This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft File: KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft (raw, json) Hash identifier: 3dKvC6cIEjJL6f+CxkNQwtgmb9aOZW5Wz50RJbJl6jM= Subject key identifier: 25:4C:F4:19:97:70:FB:66:7B:4E:77:B1:4B:76:6F:0B:E7:94:31:A7 Authority key identifier: 2A:45:A4:1D:60:E2:F1:04:D3:DD:39:C8:6F:14:BC:59:00:88:3F:4B Certificate issuer: /CN=A91A4287/serialNumber=2A45A41D60E2F104D3DD39C86F14BC5900883F4B Certificate serial: 8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft Manifest number: 8D Signing time: Fri 19 Dec 2025 05:35:55 +0000 Manifest this update: Fri 19 Dec 2025 05:35:54 +0000 Manifest next update: Fri 26 Dec 2025 05:35:54 +0000 Files and hashes: 1: KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl (hash: gH9BcHNQiV8t/BlDnmUvUhEn1Fco4DgxkOV72T49dXU=) 2: 8CC07FC0047211F0A6541526C4F9AE02.roa (hash: PgYYJ9/o38WTea0u5fJFPWCIw+78oj+kOWm1Hogb3eo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:35:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 142 (0x8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4287, serialNumber=2A45A41D60E2F104D3DD39C86F14BC5900883F4B Validity Not Before: Dec 19 05:35:54 2025 GMT Not After : Dec 26 05:35:54 2025 GMT Subject: CN=6944e43a-f3f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:64:d0:ef:3e:ae:31:ab:7e:10:b3:a4:9a:b0: 92:c7:56:ef:16:c6:49:1b:a6:36:35:cc:7a:e2:e4: b4:28:8b:27:f0:cb:88:d2:22:bd:38:bb:86:b9:74: e4:a5:c4:7e:da:fd:60:6f:e2:68:59:87:69:53:08: 44:be:69:e5:d2:5a:00:5a:ef:cc:85:5a:4d:69:a2: ae:b7:da:51:cc:2c:6f:3c:57:df:93:5c:2f:99:ed: 7b:d6:a9:42:54:94:35:1e:6d:54:3e:7b:45:c0:94: 29:bc:4d:ea:93:2e:30:c5:9d:e4:16:31:b5:b6:08: d8:c1:37:98:66:84:44:ff:49:7c:a6:cb:9b:3e:ca: 73:3f:83:0f:64:a2:4b:b3:72:c0:51:de:fe:14:ea: ae:25:2b:31:e4:1e:fa:f0:37:37:80:f4:6e:26:3c: 77:9a:98:93:17:c1:aa:0a:c8:01:07:79:bf:81:27: 89:32:2b:0f:98:52:af:63:a9:c8:62:b4:a4:b2:1b: fa:93:43:a1:fe:00:6c:9c:ad:99:0b:de:c0:12:a7: 98:8e:45:7c:5d:55:7f:cf:e7:5a:0d:4b:c5:a4:2f: 74:e4:4e:38:70:78:38:8c:b2:15:51:a3:e3:f5:0d: ba:1b:ad:33:b3:ca:8b:7a:ad:18:c8:46:0a:02:2d: 2f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:4C:F4:19:97:70:FB:66:7B:4E:77:B1:4B:76:6F:0B:E7:94:31:A7 X509v3 Authority Key Identifier: keyid:2A:45:A4:1D:60:E2:F1:04:D3:DD:39:C8:6F:14:BC:59:00:88:3F:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:e6:1b:d6:f4:75:38:38:a9:40:52:b0:1b:37:fb:07:a2:8c: ba:58:77:a8:fb:8c:1c:1e:fa:1e:50:b2:9c:b5:cf:4c:5e:b5: bd:d7:c1:49:f4:5a:71:76:af:c6:21:05:f0:b5:c0:46:59:2f: 1a:f6:08:77:68:7a:ad:54:ac:2c:db:1f:f2:5d:4b:71:3b:ef: 1c:e7:d5:5c:f8:8d:71:d0:c6:a6:90:7b:da:85:3b:54:6a:d5: 57:82:3d:2c:57:85:9e:dc:93:69:ba:10:36:5c:a2:f1:46:8d: 69:5c:15:e5:3f:f4:e9:e2:a2:06:11:07:d6:36:41:d2:28:5a: d7:ad:65:2b:fd:84:00:71:d4:2e:ff:30:a5:44:64:d3:bf:9d: a2:66:d5:f7:0c:24:ab:94:1a:71:b1:b0:a2:a7:f3:7a:07:dd: 0e:1b:01:e2:d3:48:86:78:e8:06:d7:1e:1a:30:31:51:e5:b6: 25:58:db:c4:2f:cb:c8:6a:cb:0f:34:bd:e4:3d:7a:b4:f5:ea: d5:65:9b:96:30:0e:f8:0e:b3:13:dd:42:e1:78:a1:fc:39:fa: d7:55:e1:f0:78:7f:58:21:10:63:23:75:7b:7b:76:2a:b4:fb: ed:26:ac:93:33:43:9b:d1:a1:ab:2f:38:29:59:f6:11:36:a8: f9:fa:92:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQyODcxMTAvBgNVBAUTKDJBNDVBNDFENjBFMkYxMDREM0REMzlDODZGMTRCQzU5 MDA4ODNGNEIwHhcNMjUxMjE5MDUzNTU0WhcNMjUxMjI2MDUzNTU0WjAYMRYwFAYD VQQDDA02OTQ0ZTQzYS1mM2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApWTQ7z6uMat+ELOkmrCSx1bvFsZJG6Y2Ncx64uS0KIsn8MuI0iK9OLuGuXTk pcR+2v1gb+JoWYdpUwhEvmnl0loAWu/MhVpNaaKut9pRzCxvPFffk1wvme171qlC VJQ1Hm1UPntFwJQpvE3qky4wxZ3kFjG1tgjYwTeYZoRE/0l8psubPspzP4MPZKJL s3LAUd7+FOquJSsx5B768Dc3gPRuJjx3mpiTF8GqCsgBB3m/gSeJMisPmFKvY6nI YrSkshv6k0Oh/gBsnK2ZC97AEqeYjkV8XVV/z+daDUvFpC905E44cHg4jLIVUaPj 9Q26G60zs8qLeq0YyEYKAi0v1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCVM9BmX cPtme053sUt2bwvnlDGnMB8GA1UdIwQYMBaAFCpFpB1g4vEE0905yG8UvFkAiD9L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDI4Ny8zNzI3OEMxNjA0 NkQxMUYwQjc3RDAzNjFDNEY5QUUwMi9La1drSFdEaThRVFQzVG5JYnhTOFdRQ0lQ MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0trV2tIV0RpOFFUVDNUbklieFM4V1FDSVAwcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDI4Ny8zNzI3OEMxNjA0NkQxMUYwQjc3RDAzNjFDNEY5QUUwMi9La1drSFdEaThR VFQzVG5JYnhTOFdRQ0lQMHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBP5hvW9HU4OKlAUrAbN/sHooy6WHeo+4wcHvoeULKctc9MXrW918FJ 9Fpxdq/GIQXwtcBGWS8a9gh3aHqtVKws2x/yXUtxO+8c59Vc+I1x0MamkHvahTtU atVXgj0sV4We3JNpuhA2XKLxRo1pXBXlP/Tp4qIGEQfWNkHSKFrXrWUr/YQAcdQu /zClRGTTv52iZtX3DCSrlBpxsbCip/N6B90OGwHi00iGeOgG1x4aMDFR5bYlWNvE L8vIassPNL3kPXq09erVZZuWMA74DrMT3ULheKH8OfrXVeHweH9YIRBjI3V7e3Yq tPvtJqyTM0Ob0aGrLzgpWfYRNqj5+pL3 -----END CERTIFICATE-----Generated at Fri Dec 19 23:59:22 2025 by rpki-client