This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft File: KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft (raw, json) Hash identifier: p6zih3gebEfdCs8N1iimXPtTSJSnW2VLrIpSqsEDVxo= Subject key identifier: 44:A5:35:9B:F4:13:DC:DE:8B:40:A6:E3:93:86:47:22:5C:76:56:29 Authority key identifier: 29:0C:40:10:FA:DC:47:69:47:E0:09:3F:43:F7:00:4F:0D:7C:5C:1C Certificate issuer: /CN=A91A3456/serialNumber=290C4010FADC476947E0093F43F7004F0D7C5C1C Certificate serial: 0B7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft Manifest number: 0B75 Signing time: Mon 22 Dec 2025 18:36:17 +0000 Manifest this update: Mon 22 Dec 2025 18:36:17 +0000 Manifest next update: Mon 29 Dec 2025 18:36:17 +0000 Files and hashes: 1: KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl (hash: hJz2KUcLS/2AeOT1aCdHqI1P9I6baC6sN6lTPFkm22c=) 2: 496096EE41A311EABAADCE0AC4F9AE02.roa (hash: PulA86jFfi+mSmGrurNlPPzi/J9i4GAt5gWrp9tpCBs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:36:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2940 (0xb7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3456, serialNumber=290C4010FADC476947E0093F43F7004F0D7C5C1C Validity Not Before: Dec 22 18:36:17 2025 GMT Not After : Dec 29 18:36:17 2025 GMT Subject: CN=69498fa1-bc8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:bc:07:95:92:da:7c:c1:79:15:8d:f3:c3:91: fd:7f:a5:13:18:75:8c:6a:5e:44:5d:9c:6a:1a:d9: e4:82:36:af:dc:55:26:ad:19:20:c0:54:66:11:1f: 77:72:fa:43:00:60:ff:dd:89:31:46:2b:93:fd:a1: e5:c1:cd:b6:75:c7:0e:8e:eb:f8:2b:10:4c:b2:e1: 48:14:40:11:3f:75:42:36:15:0c:94:c5:18:ed:f6: ea:b0:3e:eb:db:b0:61:54:24:90:46:55:83:23:b2: 0d:27:25:4f:95:fc:75:90:23:83:8a:1f:a1:14:ae: 0a:f8:f0:04:14:90:40:c0:d5:a7:46:09:5b:15:ea: a5:7f:31:1c:04:6a:94:46:f2:50:b9:cb:5e:70:c8: 46:0a:63:d2:ec:9f:9a:3e:78:12:7f:fa:8f:8e:98: a6:8e:c2:df:bf:8e:42:c4:7c:c5:a5:97:53:9d:7a: d4:c7:b9:db:fb:95:83:53:e2:a2:07:dd:15:64:50: 30:67:3d:fe:a3:13:2a:b8:79:59:b9:43:cf:3a:65: be:bb:78:21:2b:39:7e:84:fa:16:a9:6b:b5:e3:2d: 4f:d2:58:18:f5:7b:87:1a:0f:f7:f6:1e:7a:d1:90: f7:be:2d:23:9f:9c:b6:d0:9f:2b:41:ce:2c:65:0b: dd:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:A5:35:9B:F4:13:DC:DE:8B:40:A6:E3:93:86:47:22:5C:76:56:29 X509v3 Authority Key Identifier: keyid:29:0C:40:10:FA:DC:47:69:47:E0:09:3F:43:F7:00:4F:0D:7C:5C:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:a7:5b:6d:e6:4f:99:c9:01:2d:98:c5:b3:0b:ff:21:00:14: 8e:e8:ed:ad:49:c5:9a:20:ed:dd:3a:33:d4:c3:00:35:62:81: d7:52:02:7f:85:d0:28:bb:45:33:48:4b:4e:7f:5f:31:12:f7: d5:b1:34:a1:c8:88:0a:21:93:f8:2e:9a:53:48:a3:d3:33:25: bf:e4:aa:0f:9f:8d:9b:d8:74:fd:b6:bd:29:1a:d2:61:10:74: 5d:98:21:ed:55:ef:14:33:91:2b:96:eb:76:1f:fe:a7:f2:39: 60:23:f2:98:18:a9:a6:51:bf:44:5b:f6:03:4d:17:40:a4:81: 57:78:4a:57:e3:62:3f:ae:6d:2c:cf:c9:7e:2d:1c:a4:a7:c8: 74:aa:9e:b4:91:40:28:d7:1a:23:b1:9d:87:4b:83:26:21:b9: 8f:7d:cf:3a:bc:f8:38:81:e8:ab:c6:0e:72:d5:2e:80:c5:95: 83:54:f8:09:0d:8b:e7:46:a2:8c:1b:ae:9c:3e:a5:d7:fb:f4: 46:2f:cc:91:88:82:18:13:87:2f:6f:5d:98:06:a5:6c:3e:e4: c9:00:27:68:cf:16:3b:ea:db:61:a9:4b:59:1d:b5:62:f0:66: d3:f0:68:d9:9e:99:3c:a4:fe:98:27:ef:c0:c8:d4:1a:93:06: de:0a:9d:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM0NTYxMTAvBgNVBAUTKDI5MEM0MDEwRkFEQzQ3Njk0N0UwMDkzRjQzRjcwMDRG MEQ3QzVDMUMwHhcNMjUxMjIyMTgzNjE3WhcNMjUxMjI5MTgzNjE3WjAYMRYwFAYD VQQDDA02OTQ5OGZhMS1iYzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbwHlZLafMF5FY3zw5H9f6UTGHWMal5EXZxqGtnkgjav3FUmrRkgwFRmER93 cvpDAGD/3YkxRiuT/aHlwc22dccOjuv4KxBMsuFIFEARP3VCNhUMlMUY7fbqsD7r 27BhVCSQRlWDI7INJyVPlfx1kCODih+hFK4K+PAEFJBAwNWnRglbFeqlfzEcBGqU RvJQuctecMhGCmPS7J+aPngSf/qPjpimjsLfv45CxHzFpZdTnXrUx7nb+5WDU+Ki B90VZFAwZz3+oxMquHlZuUPPOmW+u3ghKzl+hPoWqWu14y1P0lgY9XuHGg/39h56 0ZD3vi0jn5y20J8rQc4sZQvdAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFESlNZv0 E9zei0Cm45OGRyJcdlYpMB8GA1UdIwQYMBaAFCkMQBD63EdpR+AJP0P3AE8NfFwc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzQ1Ni82QzI3RjI1QTQx QTExMUVBQTQ3RDFFODZDNEY5QUUwMi9LUXhBRVByY1IybEg0QWtfUV9jQVR3MThY QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tReEFFUHJjUjJsSDRBa19RX2NBVHcxOFhCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzQ1Ni82QzI3RjI1QTQxQTExMUVBQTQ3RDFFODZDNEY5QUUwMi9LUXhBRVByY1Iy bEg0QWtfUV9jQVR3MThYQncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHp1tt5k+ZyQEtmMWzC/8hABSO6O2tScWaIO3dOjPUwwA1YoHXUgJ/ hdAou0UzSEtOf18xEvfVsTShyIgKIZP4LppTSKPTMyW/5KoPn42b2HT9tr0pGtJh EHRdmCHtVe8UM5Erlut2H/6n8jlgI/KYGKmmUb9EW/YDTRdApIFXeEpX42I/rm0s z8l+LRykp8h0qp60kUAo1xojsZ2HS4MmIbmPfc86vPg4geirxg5y1S6AxZWDVPgJ DYvnRqKMG66cPqXX+/RGL8yRiIIYE4cvb12YBqVsPuTJACdozxY76tthqUtZHbVi 8GbT8GjZnpk8pP6YJ+/AyNQakwbeCp1W -----END CERTIFICATE-----Generated at Tue Dec 23 10:02:34 2025 by rpki-client