This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/kbx5rhXMrqROT-eEX7_KY-f6654.mft File: kbx5rhXMrqROT-eEX7_KY-f6654.mft (raw, json) Hash identifier: afMjfnU6CR1PUy0C509EgKxEkLdOT9TOBoP5wK2ZaHI= Subject key identifier: E3:D0:B8:65:9A:28:0D:26:EC:32:49:DA:AC:EF:4C:E6:64:8D:5F:21 Authority key identifier: 91:BC:79:AE:15:CC:AE:A4:4E:4F:E7:84:5F:BF:CA:63:E7:FA:EB:9E Certificate issuer: /CN=A9194335/serialNumber=91BC79AE15CCAEA44E4FE7845FBFCA63E7FAEB9E Certificate serial: 1064 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kbx5rhXMrqROT-eEX7_KY-f6654.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/kbx5rhXMrqROT-eEX7_KY-f6654.mft Manifest number: 1045 Signing time: Mon 22 Dec 2025 17:06:03 +0000 Manifest this update: Mon 22 Dec 2025 17:06:03 +0000 Manifest next update: Mon 29 Dec 2025 17:06:03 +0000 Files and hashes: 1: kbx5rhXMrqROT-eEX7_KY-f6654.crl (hash: sne2BGdq/UUYipgrIH1XgAJTvBFLuv+j6SrCSdBoT2k=) 2: 30BF32F2C28C11EAB764BF4CC4F9AE02.roa (hash: b5DdIZNxNs7SwL8wjURZkRL1TSIObO5dLWDMjnjAx3A=) 3: 13C01CC0C4AD11EA9E35F20AC4F9AE02.roa (hash: fGi0j+kZLxX+sDKoi6qsiuh9Ro/0HWo7bGmH8+R6rpM=) 4: 122F83AAC4AD11EA9E35F20AC4F9AE02.roa (hash: PaWzEjqV0/ZjDMICjXWt//TzGL+Dv5IFMyDSpR6aZdg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/kbx5rhXMrqROT-eEX7_KY-f6654.crl rsync://rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/kbx5rhXMrqROT-eEX7_KY-f6654.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kbx5rhXMrqROT-eEX7_KY-f6654.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:06:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4196 (0x1064) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194335, serialNumber=91BC79AE15CCAEA44E4FE7845FBFCA63E7FAEB9E Validity Not Before: Dec 22 17:06:03 2025 GMT Not After : Dec 29 17:06:03 2025 GMT Subject: CN=69497a7b-22f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:3a:69:8f:cc:1c:1b:14:00:81:1f:09:3c:04: 7b:9d:ed:be:71:ed:10:15:d3:cb:2c:39:58:ae:2f: 9e:f1:71:0f:74:2f:ab:82:d2:9b:e2:b5:c3:82:d4: 99:11:26:0c:28:8f:04:90:13:5c:c5:af:1a:88:88: 7f:08:3f:b7:0d:c3:63:00:fe:ce:a3:f0:7d:17:e9: 46:f6:fd:1c:68:9d:bc:f7:a7:84:fd:1e:65:8a:2f: 5a:f6:60:d7:e7:8b:07:b8:66:b1:d4:bf:b4:ce:09: 59:c3:53:3a:34:c4:26:94:08:8e:ca:45:43:df:ff: 7e:39:0d:f7:e2:40:e4:3e:6a:02:ed:d2:f9:90:6e: ef:f0:f8:36:00:19:f1:59:d5:3e:58:a2:67:bc:89: 96:6b:83:8a:35:15:e7:94:28:2b:7d:e6:7a:87:c7: c3:57:12:83:00:bc:c5:fd:6a:1a:23:2a:4f:80:8a: 25:83:56:3b:8c:20:0f:c0:98:0f:40:b8:ee:ed:80: 10:41:d9:ce:6a:06:0c:11:3c:93:a1:5c:46:9a:75: 70:e2:dc:44:6d:18:aa:91:a7:71:6c:d4:08:22:7c: 49:51:0e:e4:52:bd:08:58:78:2e:e3:80:55:1c:03: 34:fa:26:04:e9:cd:a0:98:7a:0d:4e:09:0b:9e:66: 8a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:D0:B8:65:9A:28:0D:26:EC:32:49:DA:AC:EF:4C:E6:64:8D:5F:21 X509v3 Authority Key Identifier: keyid:91:BC:79:AE:15:CC:AE:A4:4E:4F:E7:84:5F:BF:CA:63:E7:FA:EB:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/kbx5rhXMrqROT-eEX7_KY-f6654.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kbx5rhXMrqROT-eEX7_KY-f6654.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/kbx5rhXMrqROT-eEX7_KY-f6654.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:e1:f4:06:3c:a7:bd:15:b1:7b:08:b2:50:8a:c1:7c:4d:9f: 1e:3d:33:46:8e:28:d0:39:2d:9d:39:09:fa:eb:e7:3c:59:97: 62:51:71:aa:e3:0e:bb:dd:dd:df:c8:36:da:87:fd:a6:f9:e1: 2a:b8:95:d4:36:80:41:38:2c:db:d2:52:f0:8d:d1:41:77:5b: 8a:c9:c7:b7:d0:46:c9:16:45:a4:91:7c:f2:02:cc:b4:48:5d: ae:9b:6b:94:da:61:a6:df:7e:f4:8b:a6:05:3a:8c:18:dd:b6: 57:6b:64:e8:79:f8:e7:ca:b7:c4:a2:40:73:43:ec:63:4c:df: a6:f6:fe:3b:69:3e:66:73:6c:9a:87:0a:c7:5a:32:ab:99:3b: 03:cc:fe:04:49:70:2b:db:fc:8d:c8:7e:86:4c:cb:14:8a:35: bf:9c:c2:b6:b0:22:b5:e8:da:8d:77:ca:ed:4b:0f:0d:e4:be: 53:2e:07:c5:23:0c:2f:38:96:0c:51:e4:5d:40:85:40:f1:6c: 64:cf:7a:43:c0:78:03:b9:51:a5:e8:2c:b1:72:89:5d:1d:06: 9a:e7:a3:ea:83:0d:fd:f7:69:11:01:33:48:7c:6b:8c:61:04: 9b:c4:8e:70:84:95:7e:b2:7b:dc:b6:33:12:c6:14:e1:d8:95: ef:31:0c:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQzMzUxMTAvBgNVBAUTKDkxQkM3OUFFMTVDQ0FFQTQ0RTRGRTc4NDVGQkZDQTYz RTdGQUVCOUUwHhcNMjUxMjIyMTcwNjAzWhcNMjUxMjI5MTcwNjAzWjAYMRYwFAYD VQQDDA02OTQ5N2E3Yi0yMmYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmzppj8wcGxQAgR8JPAR7ne2+ce0QFdPLLDlYri+e8XEPdC+rgtKb4rXDgtSZ ESYMKI8EkBNcxa8aiIh/CD+3DcNjAP7Oo/B9F+lG9v0caJ2896eE/R5lii9a9mDX 54sHuGax1L+0zglZw1M6NMQmlAiOykVD3/9+OQ334kDkPmoC7dL5kG7v8Pg2ABnx WdU+WKJnvImWa4OKNRXnlCgrfeZ6h8fDVxKDALzF/WoaIypPgIolg1Y7jCAPwJgP QLju7YAQQdnOagYMETyToVxGmnVw4txEbRiqkadxbNQIInxJUQ7kUr0IWHgu44BV HAM0+iYE6c2gmHoNTgkLnmaK/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOPQuGWa KA0m7DJJ2qzvTOZkjV8hMB8GA1UdIwQYMBaAFJG8ea4VzK6kTk/nhF+/ymPn+uue MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDMzNS8zNDJEMjIyODUx RDExMUU5QUYxRkY3M0NDNEY5QUUwMi9rYng1cmhYTXJxUk9ULWVFWDdfS1ktZjY2 NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tieDVyaFhNcnFST1QtZUVYN19LWS1mNjY1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDMzNS8zNDJEMjIyODUxRDExMUU5QUYxRkY3M0NDNEY5QUUwMi9rYng1cmhYTXJx Uk9ULWVFWDdfS1ktZjY2NTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA24fQGPKe9FbF7CLJQisF8TZ8ePTNGjijQOS2dOQn66+c8WZdiUXGq 4w673d3fyDbah/2m+eEquJXUNoBBOCzb0lLwjdFBd1uKyce30EbJFkWkkXzyAsy0 SF2um2uU2mGm3370i6YFOowY3bZXa2ToefjnyrfEokBzQ+xjTN+m9v47aT5mc2ya hwrHWjKrmTsDzP4ESXAr2/yNyH6GTMsUijW/nMK2sCK16NqNd8rtSw8N5L5TLgfF IwwvOJYMUeRdQIVA8Wxkz3pDwHgDuVGl6CyxcoldHQaa56Pqgw3992kRATNIfGuM YQSbxI5whJV+snvctjMSxhTh2JXvMQw9 -----END CERTIFICATE-----Generated at Mon Dec 22 20:46:54 2025 by rpki-client