This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft File: keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft (raw, json) Hash identifier: 1thMSW6C01CjQ2fGcsSnq5nwaMKTCZrc2dUHq2HVFLc= Subject key identifier: 5F:6D:24:0B:1E:4F:92:57:A5:8B:18:F2:99:1E:08:29:4F:21:C4:58 Authority key identifier: 91:E6:69:CE:02:15:09:7B:D4:D4:77:A1:A7:44:6B:0D:9D:02:48:FF Certificate issuer: /CN=A91876D9/serialNumber=91E669CE0215097BD4D477A1A7446B0D9D0248FF Certificate serial: 0587 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZpzgIVCXvU1Hehp0RrDZ0CSP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft Manifest number: 0580 Signing time: Sat 20 Dec 2025 22:35:41 +0000 Manifest this update: Sat 20 Dec 2025 22:35:40 +0000 Manifest next update: Sat 27 Dec 2025 22:35:40 +0000 Files and hashes: 1: keZpzgIVCXvU1Hehp0RrDZ0CSP8.crl (hash: 9fPJdCFSCaPna5gbapWQEXHN9j1OlSeyUfQYRDgk0hY=) 2: 5C759146B9D211F0A4846C41C4F9AE02.roa (hash: magF5fHTmiSsewDpIaJLfFLa4fslr0l7IIyluckSvII=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.crl rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZpzgIVCXvU1Hehp0RrDZ0CSP8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 22:35:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1415 (0x587) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91876D9, serialNumber=91E669CE0215097BD4D477A1A7446B0D9D0248FF Validity Not Before: Dec 20 22:35:40 2025 GMT Not After : Dec 27 22:35:40 2025 GMT Subject: CN=694724bd-de64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:24:8b:b6:62:eb:e4:8f:cb:e3:94:69:ab:86: 6d:7d:e6:c0:57:0e:68:4a:67:31:7f:b4:37:85:e7: 99:10:da:1f:04:98:21:f8:3b:d6:dc:79:e6:31:24: a6:18:0b:0c:f3:a4:f7:55:4a:45:8c:b7:05:ce:7d: 66:15:0f:51:d7:7a:cd:4d:31:fc:f1:1b:f2:9b:9a: c9:4c:82:5e:2f:31:45:5b:cf:2b:d9:7e:e9:2c:df: 86:06:26:42:78:b2:df:fc:35:79:d4:f8:0b:ef:9d: c3:5d:f0:e4:09:26:97:7e:9c:ce:bc:82:1a:12:ed: 4c:33:23:25:d2:3d:47:31:b6:dc:94:b2:e4:a9:22: 0e:17:89:66:cf:33:24:79:a4:63:79:c0:fe:29:1f: f1:d1:1d:fc:29:32:9e:79:1b:ef:9e:f3:e2:5f:aa: 78:56:54:4d:02:aa:d2:91:da:76:21:9f:01:91:50: b9:d8:7a:7e:0b:4a:08:a6:80:a8:a9:6d:78:dc:56: 01:77:60:8e:37:7b:c2:bd:38:1f:8a:ec:eb:18:0c: 89:e5:31:b2:b5:4c:72:b0:43:9b:da:36:a1:9f:aa: f4:fa:d3:5a:6d:79:c7:d6:be:0a:02:f9:45:43:47: 9a:e4:a5:a8:05:49:dc:db:26:17:b7:c8:0a:c2:ca: cc:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:6D:24:0B:1E:4F:92:57:A5:8B:18:F2:99:1E:08:29:4F:21:C4:58 X509v3 Authority Key Identifier: keyid:91:E6:69:CE:02:15:09:7B:D4:D4:77:A1:A7:44:6B:0D:9D:02:48:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZpzgIVCXvU1Hehp0RrDZ0CSP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:9d:53:12:97:13:e8:f4:9b:83:23:fc:2b:77:27:cb:e8:00: a8:f1:95:67:e6:d4:af:a3:a4:99:6e:a5:1a:3c:9e:d1:c1:7a: 51:2f:96:ca:31:71:56:6d:6c:e3:2e:36:e1:e8:c5:4c:e2:b0: 7a:f5:65:23:73:a6:32:b0:30:50:ef:5e:5c:72:d8:1f:82:b6: dc:8f:60:7a:0d:b7:76:8e:08:d7:32:30:13:8c:28:7a:e1:c5: c6:58:17:4e:c6:a6:9c:e6:87:7a:d3:7e:1a:1a:e0:ee:97:cd: 8f:fc:24:18:49:03:7d:7c:15:9b:95:7e:0f:a8:cc:d8:7c:4e: b8:51:67:cb:41:c4:ea:30:4a:e8:c1:35:32:0c:a3:bb:d5:84: 81:0c:1f:5e:b9:2e:50:87:10:bd:25:7c:e7:c2:48:df:26:48: 98:ff:b7:a9:f0:6a:f9:6e:15:c4:04:e1:dc:d1:88:da:e6:75: c8:df:28:21:b2:e7:19:75:f7:0a:5c:e3:4d:c0:dd:87:7d:c3: 2c:4e:a4:68:ae:08:a6:fe:c2:be:91:a3:29:9c:61:c9:fc:dd: 36:28:3c:4f:e3:08:d1:25:23:ef:8e:72:c1:99:09:32:18:c8: 60:74:b1:53:16:ac:77:d7:91:d2:f2:8c:ec:9f:66:22:6c:32: 80:fa:4d:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc2RDkxMTAvBgNVBAUTKDkxRTY2OUNFMDIxNTA5N0JENEQ0NzdBMUE3NDQ2QjBE OUQwMjQ4RkYwHhcNMjUxMjIwMjIzNTQwWhcNMjUxMjI3MjIzNTQwWjAYMRYwFAYD VQQDDA02OTQ3MjRiZC1kZTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6CSLtmLr5I/L45Rpq4ZtfebAVw5oSmcxf7Q3heeZENofBJgh+DvW3HnmMSSm GAsM86T3VUpFjLcFzn1mFQ9R13rNTTH88Rvym5rJTIJeLzFFW88r2X7pLN+GBiZC eLLf/DV51PgL753DXfDkCSaXfpzOvIIaEu1MMyMl0j1HMbbclLLkqSIOF4lmzzMk eaRjecD+KR/x0R38KTKeeRvvnvPiX6p4VlRNAqrSkdp2IZ8BkVC52Hp+C0oIpoCo qW143FYBd2CON3vCvTgfiuzrGAyJ5TGytUxysEOb2jahn6r0+tNabXnH1r4KAvlF Q0ea5KWoBUnc2yYXt8gKwsrM0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF9tJAse T5JXpYsY8pkeCClPIcRYMB8GA1UdIwQYMBaAFJHmac4CFQl71NR3oadEaw2dAkj/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzZEOS85MjYwQzY1ODA2 MTgxMUVDQkIyNjJDNUVDNEY5QUUwMi9rZVpwemdJVkNYdlUxSGVocDBSckRaMENT UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tlWnB6Z0lWQ1h2VTFIZWhwMFJyRFowQ1NQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzZEOS85MjYwQzY1ODA2MTgxMUVDQkIyNjJDNUVDNEY5QUUwMi9rZVpwemdJVkNY dlUxSGVocDBSckRaMENTUDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxnVMSlxPo9JuDI/wrdyfL6ACo8ZVn5tSvo6SZbqUaPJ7RwXpRL5bK MXFWbWzjLjbh6MVM4rB69WUjc6YysDBQ715cctgfgrbcj2B6Dbd2jgjXMjATjCh6 4cXGWBdOxqac5od6034aGuDul82P/CQYSQN9fBWblX4PqMzYfE64UWfLQcTqMEro wTUyDKO71YSBDB9euS5QhxC9JXznwkjfJkiY/7ep8Gr5bhXEBOHc0Yja5nXI3ygh sucZdfcKXONNwN2HfcMsTqRorgim/sK+kaMpnGHJ/N02KDxP4wjRJSPvjnLBmQky GMhgdLFTFqx315HS8ozsn2YibDKA+k1I -----END CERTIFICATE-----Generated at Mon Dec 22 07:23:04 2025 by rpki-client