This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.mft File: WKDd0CVVyDdIbVVDUYbcxXahKD4.mft (raw, json) Hash identifier: pNpeU5JwTFG7cQ5z5OhvibHq2Q881gkZ49xA8O92AZ8= Subject key identifier: E7:D2:0D:A1:DB:F6:AE:19:16:45:02:B0:CF:79:5F:BB:56:6A:5C:8F Authority key identifier: 58:A0:DD:D0:25:55:C8:37:48:6D:55:43:51:86:DC:C5:76:A1:28:3E Certificate issuer: /CN=A91E4C30/serialNumber=58A0DDD02555C837486D55435186DCC576A1283E Certificate serial: 0232 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKDd0CVVyDdIbVVDUYbcxXahKD4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.mft Manifest number: 0223 Signing time: Fri 05 Dec 2025 00:30:14 +0000 Manifest this update: Fri 05 Dec 2025 00:30:13 +0000 Manifest next update: Fri 12 Dec 2025 00:30:13 +0000 Files and hashes: 1: WKDd0CVVyDdIbVVDUYbcxXahKD4.crl (hash: qA68a3eu80rHuIDQe4nZ7M3oCyjLs2ViaYFIUEm6Jfc=) 2: 8C48B22C47E711EE91530D28C4F9AE02.roa (hash: oOyEu7HdLHeRDgmI/hlcMUg6eiIlRVxLKBMf9ShkBXw=) 3: 58A53DF483EB11F083FC5148C4F9AE02.roa (hash: gHzhXWPrMjpB1xHZWRltAYhKlgAf5L30L7o2Q9t3Hyc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.crl rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKDd0CVVyDdIbVVDUYbcxXahKD4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:30:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 562 (0x232) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4C30, serialNumber=58A0DDD02555C837486D55435186DCC576A1283E Validity Not Before: Dec 5 00:30:13 2025 GMT Not After : Dec 12 00:30:13 2025 GMT Subject: CN=69322796-b8ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:31:b9:4a:8a:3e:05:6d:5a:c5:b4:1b:2e:40: ba:4f:6c:13:d5:76:08:6e:ef:83:d0:b4:aa:0a:1b: 4a:a9:fe:17:09:f1:26:ca:47:67:54:4a:76:3d:58: 30:18:9b:4f:f0:e4:98:ba:dc:1c:70:14:f8:c9:1d: bd:37:3e:9d:44:e9:c5:0d:76:ce:71:9f:b3:ed:6a: 6a:3b:cf:f8:28:85:0e:a7:57:eb:ff:d0:df:7c:99: 84:6d:43:95:d6:15:4a:65:d3:cf:8a:40:d1:d9:ad: 22:ca:05:80:ae:40:99:3d:02:b5:75:48:0b:64:c3: 0e:b0:5e:3b:30:01:46:66:a0:89:16:c0:83:95:6e: 76:44:c6:86:32:cc:99:26:28:ca:1b:58:b8:27:ad: 2a:62:5c:60:26:e9:fd:49:5d:3f:a7:48:68:1b:19: c2:11:78:ea:a7:2a:89:20:02:0b:2a:27:77:84:d2: a1:b8:8a:05:94:b9:e1:96:a5:4e:0b:f9:47:e5:c2: 82:e5:dd:09:42:0a:1e:4f:91:3a:48:c3:14:df:49: f8:ce:d7:9c:58:b6:2f:03:5b:68:35:65:3c:a9:09: 99:c0:c4:a1:22:ba:99:f0:d1:f0:3d:06:72:5c:d2: 04:c8:7e:64:1f:29:0e:c8:61:86:8a:91:ec:c7:31: 33:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:D2:0D:A1:DB:F6:AE:19:16:45:02:B0:CF:79:5F:BB:56:6A:5C:8F X509v3 Authority Key Identifier: keyid:58:A0:DD:D0:25:55:C8:37:48:6D:55:43:51:86:DC:C5:76:A1:28:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKDd0CVVyDdIbVVDUYbcxXahKD4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:ff:bb:83:f8:12:d4:9b:ba:e7:bc:df:4b:44:bd:be:d5:88: 43:15:a5:cf:fa:d3:17:28:22:d1:21:47:b1:d9:ed:c8:c5:47: f6:95:3b:73:8a:a5:2e:a5:80:31:17:1a:c3:30:20:59:4d:1a: a2:3e:d4:9b:e6:bd:8d:c7:d0:98:a4:11:de:4d:a4:c4:af:95: 3f:9c:05:cd:14:53:9f:df:52:2c:35:e9:72:41:e0:68:5e:36: dd:df:e8:1a:bc:a4:ca:c8:26:bc:8a:c6:b4:96:aa:70:5c:22: 01:48:ba:c1:52:3f:16:81:29:3b:c1:90:b4:0a:47:ea:be:3c: ea:d5:5a:ec:7d:59:51:85:1c:6c:07:96:a0:70:78:bd:dc:bb: f8:a8:0a:03:f6:79:49:63:90:bf:74:18:97:37:35:c2:60:44: ce:8d:cd:e4:77:bc:dd:09:43:51:48:8f:ce:ec:4c:ac:7d:96: 60:4c:f9:15:cf:19:56:dd:8f:fb:4e:0f:79:2f:00:9f:14:ba: 25:08:9c:52:ee:b1:4b:0e:66:e3:c6:27:fd:e1:ac:5f:5b:7f: cf:10:43:be:43:8f:d2:29:85:55:61:73:6a:88:38:1c:bd:e0: 96:4e:a5:cd:c8:21:70:d5:2b:80:48:7c:00:db:d7:4b:1b:1d: 8d:7c:51:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRDMzAxMTAvBgNVBAUTKDU4QTBEREQwMjU1NUM4Mzc0ODZENTU0MzUxODZEQ0M1 NzZBMTI4M0UwHhcNMjUxMjA1MDAzMDEzWhcNMjUxMjEyMDAzMDEzWjAYMRYwFAYD VQQDEw02OTMyMjc5Ni1iOGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtTG5Soo+BW1axbQbLkC6T2wT1XYIbu+D0LSqChtKqf4XCfEmykdnVEp2PVgw GJtP8OSYutwccBT4yR29Nz6dROnFDXbOcZ+z7WpqO8/4KIUOp1fr/9DffJmEbUOV 1hVKZdPPikDR2a0iygWArkCZPQK1dUgLZMMOsF47MAFGZqCJFsCDlW52RMaGMsyZ JijKG1i4J60qYlxgJun9SV0/p0hoGxnCEXjqpyqJIAILKid3hNKhuIoFlLnhlqVO C/lH5cKC5d0JQgoeT5E6SMMU30n4ztecWLYvA1toNWU8qQmZwMShIrqZ8NHwPQZy XNIEyH5kHykOyGGGipHsxzEzKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOfSDaHb 9q4ZFkUCsM95X7tWalyPMB8GA1UdIwQYMBaAFFig3dAlVcg3SG1VQ1GG3MV2oSg+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEMzMC8wRjFGN0NFODk2 NDExMUVEQkE5RENDNEZDNEY5QUUwMi9XS0RkMENWVnlEZEliVlZEVVliY3hYYWhL RDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLRGQwQ1ZWeURkSWJWVkRVWWJjeFhhaEtENC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEMzMC8wRjFGN0NFODk2NDExMUVEQkE5RENDNEZDNEY5QUUwMi9XS0RkMENWVnlE ZEliVlZEVVliY3hYYWhLRDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCd/7uD+BLUm7rnvN9LRL2+1YhDFaXP+tMXKCLRIUex2e3IxUf2lTtz iqUupYAxFxrDMCBZTRqiPtSb5r2Nx9CYpBHeTaTEr5U/nAXNFFOf31IsNelyQeBo Xjbd3+gavKTKyCa8isa0lqpwXCIBSLrBUj8WgSk7wZC0Ckfqvjzq1VrsfVlRhRxs B5agcHi93Lv4qAoD9nlJY5C/dBiXNzXCYETOjc3kd7zdCUNRSI/O7EysfZZgTPkV zxlW3Y/7Tg95LwCfFLolCJxS7rFLDmbjxif94axfW3/PEEO+Q4/SKYVVYXNqiDgc veCWTqXNyCFw1SuASHwA29dLGx2NfFGe -----END CERTIFICATE-----Generated at Sat Dec 6 12:17:35 2025 by rpki-client