This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft File: knWZPcnEM_JdNYCsd-OV0GaWSD0.mft (raw, json) Hash identifier: iKdKKy4Q6ho2k0hwEcojJ8hVEezcGZiOGwm13ibrJ1E= Subject key identifier: 29:E1:CB:54:63:93:C4:0C:58:20:70:2E:DF:5F:0B:5F:AB:42:81:EB Authority key identifier: 92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D Certificate issuer: /CN=A91276A3/serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Certificate serial: 0748 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft Manifest number: 073F Signing time: Thu 04 Dec 2025 20:38:52 +0000 Manifest this update: Thu 04 Dec 2025 20:38:52 +0000 Manifest next update: Thu 11 Dec 2025 20:38:52 +0000 Files and hashes: 1: knWZPcnEM_JdNYCsd-OV0GaWSD0.crl (hash: NEGiClgveNuNec+kpoDghrRWhdgfiuS/x4tv6DH3V24=) 2: 57BAE77C517D11EB8949D438C4F9AE02.roa (hash: W8Pbilr3L/+CfQDONlD1s3S+g13SAXBwRt28BIl7t2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 20:38:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1864 (0x748) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91276A3, serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Validity Not Before: Dec 4 20:38:52 2025 GMT Not After : Dec 11 20:38:52 2025 GMT Subject: CN=6931f15c-be15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:12:38:de:0c:09:de:77:58:9d:cc:6e:6a:d2: 0b:ab:0b:87:0d:04:9a:9b:3b:fb:0f:ec:20:a2:7e: 35:e5:d4:c8:dc:c2:8f:83:d8:9d:d6:2e:d8:39:80: aa:d4:57:42:c0:fe:d5:f6:41:6e:3d:56:28:03:fc: 74:a5:57:f1:7d:d8:7f:60:63:4f:36:44:d3:6e:db: 0d:74:01:08:f8:38:81:68:5d:2f:f3:9c:8b:ef:c7: ec:ca:3f:49:63:ad:b3:b9:a6:0e:44:d4:2a:a6:18: c3:4a:7a:0c:1d:00:4b:08:6d:bd:43:e7:5a:a4:2d: af:6a:30:2b:bb:fd:de:8f:54:b0:49:f1:a9:cd:a5: 74:83:1a:84:7f:36:71:0f:15:c5:35:3c:da:78:d0: 80:f7:18:11:6f:b8:8f:c4:63:3f:a8:54:77:78:54: 52:cf:c5:3e:93:a9:9b:40:76:b1:59:02:16:9f:c3: b4:9d:b0:cc:e0:74:bd:26:6d:b2:29:16:bd:64:f4: 2e:d7:4f:12:dc:21:f4:b0:4e:1e:a4:ae:b1:b6:40: 86:42:bd:72:0f:db:d4:8a:32:f1:45:c5:fa:5a:d1: 6b:a4:e7:ff:b3:2e:6f:a3:b2:2c:11:26:3d:38:d1: c3:a2:0e:e5:31:84:69:62:c4:57:b7:0a:bd:59:d0: ad:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:E1:CB:54:63:93:C4:0C:58:20:70:2E:DF:5F:0B:5F:AB:42:81:EB X509v3 Authority Key Identifier: keyid:92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:a6:24:20:fb:f6:a7:66:ab:1c:c9:9b:00:ea:34:8b:5f:42: a5:da:e1:22:86:17:0a:9b:f8:d5:ae:98:c6:86:15:69:71:61: 8f:5d:38:96:38:1a:29:8b:ad:a5:85:69:5c:e1:fc:f4:1d:2a: 9e:6f:85:f0:00:09:0c:93:e9:10:22:c7:47:f1:aa:17:c8:31: 96:49:dd:53:6e:5e:16:a2:09:0f:28:48:82:16:d4:5b:ff:cb: 5c:ab:08:21:17:cd:bf:d3:f4:31:c0:c8:dc:3f:b6:37:6c:37: 3b:c8:03:d4:c6:61:66:69:b1:f6:71:15:a5:cb:ca:cc:7a:18: 96:5c:e0:60:8e:ac:ab:c1:f7:79:1c:34:a8:ee:b7:ec:b8:74: 3d:24:96:4a:d0:6d:93:26:5f:c8:94:87:07:62:20:c4:78:ad: 6c:42:e3:d3:03:a5:fb:fd:12:8e:3a:d0:8b:d6:f6:51:3a:8f: b5:a6:7d:dc:96:16:9e:34:cf:e9:f6:85:34:90:da:21:28:82: 3c:fc:0f:3f:02:63:1d:42:65:bf:72:13:d9:a6:48:7e:9f:1b: 62:95:63:28:fd:0c:0e:b1:30:e9:46:9f:58:17:1b:a3:5a:b6: 4d:2d:98:36:20:bd:a4:17:ff:e9:ba:dc:8c:4b:8e:eb:b5:b0: 82:a0:6b:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2QTMxMTAvBgNVBAUTKDkyNzU5OTNEQzlDNDMzRjI1RDM1ODBBQzc3RTM5NUQw NjY5NjQ4M0QwHhcNMjUxMjA0MjAzODUyWhcNMjUxMjExMjAzODUyWjAYMRYwFAYD VQQDEw02OTMxZjE1Yy1iZTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzRI43gwJ3ndYncxuatILqwuHDQSamzv7D+wgon415dTI3MKPg9id1i7YOYCq 1FdCwP7V9kFuPVYoA/x0pVfxfdh/YGNPNkTTbtsNdAEI+DiBaF0v85yL78fsyj9J Y62zuaYORNQqphjDSnoMHQBLCG29Q+dapC2vajAru/3ej1SwSfGpzaV0gxqEfzZx DxXFNTzaeNCA9xgRb7iPxGM/qFR3eFRSz8U+k6mbQHaxWQIWn8O0nbDM4HS9Jm2y KRa9ZPQu108S3CH0sE4epK6xtkCGQr1yD9vUijLxRcX6WtFrpOf/sy5vo7IsESY9 ONHDog7lMYRpYsRXtwq9WdCtzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCnhy1Rj k8QMWCBwLt9fC1+rQoHrMB8GA1UdIwQYMBaAFJJ1mT3JxDPyXTWArHfjldBmlkg9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzZBMy84MzIwQkQxQzUx N0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1fSmROWUNzZC1PVjBHYVdT RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tuV1pQY25FTV9KZE5ZQ3NkLU9WMEdhV1NEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzZBMy84MzIwQkQxQzUxN0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1f SmROWUNzZC1PVjBHYVdTRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqpiQg+/anZqscyZsA6jSLX0Kl2uEihhcKm/jVrpjGhhVpcWGPXTiW OBopi62lhWlc4fz0HSqeb4XwAAkMk+kQIsdH8aoXyDGWSd1Tbl4WogkPKEiCFtRb /8tcqwghF82/0/QxwMjcP7Y3bDc7yAPUxmFmabH2cRWly8rMehiWXOBgjqyrwfd5 HDSo7rfsuHQ9JJZK0G2TJl/IlIcHYiDEeK1sQuPTA6X7/RKOOtCL1vZROo+1pn3c lhaeNM/p9oU0kNohKII8/A8/AmMdQmW/chPZpkh+nxtilWMo/QwOsTDpRp9YFxuj WrZNLZg2IL2kF//putyMS47rtbCCoGtX -----END CERTIFICATE-----Generated at Sat Dec 6 17:08:07 2025 by rpki-client