This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.mft File: KJ6yPyjJzyP6W5GKZQy4QoBQMHs.mft (raw, json) Hash identifier: i+XCpSRneoN8/XjnGhyMXuQ6KRBx0LjeThnfMvmEyzw= Subject key identifier: 54:47:E1:41:D3:5E:74:89:56:13:FD:53:E2:25:F7:61:46:32:6F:4D Authority key identifier: 28:9E:B2:3F:28:C9:CF:23:FA:5B:91:8A:65:0C:B8:42:80:50:30:7B Certificate issuer: /CN=A91C744F/serialNumber=289EB23F28C9CF23FA5B918A650CB8428050307B Certificate serial: 07E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.mft Manifest number: 07CF Signing time: Thu 18 Dec 2025 20:48:41 +0000 Manifest this update: Thu 18 Dec 2025 20:48:40 +0000 Manifest next update: Thu 25 Dec 2025 20:48:40 +0000 Files and hashes: 1: KJ6yPyjJzyP6W5GKZQy4QoBQMHs.crl (hash: cMiGypnfF22W41Ookxbg32JcIzMjpRwcWUkg/fcbPD8=) 2: E7EFEDC07C1F11EB95B6492DC4F9AE02.roa (hash: m3jxJQF+AC7fQWOTcRGVcRm7nhWrV4djextUV/e5Tp0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.crl rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 20:48:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2021 (0x7e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C744F, serialNumber=289EB23F28C9CF23FA5B918A650CB8428050307B Validity Not Before: Dec 18 20:48:40 2025 GMT Not After : Dec 25 20:48:40 2025 GMT Subject: CN=694468a8-af75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:fd:2b:02:c6:ae:34:d6:8e:ba:39:4b:76:e3: 26:a6:71:cf:0e:01:52:84:6e:43:a3:5e:53:6a:ae: 83:3f:72:a9:ee:0b:2a:67:1c:0a:c0:c5:33:98:38: 62:ec:c7:d8:57:77:44:2e:e4:11:d5:8b:99:ac:48: 81:fc:06:53:28:eb:44:26:de:f9:93:d3:ca:0b:5f: bc:0a:28:28:15:f8:c0:c1:67:41:93:17:82:f3:4e: 7e:d9:ef:0a:42:49:29:4f:9e:4c:0c:4d:3d:4e:88: 83:89:84:5d:b8:7f:41:95:cb:d9:e1:c5:0b:eb:ea: 24:d7:bf:60:1f:55:80:bf:15:12:cf:d8:4d:9c:19: e4:91:1f:77:ae:1a:aa:05:a9:4e:ad:20:8c:8c:14: 7a:88:05:63:8f:43:78:e0:f5:b9:22:a0:e7:c1:65: 42:29:65:56:2a:92:54:89:40:d3:c7:e4:77:d4:6c: cd:4e:f0:2d:15:9e:c0:fa:bb:0a:34:3b:42:a7:59: 4f:c9:db:e2:d2:bf:a5:0c:7d:89:a7:bf:f0:8f:2d: 6e:7d:22:9a:a4:9d:27:dd:d6:7f:78:56:72:35:87: 05:a9:af:97:d8:65:cc:ff:cd:23:38:14:fb:e0:85: 9d:b1:2d:b7:7e:52:ab:28:70:c2:ce:9c:a5:a1:f8: 61:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:47:E1:41:D3:5E:74:89:56:13:FD:53:E2:25:F7:61:46:32:6F:4D X509v3 Authority Key Identifier: keyid:28:9E:B2:3F:28:C9:CF:23:FA:5B:91:8A:65:0C:B8:42:80:50:30:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:74:79:f4:28:ec:ef:e4:3a:5f:44:fb:7e:ef:af:4f:f8:a1: e4:69:68:b4:c3:27:91:27:06:f5:45:45:c4:1f:d2:59:4c:99: d8:91:0e:6f:b0:36:91:fb:71:9d:4e:81:13:19:27:06:2f:4f: 70:9a:37:11:56:c2:bc:ad:86:68:60:6d:9e:51:ba:33:0e:a4: f8:5c:97:2c:0d:d6:45:cd:51:38:f8:f0:f3:0a:7f:49:f9:f0: af:19:7e:e2:cb:bb:88:cc:78:e0:90:13:1d:ae:e7:1c:a6:4d: eb:f8:18:ad:81:71:e1:df:de:bb:0f:33:31:0a:a8:92:db:63: 81:11:c3:9a:3c:15:db:e5:91:fd:73:e7:2b:65:3e:15:21:f1: 7b:6b:c2:bb:f7:c6:68:a9:5d:d8:e0:f2:39:f3:36:a4:e3:88: 41:8a:6c:5b:38:60:33:ea:87:a1:42:bc:ea:51:45:57:84:60: ae:42:b2:99:b8:f7:76:32:ee:04:b1:9a:75:af:90:c3:68:b8: d3:a1:9d:85:94:ae:9f:ac:b7:98:81:84:cd:ce:a6:03:50:7c: bd:c5:e4:17:35:00:30:46:98:a3:2e:aa:a1:6d:e2:7b:bc:5a: b7:bd:68:e2:a4:45:fe:ac:a7:25:03:d8:40:89:18:96:fb:cd: 89:26:3b:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc0NEYxMTAvBgNVBAUTKDI4OUVCMjNGMjhDOUNGMjNGQTVCOTE4QTY1MENCODQy ODA1MDMwN0IwHhcNMjUxMjE4MjA0ODQwWhcNMjUxMjI1MjA0ODQwWjAYMRYwFAYD VQQDDA02OTQ0NjhhOC1hZjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvP0rAsauNNaOujlLduMmpnHPDgFShG5Do15Taq6DP3Kp7gsqZxwKwMUzmDhi 7MfYV3dELuQR1YuZrEiB/AZTKOtEJt75k9PKC1+8CigoFfjAwWdBkxeC805+2e8K QkkpT55MDE09ToiDiYRduH9BlcvZ4cUL6+ok179gH1WAvxUSz9hNnBnkkR93rhqq BalOrSCMjBR6iAVjj0N44PW5IqDnwWVCKWVWKpJUiUDTx+R31GzNTvAtFZ7A+rsK NDtCp1lPydvi0r+lDH2Jp7/wjy1ufSKapJ0n3dZ/eFZyNYcFqa+X2GXM/80jOBT7 4IWdsS23flKrKHDCzpylofhhvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFRH4UHT XnSJVhP9U+Il92FGMm9NMB8GA1UdIwQYMBaAFCiesj8oyc8j+luRimUMuEKAUDB7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzQ0Ri9CN0Y5Mzg1RTIy QjcxMUVCOEMzNzAzM0NDNEY5QUUwMi9LSjZ5UHlqSnp5UDZXNUdLWlF5NFFvQlFN SHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tKNnlQeWpKenlQNlc1R0taUXk0UW9CUU1Icy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzQ0Ri9CN0Y5Mzg1RTIyQjcxMUVCOEMzNzAzM0NDNEY5QUUwMi9LSjZ5UHlqSnp5 UDZXNUdLWlF5NFFvQlFNSHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvdHn0KOzv5DpfRPt+769P+KHkaWi0wyeRJwb1RUXEH9JZTJnYkQ5v sDaR+3GdToETGScGL09wmjcRVsK8rYZoYG2eUbozDqT4XJcsDdZFzVE4+PDzCn9J +fCvGX7iy7uIzHjgkBMdruccpk3r+BitgXHh3967DzMxCqiS22OBEcOaPBXb5ZH9 c+crZT4VIfF7a8K798ZoqV3Y4PI58zak44hBimxbOGAz6oehQrzqUUVXhGCuQrKZ uPd2Mu4EsZp1r5DDaLjToZ2FlK6frLeYgYTNzqYDUHy9xeQXNQAwRpijLqqhbeJ7 vFq3vWjipEX+rKclA9hAiRiW+82JJjvr -----END CERTIFICATE-----Generated at Fri Dec 19 23:53:26 2025 by rpki-client