This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft File: kSlbu3W_quuVMbObNux1Id3jDWM.mft (raw, json) Hash identifier: 1djr3QDZcEBGCN9C3LcPOQbcXWv/PtwY1qPoyFPgsU8= Subject key identifier: 31:EB:41:8F:4E:AC:D2:1B:F1:80:3A:E0:E7:EB:C4:CA:7A:01:75:52 Authority key identifier: 91:29:5B:BB:75:BF:AA:EB:95:31:B3:9B:36:EC:75:21:DD:E3:0D:63 Certificate issuer: /CN=A911D9B2/serialNumber=91295BBB75BFAAEB9531B39B36EC7521DDE30D63 Certificate serial: 01AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft Manifest number: 0199 Signing time: Sun 07 Dec 2025 02:10:34 +0000 Manifest this update: Sun 07 Dec 2025 02:10:33 +0000 Manifest next update: Sun 14 Dec 2025 02:10:33 +0000 Files and hashes: 1: kSlbu3W_quuVMbObNux1Id3jDWM.crl (hash: RLX5hEq0mc6PYhFv3MCuhOL2ZPnhTmrkKtREPKTFaI0=) 2: 11A28878915611EE83F61C41C4F9AE02.roa (hash: 0DyvesGS9JiJBxSgGWdTCs5ap0e8SUR4oSJ/LQG2GvQ=) 3: 59962840D01911EE96596B16C4F9AE02.roa (hash: 47CtM1yN1CdjUlF4SY8eSFCkgrsejSEAp2dNpEZ2S0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.crl rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 02:10:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D9B2, serialNumber=91295BBB75BFAAEB9531B39B36EC7521DDE30D63 Validity Not Before: Dec 7 02:10:33 2025 GMT Not After : Dec 14 02:10:33 2025 GMT Subject: CN=6934e219-ecd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:e4:3f:be:0d:53:e2:5a:3c:71:69:03:b1:b7: f6:53:2c:3e:91:15:10:ff:07:51:05:6a:42:51:4b: fe:60:9d:9b:75:72:b8:59:6e:11:c1:d0:5e:c0:5f: c9:7c:01:da:74:aa:15:e2:72:c1:06:e2:d2:9e:49: 14:f7:64:11:4b:c9:96:e0:49:42:e5:bd:be:35:95: b5:6d:06:69:8d:7a:38:55:89:47:2f:a7:ae:d5:ac: e0:39:b2:a4:50:03:5d:cf:21:5b:bd:d7:39:d7:14: 70:03:5e:d3:89:9e:3f:24:84:56:0b:0d:fb:88:49: 05:bb:24:63:41:76:0f:68:44:c9:fd:1e:71:f5:57: a8:f3:7b:f1:73:39:77:85:a5:b6:ab:cd:10:3a:c7: b7:55:b5:39:92:d8:30:f9:a8:4b:6a:a8:69:b7:e2: e6:13:c5:1b:ef:d4:a5:98:73:48:c4:db:42:f2:7e: b2:44:8f:6c:46:73:96:d9:75:dd:39:64:e8:85:4c: 37:31:eb:6b:eb:86:6f:64:ba:5a:fd:da:67:56:22: 99:41:b8:46:f1:fe:75:0a:aa:ef:ad:63:01:ae:38: bc:41:f3:79:00:de:97:04:55:8c:a9:ab:ec:18:3d: ea:b9:42:42:20:c4:f1:d2:68:5a:bc:d5:58:05:64: d1:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:EB:41:8F:4E:AC:D2:1B:F1:80:3A:E0:E7:EB:C4:CA:7A:01:75:52 X509v3 Authority Key Identifier: keyid:91:29:5B:BB:75:BF:AA:EB:95:31:B3:9B:36:EC:75:21:DD:E3:0D:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:ef:0b:31:23:9b:27:2b:56:44:66:7b:18:b9:7a:2b:49:0c: a7:8f:3f:00:87:f3:0f:8a:58:1a:e6:18:ec:bd:43:52:e9:e6: 79:58:73:b7:4a:f2:1a:55:63:71:09:90:89:4b:72:5f:a9:dd: 28:3c:35:fd:cb:3c:b4:78:f1:be:37:5f:23:d1:e3:5f:ae:d8: b3:e8:b3:a4:c3:b2:31:ba:22:bd:cf:35:bc:ae:a3:03:70:59: 0c:35:48:3d:7c:46:1b:d4:af:28:1f:ae:fe:5b:b9:0d:64:54: a5:8e:77:e1:a4:61:69:aa:4e:d5:1e:bb:65:27:8f:50:c6:dc: 60:ab:c4:a1:83:90:12:e4:7a:5b:b2:3d:43:96:0e:e3:0d:2b: d1:8a:5a:6f:00:f4:86:1d:f5:b0:4f:31:bf:4b:6e:ad:32:db: b9:e7:8c:21:03:ae:7e:36:5f:bd:70:aa:b5:8d:34:25:0d:0c: c1:97:51:df:83:12:a6:45:25:a0:e1:07:1a:1f:19:ff:aa:66: 00:2f:3e:8f:57:6d:0f:ca:89:49:3f:ce:e0:4b:63:81:57:4c: 62:de:3d:9a:59:c4:8a:b5:11:aa:10:5d:ce:c4:0f:dd:dd:36: ff:d0:5c:8b:17:cb:fc:bc:87:19:d9:e9:5e:e9:a5:86:82:55: f3:94:c4:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ5QjIxMTAvBgNVBAUTKDkxMjk1QkJCNzVCRkFBRUI5NTMxQjM5QjM2RUM3NTIx RERFMzBENjMwHhcNMjUxMjA3MDIxMDMzWhcNMjUxMjE0MDIxMDMzWjAYMRYwFAYD VQQDEw02OTM0ZTIxOS1lY2Q1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8eQ/vg1T4lo8cWkDsbf2Uyw+kRUQ/wdRBWpCUUv+YJ2bdXK4WW4RwdBewF/J fAHadKoV4nLBBuLSnkkU92QRS8mW4ElC5b2+NZW1bQZpjXo4VYlHL6eu1azgObKk UANdzyFbvdc51xRwA17TiZ4/JIRWCw37iEkFuyRjQXYPaETJ/R5x9Veo83vxczl3 haW2q80QOse3VbU5ktgw+ahLaqhpt+LmE8Ub79SlmHNIxNtC8n6yRI9sRnOW2XXd OWTohUw3Metr64ZvZLpa/dpnViKZQbhG8f51CqrvrWMBrji8QfN5AN6XBFWMqavs GD3quUJCIMTx0mhavNVYBWTR9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDHrQY9O rNIb8YA64OfrxMp6AXVSMB8GA1UdIwQYMBaAFJEpW7t1v6rrlTGzmzbsdSHd4w1j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDlCMi8wQTZGM0I0Mjkx NTUxMUVFQTRDMEY2NjhDNEY5QUUwMi9rU2xidTNXX3F1dVZNYk9iTnV4MUlkM2pE V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTbGJ1M1dfcXV1Vk1iT2JOdXgxSWQzakRXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDlCMi8wQTZGM0I0MjkxNTUxMUVFQTRDMEY2NjhDNEY5QUUwMi9rU2xidTNXX3F1 dVZNYk9iTnV4MUlkM2pEV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZ7wsxI5snK1ZEZnsYuXorSQynjz8Ah/MPilga5hjsvUNS6eZ5WHO3 SvIaVWNxCZCJS3Jfqd0oPDX9yzy0ePG+N18j0eNfrtiz6LOkw7IxuiK9zzW8rqMD cFkMNUg9fEYb1K8oH67+W7kNZFSljnfhpGFpqk7VHrtlJ49Qxtxgq8Shg5AS5Hpb sj1Dlg7jDSvRilpvAPSGHfWwTzG/S26tMtu554whA65+Nl+9cKq1jTQlDQzBl1Hf gxKmRSWg4QcaHxn/qmYALz6PV20PyolJP87gS2OBV0xi3j2aWcSKtRGqEF3OxA/d 3Tb/0FyLF8v8vIcZ2ele6aWGglXzlMRi -----END CERTIFICATE-----Generated at Mon Dec 8 06:23:15 2025 by rpki-client