This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADE0A/30D80126C11311E5B01A7269C4F9AE02/vkiLTmCsanOmVu_bxfpnoajegSo.mft File: vkiLTmCsanOmVu_bxfpnoajegSo.mft (raw, json) Hash identifier: ZdRI/3uT7w1bDhjFk/tgCHamN+3/6bkIZ7pAP7TtJ+4= Subject key identifier: E1:C8:82:88:ED:4A:15:7C:E0:85:BE:BC:32:01:13:52:F3:81:36:02 Authority key identifier: BE:48:8B:4E:60:AC:6A:73:A6:56:EF:DB:C5:FA:67:A1:A8:DE:81:2A Certificate issuer: /CN=A91ADE0A/serialNumber=BE488B4E60AC6A73A656EFDBC5FA67A1A8DE812A Certificate serial: 22F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkiLTmCsanOmVu_bxfpnoajegSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADE0A/30D80126C11311E5B01A7269C4F9AE02/vkiLTmCsanOmVu_bxfpnoajegSo.mft Manifest number: 22B9 Signing time: Tue 30 Dec 2025 15:44:16 +0000 Manifest this update: Tue 30 Dec 2025 15:44:15 +0000 Manifest next update: Tue 06 Jan 2026 15:44:15 +0000 Files and hashes: 1: vkiLTmCsanOmVu_bxfpnoajegSo.crl (hash: QWt4DOZQEO5HHhiAS3pZiNwnZee/yCb+UDaYvHUWlA4=) 2: 4AB8D38E178811EF95C8DF41C4F9AE02.roa (hash: bRjvCEzkjDm3JJYu7t1zkHD97hp8O/fwotkC6wIv1RQ=) 3: 815465903EB511E9881B6529C4F9AE02.roa (hash: gW74XIULKnrcRgyXZDwxsWWvrLPKxQLUY/wa7dOD1h8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADE0A/30D80126C11311E5B01A7269C4F9AE02/vkiLTmCsanOmVu_bxfpnoajegSo.crl rsync://rpki.apnic.net/member_repository/A91ADE0A/30D80126C11311E5B01A7269C4F9AE02/vkiLTmCsanOmVu_bxfpnoajegSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkiLTmCsanOmVu_bxfpnoajegSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 Jan 2026 15:44:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8951 (0x22f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADE0A, serialNumber=BE488B4E60AC6A73A656EFDBC5FA67A1A8DE812A Validity Not Before: Dec 30 15:44:15 2025 GMT Not After : Jan 6 15:44:15 2026 GMT Subject: CN=6953f350-758f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:38:5a:0f:f5:8e:07:73:19:de:3d:d4:75:06: d8:38:87:76:13:79:51:82:f5:01:a0:6a:06:dc:13: f8:c9:0f:7e:50:0e:b2:63:ab:db:63:4f:af:50:cf: bb:2b:b5:62:c1:ba:b8:36:55:f5:32:e0:f9:f0:c0: b5:db:f9:2e:4a:6a:36:af:0f:d2:ce:8c:b7:e2:f2: c2:c2:5f:be:89:d2:58:33:84:a6:49:0b:19:e1:26: d3:bc:6b:2c:2a:c3:dc:ad:76:d0:20:1c:05:bf:b6: 42:c6:09:ad:80:33:8f:b3:16:41:ed:fa:99:bc:ff: e7:65:14:18:de:ef:ba:06:0f:42:5e:22:b0:e5:e4: 52:82:1c:3a:55:80:c0:0d:b9:f4:f9:ec:df:35:22: ad:c0:87:14:eb:ab:1b:86:62:86:a4:eb:cb:88:f4: 03:65:f8:b0:a4:92:d7:bb:26:6e:b1:06:05:65:3b: e1:ca:1e:53:d6:ab:e4:c7:73:7d:69:b4:9d:ef:e9: 2a:58:81:54:f7:37:89:99:4d:0a:ab:f7:c3:87:f5: be:9c:b3:f2:1f:3f:43:19:7e:bc:bf:39:3a:a2:8c: be:12:eb:50:47:b8:71:52:82:9e:20:8b:cd:c6:4e: 52:c7:8c:ad:e5:84:64:77:54:3f:dc:17:94:6f:f7: 8b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:C8:82:88:ED:4A:15:7C:E0:85:BE:BC:32:01:13:52:F3:81:36:02 X509v3 Authority Key Identifier: keyid:BE:48:8B:4E:60:AC:6A:73:A6:56:EF:DB:C5:FA:67:A1:A8:DE:81:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADE0A/30D80126C11311E5B01A7269C4F9AE02/vkiLTmCsanOmVu_bxfpnoajegSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkiLTmCsanOmVu_bxfpnoajegSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADE0A/30D80126C11311E5B01A7269C4F9AE02/vkiLTmCsanOmVu_bxfpnoajegSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:9c:86:ef:2d:23:3e:a7:89:01:f0:ca:51:fe:02:0c:e3:7f: 24:03:cf:ef:65:39:68:76:9a:2b:6f:f4:10:dc:8a:eb:23:27: c1:57:7a:80:d9:9c:fe:45:a1:a9:e6:2c:19:46:0c:89:b5:fe: 17:ed:4a:2c:23:ec:0c:84:69:df:cf:39:f5:f6:fe:67:ce:12: f6:93:38:19:a9:fd:22:b9:80:02:b3:f8:ec:07:a8:2f:b6:9f: c4:8a:32:43:01:53:d0:bd:e8:9d:28:f4:93:6b:96:85:7d:e6: 63:74:82:41:67:fd:da:50:ab:a1:60:d0:f3:b6:d1:56:3d:93: b8:a0:55:2b:98:1e:6f:43:dc:f0:22:ba:e4:e6:c1:42:af:8f: 25:95:79:97:d3:1a:79:53:ad:f5:de:39:3a:bf:81:1b:58:2b: b1:3b:42:a9:e7:f0:4a:c1:ae:31:ff:d6:70:cf:5c:bd:d8:37: cf:f9:0b:f3:8a:30:a0:d3:a5:b6:1c:b8:b4:37:b6:22:f4:b2: 58:2c:98:ce:bd:29:f2:09:32:6a:26:0c:9c:f5:7a:aa:aa:06: b1:06:cd:bc:fb:b1:6b:76:93:57:46:2c:2c:65:54:82:a0:4c: 1f:55:c8:35:37:7d:85:0c:95:c8:9b:d6:f2:ab:a8:99:10:5e: 5e:83:08:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIvcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURFMEExMTAvBgNVBAUTKEJFNDg4QjRFNjBBQzZBNzNBNjU2RUZEQkM1RkE2N0Ex QThERTgxMkEwHhcNMjUxMjMwMTU0NDE1WhcNMjYwMTA2MTU0NDE1WjAYMRYwFAYD VQQDDA02OTUzZjM1MC03NThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoThaD/WOB3MZ3j3UdQbYOId2E3lRgvUBoGoG3BP4yQ9+UA6yY6vbY0+vUM+7 K7Viwbq4NlX1MuD58MC12/kuSmo2rw/Szoy34vLCwl++idJYM4SmSQsZ4SbTvGss KsPcrXbQIBwFv7ZCxgmtgDOPsxZB7fqZvP/nZRQY3u+6Bg9CXiKw5eRSghw6VYDA Dbn0+ezfNSKtwIcU66sbhmKGpOvLiPQDZfiwpJLXuyZusQYFZTvhyh5T1qvkx3N9 abSd7+kqWIFU9zeJmU0Kq/fDh/W+nLPyHz9DGX68vzk6ooy+EutQR7hxUoKeIIvN xk5Sx4yt5YRkd1Q/3BeUb/eLEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOHIgojt ShV84IW+vDIBE1LzgTYCMB8GA1UdIwQYMBaAFL5Ii05grGpzplbv28X6Z6Go3oEq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREUwQS8zMEQ4MDEyNkMx MTMxMUU1QjAxQTcyNjlDNEY5QUUwMi92a2lMVG1Dc2FuT21WdV9ieGZwbm9hamVn U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZraUxUbUNzYW5PbVZ1X2J4ZnBub2FqZWdTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB REUwQS8zMEQ4MDEyNkMxMTMxMUU1QjAxQTcyNjlDNEY5QUUwMi92a2lMVG1Dc2Fu T21WdV9ieGZwbm9hamVnU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEnIbvLSM+p4kB8MpR/gIM438kA8/vZTlodporb/QQ3IrrIyfBV3qA 2Zz+RaGp5iwZRgyJtf4X7UosI+wMhGnfzzn19v5nzhL2kzgZqf0iuYACs/jsB6gv tp/EijJDAVPQveidKPSTa5aFfeZjdIJBZ/3aUKuhYNDzttFWPZO4oFUrmB5vQ9zw Irrk5sFCr48llXmX0xp5U6313jk6v4EbWCuxO0Kp5/BKwa4x/9Zwz1y92DfP+Qvz ijCg06W2HLi0N7Yi9LJYLJjOvSnyCTJqJgyc9XqqqgaxBs28+7FrdpNXRiwsZVSC oEwfVcg1N32FDJXIm9byq6iZEF5egwhB -----END CERTIFICATE-----Generated at Wed Dec 31 05:21:47 2025 by rpki-client