This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft File: Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft (raw, json) Hash identifier: DfZAMYTd8EgGCTlJLllQ3oAPEOjB+ZMnVHuQId+/DEc= Subject key identifier: AF:43:0B:E8:BE:1C:88:CC:5B:15:2B:87:E6:AD:90:2D:45:42:A5:57 Authority key identifier: 2A:BA:2A:A3:CB:3F:94:58:1C:5D:3D:91:BA:36:B8:A9:D8:E8:DE:AD Certificate issuer: /CN=A91B80C2/serialNumber=2ABA2AA3CB3F94581C5D3D91BA36B8A9D8E8DEAD Certificate serial: 014B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft Manifest number: 013A Signing time: Fri 05 Dec 2025 02:42:56 +0000 Manifest this update: Fri 05 Dec 2025 02:42:56 +0000 Manifest next update: Fri 12 Dec 2025 02:42:56 +0000 Files and hashes: 1: Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl (hash: x17diGytLATuOF3Ir7FNSySHRFBK6cyWVfIbzPl0nS8=) 2: 145B3B88C46B11F085C51F82C4F9AE02.roa (hash: J9CnTUyePYPB90BlLPftIH1AYzCyvJxP8FcjWilMdvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:42:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 331 (0x14b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80C2, serialNumber=2ABA2AA3CB3F94581C5D3D91BA36B8A9D8E8DEAD Validity Not Before: Dec 5 02:42:56 2025 GMT Not After : Dec 12 02:42:56 2025 GMT Subject: CN=693246b0-c42d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6e:4c:b5:0d:9b:87:48:8a:20:05:21:2b:b2: df:90:0d:9f:d4:21:ba:c7:9a:1c:0e:3e:41:7f:ce: 4f:8f:dc:68:05:7f:fa:21:47:1d:b3:67:53:a1:6a: 48:f9:e2:ae:30:34:fc:28:55:10:c8:f5:e1:da:ff: 11:53:5a:76:d1:6e:45:1c:3d:86:51:9e:a5:15:54: dc:f0:88:21:41:29:cf:af:71:f2:c2:7a:3e:9e:2c: f5:45:15:04:bf:40:58:d8:c8:d3:1f:71:49:79:8e: 22:de:db:f2:51:44:cc:61:9e:ce:dc:a1:22:81:f8: 51:c8:54:ef:67:a2:df:f3:f3:40:11:e9:04:9d:96: 3c:03:44:82:a8:f3:3e:d2:77:4d:a2:91:07:67:b3: 3c:ca:43:20:c8:5b:72:5a:1b:8c:b6:91:b7:db:8f: 35:2d:36:4e:d3:41:62:e3:5a:e4:f3:a1:d5:5a:9e: 4d:07:2d:13:eb:d8:24:a9:ee:4d:3d:66:ae:b4:cb: da:5c:28:4d:08:c7:63:bb:f9:50:23:1e:f5:09:20: 6a:f7:54:78:21:7b:f0:6a:98:15:c9:9d:d7:b1:7a: 8d:4d:b3:10:bd:11:03:25:56:1e:be:30:61:54:7b: c7:4c:9a:fe:45:df:77:6d:22:8b:56:a2:3a:19:55: 22:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:43:0B:E8:BE:1C:88:CC:5B:15:2B:87:E6:AD:90:2D:45:42:A5:57 X509v3 Authority Key Identifier: keyid:2A:BA:2A:A3:CB:3F:94:58:1C:5D:3D:91:BA:36:B8:A9:D8:E8:DE:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:49:69:cb:65:3d:7c:10:26:6b:e7:05:f8:f0:e7:1d:ec:d1: 35:29:dd:45:ff:f8:99:91:41:bc:af:9e:90:ed:46:cc:c0:7c: a8:78:8e:78:4c:0d:b1:a4:e0:42:5b:be:5b:d9:2b:42:84:5f: 98:ae:20:80:e6:a4:d3:97:a9:67:e6:0a:6b:77:c3:b5:59:8f: 09:c7:56:0c:96:3b:ac:91:e1:11:4a:8c:3b:15:69:02:5e:56: a0:16:8b:a4:f7:89:7a:74:d3:1a:67:4f:d5:aa:ef:2b:50:5b: cf:3e:90:35:57:63:98:0a:c9:f0:56:45:0d:bd:80:6d:b5:8c: e9:7b:8c:93:d0:e8:73:ec:0d:ca:cc:d9:cf:f5:10:db:de:55: f1:13:cd:0c:ec:1a:0d:3a:f8:c8:64:bb:96:f5:74:84:0b:9c: 52:b3:44:5c:66:3b:82:7d:94:37:3d:87:a8:8d:6a:b7:53:c1: 23:37:f2:5c:b6:2d:a7:bc:94:1e:83:23:7c:13:b9:91:e2:77: 74:a1:02:20:b7:c3:86:65:30:48:cb:5a:ac:55:19:a4:ed:d2: 53:20:d0:89:cb:f9:5c:2d:e9:1b:fe:33:3b:82:fa:27:3b:08: f5:54:ff:ac:c5:a8:7c:35:00:98:be:f7:21:b5:4d:b0:08:34: 95:50:f6:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQzIxMTAvBgNVBAUTKDJBQkEyQUEzQ0IzRjk0NTgxQzVEM0Q5MUJBMzZCOEE5 RDhFOERFQUQwHhcNMjUxMjA1MDI0MjU2WhcNMjUxMjEyMDI0MjU2WjAYMRYwFAYD VQQDEw02OTMyNDZiMC1jNDJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsW5MtQ2bh0iKIAUhK7LfkA2f1CG6x5ocDj5Bf85Pj9xoBX/6IUcds2dToWpI +eKuMDT8KFUQyPXh2v8RU1p20W5FHD2GUZ6lFVTc8IghQSnPr3Hywno+niz1RRUE v0BY2MjTH3FJeY4i3tvyUUTMYZ7O3KEigfhRyFTvZ6Lf8/NAEekEnZY8A0SCqPM+ 0ndNopEHZ7M8ykMgyFtyWhuMtpG32481LTZO00Fi41rk86HVWp5NBy0T69gkqe5N PWautMvaXChNCMdju/lQIx71CSBq91R4IXvwapgVyZ3XsXqNTbMQvREDJVYevjBh VHvHTJr+Rd93bSKLVqI6GVUiIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK9DC+i+ HIjMWxUrh+atkC1FQqVXMB8GA1UdIwQYMBaAFCq6KqPLP5RYHF09kbo2uKnY6N6t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBDMi85ODNFNjE1MDE3 MUExMUVGODY1Nzc1NEZDNEY5QUUwMi9Lcm9xbzhzX2xGZ2NYVDJSdWphNHFkam8z cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tyb3FvOHNfbEZnY1hUMlJ1amE0cWRqbzNxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBDMi85ODNFNjE1MDE3MUExMUVGODY1Nzc1NEZDNEY5QUUwMi9Lcm9xbzhzX2xG Z2NYVDJSdWphNHFkam8zcTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1SWnLZT18ECZr5wX48Ocd7NE1Kd1F//iZkUG8r56Q7UbMwHyoeI54 TA2xpOBCW75b2StChF+YriCA5qTTl6ln5gprd8O1WY8Jx1YMljuskeERSow7FWkC XlagFouk94l6dNMaZ0/Vqu8rUFvPPpA1V2OYCsnwVkUNvYBttYzpe4yT0Ohz7A3K zNnP9RDb3lXxE80M7BoNOvjIZLuW9XSEC5xSs0RcZjuCfZQ3PYeojWq3U8EjN/Jc ti2nvJQegyN8E7mR4nd0oQIgt8OGZTBIy1qsVRmk7dJTINCJy/lcLekb/jM7gvon Owj1VP+sxah8NQCYvvchtU2wCDSVUPa8 -----END CERTIFICATE-----Generated at Sun Dec 7 02:51:56 2025 by rpki-client