This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft File: KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft (raw, json) Hash identifier: IXfZ0I8OdQ2ljxLYt6Y9TCNfv34aTJT6EPCACFa/iyo= Subject key identifier: C4:29:08:67:8C:8C:B2:62:60:B4:6D:A7:59:8F:74:F4:9B:1B:68:A3 Authority key identifier: 2A:45:A4:1D:60:E2:F1:04:D3:DD:39:C8:6F:14:BC:59:00:88:3F:4B Certificate issuer: /CN=A91A4287/serialNumber=2A45A41D60E2F104D3DD39C86F14BC5900883F4B Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft Manifest number: 87 Signing time: Sun 07 Dec 2025 04:45:20 +0000 Manifest this update: Sun 07 Dec 2025 04:45:20 +0000 Manifest next update: Sun 14 Dec 2025 04:45:20 +0000 Files and hashes: 1: KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl (hash: LCbIvRGhiQl3b5Doy+sKIKPuzC0+kNWNL8WdB5/UoNE=) 2: 8CC07FC0047211F0A6541526C4F9AE02.roa (hash: PgYYJ9/o38WTea0u5fJFPWCIw+78oj+kOWm1Hogb3eo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 04:45:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4287, serialNumber=2A45A41D60E2F104D3DD39C86F14BC5900883F4B Validity Not Before: Dec 7 04:45:20 2025 GMT Not After : Dec 14 04:45:20 2025 GMT Subject: CN=69350660-7d0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:9b:e1:f6:80:10:a9:f4:29:bf:c0:36:7a:06: 27:b2:68:d8:ef:15:c7:58:75:1d:c1:36:6f:d4:32: 04:58:9b:73:1b:3f:b2:61:5f:ce:e8:3c:22:be:7b: a6:af:9c:7d:06:f6:12:b3:36:d8:10:86:29:13:9e: f4:f6:64:76:d4:e4:d8:bd:b1:6e:e6:40:35:af:61: f2:2e:e3:1a:13:af:39:7c:67:14:03:30:58:d7:71: b8:3f:98:36:27:82:3d:7c:4c:d9:2f:e7:45:60:1e: f9:b1:69:21:4d:68:f3:d8:8a:41:57:0e:52:3d:82: b3:50:85:6c:87:35:b6:7b:19:ad:d1:a1:60:a9:36: f9:fd:51:81:77:9a:10:bd:37:c2:ec:93:19:ec:53: ed:08:39:d4:c8:54:c8:81:8f:1e:02:7e:56:6d:e9: fa:58:fa:48:78:6e:b0:1f:98:68:a8:e3:14:40:9a: 3d:a3:fa:68:d5:21:58:0e:10:f6:fb:46:2c:e9:dd: f6:c6:15:eb:52:40:c2:08:d9:2d:64:7e:41:57:68: 82:78:b6:52:99:d8:a1:61:18:36:bc:35:17:24:e3: f5:bd:d5:a0:a7:1b:a9:02:86:cc:8c:1e:c6:5c:10: 99:ed:c7:7d:14:90:0b:5a:01:bf:88:f9:7e:7b:97: d7:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:29:08:67:8C:8C:B2:62:60:B4:6D:A7:59:8F:74:F4:9B:1B:68:A3 X509v3 Authority Key Identifier: keyid:2A:45:A4:1D:60:E2:F1:04:D3:DD:39:C8:6F:14:BC:59:00:88:3F:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:c2:93:7d:16:9f:6c:9d:84:dc:ae:8a:12:fc:75:54:07:71: 99:c0:b5:67:c8:bf:c5:70:04:1f:9f:5e:d0:ac:51:09:e9:14: 75:1d:78:08:47:ac:f7:a2:51:4e:90:0f:bb:cd:2d:71:bf:9f: 48:8e:a7:05:69:22:a3:1e:f2:ef:5e:54:59:63:a9:1b:4c:91: 03:ae:d2:f5:d7:5d:9a:ae:2b:68:dc:e3:b3:9c:df:d7:c3:09: b1:79:f0:a5:f9:65:b7:ba:03:9c:b1:2f:ab:7d:ca:ea:bd:af: 67:6b:cb:ce:d8:bf:f4:f6:e2:db:94:46:1d:48:fa:a5:2b:9b: 6f:c4:42:e8:e2:02:3f:39:5b:de:4d:1b:8d:a2:de:4c:4c:3b: ed:33:2e:0a:00:0e:d9:82:e0:64:c6:8a:37:79:92:f2:02:1c: 73:c4:b4:1a:a3:fa:8b:86:cd:5b:85:7f:c2:be:e1:29:ef:cb: d8:3a:6c:57:f4:fc:e3:35:c2:fc:e8:ed:03:3d:cb:7a:51:9c: dd:0e:f4:22:7b:ac:a8:80:d2:e4:e4:54:56:60:a7:bf:7b:cc: a5:f8:80:ee:ab:0e:9b:96:0b:36:fd:79:fb:89:2c:f0:3c:70: 87:5b:81:9d:30:54:32:7e:4d:16:fd:68:28:59:c7:4c:b0:e2: 60:ae:87:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQyODcxMTAvBgNVBAUTKDJBNDVBNDFENjBFMkYxMDREM0REMzlDODZGMTRCQzU5 MDA4ODNGNEIwHhcNMjUxMjA3MDQ0NTIwWhcNMjUxMjE0MDQ0NTIwWjAYMRYwFAYD VQQDEw02OTM1MDY2MC03ZDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAppvh9oAQqfQpv8A2egYnsmjY7xXHWHUdwTZv1DIEWJtzGz+yYV/O6Dwivnum r5x9BvYSszbYEIYpE5709mR21OTYvbFu5kA1r2HyLuMaE685fGcUAzBY13G4P5g2 J4I9fEzZL+dFYB75sWkhTWjz2IpBVw5SPYKzUIVshzW2exmt0aFgqTb5/VGBd5oQ vTfC7JMZ7FPtCDnUyFTIgY8eAn5Wben6WPpIeG6wH5hoqOMUQJo9o/po1SFYDhD2 +0Ys6d32xhXrUkDCCNktZH5BV2iCeLZSmdihYRg2vDUXJOP1vdWgpxupAobMjB7G XBCZ7cd9FJALWgG/iPl+e5fXHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMQpCGeM jLJiYLRtp1mPdPSbG2ijMB8GA1UdIwQYMBaAFCpFpB1g4vEE0905yG8UvFkAiD9L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDI4Ny8zNzI3OEMxNjA0 NkQxMUYwQjc3RDAzNjFDNEY5QUUwMi9La1drSFdEaThRVFQzVG5JYnhTOFdRQ0lQ MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0trV2tIV0RpOFFUVDNUbklieFM4V1FDSVAwcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDI4Ny8zNzI3OEMxNjA0NkQxMUYwQjc3RDAzNjFDNEY5QUUwMi9La1drSFdEaThR VFQzVG5JYnhTOFdRQ0lQMHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfwpN9Fp9snYTcrooS/HVUB3GZwLVnyL/FcAQfn17QrFEJ6RR1HXgI R6z3olFOkA+7zS1xv59IjqcFaSKjHvLvXlRZY6kbTJEDrtL1112arito3OOznN/X wwmxefCl+WW3ugOcsS+rfcrqva9na8vO2L/09uLblEYdSPqlK5tvxELo4gI/OVve TRuNot5MTDvtMy4KAA7ZguBkxoo3eZLyAhxzxLQao/qLhs1bhX/CvuEp78vYOmxX 9PzjNcL86O0DPct6UZzdDvQie6yogNLk5FRWYKe/e8yl+IDuqw6blgs2/Xn7iSzw PHCHW4GdMFQyfk0W/WgoWcdMsOJgrodz -----END CERTIFICATE-----Generated at Mon Dec 8 09:12:58 2025 by rpki-client