This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft File: 2kcnine73_Ktn5igEaKnoufNYNg.mft (raw, json) Hash identifier: CY1f9bF6dv3zjpIwJsuAam8QWUknJ2uySw1jbWYaVCk= Subject key identifier: 66:9B:9B:25:87:1B:4A:EB:07:2E:0F:44:70:50:4D:E2:CE:92:97:CE Authority key identifier: DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 Certificate issuer: /CN=A91393BE/serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Certificate serial: FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft Manifest number: FB Signing time: Fri 05 Dec 2025 03:11:18 +0000 Manifest this update: Fri 05 Dec 2025 03:11:17 +0000 Manifest next update: Fri 12 Dec 2025 03:11:17 +0000 Files and hashes: 1: 2kcnine73_Ktn5igEaKnoufNYNg.crl (hash: bb/knKU5gsAp1n1ROlUt3CdO9YKUW1kP+k5TJ+tQusw=) 2: 05A966C652DB11EF990CB840C4F9AE02.roa (hash: uXZnZkbG2vzbvvdgakCXJGAe3jQgXul+4/g2eod9UgM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:11:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 254 (0xfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91393BE, serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Validity Not Before: Dec 5 03:11:17 2025 GMT Not After : Dec 12 03:11:17 2025 GMT Subject: CN=69324d56-31f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:44:0b:85:e4:5b:dd:7f:bf:b1:9f:08:fb:8b: 2c:7d:d3:c4:e0:32:56:5f:09:a9:e0:90:ce:5b:b8: dd:88:4d:87:15:d1:bf:a1:60:4d:38:79:54:ee:8c: 61:23:ca:f6:a4:d3:29:d3:f9:6c:7f:87:cc:f5:bd: 18:99:43:68:32:b8:4b:6f:c3:38:fd:83:40:ef:d6: 5b:fb:f8:ac:fd:cd:3d:c3:70:2c:cf:f7:29:1f:0a: 24:de:a4:bf:b4:fa:9d:7d:e6:c6:bd:97:26:6d:66: be:07:01:74:d8:f6:ae:46:e8:ca:5f:71:b6:96:dc: 23:60:e3:db:4f:1c:48:e8:ab:26:c9:b4:df:63:ae: 5d:3a:7c:bf:36:53:05:7e:c4:9f:45:0c:b5:8c:5c: 28:34:a0:a3:1b:47:6b:f2:5b:af:83:8f:d7:c0:5c: fe:6e:bb:7c:87:fe:e9:36:bb:18:ae:58:ed:32:88: cf:18:27:9a:44:37:41:d0:4a:9e:51:4c:ea:70:55: 58:a8:57:84:21:a0:72:a1:b5:33:b7:6a:5a:af:04: 06:57:b2:0b:a6:09:6a:a9:f9:6a:78:6f:bb:cb:ca: c5:89:80:cb:e4:04:91:dc:77:92:39:a7:0d:e9:6c: eb:69:09:23:bd:05:a1:41:0c:ed:7a:22:f2:d3:eb: 12:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:9B:9B:25:87:1B:4A:EB:07:2E:0F:44:70:50:4D:E2:CE:92:97:CE X509v3 Authority Key Identifier: keyid:DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:27:13:7f:24:c5:a5:e9:4a:49:5d:76:4e:2a:95:8e:91:c3: 2d:0e:f9:0f:a6:43:4a:72:30:b1:4f:f3:b7:76:b7:2e:ad:48: c6:a2:66:8e:85:8a:fb:09:e6:e4:18:5e:fe:47:87:1b:33:f8: ab:6d:a0:11:1a:d8:be:79:9a:45:c0:2d:02:79:b9:e6:7b:7b: 74:10:bd:ac:01:2a:7a:75:7e:02:e4:ef:98:e6:67:24:d7:a8: 25:c2:24:14:13:40:2e:0e:60:c2:3e:52:c8:91:cd:86:b0:30: 53:ba:f6:f4:b0:e9:b2:d6:96:bd:be:08:26:94:15:e4:47:be: 5c:bc:d0:7e:81:8f:8c:34:e9:aa:64:5b:6c:70:80:2c:ee:ab: 5d:fa:27:34:bf:69:62:83:56:ef:38:99:93:71:ee:24:63:fe: d2:08:9e:ca:52:cd:f9:90:d5:7e:7c:a7:52:11:6b:63:a7:46: e5:50:39:09:d7:2a:57:18:3e:00:66:9b:f6:eb:73:a7:f5:bc: 8d:9d:ef:94:8a:da:b9:66:de:63:4a:83:b9:e5:5d:0e:f5:6f: 6a:06:9f:a8:bb:22:72:a6:86:95:96:0b:e3:2e:15:d9:1a:12: c2:89:68:5d:4e:4c:c8:7b:25:6d:ff:16:ac:31:4e:39:db:ca: 0c:14:39:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzQkUxMTAvBgNVBAUTKERBNDcyNzhBNzdCQkRGRjJBRDlGOThBMDExQTJBN0Ey RTdDRDYwRDgwHhcNMjUxMjA1MDMxMTE3WhcNMjUxMjEyMDMxMTE3WjAYMRYwFAYD VQQDEw02OTMyNGQ1Ni0zMWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4EQLheRb3X+/sZ8I+4ssfdPE4DJWXwmp4JDOW7jdiE2HFdG/oWBNOHlU7oxh I8r2pNMp0/lsf4fM9b0YmUNoMrhLb8M4/YNA79Zb+/is/c09w3Asz/cpHwok3qS/ tPqdfebGvZcmbWa+BwF02PauRujKX3G2ltwjYOPbTxxI6KsmybTfY65dOny/NlMF fsSfRQy1jFwoNKCjG0dr8luvg4/XwFz+brt8h/7pNrsYrljtMojPGCeaRDdB0Eqe UUzqcFVYqFeEIaByobUzt2parwQGV7ILpglqqflqeG+7y8rFiYDL5ASR3HeSOacN 6WzraQkjvQWhQQzteiLy0+sSawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGabmyWH G0rrBy4PRHBQTeLOkpfOMB8GA1UdIwQYMBaAFNpHJ4p3u9/yrZ+YoBGip6LnzWDY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTNCRS83NzQxNjE0QzUy RDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNfS3RuNWlnRWFLbm91Zk5Z TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY25pbmU3M19LdG41aWdFYUtub3VmTllOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTNCRS83NzQxNjE0QzUyRDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNf S3RuNWlnRWFLbm91Zk5ZTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKJxN/JMWl6UpJXXZOKpWOkcMtDvkPpkNKcjCxT/O3drcurUjGomaO hYr7CebkGF7+R4cbM/irbaARGti+eZpFwC0Cebnme3t0EL2sASp6dX4C5O+Y5mck 16glwiQUE0AuDmDCPlLIkc2GsDBTuvb0sOmy1pa9vggmlBXkR75cvNB+gY+MNOmq ZFtscIAs7qtd+ic0v2lig1bvOJmTce4kY/7SCJ7KUs35kNV+fKdSEWtjp0blUDkJ 1ypXGD4AZpv263On9byNne+Uitq5Zt5jSoO55V0O9W9qBp+ouyJypoaVlgvjLhXZ GhLCiWhdTkzIeyVt/xasMU4528oMFDlj -----END CERTIFICATE-----Generated at Sun Dec 7 01:53:44 2025 by rpki-client