This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft File: kXkVGVyXGrRB_d7eb_PNNy51TLU.mft (raw, json) Hash identifier: J9v01/1pNLvfpL5nrMuZAMA9l5WwcOqCBx5zUU55ZLM= Subject key identifier: E0:20:FB:77:A5:F3:85:0C:5B:80:EB:3A:E6:EE:0C:C4:A3:3F:B8:95 Authority key identifier: 91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5 Certificate issuer: /CN=A91795CA/serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5 Certificate serial: 0692 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft Manifest number: 068C Signing time: Thu 04 Dec 2025 21:01:09 +0000 Manifest this update: Thu 04 Dec 2025 21:01:09 +0000 Manifest next update: Thu 11 Dec 2025 21:01:09 +0000 Files and hashes: 1: kXkVGVyXGrRB_d7eb_PNNy51TLU.crl (hash: BKzAJ64EKGX1MNxJ5oSWwDaxdO8AlZv5dp2CyIgdj5s=) 2: 2B8D76AE9BB711EBBB7BA02BC4F9AE02.roa (hash: aHkHq3prWV8PYM6R/1n0/cS3AolHN3tQt/aLI9yRoNU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.crl rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1682 (0x692) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91795CA, serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5 Validity Not Before: Dec 4 21:01:09 2025 GMT Not After : Dec 11 21:01:09 2025 GMT Subject: CN=6931f695-8348 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:e8:50:6e:f6:ae:d9:8a:ee:7d:39:a8:58:bd: 13:11:24:5f:d3:a0:52:1c:10:92:70:77:b8:ac:e1: 38:40:0b:85:b4:a5:0a:21:cd:e9:08:2d:5f:3f:b1: 13:e0:04:bd:0b:f2:51:f1:eb:a3:e4:aa:af:2e:af: 7a:33:b5:93:c9:34:dc:22:45:20:e1:e7:d8:ee:16: 83:f4:df:05:aa:3b:74:09:fb:32:cf:17:22:78:a5: f8:84:7a:c0:09:4a:2e:1a:03:d3:74:68:eb:73:f1: a2:33:cf:93:45:7c:15:71:24:09:f4:55:db:3f:a8: e2:c0:19:f2:e8:77:a9:22:1e:95:b1:15:b7:7e:1c: e4:80:eb:8a:6b:c8:78:ea:db:c1:86:87:eb:03:09: 8b:9a:c8:86:f8:db:b9:de:ca:c9:b8:c0:30:0a:c1: a0:2e:75:e4:e4:14:71:d2:55:0a:1f:47:75:8a:50: b9:fb:47:0c:4f:df:40:32:e1:29:0f:f4:02:5f:83: f7:90:04:47:5e:34:ba:08:73:98:a1:f3:7f:a9:27: e4:37:5b:c4:ed:9f:38:a6:51:4c:f3:ee:5b:8f:e6: cf:29:61:36:02:c1:4f:74:3f:f0:84:61:d9:76:12: b0:59:7b:2b:32:60:80:93:49:7f:55:7b:a7:d5:a3: 9f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:20:FB:77:A5:F3:85:0C:5B:80:EB:3A:E6:EE:0C:C4:A3:3F:B8:95 X509v3 Authority Key Identifier: keyid:91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:da:1b:5e:79:c5:6a:ee:db:82:98:6c:26:5c:6a:dc:e9:55: 7d:a0:f7:ed:8f:0e:28:8c:9d:1f:42:89:bf:dd:d3:9c:57:60: fe:ad:9e:65:df:ed:46:3c:02:b7:ff:17:0a:51:03:c1:8f:b2: 6c:b0:77:4a:e0:b8:3a:89:35:98:a6:62:36:79:98:60:ef:49: 92:c9:8e:d8:89:eb:a0:34:dd:aa:29:9a:16:0c:23:92:4a:21: c3:cc:c0:07:8b:d3:83:60:8c:00:f6:cb:4d:2b:d1:3f:c9:d8: 59:aa:dc:21:be:64:e4:d8:1b:18:1f:70:89:80:08:f2:cd:fb: f7:d9:77:66:ac:b5:09:fd:bb:f5:75:4c:ae:4d:9b:40:33:91: 44:c4:9d:17:a7:a0:09:76:53:81:26:3b:19:05:a0:20:15:24: 3a:d4:d5:7b:3d:ae:97:e5:6a:4e:c8:5f:48:46:25:66:cf:6d: 56:98:9e:cf:cf:84:ff:93:56:04:8c:fb:a6:ef:31:ba:9c:5e: fc:5c:7c:22:0d:ed:61:82:5c:1e:d6:13:c7:86:e9:8b:7d:94: 95:00:b2:a9:f7:97:d4:9c:95:bc:56:fb:48:6c:c0:1b:d2:48: 1b:a5:ae:da:aa:29:a5:3b:95:d5:90:17:5f:20:45:73:07:e6: 41:b2:e3:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk1Q0ExMTAvBgNVBAUTKDkxNzkxNTE5NUM5NzFBQjQ0MUZEREVERTZGRjNDRDM3 MkU3NTRDQjUwHhcNMjUxMjA0MjEwMTA5WhcNMjUxMjExMjEwMTA5WjAYMRYwFAYD VQQDEw02OTMxZjY5NS04MzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7ehQbvau2YrufTmoWL0TESRf06BSHBCScHe4rOE4QAuFtKUKIc3pCC1fP7ET 4AS9C/JR8euj5KqvLq96M7WTyTTcIkUg4efY7haD9N8Fqjt0CfsyzxcieKX4hHrA CUouGgPTdGjrc/GiM8+TRXwVcSQJ9FXbP6jiwBny6HepIh6VsRW3fhzkgOuKa8h4 6tvBhofrAwmLmsiG+Nu53srJuMAwCsGgLnXk5BRx0lUKH0d1ilC5+0cMT99AMuEp D/QCX4P3kARHXjS6CHOYofN/qSfkN1vE7Z84plFM8+5bj+bPKWE2AsFPdD/whGHZ dhKwWXsrMmCAk0l/VXun1aOf6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOAg+3el 84UMW4DrOubuDMSjP7iVMB8GA1UdIwQYMBaAFJF5FRlclxq0Qf3e3m/zzTcudUy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTVDQS82MzQ3Mzc1Njk4 MDYxMUVCQTg3RTI3NjVDNEY5QUUwMi9rWGtWR1Z5WEdyUkJfZDdlYl9QTk55NTFU TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2tYa1ZHVnlYR3JSQl9kN2ViX1BOTnk1MVRMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTVDQS82MzQ3Mzc1Njk4MDYxMUVCQTg3RTI3NjVDNEY5QUUwMi9rWGtWR1Z5WEdy UkJfZDdlYl9QTk55NTFUTFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA72hteecVq7tuCmGwmXGrc6VV9oPftjw4ojJ0fQom/3dOcV2D+rZ5l 3+1GPAK3/xcKUQPBj7JssHdK4Lg6iTWYpmI2eZhg70mSyY7YieugNN2qKZoWDCOS SiHDzMAHi9ODYIwA9stNK9E/ydhZqtwhvmTk2BsYH3CJgAjyzfv32XdmrLUJ/bv1 dUyuTZtAM5FExJ0Xp6AJdlOBJjsZBaAgFSQ61NV7Pa6X5WpOyF9IRiVmz21WmJ7P z4T/k1YEjPum7zG6nF78XHwiDe1hglwe1hPHhumLfZSVALKp95fUnJW8VvtIbMAb 0kgbpa7aqimlO5XVkBdfIEVzB+ZBsuMZ -----END CERTIFICATE-----Generated at Sat Dec 6 20:09:16 2025 by rpki-client