This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft File: kQglePceS4YFfcPrBwP-ZYnmaJE.mft (raw, json) Hash identifier: plaa6RglI34diOEM/EQIGqyplOEwMS//ki15hx8ffnE= Subject key identifier: D0:CA:A8:58:38:93:58:C0:B5:48:34:E0:C1:C6:86:CF:CE:33:F6:EF Authority key identifier: 91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 Certificate issuer: /CN=A91BC039/serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Certificate serial: C9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft Manifest number: C7 Signing time: Tue 02 Dec 2025 22:25:13 +0000 Manifest this update: Tue 02 Dec 2025 22:25:13 +0000 Manifest next update: Tue 09 Dec 2025 22:25:12 +0000 Files and hashes: 1: kQglePceS4YFfcPrBwP-ZYnmaJE.crl (hash: gCEEzJho2Nbe6Idf1C1BJIv1BC6hFA3FeTPpRYGIhwM=) 2: 1167F6B2A18211EFA7475221C4F9AE02.roa (hash: V0ubCLoQg1VTBDouQoudPE1DyZNQvqeyyMrWFtDfDUs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 22:25:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039, serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Validity Not Before: Dec 2 22:25:13 2025 GMT Not After : Dec 9 22:25:12 2025 GMT Subject: CN=692f6749-3faa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:82:9b:53:ed:b1:53:4e:e4:43:fe:2f:d7:4a: 8f:5c:64:7b:38:3b:36:98:5d:65:93:fc:61:94:79: 81:c3:06:73:62:58:c8:cb:e6:6b:d2:aa:08:08:9e: ed:72:bb:36:ae:5a:8f:a3:20:9c:a8:bd:d6:0f:ac: 27:73:5d:0f:17:6e:23:99:3c:e7:cb:96:92:92:51: 1c:8c:30:88:6c:6f:f2:09:ce:ff:4d:7d:73:db:a0: 91:32:0b:d7:ec:57:7d:f7:d0:8c:da:91:f4:ae:e6: be:26:4b:00:c1:92:41:0a:95:2f:7e:4a:16:a5:00: 9a:09:53:9d:dc:fa:42:8a:30:ce:82:5f:fb:42:5d: 80:d9:d9:bb:7b:a1:d1:f3:c3:31:83:d6:04:5c:2e: ca:db:73:5f:10:42:d7:df:f3:16:96:66:ed:fa:78: 5f:90:47:54:69:8b:1e:bd:70:28:22:e7:fc:92:98: dd:74:1c:13:88:81:07:b1:ce:6b:6c:b2:93:6c:6f: 63:a2:3c:a6:ac:ee:e8:23:5a:6a:44:49:d4:03:e9: ca:41:ca:21:1f:8a:51:b0:f1:a1:78:5a:6f:40:e6: ac:a9:c8:9d:ed:8c:76:c7:3a:8c:10:75:04:fc:ec: 01:ad:d6:c8:fd:a9:19:b4:22:48:c1:4f:77:42:37: 56:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:CA:A8:58:38:93:58:C0:B5:48:34:E0:C1:C6:86:CF:CE:33:F6:EF X509v3 Authority Key Identifier: keyid:91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:1a:ed:36:96:e2:c5:58:6f:92:93:f7:97:eb:98:f4:ca:5d: b9:1f:1a:4f:3f:a3:d1:27:ae:29:ef:59:ec:ef:0f:21:1d:ca: 50:4f:b1:80:fa:5d:6a:d9:df:22:0c:cf:e4:5f:55:31:0e:98: da:a8:c8:5a:95:e8:4c:6f:28:43:00:00:43:a1:ac:c7:16:75: b0:90:9a:48:aa:dc:41:f7:d5:51:94:01:a6:37:1a:d4:6c:37: d6:9f:5d:9e:46:3b:08:f9:aa:84:a9:e3:fc:c3:4c:ea:7e:53: ad:3a:71:21:8a:7c:51:72:fc:70:0d:fb:60:62:31:53:b8:86: b7:2d:b9:6c:4a:8a:36:16:cf:4d:5e:a4:d9:10:a4:45:c6:64: 0a:3a:93:64:58:d9:c0:49:94:0b:ae:48:26:b2:ec:eb:cb:e6: 1b:bd:83:99:e9:3d:e4:c3:1f:e4:d6:cd:62:09:1e:3c:2e:e2: d0:f5:09:71:12:6a:44:71:92:97:50:f0:c7:24:a4:0c:19:12: b7:a9:aa:e6:37:f7:35:27:f5:74:76:80:0a:9a:13:17:46:c0: 18:24:17:12:cb:bc:95:e6:0e:40:3e:3c:57:75:48:63:c8:83: 75:e7:85:55:60:95:bd:0d:87:74:f4:ab:c8:49:1c:99:34:25: fb:d5:eb:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMwMzkxMTAvBgNVBAUTKDkxMDgyNTc4RjcxRTRCODYwNTdEQzNFQjA3MDNGRTY1 ODlFNjY4OTEwHhcNMjUxMjAyMjIyNTEzWhcNMjUxMjA5MjIyNTEyWjAYMRYwFAYD VQQDEw02OTJmNjc0OS0zZmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyIKbU+2xU07kQ/4v10qPXGR7ODs2mF1lk/xhlHmBwwZzYljIy+Zr0qoICJ7t crs2rlqPoyCcqL3WD6wnc10PF24jmTzny5aSklEcjDCIbG/yCc7/TX1z26CRMgvX 7Fd999CM2pH0rua+JksAwZJBCpUvfkoWpQCaCVOd3PpCijDOgl/7Ql2A2dm7e6HR 88Mxg9YEXC7K23NfEELX3/MWlmbt+nhfkEdUaYsevXAoIuf8kpjddBwTiIEHsc5r bLKTbG9jojymrO7oI1pqREnUA+nKQcohH4pRsPGheFpvQOasqcid7Yx2xzqMEHUE /OwBrdbI/akZtCJIwU93QjdWUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNDKqFg4 k1jAtUg04MHGhs/OM/bvMB8GA1UdIwQYMBaAFJEIJXj3HkuGBX3D6wcD/mWJ5miR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzAzOS8xNTM0QTA1QUEx NzQxMUVGQkY2MTY2MjRDNEY5QUUwMi9rUWdsZVBjZVM0WUZmY1ByQndQLVpZbm1h SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tRZ2xlUGNlUzRZRmZjUHJCd1AtWllubWFKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzAzOS8xNTM0QTA1QUExNzQxMUVGQkY2MTY2MjRDNEY5QUUwMi9rUWdsZVBjZVM0 WUZmY1ByQndQLVpZbm1hSkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYGu02luLFWG+Sk/eX65j0yl25HxpPP6PRJ64p71ns7w8hHcpQT7GA +l1q2d8iDM/kX1UxDpjaqMhalehMbyhDAABDoazHFnWwkJpIqtxB99VRlAGmNxrU bDfWn12eRjsI+aqEqeP8w0zqflOtOnEhinxRcvxwDftgYjFTuIa3LblsSoo2Fs9N XqTZEKRFxmQKOpNkWNnASZQLrkgmsuzry+YbvYOZ6T3kwx/k1s1iCR48LuLQ9Qlx EmpEcZKXUPDHJKQMGRK3qarmN/c1J/V0doAKmhMXRsAYJBcSy7yV5g5APjxXdUhj yIN154VVYJW9DYd09KvISRyZNCX71ets -----END CERTIFICATE-----Generated at Wed Dec 3 13:58:26 2025 by rpki-client