This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.mft File: 2K83cS1WsbaT720D40bADPPwST4.mft (raw, json) Hash identifier: gUdvvA7o06r0Ixb413R6Qm8M2qMwsOUlB2aQ6GUgkpg= Subject key identifier: 39:E3:E1:43:73:DF:F1:45:1C:BE:54:ED:1C:FD:C9:90:22:68:AE:19 Authority key identifier: D8:AF:37:71:2D:56:B1:B6:93:EF:6D:03:E3:46:C0:0C:F3:F0:49:3E Certificate issuer: /CN=A91A86D0/serialNumber=D8AF37712D56B1B693EF6D03E346C00CF3F0493E Certificate serial: 0FD4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K83cS1WsbaT720D40bADPPwST4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.mft Manifest number: 0FBC Signing time: Thu 18 Dec 2025 17:20:49 +0000 Manifest this update: Thu 18 Dec 2025 17:20:48 +0000 Manifest next update: Thu 25 Dec 2025 17:20:48 +0000 Files and hashes: 1: 2K83cS1WsbaT720D40bADPPwST4.crl (hash: ejWmi0Jfdgyc3jZMbtD7yAWEn/rpRJUNvqL7cVp4ULs=) 2: F0F0DEC2C43411F0836DBC7DC4F9AE02.roa (hash: FlKDn7TH0xwtocs3xoGnXoyNOsEdYeMYxp8TFP51AsY=) 3: AFCF76ECC43411F0982E427DC4F9AE02.roa (hash: mNdL6rcYZPvYSFc6XWNaIrKma9w9J2a48AtG9Q5JxNY=) 4: CC99502E382F11EEAB87A63EC4F9AE02.roa (hash: /jxk5arOtk8XX4x0oqH6WonBrSttsEFSJuqdd1pQsXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.crl rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K83cS1WsbaT720D40bADPPwST4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:20:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4052 (0xfd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A86D0, serialNumber=D8AF37712D56B1B693EF6D03E346C00CF3F0493E Validity Not Before: Dec 18 17:20:48 2025 GMT Not After : Dec 25 17:20:48 2025 GMT Subject: CN=694437f1-5bbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:97:44:63:5c:da:c4:de:d9:47:e0:3d:1b:59: 73:19:dd:7e:0d:43:91:77:d9:2f:c6:14:59:a4:24: 01:6b:b1:0c:5c:73:f3:64:0b:5a:a2:78:02:92:78: 23:7f:07:a7:c9:52:e8:54:b6:59:21:60:79:e3:42: 6c:81:a9:21:d4:4b:ce:72:32:00:7d:13:4b:c9:5d: 6a:a5:47:21:41:93:48:4b:5a:cb:a3:af:b3:f2:ed: 48:84:39:7b:1b:1e:55:ef:34:6e:58:b2:f0:03:20: 4d:7c:29:96:46:ef:3c:4f:10:ee:1b:aa:04:8f:bc: fd:b9:d8:94:d0:e8:f1:c4:38:27:1e:97:39:79:ca: 98:9a:e9:ce:d0:c4:ea:71:19:a8:72:1a:bf:15:c7: 21:2a:a7:22:ec:c1:e5:03:17:d4:33:bd:18:69:1a: 1f:57:e2:ad:cb:17:5a:1c:a9:5e:1a:31:1f:7b:b4: d8:aa:ae:18:a3:7d:82:bd:e1:61:6f:9f:b5:c0:4f: 33:cb:bb:bf:08:7a:99:0b:07:d9:f1:6b:4f:a6:ee: 81:bd:93:c4:d8:87:5c:ed:19:29:7b:68:1d:17:5b: c6:2c:35:dd:84:90:29:3b:c4:10:a1:20:e9:1f:7c: 9e:5e:49:14:c6:2d:7f:12:16:d8:5a:4d:bd:a5:ef: 24:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:E3:E1:43:73:DF:F1:45:1C:BE:54:ED:1C:FD:C9:90:22:68:AE:19 X509v3 Authority Key Identifier: keyid:D8:AF:37:71:2D:56:B1:B6:93:EF:6D:03:E3:46:C0:0C:F3:F0:49:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K83cS1WsbaT720D40bADPPwST4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:db:e2:03:0d:83:3e:0b:32:23:e3:47:2e:0e:7b:93:de:5d: 7a:36:5b:6c:5c:93:ad:53:67:72:98:83:1c:83:e2:9d:95:38: dd:92:36:b4:a1:3e:70:3d:c2:be:17:27:90:1c:25:af:85:d1: c6:57:1e:82:64:a1:b9:81:cd:11:74:d5:27:8d:79:b5:a4:85: 2a:33:bf:f2:d7:e1:a7:db:d7:3c:5c:ba:00:ea:81:be:14:87: f9:41:83:6f:6f:2f:d5:c5:85:d3:4b:5a:0c:ee:89:61:57:c7: 42:12:40:09:a7:d2:27:fb:55:26:8b:d7:b1:56:ef:ec:34:91: b3:e8:ac:da:e4:c2:5c:81:26:2c:d8:0d:83:85:0c:87:d9:bb: 3e:37:0e:bd:af:1a:9e:22:25:0b:15:7f:16:67:4b:ad:7e:a4: 06:52:80:b4:94:85:21:da:f2:6a:46:4a:a9:06:4f:1b:aa:86: 97:39:4f:3a:e7:25:74:c5:74:3c:f1:9f:02:2f:9e:b6:4b:94: 3b:ff:e3:2f:4e:f9:c4:b8:4e:19:62:82:e7:98:98:d0:74:4a: 85:57:f3:b6:b3:80:26:ef:f1:af:f5:f5:6d:ad:eb:de:34:b0: 5f:6b:1a:aa:36:76:07:17:a1:26:53:0a:46:2e:20:64:6f:fb: 2f:84:23:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD9QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2RDAxMTAvBgNVBAUTKEQ4QUYzNzcxMkQ1NkIxQjY5M0VGNkQwM0UzNDZDMDBD RjNGMDQ5M0UwHhcNMjUxMjE4MTcyMDQ4WhcNMjUxMjI1MTcyMDQ4WjAYMRYwFAYD VQQDDA02OTQ0MzdmMS01YmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjpdEY1zaxN7ZR+A9G1lzGd1+DUORd9kvxhRZpCQBa7EMXHPzZAtaongCkngj fwenyVLoVLZZIWB540Jsgakh1EvOcjIAfRNLyV1qpUchQZNIS1rLo6+z8u1IhDl7 Gx5V7zRuWLLwAyBNfCmWRu88TxDuG6oEj7z9udiU0OjxxDgnHpc5ecqYmunO0MTq cRmochq/FcchKqci7MHlAxfUM70YaRofV+KtyxdaHKleGjEfe7TYqq4Yo32CveFh b5+1wE8zy7u/CHqZCwfZ8WtPpu6BvZPE2Idc7Rkpe2gdF1vGLDXdhJApO8QQoSDp H3yeXkkUxi1/EhbYWk29pe8kRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDnj4UNz 3/FFHL5U7Rz9yZAiaK4ZMB8GA1UdIwQYMBaAFNivN3EtVrG2k+9tA+NGwAzz8Ek+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODZEMC9GQTc4QjA0NDZG Q0UxMUU5ODhDNDRCM0VDNEY5QUUwMi8ySzgzY1MxV3NiYVQ3MjBENDBiQURQUHdT VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJLODNjUzFXc2JhVDcyMEQ0MGJBRFBQd1NUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODZEMC9GQTc4QjA0NDZGQ0UxMUU5ODhDNDRCM0VDNEY5QUUwMi8ySzgzY1MxV3Ni YVQ3MjBENDBiQURQUHdTVDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB32+IDDYM+CzIj40cuDnuT3l16NltsXJOtU2dymIMcg+KdlTjdkja0 oT5wPcK+FyeQHCWvhdHGVx6CZKG5gc0RdNUnjXm1pIUqM7/y1+Gn29c8XLoA6oG+ FIf5QYNvby/VxYXTS1oM7olhV8dCEkAJp9In+1Umi9exVu/sNJGz6Kza5MJcgSYs 2A2DhQyH2bs+Nw69rxqeIiULFX8WZ0utfqQGUoC0lIUh2vJqRkqpBk8bqoaXOU86 5yV0xXQ88Z8CL562S5Q7/+MvTvnEuE4ZYoLnmJjQdEqFV/O2s4Am7/Gv9fVtreve NLBfaxqqNnYHF6EmUwpGLiBkb/svhCPE -----END CERTIFICATE-----Generated at Sat Dec 20 08:20:39 2025 by rpki-client