This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft File: kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft (raw, json) Hash identifier: Sdca3beboiQqSU+f0E5bH6o7dQ+b17lNiHSqPgKp+Uc= Subject key identifier: B3:DD:5F:22:1C:C3:C5:35:E2:CF:2A:EF:F2:2B:EC:A5:0F:BA:CF:02 Authority key identifier: 91:17:6D:16:9C:42:F0:3D:95:28:2B:BB:A2:04:C4:E4:4D:31:ED:09 Certificate issuer: /CN=A91FF5B9/serialNumber=91176D169C42F03D95282BBBA204C4E44D31ED09 Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft Manifest number: 90 Signing time: Sun 21 Dec 2025 05:41:41 +0000 Manifest this update: Sun 21 Dec 2025 05:41:40 +0000 Manifest next update: Sun 28 Dec 2025 05:41:40 +0000 Files and hashes: 1: kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl (hash: z/zrWKi/hY8qfMTlbKCYgKAHqFbcw4TQ8aOCXj280FU=) 2: E658E72CB4A611F08CEAB576C4F9AE02.roa (hash: 3K0DVSQ88H0vE5ErqZjrHuBFz3ioSOB+/QcjArPUvp0=) 3: DA700744185511F09304D972C4F9AE02.roa (hash: MiqFluIC5BNSTT1867bwbDdwUanVh/INLvZrWpn+wqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 05:41:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5B9, serialNumber=91176D169C42F03D95282BBBA204C4E44D31ED09 Validity Not Before: Dec 21 05:41:40 2025 GMT Not After : Dec 28 05:41:40 2025 GMT Subject: CN=69478895-48bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:8c:59:6b:48:65:ee:2e:12:7d:a8:24:8c:8b: cf:0f:0e:5f:ea:8c:32:21:4b:a7:7b:b1:79:5f:c3: 5a:e8:0d:06:18:80:4a:c2:21:d9:9a:75:76:19:e8: d9:49:16:5e:1e:8e:86:5d:27:32:94:e1:15:0b:8c: 8e:fd:a2:80:97:43:07:67:1c:32:3e:c7:34:32:be: d4:07:9f:98:04:9e:b2:6b:1a:ad:57:80:2d:21:47: 65:7e:3e:e3:ff:2f:eb:a7:a3:b2:82:26:d1:52:be: ed:70:ef:0f:48:82:e0:ce:5a:36:68:fc:32:2c:1e: 30:30:5e:4d:e0:d4:a1:af:5a:96:2a:30:74:13:7e: ab:2d:60:8a:96:c7:26:eb:ce:c0:e2:d6:d6:e6:76: 10:2d:d5:13:42:97:97:c4:97:56:cd:dc:aa:9a:b0: 10:38:e6:fb:d6:3a:c0:c7:be:22:da:ee:3e:70:11: 05:a1:22:cf:77:79:61:1e:cc:e1:c6:2b:ee:9a:8e: e4:76:f9:e2:ab:d2:be:10:32:3a:17:4f:87:79:34: a8:50:98:a5:05:f7:85:2c:c2:99:cb:9d:1b:e8:74: 8c:e8:e5:11:06:bc:42:21:9d:2e:f1:e0:80:83:00: 10:fb:b6:60:18:a6:bc:52:a0:08:96:6f:42:51:4b: f8:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:DD:5F:22:1C:C3:C5:35:E2:CF:2A:EF:F2:2B:EC:A5:0F:BA:CF:02 X509v3 Authority Key Identifier: keyid:91:17:6D:16:9C:42:F0:3D:95:28:2B:BB:A2:04:C4:E4:4D:31:ED:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:db:8c:b0:de:ee:50:45:81:f2:d9:ec:3b:1b:7f:d0:05:86: f3:cb:ef:4f:54:1d:68:88:7f:c0:c6:0f:5e:d4:47:b0:f0:58: 69:34:6a:2d:34:af:ef:9e:73:98:33:eb:b2:9c:59:ad:48:82: 82:5b:a2:99:45:71:fc:7d:9c:2d:68:04:c1:0e:d4:6b:27:2a: af:17:3d:bd:20:55:82:5f:05:8e:e0:60:38:cb:22:f4:6d:ea: 1c:6b:d0:ca:78:6d:12:72:4a:29:98:32:6d:64:21:77:ae:97: f9:b9:35:87:17:60:cc:5a:38:e5:fc:75:67:14:5b:a6:fe:99: 0f:15:ae:46:86:d0:75:96:c0:bc:2a:ab:c3:0e:02:22:6e:ad: 81:aa:e8:9e:15:e9:57:a6:88:54:53:ea:a9:c0:19:97:fe:ab: 02:67:6e:3f:2c:27:f8:78:b3:7f:12:16:ec:c5:00:6f:7d:85: fd:f0:f6:f2:46:eb:74:87:4b:5b:02:36:2f:92:9d:db:20:23: 04:b2:83:be:a5:5e:bd:8d:b9:1a:b8:05:e2:76:50:32:6b:07: 9d:55:a4:8a:e6:d6:5c:e3:bc:e7:a2:4d:fd:24:6f:d2:61:29: e0:9c:88:7e:b3:63:16:8e:1d:b8:4f:c8:d7:0b:7f:6a:5c:09: ee:b2:d9:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1QjkxMTAvBgNVBAUTKDkxMTc2RDE2OUM0MkYwM0Q5NTI4MkJCQkEyMDRDNEU0 NEQzMUVEMDkwHhcNMjUxMjIxMDU0MTQwWhcNMjUxMjI4MDU0MTQwWjAYMRYwFAYD VQQDDA02OTQ3ODg5NS00OGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0YxZa0hl7i4SfagkjIvPDw5f6owyIUune7F5X8Na6A0GGIBKwiHZmnV2GejZ SRZeHo6GXScylOEVC4yO/aKAl0MHZxwyPsc0Mr7UB5+YBJ6yaxqtV4AtIUdlfj7j /y/rp6OygibRUr7tcO8PSILgzlo2aPwyLB4wMF5N4NShr1qWKjB0E36rLWCKlscm 687A4tbW5nYQLdUTQpeXxJdWzdyqmrAQOOb71jrAx74i2u4+cBEFoSLPd3lhHszh xivumo7kdvniq9K+EDI6F0+HeTSoUJilBfeFLMKZy50b6HSM6OURBrxCIZ0u8eCA gwAQ+7ZgGKa8UqAIlm9CUUv4LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLPdXyIc w8U14s8q7/Ir7KUPus8CMB8GA1UdIwQYMBaAFJEXbRacQvA9lSgru6IExORNMe0J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVCOS81MjAyRDAyODBE RjkxMUYwOEU2RTc2MkFDNEY5QUUwMi9rUmR0RnB4QzhEMlZLQ3U3b2dURTVFMHg3 UWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tSZHRGcHhDOEQyVktDdTdvZ1RFNUUweDdRay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVCOS81MjAyRDAyODBERjkxMUYwOEU2RTc2MkFDNEY5QUUwMi9rUmR0RnB4QzhE MlZLQ3U3b2dURTVFMHg3UWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCW24yw3u5QRYHy2ew7G3/QBYbzy+9PVB1oiH/Axg9e1Eew8FhpNGot NK/vnnOYM+uynFmtSIKCW6KZRXH8fZwtaATBDtRrJyqvFz29IFWCXwWO4GA4yyL0 beoca9DKeG0SckopmDJtZCF3rpf5uTWHF2DMWjjl/HVnFFum/pkPFa5GhtB1lsC8 KqvDDgIibq2BquieFelXpohUU+qpwBmX/qsCZ24/LCf4eLN/EhbsxQBvfYX98Pby Rut0h0tbAjYvkp3bICMEsoO+pV69jbkauAXidlAyawedVaSK5tZc47znok39JG/S YSngnIh+s2MWjh24T8jXC39qXAnustnG -----END CERTIFICATE-----Generated at Sun Dec 21 12:19:25 2025 by rpki-client