This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft File: kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft (raw, json) Hash identifier: SM31zHJkZAeMNwk8aN/s3oHtT3IWS4Kml4Hd9YdhGXc= Subject key identifier: BC:B0:BC:DA:0B:ED:52:63:73:25:21:52:46:25:7B:CB:BA:5C:29:B8 Authority key identifier: 90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 Certificate issuer: /CN=A91C2875/serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Certificate serial: 03C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft Manifest number: 03BA Signing time: Thu 04 Dec 2025 23:06:20 +0000 Manifest this update: Thu 04 Dec 2025 23:06:19 +0000 Manifest next update: Thu 11 Dec 2025 23:06:19 +0000 Files and hashes: 1: kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl (hash: PQJyHIi4JtSbSZXYFT9P7wPlsDKV7x0AbvtwfLzjAts=) 2: ABB1EE64B4ED11ECBA3D016FC4F9AE02.roa (hash: xHLevAzZuis8NnrBHZLDJf2yx7IF05dGBA1riYkWutY=) 3: 0E9CF77EBA6811EC8058A213C4F9AE02.roa (hash: /NRpEcDAXrkS/YDBwDOng+rHtIrpT7sCWxlP3Tbbtb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:06:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 964 (0x3c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2875, serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Validity Not Before: Dec 4 23:06:19 2025 GMT Not After : Dec 11 23:06:19 2025 GMT Subject: CN=693213ec-5bc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:18:4c:3d:b7:06:7a:24:d0:55:c0:4a:4d:1e: 10:9e:b7:66:dc:e8:c1:23:bf:34:ff:08:d4:19:26: ec:a0:ec:a8:2b:03:18:11:03:e7:6c:15:14:a2:91: a9:4b:86:56:7b:63:87:c3:de:31:bd:18:01:ae:e0: c7:9c:9c:c9:27:3c:fc:e9:2c:9f:72:ce:b7:e9:f1: fa:a0:15:2a:11:5b:ed:db:e1:f9:56:9c:2e:96:df: 47:93:41:99:b8:b1:ad:98:4f:a2:7c:cc:df:f8:c1: 42:b0:8e:d4:c9:32:75:1d:1a:3c:5d:77:2f:59:ad: 7b:60:06:2f:aa:1d:26:9c:ba:ae:71:7e:e8:6e:92: 52:f7:e4:27:c5:ed:c8:8a:8c:b5:c9:a2:eb:41:49: ce:53:b4:d3:ed:b3:1b:7c:66:29:32:4e:8a:99:f9: 1f:a6:94:19:ec:be:b3:ad:98:53:91:e9:d0:f9:0b: e3:7e:70:d0:8b:df:04:a8:4f:96:8a:69:cb:9a:83: 89:97:57:94:cc:14:9b:68:b0:3f:71:a3:40:f5:86: 71:92:92:27:1c:4a:3c:7d:34:21:af:bf:9e:88:80: 75:09:83:fa:c7:a5:4f:78:54:c0:e4:6a:88:8c:29: 03:50:cb:9c:9b:a1:02:1d:75:de:b6:76:fe:ee:94: 66:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:B0:BC:DA:0B:ED:52:63:73:25:21:52:46:25:7B:CB:BA:5C:29:B8 X509v3 Authority Key Identifier: keyid:90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:bc:88:9e:fe:79:1c:19:6b:54:7d:2e:ac:d5:b0:1b:e1:66: 6b:72:33:4a:21:b7:d9:c7:59:d3:2f:90:75:5c:69:0c:e1:96: aa:49:43:ac:fe:66:bb:74:73:87:d0:17:3c:4c:88:70:03:d1: 8c:6b:4c:4b:67:b1:09:0d:b1:be:2c:40:e2:17:73:83:77:39: 42:48:7f:2d:ba:7b:55:29:23:4a:3e:88:9a:74:66:a6:cb:f1: 1e:43:28:99:2a:81:e4:70:c2:65:3b:99:2c:c5:09:59:75:ab: a0:20:83:8f:15:90:6a:22:a4:ca:c6:a4:3b:c1:92:27:6f:a3: f8:7b:97:09:fd:13:85:55:35:d7:95:8e:e9:2c:17:f1:7a:7e: e1:76:07:0e:89:91:fd:45:9e:ca:99:47:98:69:64:4d:4c:d1: 91:55:b3:38:01:32:f1:7f:cd:75:f6:ee:33:85:9b:9e:28:ca: eb:4a:18:06:22:7b:dc:ec:39:dc:65:dc:40:1a:75:72:9c:f8: d9:b0:55:5b:ab:38:4f:27:9b:8e:be:4a:e6:e2:4b:34:27:5b: 57:53:00:82:b9:9e:f6:9f:d8:ef:73:6e:21:8d:ce:0f:f2:e1: ed:a0:e5:8b:0b:e6:75:17:5c:90:77:95:3d:85:b4:bd:a8:22: b6:a7:3c:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI4NzUxMTAvBgNVBAUTKDkwRDk5QUE4RDc5MTMxNDBBRkFFOUVFMkJGRUJDREEz N0JBMUNEMjgwHhcNMjUxMjA0MjMwNjE5WhcNMjUxMjExMjMwNjE5WjAYMRYwFAYD VQQDEw02OTMyMTNlYy01YmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7BhMPbcGeiTQVcBKTR4Qnrdm3OjBI780/wjUGSbsoOyoKwMYEQPnbBUUopGp S4ZWe2OHw94xvRgBruDHnJzJJzz86Syfcs636fH6oBUqEVvt2+H5Vpwult9Hk0GZ uLGtmE+ifMzf+MFCsI7UyTJ1HRo8XXcvWa17YAYvqh0mnLqucX7obpJS9+Qnxe3I ioy1yaLrQUnOU7TT7bMbfGYpMk6KmfkfppQZ7L6zrZhTkenQ+QvjfnDQi98EqE+W imnLmoOJl1eUzBSbaLA/caNA9YZxkpInHEo8fTQhr7+eiIB1CYP6x6VPeFTA5GqI jCkDUMucm6ECHXXetnb+7pRmAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLywvNoL 7VJjcyUhUkYle8u6XCm4MB8GA1UdIwQYMBaAFJDZmqjXkTFAr66e4r/rzaN7oc0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjg3NS9DMjVERTBFNkI0 RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1VQ3ZycDdpdi12Tm8zdWh6 U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tObWFxTmVSTVVDdnJwN2l2LXZObzN1aHpTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Mjg3NS9DMjVERTBFNkI0RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1V Q3ZycDdpdi12Tm8zdWh6U2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFvIie/nkcGWtUfS6s1bAb4WZrcjNKIbfZx1nTL5B1XGkM4ZaqSUOs /ma7dHOH0Bc8TIhwA9GMa0xLZ7EJDbG+LEDiF3ODdzlCSH8tuntVKSNKPoiadGam y/EeQyiZKoHkcMJlO5ksxQlZdaugIIOPFZBqIqTKxqQ7wZInb6P4e5cJ/ROFVTXX lY7pLBfxen7hdgcOiZH9RZ7KmUeYaWRNTNGRVbM4ATLxf8119u4zhZueKMrrShgG Invc7DncZdxAGnVynPjZsFVbqzhPJ5uOvkrm4ks0J1tXUwCCuZ72n9jvc24hjc4P 8uHtoOWLC+Z1F1yQd5U9hbS9qCK2pzxX -----END CERTIFICATE-----Generated at Sat Dec 6 21:28:07 2025 by rpki-client