This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft File: K5XY2CKKiRR9gBk9l3DrUK7du2s.mft (raw, json) Hash identifier: OHSWQJyUyheTnCWD6fPm2p/PUCwNFlKMF7tqZEikLjk= Subject key identifier: 1B:AD:F7:3D:AE:CC:80:7D:E3:D3:B7:CD:64:91:A2:2D:97:08:2A:96 Authority key identifier: 2B:95:D8:D8:22:8A:89:14:7D:80:19:3D:97:70:EB:50:AE:DD:BB:6B Certificate issuer: /CN=A91FF5A9/serialNumber=2B95D8D8228A89147D80193D9770EB50AEDDBB6B Certificate serial: 1728 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft Manifest number: 170F Signing time: Thu 18 Dec 2025 16:29:12 +0000 Manifest this update: Thu 18 Dec 2025 16:29:12 +0000 Manifest next update: Thu 25 Dec 2025 16:29:12 +0000 Files and hashes: 1: K5XY2CKKiRR9gBk9l3DrUK7du2s.crl (hash: M6vA72zscH1tgDuZZ28h7hYZC6OeuUXKGwGnhlSo94A=) 2: 07D665E0862711EBAC147872C4F9AE02.roa (hash: h1jWRhCaXCGscugt7m7NPkJTh1NUHltfWypGJXiPwZw=) 3: F9E21144D90F11EDB2DBEA49C4F9AE02.roa (hash: fP45NGSHNvdQShMBiD1rePe2Esz9p+VlDQo2vfi2cz0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.crl rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 16:29:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5928 (0x1728) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5A9, serialNumber=2B95D8D8228A89147D80193D9770EB50AEDDBB6B Validity Not Before: Dec 18 16:29:12 2025 GMT Not After : Dec 25 16:29:12 2025 GMT Subject: CN=69442bd8-bd7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ea:fd:3a:dd:96:a9:c3:2e:9e:07:b4:7b:62: 45:ae:98:1c:a3:53:81:56:ab:70:2f:92:46:1a:a9: b4:67:b3:88:94:d1:1b:a6:9f:3a:26:99:d7:c5:6c: 13:a3:57:df:b4:54:16:24:7c:40:24:0e:02:62:8f: ef:02:79:1a:4c:5f:e2:20:3e:42:9b:3d:a7:ed:e7: 6d:c5:81:ae:3d:9b:55:a1:d1:b0:30:fe:70:0f:3f: b9:f9:9f:cf:0c:f6:6c:66:79:4d:06:0e:b6:94:ac: 89:be:95:56:eb:e9:9b:72:e7:02:d9:0e:23:83:9e: aa:62:e7:86:cf:08:ac:b1:9b:b1:99:6b:b3:6d:9f: 9d:fc:3b:64:09:14:01:8c:82:00:41:f8:25:d9:49: 83:d5:eb:e4:fb:db:f9:64:49:c7:50:d2:af:e2:e6: e1:14:f6:da:39:33:73:7a:c1:c4:cf:cd:61:7a:79: 21:10:e5:d9:78:a9:f6:b1:3a:f4:5c:e3:dd:e2:f8: 2c:5c:3b:e0:e9:73:34:5d:96:a8:47:f5:7e:ec:0a: 2e:ce:b1:b8:59:51:d3:49:47:35:b9:40:0b:a2:53: 34:cb:91:97:1e:3a:d5:2c:63:55:fa:51:40:42:1d: b3:75:36:d8:5e:7c:0a:ea:2b:b2:e6:8d:46:77:ae: f2:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:AD:F7:3D:AE:CC:80:7D:E3:D3:B7:CD:64:91:A2:2D:97:08:2A:96 X509v3 Authority Key Identifier: keyid:2B:95:D8:D8:22:8A:89:14:7D:80:19:3D:97:70:EB:50:AE:DD:BB:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:63:c2:7f:4f:fa:b1:53:18:84:4a:52:b7:b2:99:4b:6c:8a: 35:44:21:bf:fe:48:cb:af:e2:a0:3e:9f:36:4a:86:e9:f6:40: f1:7c:70:c0:e0:7f:78:cb:29:6b:49:8c:5c:4c:e8:25:e6:94: f0:59:cd:ed:8f:8d:fe:1e:f3:39:c3:1f:09:a4:3d:d9:99:e6: eb:01:44:21:58:25:28:6c:2f:ff:c2:93:15:88:44:42:af:38: 69:e6:14:44:41:14:0f:a0:81:79:27:09:66:ba:72:01:58:42: f2:9a:8d:9a:6e:61:7e:8b:17:e7:d3:13:2f:82:3c:40:a3:ce: d7:31:48:f0:19:a8:ac:fc:b3:6e:9b:76:3c:2a:5a:59:31:f1: 08:87:4e:37:ad:c1:25:cb:3e:7b:eb:ec:57:e2:f7:b0:92:91: 74:83:19:22:ef:b8:9d:58:77:31:a3:80:7f:51:d0:7d:b4:dc: 47:1d:5a:8f:c4:c3:d0:c0:f6:95:0c:19:59:a4:17:a8:66:8e: c4:d0:d7:95:e0:b8:9d:74:48:5d:39:3a:4d:8b:53:7f:e3:5e: 69:c3:f1:a2:a5:af:2f:9b:75:1d:f8:d0:0a:e1:6d:c8:a3:15: 91:4c:2c:d3:66:52:24:f8:5b:38:ba:65:38:f5:36:65:74:ef: 43:19:c1:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFygwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1QTkxMTAvBgNVBAUTKDJCOTVEOEQ4MjI4QTg5MTQ3RDgwMTkzRDk3NzBFQjUw QUVEREJCNkIwHhcNMjUxMjE4MTYyOTEyWhcNMjUxMjI1MTYyOTEyWjAYMRYwFAYD VQQDDA02OTQ0MmJkOC1iZDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApur9Ot2WqcMunge0e2JFrpgco1OBVqtwL5JGGqm0Z7OIlNEbpp86JpnXxWwT o1fftFQWJHxAJA4CYo/vAnkaTF/iID5Cmz2n7edtxYGuPZtVodGwMP5wDz+5+Z/P DPZsZnlNBg62lKyJvpVW6+mbcucC2Q4jg56qYueGzwissZuxmWuzbZ+d/DtkCRQB jIIAQfgl2UmD1evk+9v5ZEnHUNKv4ubhFPbaOTNzesHEz81henkhEOXZeKn2sTr0 XOPd4vgsXDvg6XM0XZaoR/V+7AouzrG4WVHTSUc1uUALolM0y5GXHjrVLGNV+lFA Qh2zdTbYXnwK6iuy5o1Gd67y9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBut9z2u zIB949O3zWSRoi2XCCqWMB8GA1UdIwQYMBaAFCuV2NgiiokUfYAZPZdw61Cu3btr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVBOS8wMEI3MTUxQ0ZE MDgxMUU3QTQyOEZGMEZDNEY5QUUwMi9LNVhZMkNLS2lSUjlnQms5bDNEclVLN2R1 MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s1WFkyQ0tLaVJSOWdCazlsM0RyVUs3ZHUycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVBOS8wMEI3MTUxQ0ZEMDgxMUU3QTQyOEZGMEZDNEY5QUUwMi9LNVhZMkNLS2lS UjlnQms5bDNEclVLN2R1MnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFY8J/T/qxUxiESlK3splLbIo1RCG//kjLr+KgPp82Sobp9kDxfHDA 4H94yylrSYxcTOgl5pTwWc3tj43+HvM5wx8JpD3ZmebrAUQhWCUobC//wpMViERC rzhp5hREQRQPoIF5JwlmunIBWELymo2abmF+ixfn0xMvgjxAo87XMUjwGais/LNu m3Y8KlpZMfEIh043rcElyz576+xX4vewkpF0gxki77idWHcxo4B/UdB9tNxHHVqP xMPQwPaVDBlZpBeoZo7E0NeV4LiddEhdOTpNi1N/415pw/Gipa8vm3Ud+NAK4W3I oxWRTCzTZlIk+Fs4umU49TZldO9DGcEY -----END CERTIFICATE-----Generated at Fri Dec 19 19:10:17 2025 by rpki-client