This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft File: kDfAsp43CSqDhSzkuIW3dqfB47Y.mft (raw, json) Hash identifier: vX+qCXwSkeg7BwnswCEomypnXqJPuviQrJEAK6gDHA4= Subject key identifier: 40:08:E8:95:CB:A7:ED:63:F6:3E:CC:35:E6:0F:3A:08:D8:5A:7F:DD Authority key identifier: 90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 Certificate issuer: /CN=A91957D1/serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Certificate serial: 017D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft Manifest number: 0179 Signing time: Sun 07 Dec 2025 02:12:41 +0000 Manifest this update: Sun 07 Dec 2025 02:12:40 +0000 Manifest next update: Sun 14 Dec 2025 02:12:40 +0000 Files and hashes: 1: kDfAsp43CSqDhSzkuIW3dqfB47Y.crl (hash: d6SbY2C/ABXcECXbhQGFeWd42fKMEhYwCNcaMbbLWgA=) 2: 72CE4D80958411EEB3748B58C4F9AE02.roa (hash: GyK0WIBreUywAdxh5kO624MwwPbx0zTO9wpPeKdWbNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:24:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 381 (0x17d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957D1, serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Validity Not Before: Dec 7 02:12:40 2025 GMT Not After : Dec 14 02:12:40 2025 GMT Subject: CN=6934e298-b909 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ca:e2:90:23:a0:ee:31:85:7b:8d:d4:0e:33: 01:55:9e:6d:3b:5c:da:3e:bb:23:a3:e2:2c:90:85: 03:c5:b3:8c:9e:cf:50:5a:f4:f3:b9:42:73:4c:53: 69:45:60:9e:e8:9b:b7:09:9e:22:d2:de:d6:32:92: 6f:a9:98:25:ea:59:b6:e1:41:74:0b:e4:ae:60:78: b9:2c:5a:06:59:28:e4:82:f6:28:05:a9:4b:df:30: f2:3c:94:27:c6:de:21:bf:10:ad:0a:c3:6e:49:9e: 93:ee:3c:09:1f:13:02:1f:e3:5c:9c:3a:dc:8e:89: 62:fa:41:b0:21:cb:5c:a3:e7:30:30:69:0b:20:3d: d1:7c:60:bc:09:b6:e8:0d:7c:97:f7:76:75:31:7c: 0b:08:c0:5c:43:fd:57:f8:c6:fc:d1:6f:30:10:4d: b2:3b:9f:94:6d:f4:9b:a7:f5:f5:fe:ce:77:ae:9c: f4:87:dc:3f:fc:d3:18:0f:3d:f3:4f:61:2c:16:03: c7:33:0d:31:63:63:a8:63:a5:17:47:88:8b:b2:f7: e0:b5:f6:43:05:ec:5b:e4:45:e6:57:79:42:f0:78: 88:4c:66:d0:07:a8:aa:57:dd:4b:c9:e3:82:37:12: 6f:79:79:e2:18:bc:f6:18:43:be:95:49:e4:66:cd: a4:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:08:E8:95:CB:A7:ED:63:F6:3E:CC:35:E6:0F:3A:08:D8:5A:7F:DD X509v3 Authority Key Identifier: keyid:90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:29:40:bb:e5:1e:ca:16:c4:b1:c6:b1:85:8c:9d:a6:de:f5: 9e:fa:72:39:d1:51:1d:fa:c2:08:5f:5c:3b:c2:41:69:bc:a3: 8e:65:d1:2b:7e:00:e9:91:59:0f:2d:2f:8f:45:7d:ed:78:23: 00:6e:e2:08:9f:89:24:d8:90:c4:e6:f6:45:15:e2:ac:33:c7: 32:69:a7:83:96:0a:46:4e:ad:a0:d1:bf:01:a8:ea:e0:68:c6: 4a:2e:c6:06:86:be:58:fc:85:3a:de:2c:b1:a6:2d:5e:31:29: b5:2a:52:26:03:60:8d:a4:38:3b:0d:ce:76:3a:1c:22:d5:2f: cb:f5:8f:f2:db:49:ac:77:25:e4:74:fd:ff:2a:ee:03:f3:32: 52:93:2f:7b:cc:bd:f2:7f:96:1f:96:1f:d0:90:90:81:b2:09: 4c:57:c3:32:21:e8:ae:7d:80:98:fc:6e:df:0a:ba:9e:c8:78: 7f:b2:67:a3:99:61:e9:51:a6:e0:a4:60:75:42:68:84:b4:a3: db:00:51:a2:18:7f:68:14:ca:db:20:a0:39:87:1d:04:20:68: 6c:a3:ca:6c:ec:76:95:de:16:f7:fe:5e:cd:43:10:3c:61:65: c2:c1:c9:26:09:e7:80:44:7c:6c:23:e8:3c:ff:c1:00:62:26: 22:22:e4:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU3RDExMTAvBgNVBAUTKDkwMzdDMEIyOUUzNzA5MkE4Mzg1MkNFNEI4ODVCNzc2 QTdDMUUzQjYwHhcNMjUxMjA3MDIxMjQwWhcNMjUxMjE0MDIxMjQwWjAYMRYwFAYD VQQDEw02OTM0ZTI5OC1iOTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA18rikCOg7jGFe43UDjMBVZ5tO1zaPrsjo+IskIUDxbOMns9QWvTzuUJzTFNp RWCe6Ju3CZ4i0t7WMpJvqZgl6lm24UF0C+SuYHi5LFoGWSjkgvYoBalL3zDyPJQn xt4hvxCtCsNuSZ6T7jwJHxMCH+NcnDrcjoli+kGwIctco+cwMGkLID3RfGC8Cbbo DXyX93Z1MXwLCMBcQ/1X+Mb80W8wEE2yO5+UbfSbp/X1/s53rpz0h9w//NMYDz3z T2EsFgPHMw0xY2OoY6UXR4iLsvfgtfZDBexb5EXmV3lC8HiITGbQB6iqV91LyeOC NxJveXniGLz2GEO+lUnkZs2kxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEAI6JXL p+1j9j7MNeYPOgjYWn/dMB8GA1UdIwQYMBaAFJA3wLKeNwkqg4Us5LiFt3anweO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTdEMS9GMDUzNzc5NDkz QkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NTcURoU3prdUlXM2RxZkI0 N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEZkFzcDQzQ1NxRGhTemt1SVczZHFmQjQ3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTdEMS9GMDUzNzc5NDkzQkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NT cURoU3prdUlXM2RxZkI0N1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVKUC75R7KFsSxxrGFjJ2m3vWe+nI50VEd+sIIX1w7wkFpvKOOZdEr fgDpkVkPLS+PRX3teCMAbuIIn4kk2JDE5vZFFeKsM8cyaaeDlgpGTq2g0b8BqOrg aMZKLsYGhr5Y/IU63iyxpi1eMSm1KlImA2CNpDg7Dc52Ohwi1S/L9Y/y20msdyXk dP3/Ku4D8zJSky97zL3yf5Yflh/QkJCBsglMV8MyIeiufYCY/G7fCrqeyHh/smej mWHpUabgpGB1QmiEtKPbAFGiGH9oFMrbIKA5hx0EIGhso8ps7HaV3hb3/l7NQxA8 YWXCwckmCeeARHxsI+g8/8EAYiYiIuTh -----END CERTIFICATE-----Generated at Sun Dec 7 03:42:58 2025 by rpki-client