This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft File: kTOGkN66V4znOCGKniIIVNG1J18.mft (raw, json) Hash identifier: ikrcxPX6vk5R3HryfaGvSDxGk4nFmLjdtcp2oIP2Kfs= Subject key identifier: 72:35:8C:31:03:7F:EE:28:E0:FC:99:D5:55:33:CF:EF:69:63:8E:43 Authority key identifier: 91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F Certificate issuer: /CN=A91F605B/serialNumber=91338690DEBA578CE738218A9E220854D1B5275F Certificate serial: 04AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft Manifest number: 049C Signing time: Sat 20 Dec 2025 23:19:39 +0000 Manifest this update: Sat 20 Dec 2025 23:19:38 +0000 Manifest next update: Sat 27 Dec 2025 23:19:38 +0000 Files and hashes: 1: kTOGkN66V4znOCGKniIIVNG1J18.crl (hash: uLe7BZBOemsljOR4hwX9Rw/viw/iXYdxGUG9gGuuSo4=) 2: E7DBA61CA1FA11EF9696DF59C4F9AE02.roa (hash: 346r3b4w4VthONfD4bZWfxOP9wmeXPFHqji5dvclr0k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 23:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1199 (0x4af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F605B, serialNumber=91338690DEBA578CE738218A9E220854D1B5275F Validity Not Before: Dec 20 23:19:38 2025 GMT Not After : Dec 27 23:19:38 2025 GMT Subject: CN=69472f0b-90af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4c:2c:76:1e:34:fb:af:f6:4b:d2:c1:a0:5a: 74:0c:52:50:f0:ff:06:af:54:60:12:c1:1c:63:b8: d4:c2:ba:9e:b5:5d:46:8d:53:00:be:02:aa:a6:fd: d6:b2:a1:5e:c0:6d:79:70:74:77:9a:3c:bf:43:17: d7:b1:08:03:e2:a1:94:43:69:5e:4b:e2:66:65:1f: 88:43:02:58:6c:81:27:12:53:5c:1b:ed:76:29:ca: fc:b7:09:22:f2:e6:d9:c6:7f:03:40:62:db:01:d7: 65:a2:e5:cd:e1:6f:eb:35:12:dc:e6:1c:30:8b:d8: a0:60:46:6f:d5:07:d7:23:10:d5:30:53:2a:af:2b: 79:bc:0b:67:04:b3:fe:fd:18:e2:bd:68:cd:5a:07: b4:8a:a5:0c:f3:5f:9e:a9:21:c0:4d:fc:4f:06:44: ae:a6:b2:78:2a:41:d6:28:6b:92:3f:ac:ce:7d:1e: ae:25:e7:09:6d:6c:8d:c3:e1:27:73:b6:e4:bf:5c: 21:2f:a9:44:1e:c0:b9:24:f5:bc:ea:d1:ab:3f:6b: 45:aa:7e:a3:b7:64:d1:f4:89:29:f7:ca:3a:a9:b2: 49:48:c8:a8:ee:e9:d7:cb:87:91:26:74:63:ef:aa: b9:13:ea:1d:a2:8f:48:f9:01:be:5a:3e:b0:7d:ac: 44:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:35:8C:31:03:7F:EE:28:E0:FC:99:D5:55:33:CF:EF:69:63:8E:43 X509v3 Authority Key Identifier: keyid:91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:1d:ce:91:ed:a8:1e:a1:88:36:c0:60:8f:98:92:2b:88:43: e4:6a:2b:68:cd:28:15:3d:81:49:fc:44:72:17:5e:ad:1b:86: 4e:8a:37:ee:3d:eb:aa:40:77:c8:d2:9a:16:64:20:3c:6f:aa: de:a3:fc:c9:7d:19:a1:05:41:0f:7d:1d:87:8e:64:0e:5e:a9: a0:7c:30:b5:47:10:91:50:e5:e8:f4:fa:77:3b:52:f4:a1:c6: ae:23:89:07:e8:95:b4:54:7f:f5:8b:08:23:c9:e4:9c:cb:d4: e4:96:9a:8f:56:f4:b8:44:8a:fa:e8:3b:b8:cc:6a:4f:67:ec: 69:3e:73:62:c4:45:20:6b:9a:ca:f8:37:37:9f:df:f6:ac:4f: 61:aa:5b:27:4c:ef:69:0b:73:79:5b:d6:0e:eb:2c:e1:da:6b: 5c:28:cd:d7:bc:7d:e4:2b:68:aa:bd:a5:2b:46:c7:fe:96:af: de:0c:ca:54:a4:37:ae:70:92:9a:a5:87:72:c4:9a:cd:33:9e: a3:c7:11:90:5a:fd:c5:29:3d:bf:2a:69:62:35:c9:ff:93:4b: 10:a1:f2:f1:cc:50:20:68:a4:2c:2f:fc:c3:f6:8e:0d:a9:9c: f0:e5:94:c5:92:c3:b2:1e:fb:ca:b0:6b:31:2c:ad:18:a3:74: 4c:95:7b:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYwNUIxMTAvBgNVBAUTKDkxMzM4NjkwREVCQTU3OENFNzM4MjE4QTlFMjIwODU0 RDFCNTI3NUYwHhcNMjUxMjIwMjMxOTM4WhcNMjUxMjI3MjMxOTM4WjAYMRYwFAYD VQQDDA02OTQ3MmYwYi05MGFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu0wsdh40+6/2S9LBoFp0DFJQ8P8Gr1RgEsEcY7jUwrqetV1GjVMAvgKqpv3W sqFewG15cHR3mjy/QxfXsQgD4qGUQ2leS+JmZR+IQwJYbIEnElNcG+12Kcr8twki 8ubZxn8DQGLbAddlouXN4W/rNRLc5hwwi9igYEZv1QfXIxDVMFMqryt5vAtnBLP+ /RjivWjNWge0iqUM81+eqSHATfxPBkSuprJ4KkHWKGuSP6zOfR6uJecJbWyNw+En c7bkv1whL6lEHsC5JPW86tGrP2tFqn6jt2TR9Ikp98o6qbJJSMio7unXy4eRJnRj 76q5E+odoo9I+QG+Wj6wfaxE/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHI1jDED f+4o4PyZ1VUzz+9pY45DMB8GA1UdIwQYMBaAFJEzhpDeuleM5zghip4iCFTRtSdf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjA1Qi85ODE3RDI3MjY0 Q0MxMUVDOTZENEE1NThDNEY5QUUwMi9rVE9Ha042NlY0em5PQ0dLbmlJSVZORzFK MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tUT0drTjY2VjR6bk9DR0tuaUlJVk5HMUoxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjA1Qi85ODE3RDI3MjY0Q0MxMUVDOTZENEE1NThDNEY5QUUwMi9rVE9Ha042NlY0 em5PQ0dLbmlJSVZORzFKMTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjHc6R7ageoYg2wGCPmJIriEPkaitozSgVPYFJ/ERyF16tG4ZOijfu PeuqQHfI0poWZCA8b6reo/zJfRmhBUEPfR2HjmQOXqmgfDC1RxCRUOXo9Pp3O1L0 ocauI4kH6JW0VH/1iwgjyeScy9TklpqPVvS4RIr66Du4zGpPZ+xpPnNixEUga5rK +Dc3n9/2rE9hqlsnTO9pC3N5W9YO6yzh2mtcKM3XvH3kK2iqvaUrRsf+lq/eDMpU pDeucJKapYdyxJrNM56jxxGQWv3FKT2/KmliNcn/k0sQofLxzFAgaKQsL/zD9o4N qZzw5ZTFksOyHvvKsGsxLK0Yo3RMlXsP -----END CERTIFICATE-----Generated at Mon Dec 22 22:13:58 2025 by rpki-client