This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft File: KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft (raw, json) Hash identifier: YInQVlpT7ob/EcubeZxXocKEbSop06K2LkBoq6PHt50= Subject key identifier: 82:55:7F:CC:69:5A:0E:F0:52:45:22:11:F5:AE:A1:0B:53:95:29:D5 Authority key identifier: 28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 Certificate issuer: /CN=A91C5021/serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Certificate serial: 07A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft Manifest number: 078A Signing time: Thu 18 Dec 2025 21:01:51 +0000 Manifest this update: Thu 18 Dec 2025 21:01:51 +0000 Manifest next update: Thu 25 Dec 2025 21:01:51 +0000 Files and hashes: 1: KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl (hash: 6HNl0k+Cx6RJ8nnEvb0PelQcmSfrVGuVhSapHoBLk+Q=) 2: C42CEC7ECC3611EF9C79665CC4F9AE02.roa (hash: +9I46oBmobqbn5rox7c5LlYsiP1+hncBa8w/SO0pYyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 21:01:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1953 (0x7a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5021, serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Validity Not Before: Dec 18 21:01:51 2025 GMT Not After : Dec 25 21:01:51 2025 GMT Subject: CN=69446bbf-32e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:48:5f:97:66:15:e9:32:e4:96:9f:22:ef:d3: 99:42:8d:b8:53:64:e9:ff:0f:0d:3f:fd:59:bd:b3: b8:e5:17:8d:ff:7f:50:fc:d1:b6:ce:45:90:b7:15: 6e:e6:66:f2:36:3c:90:dc:0a:77:64:8e:d3:dd:10: 4b:0b:f3:70:08:66:f2:69:8b:fc:8f:d8:34:38:72: 42:24:2f:57:5a:b9:84:7c:0b:9d:08:ce:13:5f:b4: e7:e6:8d:97:49:b9:dd:dd:bb:85:ea:d1:06:71:df: 60:24:9b:40:87:72:20:9d:b8:00:17:85:27:e0:e3: 88:21:cd:fe:ac:ea:21:3c:cd:79:f7:7c:4d:a6:2a: fd:7d:30:68:8f:ae:e2:dc:6c:63:37:6e:de:c2:56: 22:71:a6:83:af:de:42:8e:59:07:f6:ad:17:09:79: f2:a6:e2:dd:0e:35:ee:ec:10:40:1d:45:71:6c:41: 93:aa:49:ad:c1:3a:02:6e:17:9e:27:10:c6:24:4c: e4:62:cd:97:32:f4:31:05:8e:2b:4b:84:c7:c8:32: 6c:5b:f4:02:49:3c:bc:1e:a7:32:52:cc:9a:a4:47: c8:4b:eb:45:40:df:30:03:b3:2e:0b:89:b2:64:d3: 35:b2:c5:d0:86:44:58:c9:e0:13:ea:c2:1c:7f:bd: 95:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:55:7F:CC:69:5A:0E:F0:52:45:22:11:F5:AE:A1:0B:53:95:29:D5 X509v3 Authority Key Identifier: keyid:28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:89:63:7b:08:e4:93:62:98:d9:55:11:cd:5e:a9:1f:31:ae: 77:04:14:0e:9c:75:23:f1:0c:dc:a5:95:a9:b6:6a:35:fc:f8: b9:69:af:87:5d:0f:34:d5:26:c4:c2:1f:08:d7:1b:4b:8f:01: 2c:f1:43:49:74:1f:67:92:b3:fb:d8:f9:0e:32:d5:34:01:4f: 48:de:cc:01:54:05:2a:22:7a:7b:3c:81:8c:b2:6a:bb:bb:1a: f5:c8:e3:71:ec:e5:13:59:f7:22:a1:41:88:c8:35:4c:7e:66: 96:f1:21:c3:ec:7d:b3:9e:ee:f7:66:e7:85:6f:cf:10:90:2b: 93:2e:36:46:7b:92:31:79:d1:70:49:ad:06:df:bb:7f:7a:e5: 5d:7f:f7:ba:52:26:8e:d2:df:81:39:5e:e1:7f:73:24:21:ed: c6:83:71:c9:04:7c:cc:6a:1e:0e:27:79:44:84:66:bb:4f:85: 2e:e5:b9:37:f7:8f:02:d9:2d:f4:5f:ed:72:ea:e8:23:f2:28: 1a:6b:e6:ee:8f:0d:49:0d:84:ba:3e:06:64:c9:85:92:ae:25: 59:ba:7c:f3:09:50:c5:ec:ec:fb:ab:1f:e5:88:2a:12:ea:13: 6d:63:8a:d7:d6:b5:78:74:6e:74:a5:69:62:bd:e5:41:32:55: 1d:dc:9d:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUwMjExMTAvBgNVBAUTKDI4RjA3MTEwRTQzNTg0QTNCQTZBM0E0QTg3RDY4RTlF QjdEM0U5MDIwHhcNMjUxMjE4MjEwMTUxWhcNMjUxMjI1MjEwMTUxWjAYMRYwFAYD VQQDDA02OTQ0NmJiZi0zMmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUhfl2YV6TLklp8i79OZQo24U2Tp/w8NP/1ZvbO45ReN/39Q/NG2zkWQtxVu 5mbyNjyQ3Ap3ZI7T3RBLC/NwCGbyaYv8j9g0OHJCJC9XWrmEfAudCM4TX7Tn5o2X Sbnd3buF6tEGcd9gJJtAh3IgnbgAF4Un4OOIIc3+rOohPM1593xNpir9fTBoj67i 3GxjN27ewlYicaaDr95CjlkH9q0XCXnypuLdDjXu7BBAHUVxbEGTqkmtwToCbhee JxDGJEzkYs2XMvQxBY4rS4THyDJsW/QCSTy8HqcyUsyapEfIS+tFQN8wA7MuC4my ZNM1ssXQhkRYyeAT6sIcf72VcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIJVf8xp Wg7wUkUiEfWuoQtTlSnVMB8GA1UdIwQYMBaAFCjwcRDkNYSjumo6SofWjp630+kC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTAyMS85QUZENDg2QzNC QkMxMUVCQTc3NkYxNjFDNEY5QUUwMi9LUEJ4RU9RMWhLTzZhanBLaDlhT25yZlQ2 UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQQnhFT1ExaEtPNmFqcEtoOWFPbnJmVDZRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTAyMS85QUZENDg2QzNCQkMxMUVCQTc3NkYxNjFDNEY5QUUwMi9LUEJ4RU9RMWhL TzZhanBLaDlhT25yZlQ2UUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUiWN7COSTYpjZVRHNXqkfMa53BBQOnHUj8QzcpZWptmo1/Pi5aa+H XQ801SbEwh8I1xtLjwEs8UNJdB9nkrP72PkOMtU0AU9I3swBVAUqInp7PIGMsmq7 uxr1yONx7OUTWfcioUGIyDVMfmaW8SHD7H2znu73ZueFb88QkCuTLjZGe5IxedFw Sa0G37t/euVdf/e6UiaO0t+BOV7hf3MkIe3Gg3HJBHzMah4OJ3lEhGa7T4Uu5bk3 948C2S30X+1y6ugj8igaa+bujw1JDYS6PgZkyYWSriVZunzzCVDF7Oz7qx/liCoS 6hNtY4rX1rV4dG50pWliveVBMlUd3J3l -----END CERTIFICATE-----Generated at Sat Dec 20 05:00:17 2025 by rpki-client