This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.mft File: kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.mft (raw, json) Hash identifier: JIAVpLvvajdhZljPDnRK8PcyryJ4buyeVV/SnkJSEl0= Subject key identifier: 02:22:96:3C:97:61:C8:20:B4:8A:CD:EC:24:03:F8:49:04:3C:46:EF Authority key identifier: 91:F2:DE:67:C8:E6:5B:B5:33:ED:8F:3C:64:F3:2D:F9:C6:95:C0:57 Certificate issuer: /CN=A91BC1CE/serialNumber=91F2DE67C8E65BB533ED8F3C64F32DF9C695C057 Certificate serial: 10C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.mft Manifest number: 10BB Signing time: Thu 18 Dec 2025 17:09:20 +0000 Manifest this update: Thu 18 Dec 2025 17:09:20 +0000 Manifest next update: Thu 25 Dec 2025 17:09:20 +0000 Files and hashes: 1: kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.crl (hash: PrTadl4pPW+mk0OtBFrtKywU9kpUfWV3ENUsh/0fNLU=) 2: 4178B83237ED11E99B3C9C4AC4F9AE02.roa (hash: XAfo1PZPIVH3Y+cfsdpgLhiwJGHrd3PGIzfnpG6VlMU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.crl rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:09:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4291 (0x10c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC1CE, serialNumber=91F2DE67C8E65BB533ED8F3C64F32DF9C695C057 Validity Not Before: Dec 18 17:09:20 2025 GMT Not After : Dec 25 17:09:20 2025 GMT Subject: CN=69443540-78e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:41:cf:8f:74:22:ed:4d:72:16:9a:4d:5a:5b: 0c:ff:e8:1e:6f:86:76:c4:8f:e4:7a:2f:fb:d3:98: 8a:f7:22:4b:9f:2c:d7:b6:ac:fc:49:1a:c6:13:c8: 19:06:79:ba:72:35:9c:09:39:21:81:22:0f:24:57: e5:4f:7d:f8:b9:9f:90:76:b8:70:69:32:a2:67:7f: 9c:e1:48:1f:d0:27:f2:67:f2:86:95:db:07:1c:4f: 6c:f9:1d:e9:6f:65:94:73:a2:1b:05:6a:ab:35:e8: 54:ef:5c:f1:2f:4a:f2:3b:73:e8:d4:b3:b4:d6:1c: fe:07:94:9d:fe:4c:3e:92:ef:8b:24:89:b2:9e:1b: fc:29:0e:e2:b8:76:08:a0:cd:dd:15:f9:d0:04:92: cf:fc:86:cb:f8:55:31:cc:e2:eb:92:7d:1a:91:d8: 8a:b2:08:87:38:d3:89:2c:66:4a:1b:c4:6d:f0:ce: d9:52:84:f4:b6:39:0d:24:cc:d5:a4:50:31:dd:1a: ac:77:b5:b0:86:ae:9c:8d:66:24:e7:86:67:0e:0e: 66:97:f7:46:b3:ca:19:38:2c:b1:18:dd:b2:01:28: 5a:c5:44:c3:ab:e9:28:69:e9:76:68:c4:9f:c8:f7: ad:5b:2e:6f:42:1a:c2:0f:f0:7f:bd:6a:f3:93:53: 9b:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:22:96:3C:97:61:C8:20:B4:8A:CD:EC:24:03:F8:49:04:3C:46:EF X509v3 Authority Key Identifier: keyid:91:F2:DE:67:C8:E6:5B:B5:33:ED:8F:3C:64:F3:2D:F9:C6:95:C0:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:b9:d4:cc:94:0d:d0:7a:8d:a8:99:55:78:27:9e:3c:c6:ed: 68:dd:77:60:48:59:e1:5c:55:f1:b8:94:31:88:30:48:d4:1d: 4d:a3:b6:cd:51:5f:06:be:0b:5c:a9:c9:9d:11:18:8f:71:25: a8:08:b6:40:e5:e2:47:da:2d:e9:61:15:5a:10:9f:21:91:77: a8:11:0b:f8:32:61:af:5a:41:59:47:7d:24:a2:0b:59:b0:92: 39:50:82:94:7b:1b:cc:8a:b3:6f:d0:52:38:a3:c1:64:6f:77: 84:b5:05:5f:35:b3:03:7a:24:05:c6:34:a4:d3:f8:7e:72:3a: d1:3c:fe:46:3e:e0:33:73:34:26:c6:24:65:d8:79:54:d0:2e: 86:68:80:62:bc:38:fa:04:cd:20:93:c8:5f:27:58:aa:d3:ef: 43:d7:28:1e:04:fd:5e:87:5e:a2:61:ce:ea:6d:2e:d8:1b:8c: 50:98:a0:c9:c7:57:85:45:ea:af:a7:3d:9b:e2:45:db:ed:57: 0c:57:07:18:f2:44:33:07:7b:08:cb:48:bf:17:f5:ae:2e:60: 6e:ac:fe:56:c5:b6:6c:c2:86:92:b6:51:96:84:e7:db:d9:3e: 04:dd:98:fd:81:39:36:f5:be:b9:2e:6c:db:79:14:22:a8:ba: ad:02:35:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMxQ0UxMTAvBgNVBAUTKDkxRjJERTY3QzhFNjVCQjUzM0VEOEYzQzY0RjMyREY5 QzY5NUMwNTcwHhcNMjUxMjE4MTcwOTIwWhcNMjUxMjI1MTcwOTIwWjAYMRYwFAYD VQQDDA02OTQ0MzU0MC03OGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjUHPj3Qi7U1yFppNWlsM/+geb4Z2xI/kei/705iK9yJLnyzXtqz8SRrGE8gZ Bnm6cjWcCTkhgSIPJFflT334uZ+QdrhwaTKiZ3+c4Ugf0CfyZ/KGldsHHE9s+R3p b2WUc6IbBWqrNehU71zxL0ryO3Po1LO01hz+B5Sd/kw+ku+LJImynhv8KQ7iuHYI oM3dFfnQBJLP/IbL+FUxzOLrkn0akdiKsgiHONOJLGZKG8Rt8M7ZUoT0tjkNJMzV pFAx3Rqsd7Wwhq6cjWYk54ZnDg5ml/dGs8oZOCyxGN2yAShaxUTDq+koael2aMSf yPetWy5vQhrCD/B/vWrzk1OboQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAIiljyX YcggtIrN7CQD+EkEPEbvMB8GA1UdIwQYMBaAFJHy3mfI5lu1M+2PPGTzLfnGlcBX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzFDRS8yNEZBNjBFNDM3 RUMxMUU5QTg3NUU4NDhDNEY5QUUwMi9rZkxlWjhqbVc3VXo3WTg4WlBNdC1jYVZ3 RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tmTGVaOGptVzdVejdZODhaUE10LWNhVndGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzFDRS8yNEZBNjBFNDM3RUMxMUU5QTg3NUU4NDhDNEY5QUUwMi9rZkxlWjhqbVc3 VXo3WTg4WlBNdC1jYVZ3RmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsudTMlA3Qeo2omVV4J548xu1o3XdgSFnhXFXxuJQxiDBI1B1No7bN UV8GvgtcqcmdERiPcSWoCLZA5eJH2i3pYRVaEJ8hkXeoEQv4MmGvWkFZR30kogtZ sJI5UIKUexvMirNv0FI4o8Fkb3eEtQVfNbMDeiQFxjSk0/h+cjrRPP5GPuAzczQm xiRl2HlU0C6GaIBivDj6BM0gk8hfJ1iq0+9D1ygeBP1eh16iYc7qbS7YG4xQmKDJ x1eFReqvpz2b4kXb7VcMVwcY8kQzB3sIy0i/F/WuLmBurP5WxbZswoaStlGWhOfb 2T4E3Zj9gTk29b65LmzbeRQiqLqtAjUd -----END CERTIFICATE-----Generated at Fri Dec 19 09:30:42 2025 by rpki-client