This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft File: mke_QL1Ih-IkFTMnnn8dfypfb7s.mft (raw, json) Hash identifier: hwTaiTauynpCD4+zp6ga0qw+8IHjL/q1HfBsXoaxrxU= Subject key identifier: DC:22:16:46:AA:7B:55:26:AF:93:A8:7A:37:AE:2C:03:23:65:53:3C Authority key identifier: 9A:47:BF:40:BD:48:87:E2:24:15:33:27:9E:7F:1D:7F:2A:5F:6F:BB Certificate issuer: /CN=A91F3989/serialNumber=9A47BF40BD4887E2241533279E7F1D7F2A5F6FBB Certificate serial: 0148 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft Manifest number: 0144 Signing time: Fri 19 Dec 2025 03:31:43 +0000 Manifest this update: Fri 19 Dec 2025 03:31:43 +0000 Manifest next update: Fri 26 Dec 2025 03:31:43 +0000 Files and hashes: 1: mke_QL1Ih-IkFTMnnn8dfypfb7s.crl (hash: 3DBhq8Qo6t835NyBOemg5oB9VLgwe7RZ1NusMfhxeEs=) 2: 56C9937C28C911F086331776C4F9AE02.roa (hash: sWZ/9dCaz3v4S72MvDmq/CPoi7rGClA8JUEmnKlDJLA=) 3: A146F2C2ECD011EE8891034AC4F9AE02.roa (hash: GmCMvjggTyREWsN9zghyP/K3sWSTqD1LSQ/qEU2884A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.crl rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:31:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3989, serialNumber=9A47BF40BD4887E2241533279E7F1D7F2A5F6FBB Validity Not Before: Dec 19 03:31:43 2025 GMT Not After : Dec 26 03:31:43 2025 GMT Subject: CN=6944c71f-49bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:2b:be:92:a6:33:28:6e:56:56:db:2a:fc:74: 22:a9:89:13:3a:11:a3:c0:c6:a5:7d:f4:ab:c2:59: e8:67:d8:24:87:c9:6a:a2:08:fa:b6:a8:4a:d1:ac: 10:c5:f0:10:9c:ac:12:1c:34:7a:3f:79:79:6a:34: 9d:34:38:21:08:48:f7:89:84:50:ac:2a:fa:f3:36: 36:c0:88:59:96:74:27:9d:6b:0e:1a:c5:36:29:04: 8d:e5:d6:bf:7a:43:a8:e5:72:01:51:00:ef:c5:f8: 85:f0:21:05:7c:a9:e7:fe:2e:d4:51:b3:41:57:24: 90:3a:ef:73:73:71:f9:6f:dc:51:3e:26:89:eb:b5: 5d:8c:1c:40:d0:0d:b4:c9:49:8a:c6:6d:da:70:2a: e9:6f:dd:02:a4:27:fe:dd:d7:cb:0c:eb:2d:e8:a7: df:21:65:b5:e8:fb:90:fb:02:14:8a:cc:bd:a5:75: 98:46:5d:e6:da:32:2e:c0:ab:ac:ce:97:34:e0:32: d9:35:57:9e:68:26:ec:28:e1:60:13:57:99:87:4e: c6:b1:12:10:3d:2a:85:d0:2c:46:94:43:7b:6c:ab: ff:37:fd:d4:a2:54:18:de:5d:43:31:ea:c4:0b:50: f7:7f:65:e0:df:c8:ab:df:c7:ac:58:09:fb:56:12: 7d:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:22:16:46:AA:7B:55:26:AF:93:A8:7A:37:AE:2C:03:23:65:53:3C X509v3 Authority Key Identifier: keyid:9A:47:BF:40:BD:48:87:E2:24:15:33:27:9E:7F:1D:7F:2A:5F:6F:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:d1:df:2e:2c:43:67:6e:34:27:5d:3c:f1:35:7c:98:ec:7a: 06:0f:14:34:77:e6:26:ca:c3:34:6b:c0:13:4d:b8:5c:3a:39: 2e:96:83:62:e2:a8:f0:6a:12:41:9d:64:68:5d:0f:d1:d4:55: 42:26:62:e0:fa:b0:e9:ce:a1:82:a8:fc:c6:0e:86:6b:79:f9: c0:15:f5:c9:0c:ba:5a:1e:bb:96:0e:62:7f:fb:bd:01:6b:79: e8:63:11:34:57:2a:dc:42:45:36:00:1f:02:94:ab:13:e2:58: 22:fb:48:10:a7:56:22:dd:af:ca:85:b8:5d:a7:dc:c2:1b:4e: 50:4a:3e:7d:63:fc:f3:bc:21:51:a2:0b:5e:66:f5:c4:d9:bc: 30:9c:40:c5:9b:96:52:e1:28:a7:11:8f:52:22:41:cd:4a:2c: b8:fb:32:d3:39:52:ee:4a:36:3c:aa:86:0c:1e:cf:df:36:71: 26:8f:2d:5d:03:d2:0f:be:6c:d1:71:e0:56:4c:57:18:04:bd: 47:22:40:eb:68:6b:42:ee:24:24:73:05:e4:0f:d5:0b:43:1d: 8f:01:96:33:86:d9:0d:0b:7a:5d:e4:e0:b9:b9:50:c7:60:f0: 22:c1:f5:b2:ac:43:ba:b8:45:95:a8:b8:8e:06:75:7c:85:3b: 60:ef:8d:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM5ODkxMTAvBgNVBAUTKDlBNDdCRjQwQkQ0ODg3RTIyNDE1MzMyNzlFN0YxRDdG MkE1RjZGQkIwHhcNMjUxMjE5MDMzMTQzWhcNMjUxMjI2MDMzMTQzWjAYMRYwFAYD VQQDDA02OTQ0YzcxZi00OWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiSu+kqYzKG5WVtsq/HQiqYkTOhGjwMalffSrwlnoZ9gkh8lqogj6tqhK0awQ xfAQnKwSHDR6P3l5ajSdNDghCEj3iYRQrCr68zY2wIhZlnQnnWsOGsU2KQSN5da/ ekOo5XIBUQDvxfiF8CEFfKnn/i7UUbNBVySQOu9zc3H5b9xRPiaJ67VdjBxA0A20 yUmKxm3acCrpb90CpCf+3dfLDOst6KffIWW16PuQ+wIUisy9pXWYRl3m2jIuwKus zpc04DLZNVeeaCbsKOFgE1eZh07GsRIQPSqF0CxGlEN7bKv/N/3UolQY3l1DMerE C1D3f2Xg38ir38esWAn7VhJ9bwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNwiFkaq e1Umr5OoejeuLAMjZVM8MB8GA1UdIwQYMBaAFJpHv0C9SIfiJBUzJ55/HX8qX2+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzk4OS8zMTYxQzM3RUVD RDAxMUVFOEEyMjRENDlDNEY5QUUwMi9ta2VfUUwxSWgtSWtGVE1ubm44ZGZ5cGZi N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21rZV9RTDFJaC1Ja0ZUTW5ubjhkZnlwZmI3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Mzk4OS8zMTYxQzM3RUVDRDAxMUVFOEEyMjRENDlDNEY5QUUwMi9ta2VfUUwxSWgt SWtGVE1ubm44ZGZ5cGZiN3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBB0d8uLENnbjQnXTzxNXyY7HoGDxQ0d+YmysM0a8ATTbhcOjkuloNi 4qjwahJBnWRoXQ/R1FVCJmLg+rDpzqGCqPzGDoZrefnAFfXJDLpaHruWDmJ/+70B a3noYxE0VyrcQkU2AB8ClKsT4lgi+0gQp1Yi3a/Khbhdp9zCG05QSj59Y/zzvCFR ogteZvXE2bwwnEDFm5ZS4SinEY9SIkHNSiy4+zLTOVLuSjY8qoYMHs/fNnEmjy1d A9IPvmzRceBWTFcYBL1HIkDraGtC7iQkcwXkD9ULQx2PAZYzhtkNC3pd5OC5uVDH YPAiwfWyrEO6uEWVqLiOBnV8hTtg7439 -----END CERTIFICATE-----Generated at Sat Dec 20 00:55:15 2025 by rpki-client