This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft File: Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft (raw, json) Hash identifier: WTEvtz24m8Wt6/zjWZ3xe3lAs74NfNpQbPxES4ykrzI= Subject key identifier: 74:DE:79:ED:96:CE:F8:84:54:80:98:EC:48:0A:E2:3F:96:67:3F:8F Authority key identifier: 29:AD:B3:9B:62:0E:AE:3C:B8:AF:CA:2C:A1:85:F5:C4:87:6F:D0:43 Certificate issuer: /CN=A91FC985/serialNumber=29ADB39B620EAE3CB8AFCA2CA185F5C4876FD043 Certificate serial: 9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft Manifest number: 9A Signing time: Tue 23 Dec 2025 05:20:06 +0000 Manifest this update: Tue 23 Dec 2025 05:20:06 +0000 Manifest next update: Tue 30 Dec 2025 05:20:06 +0000 Files and hashes: 1: Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl (hash: ySPQEqoWzwiirCzf27bT2rzk63nCJHqAn5MbFqaMSu8=) 2: DA3E289CF5B811EFA1046714C4F9AE02.roa (hash: ghtYYnHvBHOXjjafNw/o3b7nWMJznKoJtYacsPdc8uY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:20:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 156 (0x9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC985, serialNumber=29ADB39B620EAE3CB8AFCA2CA185F5C4876FD043 Validity Not Before: Dec 23 05:20:06 2025 GMT Not After : Dec 30 05:20:06 2025 GMT Subject: CN=694a2686-4a45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:0a:18:64:66:f5:14:c4:7b:86:3f:43:66:ab: 1a:3d:7f:b1:5d:9b:80:0b:c7:28:4c:89:3c:a3:6a: a9:96:d5:8a:0c:73:08:0f:4e:25:9a:82:04:b2:52: c8:49:87:a9:86:3a:2d:e3:74:5d:b1:b7:f7:fd:52: fc:71:c9:5c:94:fe:d8:1c:87:75:de:f7:69:f7:45: 7c:c4:3a:8b:0d:30:93:8d:16:39:69:64:ea:6f:b1: 17:54:45:8c:b9:05:33:2c:76:a5:98:06:60:d0:c5: 28:6f:2d:57:de:7a:24:00:cd:bb:5f:cb:b4:a1:46: 84:99:88:6a:1f:19:73:fa:0e:68:ec:14:04:71:de: 98:ee:98:09:e2:4d:5a:6c:98:bf:5a:d8:7f:f4:1e: 52:1a:ed:a6:f3:99:21:b1:8d:e1:42:f7:2b:ce:98: 48:c1:c9:c1:65:31:b9:b2:30:d8:99:86:d5:63:c8: dc:62:be:f8:13:02:ff:9b:cc:45:f9:32:4b:ee:92: 21:82:5b:f3:da:19:0f:50:fd:1a:78:7e:f5:fd:f1: 12:2b:fa:9b:a4:a6:99:2b:05:22:b6:56:70:d7:cf: 39:10:ae:9c:68:8b:b7:be:45:a6:8b:71:8e:09:a9: 1f:40:52:25:6c:cf:ac:34:83:31:9a:32:83:63:14: 65:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:DE:79:ED:96:CE:F8:84:54:80:98:EC:48:0A:E2:3F:96:67:3F:8F X509v3 Authority Key Identifier: keyid:29:AD:B3:9B:62:0E:AE:3C:B8:AF:CA:2C:A1:85:F5:C4:87:6F:D0:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:42:b6:c5:41:9f:19:3a:62:dc:8c:71:b1:93:02:9c:0d:4f: 16:0d:da:26:5f:9b:3f:ba:7b:fd:71:68:c0:a2:c3:6d:b9:03: 6e:43:08:2d:6a:78:cb:84:a7:38:af:38:a4:6f:9f:77:8e:19: e0:f1:84:9c:ad:a9:06:c7:38:2e:67:24:e7:c8:f8:d7:b2:a2: 6b:b6:99:69:d2:9b:02:94:f6:ac:98:51:43:75:9c:b2:11:e5: 53:e4:4f:3a:6a:9d:a1:97:37:ff:14:e7:f0:2a:78:64:51:49: fa:55:fa:da:95:85:5b:a8:4c:33:70:93:16:36:d9:ce:6b:4c: a3:62:02:97:f0:e1:a5:8e:9d:23:6d:a0:c7:31:22:18:94:a4: 83:d6:60:37:c6:e1:ce:db:88:79:7d:9a:b7:ad:5a:9c:07:f2: 38:4b:2d:d8:1c:8e:0f:e6:5e:a6:f7:8d:50:be:99:1b:b1:fd: 97:1c:d9:ab:d4:ca:43:f5:0f:c0:33:2b:36:cc:81:8b:13:b0: b5:60:ec:ea:04:a3:71:7b:2f:ff:6c:38:6a:3a:1b:9e:f8:07: d6:e0:0e:69:d8:02:dd:e6:cb:66:0f:5b:e7:e9:a3:9e:bc:7b: 28:b9:70:fb:0d:cb:53:28:1e:bd:e8:23:d6:c9:8a:35:63:92: 0c:73:bf:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM5ODUxMTAvBgNVBAUTKDI5QURCMzlCNjIwRUFFM0NCOEFGQ0EyQ0ExODVGNUM0 ODc2RkQwNDMwHhcNMjUxMjIzMDUyMDA2WhcNMjUxMjMwMDUyMDA2WjAYMRYwFAYD VQQDDA02OTRhMjY4Ni00YTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmAoYZGb1FMR7hj9DZqsaPX+xXZuAC8coTIk8o2qpltWKDHMID04lmoIEslLI SYephjot43Rdsbf3/VL8cclclP7YHId13vdp90V8xDqLDTCTjRY5aWTqb7EXVEWM uQUzLHalmAZg0MUoby1X3nokAM27X8u0oUaEmYhqHxlz+g5o7BQEcd6Y7pgJ4k1a bJi/Wth/9B5SGu2m85khsY3hQvcrzphIwcnBZTG5sjDYmYbVY8jcYr74EwL/m8xF +TJL7pIhglvz2hkPUP0aeH71/fESK/qbpKaZKwUitlZw1885EK6caIu3vkWmi3GO CakfQFIlbM+sNIMxmjKDYxRlawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHTeee2W zviEVICY7EgK4j+WZz+PMB8GA1UdIwQYMBaAFCmts5tiDq48uK/KLKGF9cSHb9BD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzk4NS82NzNBQTJGNEY1 QjcxMUVGOEMxRkY2MTFDNEY5QUUwMi9LYTJ6bTJJT3JqeTRyOG9zb1lYMXhJZHYw RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0thMnptMklPcmp5NHI4b3NvWVgxeElkdjBFTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Qzk4NS82NzNBQTJGNEY1QjcxMUVGOEMxRkY2MTFDNEY5QUUwMi9LYTJ6bTJJT3Jq eTRyOG9zb1lYMXhJZHYwRU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEQrbFQZ8ZOmLcjHGxkwKcDU8WDdomX5s/unv9cWjAosNtuQNuQwgt anjLhKc4rzikb593jhng8YScrakGxzguZyTnyPjXsqJrtplp0psClPasmFFDdZyy EeVT5E86ap2hlzf/FOfwKnhkUUn6VfralYVbqEwzcJMWNtnOa0yjYgKX8OGljp0j baDHMSIYlKSD1mA3xuHO24h5fZq3rVqcB/I4Sy3YHI4P5l6m941Qvpkbsf2XHNmr 1MpD9Q/AMys2zIGLE7C1YOzqBKNxey//bDhqOhue+AfW4A5p2ALd5stmD1vn6aOe vHsouXD7DctTKB696CPWyYo1Y5IMc79z -----END CERTIFICATE-----Generated at Wed Dec 24 22:11:37 2025 by rpki-client