrrZqpvJ3flHEpV4J+IlAmDcmKrUZYCsMo+EBujVh Ft1l9WYVo4rJkb8w2ARrp7DwW4Sht/Nn7W3gxwWmaIwCewriX+csmdX/l7TJTP+Y UYeozqEKQQFawXl3lEBDxwl32KJuPTAfq/x0pP7F4O6OsCvDd6vd/VY0TpSzo2OE ew2RU+TdRZ0HoG/P8VBETTnMrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL/h6Kbp s2ExYyseIZ7Xq13vPLZhMB8GA1UdIwQYMBaAFJLmM5ePPFwtCGCs2w4d1RIQDonv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTVGQi9CRTg4QTcwQzJF QzcxMUVGODIyMDgyNzNDNEY5QUUwMi9rdVl6bDQ4OFhDMElZS3piRGgzVkVoQU9p ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t1WXpsNDg4WEMwSVlLemJEaDNWRWhBT2llOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTVGQi9CRTg4QTcwQzJFQzcxMUVGODIyMDgyNzNDNEY5QUUwMi9rdVl6bDQ4OFhD MElZS3piRGgzVkVoQU9pZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWHIUEdWn/1Y/I7oOBDHKa+nZjvymi+fU+TcczNd3KVs1agfk/9lgS u6YI/olR9MFHrcxLeZ3j8GxXB02IMyK7ZWX6mk+TRHUMhl4wLe2xl0OhErZEwbtA 4e8gZdbFpFolnjwSOn3V/5Txp4kxa/ljGKiNf7OWAoVZeIj779IGKJzpHTZ4s2ov HceY3kkIbQ57HF9fP14tzauCP9lXbfpONoKb3Qz6Xww/PSylDVLW0P/IzXLNYCW4 Alk08a243uTpnJ92zGMSp7lDdHwiVXaHFcCD9T3zRoND37qBDXOjVisrsvQihsHa +6ge3oR4M4r5PY+l4ahjq8KcyMxUacZK -----END CERTIFICATE-----Generated at Sat Dec 20 00:56:19 2025 by rpki-client