This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft File: kI54kDTxhBXYdZwmo0brgQ71pBU.mft (raw, json) Hash identifier: 7AOMhohoBhaOOQwDHw3vy1HOxBlKsudqQUtYp82zihg= Subject key identifier: 22:A9:4A:ED:09:EF:39:45:9D:4C:68:04:DB:36:5F:47:07:77:BA:02 Authority key identifier: 90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 Certificate issuer: /CN=A911B4ED/serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Certificate serial: 01D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft Manifest number: 01CE Signing time: Sun 07 Dec 2025 01:21:22 +0000 Manifest this update: Sun 07 Dec 2025 01:21:21 +0000 Manifest next update: Sun 14 Dec 2025 01:21:21 +0000 Files and hashes: 1: kI54kDTxhBXYdZwmo0brgQ71pBU.crl (hash: XR0S+MNMw1Fnrn19df/sEd6eSTOqa2eUX1HLxvzGOpg=) 2: 86A2CEB60F3E11EEA4C55465C4F9AE02.roa (hash: feRFh9Ht2rEY2jS2ePhZA2T4F0vbXp37hvleoPM6Wus=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 01:21:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 466 (0x1d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B4ED, serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Validity Not Before: Dec 7 01:21:21 2025 GMT Not After : Dec 14 01:21:21 2025 GMT Subject: CN=6934d692-2ffc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:76:ec:93:19:5a:13:66:65:6b:5e:6a:ea:e3: f5:43:c2:58:a2:82:f5:27:16:ab:13:18:6e:ab:a2: 95:42:dd:ca:6a:ad:8b:30:64:e1:5e:70:b5:21:ca: 0a:54:d3:e5:7f:5e:32:aa:f6:3c:91:49:e9:d3:e4: 5c:7c:b8:83:08:6d:3a:02:36:38:59:cb:23:d1:40: 6e:bc:1e:72:1c:4c:56:81:db:61:8f:c0:d9:b0:8a: 55:88:ce:74:37:a2:f4:80:ca:9f:6b:b2:65:01:d6: 3b:c1:bb:b6:6b:ed:7c:13:e3:16:e5:e2:e4:96:fe: b3:ee:6a:30:3b:94:63:f0:11:b9:3d:83:05:3f:69: b2:05:b6:d2:c3:93:92:bc:1a:a4:dd:6b:ae:9d:2a: 07:f8:3b:4a:8d:08:aa:3a:0a:3a:51:85:63:83:f7: 6e:b6:b3:62:73:d5:3f:8f:7a:5f:26:c3:e9:c1:a6: 4f:e2:7f:f0:b9:a8:e6:ae:4c:09:ba:50:d9:71:a7: d9:d8:42:a4:04:79:f3:ff:ae:a9:10:82:9d:50:b7: a4:0b:d5:ad:88:c9:9c:6c:29:68:49:81:93:a3:da: eb:6c:b2:0e:fd:81:f8:23:3a:77:e7:b6:44:53:9c: 0b:cb:82:6e:99:c2:e6:b5:19:b3:fd:88:83:8c:e7: 42:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:A9:4A:ED:09:EF:39:45:9D:4C:68:04:DB:36:5F:47:07:77:BA:02 X509v3 Authority Key Identifier: keyid:90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:6d:37:29:51:34:91:1d:d1:f3:60:b5:3c:29:97:98:54:12: 84:2b:a1:1e:9b:7d:2e:83:a0:d4:9a:65:df:2b:27:e3:31:6c: 6e:3f:8f:a0:d8:7c:52:7e:be:aa:93:1a:7f:40:1c:c0:25:2d: 49:70:9c:c0:28:43:72:4a:39:6e:aa:99:e3:c8:08:aa:9d:89: 07:1f:d5:05:22:79:be:0c:cd:f5:7c:15:04:e4:8a:6a:6e:88: 26:9d:86:d5:67:c3:59:e3:b4:c5:ec:c2:ba:6e:31:95:47:b7: 5b:74:bf:a7:c2:11:cc:b7:7f:1a:67:72:36:27:98:b1:72:22: 29:1f:86:84:ae:31:d5:3b:a8:a1:77:e7:50:2e:76:dc:fa:37: 01:ce:59:2f:2c:22:cd:41:ee:1d:ce:ff:cd:1b:ab:40:12:12: 7d:3c:f9:fe:2d:d1:3b:58:f6:f0:e1:5e:84:95:eb:5b:57:0e: 5b:e5:c5:99:3d:1b:66:55:26:eb:07:81:7d:70:54:18:18:51: 83:cc:67:89:a9:d5:af:9a:9e:36:8c:5b:dd:85:44:f9:b2:f5: eb:df:59:f7:ca:44:91:be:45:09:de:73:c3:a5:cf:80:ba:59: b3:6b:15:f4:5a:fe:88:e4:75:d7:bf:7e:fc:a3:cc:b5:73:62: 5a:3e:74:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0RUQxMTAvBgNVBAUTKDkwOEU3ODkwMzRGMTg0MTVEODc1OUMyNkEzNDZFQjgx MEVGNUE0MTUwHhcNMjUxMjA3MDEyMTIxWhcNMjUxMjE0MDEyMTIxWjAYMRYwFAYD VQQDEw02OTM0ZDY5Mi0yZmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3bskxlaE2Zla15q6uP1Q8JYooL1JxarExhuq6KVQt3Kaq2LMGThXnC1IcoK VNPlf14yqvY8kUnp0+RcfLiDCG06AjY4Wcsj0UBuvB5yHExWgdthj8DZsIpViM50 N6L0gMqfa7JlAdY7wbu2a+18E+MW5eLklv6z7mowO5Rj8BG5PYMFP2myBbbSw5OS vBqk3WuunSoH+DtKjQiqOgo6UYVjg/dutrNic9U/j3pfJsPpwaZP4n/wuajmrkwJ ulDZcafZ2EKkBHnz/66pEIKdULekC9WtiMmcbCloSYGTo9rrbLIO/YH4Izp357ZE U5wLy4JumcLmtRmz/YiDjOdChwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCKpSu0J 7zlFnUxoBNs2X0cHd7oCMB8GA1UdIwQYMBaAFJCOeJA08YQV2HWcJqNG64EO9aQV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjRFRC9GQTRCMEFDNDBG MzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhCWFlkWndtbzBicmdRNzFw QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJNTRrRFR4aEJYWWRad21vMGJyZ1E3MXBCVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjRFRC9GQTRCMEFDNDBGMzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhC WFlkWndtbzBicmdRNzFwQlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHbTcpUTSRHdHzYLU8KZeYVBKEK6Eem30ug6DUmmXfKyfjMWxuP4+g 2HxSfr6qkxp/QBzAJS1JcJzAKENySjluqpnjyAiqnYkHH9UFInm+DM31fBUE5Ipq bogmnYbVZ8NZ47TF7MK6bjGVR7dbdL+nwhHMt38aZ3I2J5ixciIpH4aErjHVO6ih d+dQLnbc+jcBzlkvLCLNQe4dzv/NG6tAEhJ9PPn+LdE7WPbw4V6EletbVw5b5cWZ PRtmVSbrB4F9cFQYGFGDzGeJqdWvmp42jFvdhUT5svXr31n3ykSRvkUJ3nPDpc+A ulmzaxX0Wv6I5HXXv378o8y1c2JaPnRz -----END CERTIFICATE-----Generated at Sun Dec 7 08:13:28 2025 by rpki-client