This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.mft File: WkoaHy2STehVVccdPbZrm7DkNkM.mft (raw, json) Hash identifier: uGc/8WP9HBmsFIVcj8f08jGPmRXBwiOOe0LGuv0Mofk= Subject key identifier: 86:2D:66:79:2E:B4:A4:6B:10:C5:6E:63:9F:1C:73:88:DE:0D:FF:14 Authority key identifier: 5A:4A:1A:1F:2D:92:4D:E8:55:55:C7:1D:3D:B6:6B:9B:B0:E4:36:43 Certificate issuer: /CN=A91C2E87/serialNumber=5A4A1A1F2D924DE85555C71D3DB66B9BB0E43643 Certificate serial: 0C89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.mft Manifest number: 0C6E Signing time: Wed 24 Dec 2025 18:16:19 +0000 Manifest this update: Wed 24 Dec 2025 18:16:19 +0000 Manifest next update: Wed 31 Dec 2025 18:16:19 +0000 Files and hashes: 1: WkoaHy2STehVVccdPbZrm7DkNkM.crl (hash: PUuVTFJOmQQ3Rwh2P6g7VoghJ+7AnlfqLpvOzJeIYjI=) 2: 504C179A3CDE11EAB553996BC4F9AE02.roa (hash: uSqH9qtpAVAXCb4X+qWkkmNSMbMvUCIUkN3meWM7mGQ=) 3: 4EB9FBD63CDE11EAB553996BC4F9AE02.roa (hash: PDIYy5Sb4xyhoOPbjd8OnAFDVYq1/Po77lStQjIan3g=) 4: 4F4A22E23CDE11EAB553996BC4F9AE02.roa (hash: pSXOmussoFa8FA0K/yEcnzqFHSV0TpQGZeByn4XUGeE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.crl rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 18:16:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3209 (0xc89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2E87, serialNumber=5A4A1A1F2D924DE85555C71D3DB66B9BB0E43643 Validity Not Before: Dec 24 18:16:19 2025 GMT Not After : Dec 31 18:16:19 2025 GMT Subject: CN=694c2df3-65e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2e:d8:04:e5:18:e1:87:7a:80:9c:7b:37:29: 71:57:07:11:f5:85:06:64:99:32:56:9e:ec:b3:62: ae:b9:24:a0:24:4c:64:2c:32:99:4b:07:de:8a:74: 93:64:f8:a9:73:9e:87:09:f7:88:79:f8:4b:62:05: 71:15:b2:32:58:2b:2b:2f:b1:92:a5:71:44:f9:5e: 33:26:69:59:37:c5:ae:b9:c7:fd:30:3e:49:03:6c: 8b:89:7e:cc:ef:ed:5c:f5:5f:ae:f5:e4:59:da:b0: 74:fe:3f:6e:16:93:2e:db:80:b5:26:fc:05:01:36: d0:65:e1:78:06:23:67:e1:0e:2f:03:e1:cb:0c:c4: 1f:23:fd:4d:5a:22:10:5e:43:0f:65:76:ef:df:fa: 79:b5:6f:f5:57:a0:a6:b9:e5:bc:f6:a8:10:87:0f: 02:f9:1f:02:30:57:5e:60:e1:f7:f2:ee:69:9e:82: 6c:96:ab:f0:cf:6b:65:ce:9f:b6:3e:fc:2e:9b:6a: 78:8b:6a:50:1d:93:6d:0f:a4:46:f8:1a:2d:5b:64: 0d:70:a4:aa:8e:d8:eb:61:1b:46:37:f9:05:b7:02: 83:7a:22:c4:24:4a:e0:9e:77:e1:55:89:f0:53:54: 61:42:85:07:f5:24:16:23:6a:39:08:98:6c:bc:fd: b2:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:2D:66:79:2E:B4:A4:6B:10:C5:6E:63:9F:1C:73:88:DE:0D:FF:14 X509v3 Authority Key Identifier: keyid:5A:4A:1A:1F:2D:92:4D:E8:55:55:C7:1D:3D:B6:6B:9B:B0:E4:36:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:12:25:75:c4:e6:c7:d5:c1:d1:2d:80:fc:0d:04:f2:b2:38: 40:96:19:f0:42:2f:23:89:43:bf:4a:17:06:39:ee:39:9d:80: 5b:da:b3:da:af:dd:31:21:9e:ab:02:fa:18:dd:51:c2:bf:dd: 7b:f6:6e:19:21:19:ab:db:d3:3f:d5:62:27:ee:cd:b0:40:2f: ac:be:cd:a9:b7:3d:07:dd:d7:1d:1f:aa:a7:23:da:5c:45:07: a7:a9:23:42:d7:df:ec:2f:ce:b4:a3:f1:29:21:cc:70:a7:ce: 5c:34:34:2b:13:af:70:c6:7e:49:a6:8a:8c:fb:d7:c9:f0:5d: 8b:f0:2b:4c:d2:b5:fd:9e:81:47:ff:d2:42:a8:4d:e3:4a:10: 26:49:50:ed:57:77:70:c2:79:a9:e1:e7:6b:88:22:fd:a4:46: 37:fe:4a:f3:8d:ac:75:57:30:35:98:e2:78:1a:ad:74:de:fd: cd:ff:38:20:11:ac:c3:5d:c0:37:36:29:fb:33:0d:7e:b8:c3: 34:84:35:a3:7d:50:31:7b:d6:2e:74:f5:e7:5a:3f:df:5f:7c: 8b:51:a3:c1:be:75:7b:89:53:5b:a8:3a:1d:aa:8e:87:7f:0b: b6:21:71:ba:34:e2:75:b4:70:ae:8f:53:a9:a6:b7:97:0e:3e: 9f:1d:e5:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QzJFODcxMTAvBgNVBAUTKDVBNEExQTFGMkQ5MjRERTg1NTU1QzcxRDNEQjY2QjlC QjBFNDM2NDMwHhcNMjUxMjI0MTgxNjE5WhcNMjUxMjMxMTgxNjE5WjAYMRYwFAYD VQQDDA02OTRjMmRmMy02NWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0C7YBOUY4Yd6gJx7NylxVwcR9YUGZJkyVp7ss2KuuSSgJExkLDKZSwfeinST ZPipc56HCfeIefhLYgVxFbIyWCsrL7GSpXFE+V4zJmlZN8Wuucf9MD5JA2yLiX7M 7+1c9V+u9eRZ2rB0/j9uFpMu24C1JvwFATbQZeF4BiNn4Q4vA+HLDMQfI/1NWiIQ XkMPZXbv3/p5tW/1V6CmueW89qgQhw8C+R8CMFdeYOH38u5pnoJslqvwz2tlzp+2 Pvwum2p4i2pQHZNtD6RG+BotW2QNcKSqjtjrYRtGN/kFtwKDeiLEJErgnnfhVYnw U1RhQoUH9SQWI2o5CJhsvP2yMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIYtZnku tKRrEMVuY58cc4jeDf8UMB8GA1UdIwQYMBaAFFpKGh8tkk3oVVXHHT22a5uw5DZD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkU4Ny9BOUYzQzZFRTEy OUYxMUVBQUIyNzIwMkZDNEY5QUUwMi9Xa29hSHkyU1RlaFZWY2NkUGJacm03RGtO a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1drb2FIeTJTVGVoVlZjY2RQYlpybTdEa05rTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkU4Ny9BOUYzQzZFRTEyOUYxMUVBQUIyNzIwMkZDNEY5QUUwMi9Xa29hSHkyU1Rl aFZWY2NkUGJacm03RGtOa00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZEiV1xObH1cHRLYD8DQTysjhAlhnwQi8jiUO/ShcGOe45nYBb2rPa r90xIZ6rAvoY3VHCv9179m4ZIRmr29M/1WIn7s2wQC+svs2ptz0H3dcdH6qnI9pc RQenqSNC19/sL860o/EpIcxwp85cNDQrE69wxn5JpoqM+9fJ8F2L8CtM0rX9noFH /9JCqE3jShAmSVDtV3dwwnmp4edriCL9pEY3/krzjax1VzA1mOJ4Gq103v3N/zgg EazDXcA3Nin7Mw1+uMM0hDWjfVAxe9YudPXnWj/fX3yLUaPBvnV7iVNbqDodqo6H fwu2IXG6NOJ1tHCuj1OppreXDj6fHeVW -----END CERTIFICATE-----Generated at Thu Dec 25 03:19:04 2025 by rpki-client