This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.mft File: WKDd0CVVyDdIbVVDUYbcxXahKD4.mft (raw, json) Hash identifier: iHfyGXcQKDjOo3rlzLNpc5RxJSPWCmjcSq2uGD+uswE= Subject key identifier: F2:08:1D:BE:27:DA:E0:4A:14:94:56:DD:EA:9C:B3:9D:9F:EA:F6:CA Authority key identifier: 58:A0:DD:D0:25:55:C8:37:48:6D:55:43:51:86:DC:C5:76:A1:28:3E Certificate issuer: /CN=A91E4C30/serialNumber=58A0DDD02555C837486D55435186DCC576A1283E Certificate serial: 0239 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKDd0CVVyDdIbVVDUYbcxXahKD4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.mft Manifest number: 022A Signing time: Fri 19 Dec 2025 01:21:24 +0000 Manifest this update: Fri 19 Dec 2025 01:21:24 +0000 Manifest next update: Fri 26 Dec 2025 01:21:24 +0000 Files and hashes: 1: WKDd0CVVyDdIbVVDUYbcxXahKD4.crl (hash: 0C6bCVmTLaonMajq1Jxw088kXwrWewu86ozKL0Ry+00=) 2: 58A53DF483EB11F083FC5148C4F9AE02.roa (hash: gHzhXWPrMjpB1xHZWRltAYhKlgAf5L30L7o2Q9t3Hyc=) 3: 8C48B22C47E711EE91530D28C4F9AE02.roa (hash: oOyEu7HdLHeRDgmI/hlcMUg6eiIlRVxLKBMf9ShkBXw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.crl rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKDd0CVVyDdIbVVDUYbcxXahKD4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:21:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 569 (0x239) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4C30, serialNumber=58A0DDD02555C837486D55435186DCC576A1283E Validity Not Before: Dec 19 01:21:24 2025 GMT Not After : Dec 26 01:21:24 2025 GMT Subject: CN=6944a894-415d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c3:5c:fc:0e:e3:61:69:50:e4:52:10:01:e7: 4e:b4:7c:7e:ec:25:02:2b:17:43:74:94:b1:b8:68: e1:df:b9:d3:72:b9:71:12:7f:32:91:9f:58:d2:43: d0:4e:7b:ca:40:55:bc:94:64:6b:10:ad:d3:71:32: 78:8b:79:54:12:a7:06:06:27:21:36:8f:69:70:0c: 75:51:2b:d0:7d:45:77:61:60:d4:4f:0b:c4:29:23: 98:ca:21:f1:7b:6c:82:06:6a:1e:cf:10:f4:5d:d4: 19:55:e7:52:1a:60:96:33:9d:36:f6:23:7b:7a:40: 9a:00:e5:d5:3f:2d:bd:cb:c0:15:75:ab:bf:60:58: a5:f7:08:b2:b0:75:1e:1e:f7:3f:77:2b:2d:02:19: d0:26:88:a4:fe:88:a7:e0:1e:e8:74:27:ec:7a:24: e1:e9:9e:22:2b:31:f8:bc:66:6a:74:5d:72:68:ae: 85:e2:33:34:71:05:1e:c2:9e:d6:51:97:66:64:59: 0c:33:3c:f8:6f:37:c5:46:1e:30:60:df:a5:1c:6e: bd:8d:2b:0d:f4:92:f7:0d:95:ef:40:37:66:0d:3a: 58:e1:06:0e:89:87:b5:d9:89:f1:91:1e:3e:b4:29: 27:3f:49:22:cc:14:2c:f1:4f:c3:1e:a2:88:07:2d: 07:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:08:1D:BE:27:DA:E0:4A:14:94:56:DD:EA:9C:B3:9D:9F:EA:F6:CA X509v3 Authority Key Identifier: keyid:58:A0:DD:D0:25:55:C8:37:48:6D:55:43:51:86:DC:C5:76:A1:28:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKDd0CVVyDdIbVVDUYbcxXahKD4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4C30/0F1F7CE8964111EDBA9DCC4FC4F9AE02/WKDd0CVVyDdIbVVDUYbcxXahKD4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:ca:1f:42:ce:27:28:86:f0:41:cb:96:73:a3:bd:78:df:a4: 33:3d:f4:0b:c1:f6:9b:be:27:65:e4:27:3c:43:46:88:94:b4: fb:f8:b6:9f:1b:ca:c5:c8:58:4b:04:61:6e:c7:64:5d:84:bb: b3:cd:b8:da:8f:e2:33:08:a3:47:a2:40:e8:53:75:7b:4c:2a: a3:ed:dc:03:80:5d:c1:f9:41:39:76:e4:bb:dd:1c:fe:a6:20: 22:60:11:5e:68:ea:24:c0:9d:80:79:5a:9a:cb:fd:48:b2:45: 5b:57:09:e8:39:2e:0f:54:88:54:be:54:8f:c3:ec:73:4e:9c: d2:0c:ec:8e:34:ef:f7:d6:17:1c:0a:9f:a0:ab:f5:01:0b:57: e3:59:e3:ff:01:dd:e1:89:31:9f:02:67:0b:1d:27:11:2f:8c: 0a:1e:ee:7f:d0:5c:1d:ba:9f:46:46:cc:13:84:7f:04:93:12: 68:aa:d9:90:e6:d7:81:96:99:bf:d7:c3:ed:28:5e:7c:fe:68: 2d:30:10:eb:e3:d7:25:af:e6:35:fd:ef:5e:b3:b1:3f:a0:1d: 18:34:a9:42:77:b3:ba:a4:0c:ee:71:55:64:9f:0b:20:4e:84: f3:78:95:77:64:fb:33:1f:25:63:de:e1:99:8d:6d:50:53:7e: cb:a4:2e:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRDMzAxMTAvBgNVBAUTKDU4QTBEREQwMjU1NUM4Mzc0ODZENTU0MzUxODZEQ0M1 NzZBMTI4M0UwHhcNMjUxMjE5MDEyMTI0WhcNMjUxMjI2MDEyMTI0WjAYMRYwFAYD VQQDDA02OTQ0YTg5NC00MTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAosNc/A7jYWlQ5FIQAedOtHx+7CUCKxdDdJSxuGjh37nTcrlxEn8ykZ9Y0kPQ TnvKQFW8lGRrEK3TcTJ4i3lUEqcGBichNo9pcAx1USvQfUV3YWDUTwvEKSOYyiHx e2yCBmoezxD0XdQZVedSGmCWM5029iN7ekCaAOXVPy29y8AVdau/YFil9wiysHUe Hvc/dystAhnQJoik/oin4B7odCfseiTh6Z4iKzH4vGZqdF1yaK6F4jM0cQUewp7W UZdmZFkMMzz4bzfFRh4wYN+lHG69jSsN9JL3DZXvQDdmDTpY4QYOiYe12YnxkR4+ tCknP0kizBQs8U/DHqKIBy0HTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPIIHb4n 2uBKFJRW3eqcs52f6vbKMB8GA1UdIwQYMBaAFFig3dAlVcg3SG1VQ1GG3MV2oSg+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEMzMC8wRjFGN0NFODk2 NDExMUVEQkE5RENDNEZDNEY5QUUwMi9XS0RkMENWVnlEZEliVlZEVVliY3hYYWhL RDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLRGQwQ1ZWeURkSWJWVkRVWWJjeFhhaEtENC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEMzMC8wRjFGN0NFODk2NDExMUVEQkE5RENDNEZDNEY5QUUwMi9XS0RkMENWVnlE ZEliVlZEVVliY3hYYWhLRDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLyh9CzicohvBBy5Zzo71436QzPfQLwfabvidl5Cc8Q0aIlLT7+Laf G8rFyFhLBGFux2RdhLuzzbjaj+IzCKNHokDoU3V7TCqj7dwDgF3B+UE5duS73Rz+ piAiYBFeaOokwJ2AeVqay/1IskVbVwnoOS4PVIhUvlSPw+xzTpzSDOyONO/31hcc Cp+gq/UBC1fjWeP/Ad3hiTGfAmcLHScRL4wKHu5/0Fwdup9GRswThH8EkxJoqtmQ 5teBlpm/18PtKF58/mgtMBDr49clr+Y1/e9es7E/oB0YNKlCd7O6pAzucVVknwsg ToTzeJV3ZPszHyVj3uGZjW1QU37LpC4n -----END CERTIFICATE-----Generated at Sat Dec 20 17:01:29 2025 by rpki-client