This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.mft File: KqJ4lEtBD6LIO3wq8yxmr6IMEns.mft (raw, json) Hash identifier: IUveCu6I5jQEEhiRzbP3vk5STB5ky1BseViZ6tQVNfg= Subject key identifier: C1:2B:47:00:10:A3:5C:2C:AA:78:D9:16:BD:85:50:85:E4:B1:36:60 Authority key identifier: 2A:A2:78:94:4B:41:0F:A2:C8:3B:7C:2A:F3:2C:66:AF:A2:0C:12:7B Certificate issuer: /CN=A91B7897/serialNumber=2AA278944B410FA2C83B7C2AF32C66AFA20C127B Certificate serial: 02D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KqJ4lEtBD6LIO3wq8yxmr6IMEns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.mft Manifest number: 02C6 Signing time: Wed 31 Dec 2025 00:31:09 +0000 Manifest this update: Wed 31 Dec 2025 00:31:09 +0000 Manifest next update: Wed 07 Jan 2026 00:31:09 +0000 Files and hashes: 1: KqJ4lEtBD6LIO3wq8yxmr6IMEns.crl (hash: rMerDjqUreE40NlfFJAJQwKqBRVkV0xHeAld4tJmmTI=) 2: 6C83604E1E2711EDAA33DF76C4F9AE02.roa (hash: wYfrxBgpnREsPiR0qsIaHokVToTMzCIKH0+74g0LVvA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.crl rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KqJ4lEtBD6LIO3wq8yxmr6IMEns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 00:31:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 723 (0x2d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7897, serialNumber=2AA278944B410FA2C83B7C2AF32C66AFA20C127B Validity Not Before: Dec 31 00:31:09 2025 GMT Not After : Jan 7 00:31:09 2026 GMT Subject: CN=69546ecd-edbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:38:f3:5d:73:17:88:a0:13:05:57:42:02:2d: de:a8:37:1e:d7:1a:08:56:20:97:c0:a6:2b:76:9e: 2a:47:b5:1c:f0:6f:d7:e5:ad:76:e5:de:6f:ec:de: b3:d8:20:c4:a3:ca:59:c7:d5:b8:4e:1d:dc:92:e8: b8:22:92:e1:28:04:25:52:99:c8:40:f4:c6:30:3d: 10:b3:c7:aa:1b:2c:53:69:a2:05:aa:15:6a:d5:8a: 06:93:1a:b2:ed:67:e4:9d:06:e7:04:7f:ff:35:55: cd:60:35:a5:d5:c5:db:92:ed:48:5e:bb:61:d7:d4: 35:7c:8a:51:66:ba:21:24:9b:1b:e1:61:86:43:6d: c1:97:84:67:96:f6:dc:af:f9:89:9d:df:ad:85:3f: 52:0d:04:8d:d1:b7:c8:04:fa:68:88:e6:c9:84:23: ad:dd:83:23:14:b7:f7:0b:ef:0c:d5:ca:11:db:31: 9c:3f:7a:63:e2:61:63:57:92:c8:fe:f3:22:87:dd: c3:6c:aa:51:1f:ae:03:9c:c6:13:90:e7:f0:69:63: d1:6b:3d:f6:95:91:59:07:8b:7a:78:f8:b9:ab:63: 79:19:01:c7:06:49:38:a9:31:38:be:95:6a:e8:5e: 9e:be:5d:eb:1f:f5:77:59:cf:00:c4:47:8d:55:9c: 53:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:2B:47:00:10:A3:5C:2C:AA:78:D9:16:BD:85:50:85:E4:B1:36:60 X509v3 Authority Key Identifier: keyid:2A:A2:78:94:4B:41:0F:A2:C8:3B:7C:2A:F3:2C:66:AF:A2:0C:12:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KqJ4lEtBD6LIO3wq8yxmr6IMEns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:c6:36:a9:fa:62:41:38:dd:69:b3:ae:aa:99:8d:1f:97:96: 6a:d1:7e:91:d5:4c:51:18:47:1b:6e:87:74:d2:9b:2c:cc:fb: b4:97:c2:34:b7:56:b4:48:6d:b6:93:fc:4c:70:d9:ff:b7:df: 8a:e9:d6:ca:83:cf:2b:9b:eb:51:b6:26:21:3b:6f:a0:02:5b: 37:d6:d7:65:28:98:a3:ba:2a:0f:de:51:b9:70:f5:71:88:92: 35:57:d0:6a:3d:ce:83:75:75:91:45:ac:d3:07:10:ee:ed:c8: c9:7c:8a:57:ce:d4:5e:7e:23:3f:65:c3:23:90:73:88:c7:bf: 40:31:31:1f:fb:92:03:bb:dc:8a:79:46:b3:d0:0f:fa:cd:7d: b1:d2:21:ee:75:2c:ef:74:25:ca:ad:ab:a3:41:a8:70:71:4a: 2a:9b:d5:fb:bb:ae:dd:cd:1f:0f:01:1a:3c:c1:89:73:0b:16: 47:4c:eb:3b:7b:57:a7:34:a8:f8:69:32:12:d7:e1:c4:f1:82: 80:33:f4:3c:73:6f:d5:ad:19:2a:86:29:16:71:ac:bc:34:83: 1c:7e:16:14:a4:d5:7f:ed:af:55:50:aa:89:65:4c:fa:05:38: e8:62:73:6c:06:5d:e1:88:10:65:4f:62:eb:06:8e:5e:da:ee: 8e:ef:2a:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc4OTcxMTAvBgNVBAUTKDJBQTI3ODk0NEI0MTBGQTJDODNCN0MyQUYzMkM2NkFG QTIwQzEyN0IwHhcNMjUxMjMxMDAzMTA5WhcNMjYwMTA3MDAzMTA5WjAYMRYwFAYD VQQDDA02OTU0NmVjZC1lZGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1jjzXXMXiKATBVdCAi3eqDce1xoIViCXwKYrdp4qR7Uc8G/X5a125d5v7N6z 2CDEo8pZx9W4Th3ckui4IpLhKAQlUpnIQPTGMD0Qs8eqGyxTaaIFqhVq1YoGkxqy 7WfknQbnBH//NVXNYDWl1cXbku1IXrth19Q1fIpRZrohJJsb4WGGQ23Bl4Rnlvbc r/mJnd+thT9SDQSN0bfIBPpoiObJhCOt3YMjFLf3C+8M1coR2zGcP3pj4mFjV5LI /vMih93DbKpRH64DnMYTkOfwaWPRaz32lZFZB4t6ePi5q2N5GQHHBkk4qTE4vpVq 6F6evl3rH/V3Wc8AxEeNVZxTqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMErRwAQ o1wsqnjZFr2FUIXksTZgMB8GA1UdIwQYMBaAFCqieJRLQQ+iyDt8KvMsZq+iDBJ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzg5Ny9CNkM1OTQxQzFE MzUxMUVEQTVFNjMwN0RDNEY5QUUwMi9LcUo0bEV0QkQ2TElPM3dxOHl4bXI2SU1F bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0txSjRsRXRCRDZMSU8zd3E4eXhtcjZJTUVucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Nzg5Ny9CNkM1OTQxQzFEMzUxMUVEQTVFNjMwN0RDNEY5QUUwMi9LcUo0bEV0QkQ2 TElPM3dxOHl4bXI2SU1FbnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADxjap+mJBON1ps66qmY0fl5Zq0X6R1UxRGEcbbod00psszPu0l8I0 t1a0SG22k/xMcNn/t9+K6dbKg88rm+tRtiYhO2+gAls31tdlKJijuioP3lG5cPVx iJI1V9BqPc6DdXWRRazTBxDu7cjJfIpXztRefiM/ZcMjkHOIx79AMTEf+5IDu9yK eUaz0A/6zX2x0iHudSzvdCXKraujQahwcUoqm9X7u67dzR8PARo8wYlzCxZHTOs7 e1enNKj4aTIS1+HE8YKAM/Q8c2/VrRkqhikWcay8NIMcfhYUpNV/7a9VUKqJZUz6 BTjoYnNsBl3hiBBlT2LrBo5e2u6O7yoN -----END CERTIFICATE-----Generated at Wed Dec 31 09:32:38 2025 by rpki-client