This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft File: Km8SBBLYIPn_JM0F1ez0nmYtmco.mft (raw, json) Hash identifier: gQRMnShL/hNk3XVOMRqLwhRRznuYyfsk3CeJzrY7u0U= Subject key identifier: 7F:FE:82:FE:90:91:E9:87:6D:1B:67:12:1E:90:9D:68:7D:33:F8:9D Authority key identifier: 2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA Certificate issuer: /CN=A91F240B/serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA Certificate serial: 1FE7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft Manifest number: 1FD9 Signing time: Sat 20 Dec 2025 15:48:55 +0000 Manifest this update: Sat 20 Dec 2025 15:48:54 +0000 Manifest next update: Sat 27 Dec 2025 15:48:54 +0000 Files and hashes: 1: Km8SBBLYIPn_JM0F1ez0nmYtmco.crl (hash: mB1gU7HMGw7woO0PTNp8YYHyI3qBnyMQ65lqr1CjDbc=) 2: E352E0A2896F11E7BBF2923CC4F9AE02.roa (hash: bpwG3qWkZqt3c9e2parZM85DcFLWLncfBgOv3ugwly0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.crl rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 15:48:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8167 (0x1fe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F240B, serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA Validity Not Before: Dec 20 15:48:54 2025 GMT Not After : Dec 27 15:48:54 2025 GMT Subject: CN=6946c567-63c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:fb:93:d9:34:e0:bd:c3:1a:dd:6c:aa:b5:d7: 0a:31:56:4b:3b:a9:d5:f2:9f:8d:24:2a:48:b3:98: 35:e1:93:d2:75:80:0a:b9:4b:70:1e:ee:5f:2e:13: 13:3d:6a:64:fd:4e:95:9a:23:65:2b:a2:15:64:d4: f0:8d:87:45:a6:19:f5:82:a6:d4:e8:61:c2:57:64: 1f:f8:d9:d8:ad:6c:97:cb:e9:c1:cc:b1:a0:54:f2: 37:c2:a6:4d:29:4e:58:f3:fc:bc:27:e5:47:cb:ee: 9c:b9:2d:2d:c7:8a:df:f4:59:4e:19:75:40:e0:1b: 67:6a:66:a6:1b:4e:82:fe:d9:10:96:ce:1a:3b:46: 3f:8e:71:9a:84:3b:34:2e:20:e6:6f:c7:6b:6c:24: 35:50:23:82:21:c2:a9:1f:dc:fc:8d:c6:5f:ca:74: 59:4b:10:f7:d7:ab:77:32:53:82:28:60:34:e4:ee: fa:20:24:ec:4b:2d:3c:4e:da:1e:60:17:cd:d0:53: 3a:c5:7c:ee:6c:26:1d:ff:e1:a8:e1:ce:ef:44:2b: 6c:1b:91:33:7b:fb:d3:67:d2:cd:a8:ee:16:3f:0b: a8:c8:05:6f:97:e2:f7:e6:54:b0:b8:95:31:a2:1e: 70:ec:be:88:7c:ad:0c:79:46:b3:cb:53:bc:94:cf: f1:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:FE:82:FE:90:91:E9:87:6D:1B:67:12:1E:90:9D:68:7D:33:F8:9D X509v3 Authority Key Identifier: keyid:2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:2f:f0:e7:9b:6e:36:b5:ce:1f:5e:c6:de:b7:82:d6:4b:34: b6:32:1a:ca:a3:37:b4:be:7f:3b:ac:94:6e:ac:4f:eb:8b:37: 45:c0:91:86:0e:48:e5:a3:46:b2:ac:0e:2d:5b:1d:f4:3f:ab: 75:f0:4c:85:a7:6d:45:b0:6a:42:18:e0:08:b0:1d:33:3f:c3: df:b8:b7:39:2e:b7:ba:c6:a6:d3:7f:62:fa:06:d4:4c:0e:46: 7d:79:60:53:15:87:8f:6f:f2:c1:00:7f:e4:04:19:03:70:6e: f1:37:df:ca:92:c6:b5:67:23:41:10:4c:c2:72:6a:6c:ac:38: 08:aa:4e:f6:fb:89:a8:32:3c:0a:8a:06:e3:2d:8a:4a:af:77: eb:06:79:38:59:2f:40:e0:eb:15:1d:22:7e:21:df:39:98:f2: d8:9d:96:a1:52:c9:be:ed:18:ec:6e:44:1a:b4:fa:00:3f:5e: 1f:e1:09:a7:17:d5:3b:b4:ed:62:15:b4:b2:fa:c9:7b:0d:ed: d4:a9:6b:36:ef:ab:60:82:33:04:7f:38:1b:55:21:df:74:66: f7:81:8c:3d:26:93:a4:53:86:b5:19:52:da:6a:3e:38:88:bb: 71:19:bb:37:a6:bc:72:90:10:3b:ef:1a:c4:8c:0a:9f:07:1a: df:96:0c:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICH+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjI0MEIxMTAvBgNVBAUTKDJBNkYxMjA0MTJEODIwRjlGRjI0Q0QwNUQ1RUNGNDlF NjYyRDk5Q0EwHhcNMjUxMjIwMTU0ODU0WhcNMjUxMjI3MTU0ODU0WjAYMRYwFAYD VQQDDA02OTQ2YzU2Ny02M2M3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAgvuT2TTgvcMa3WyqtdcKMVZLO6nV8p+NJCpIs5g14ZPSdYAKuUtwHu5fLhMT PWpk/U6VmiNlK6IVZNTwjYdFphn1gqbU6GHCV2Qf+NnYrWyXy+nBzLGgVPI3wqZN KU5Y8/y8J+VHy+6cuS0tx4rf9FlOGXVA4BtnamamG06C/tkQls4aO0Y/jnGahDs0 LiDmb8drbCQ1UCOCIcKpH9z8jcZfynRZSxD316t3MlOCKGA05O76ICTsSy08Ttoe YBfN0FM6xXzubCYd/+Go4c7vRCtsG5Eze/vTZ9LNqO4WPwuoyAVvl+L35lSwuJUx oh5w7L6IfK0MeUazy1O8lM/xdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH/+gv6Q kemHbRtnEh6QnWh9M/idMB8GA1UdIwQYMBaAFCpvEgQS2CD5/yTNBdXs9J5mLZnK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjQwQi81QjczNkQ5MjQz MzMxMUU2OTU5QTc4MTVDNEY5QUUwMi9LbThTQkJMWUlQbl9KTTBGMWV6MG5tWXRt Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttOFNCQkxZSVBuX0pNMEYxZXowbm1ZdG1jby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjQwQi81QjczNkQ5MjQzMzMxMUU2OTU5QTc4MTVDNEY5QUUwMi9LbThTQkJMWUlQ bl9KTTBGMWV6MG5tWXRtY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcL/Dnm242tc4fXsbet4LWSzS2MhrKoze0vn87rJRurE/rizdFwJGG Dkjlo0ayrA4tWx30P6t18EyFp21FsGpCGOAIsB0zP8PfuLc5Lre6xqbTf2L6BtRM DkZ9eWBTFYePb/LBAH/kBBkDcG7xN9/Kksa1ZyNBEEzCcmpsrDgIqk72+4moMjwK igbjLYpKr3frBnk4WS9A4OsVHSJ+Id85mPLYnZahUsm+7RjsbkQatPoAP14f4Qmn F9U7tO1iFbSy+sl7De3UqWs276tggjMEfzgbVSHfdGb3gYw9JpOkU4a1GVLaaj44 iLtxGbs3prxykBA77xrEjAqfBxrflgwU -----END CERTIFICATE-----Generated at Sun Dec 21 02:48:27 2025 by rpki-client