This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft File: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft (raw, json) Hash identifier: 6M4IZ7rvIADZLG66dT9s4EUuf8XzskepSfH67MYa7mI= Subject key identifier: D0:AF:06:F5:8B:04:F8:96:B5:C3:45:91:15:03:03:3A:93:84:D8:EE Authority key identifier: 2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 Certificate issuer: /CN=A91F4F00/serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Certificate serial: 07F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft Manifest number: 07EB Signing time: Mon 22 Dec 2025 20:29:07 +0000 Manifest this update: Mon 22 Dec 2025 20:29:07 +0000 Manifest next update: Mon 29 Dec 2025 20:29:07 +0000 Files and hashes: 1: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl (hash: yrT5BUgMG3ymfhieDjtW+hztFD1iPHjw4UN6dIOZedw=) 2: E7BAB834B5F511F0B410AD78C4F9AE02.roa (hash: fxQZfbaLKR/d/fZu/fhyY8IFle3U5GHLuzj+qPAQsuQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:29:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2037 (0x7f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4F00, serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Validity Not Before: Dec 22 20:29:07 2025 GMT Not After : Dec 29 20:29:07 2025 GMT Subject: CN=6949aa13-8293 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:13:4a:ee:0c:19:7b:1b:c1:e0:27:2b:78:2a: 71:5f:40:25:f1:00:23:6c:39:1a:d6:56:21:10:15: 30:12:c3:db:75:a6:70:e8:40:b4:cb:06:27:3a:98: 40:e9:44:4c:a2:a7:7b:b5:60:54:e7:f7:eb:97:33: ac:49:10:2b:6e:f8:93:ce:5c:11:bc:89:83:99:e1: 7b:af:b6:61:5c:a1:19:aa:39:dd:10:65:19:b9:95: 66:ae:c5:10:03:19:03:9b:ed:85:a1:50:c2:2e:0e: 00:1b:c0:94:5e:01:10:76:e2:90:30:94:44:5e:9a: fa:af:98:be:93:8d:98:ac:61:fa:b9:35:27:d3:5f: e0:7e:3c:18:5e:5d:63:d5:02:05:45:54:0a:4a:4a: 0a:1d:b6:40:38:5e:16:72:5b:46:34:8f:47:f9:f2: a3:4c:dc:2f:28:2d:1a:94:a8:19:3b:68:3f:d6:b8: 6c:ca:07:9a:38:36:56:46:89:5a:91:b5:ae:81:7f: 1e:c0:b9:b4:c2:84:c8:7b:7a:9d:9c:c3:35:94:4d: f6:df:e5:04:4e:58:f8:e3:78:a0:13:bb:49:a9:66: 84:a9:d4:16:56:45:89:51:56:66:f3:82:35:45:2b: 5d:1a:2f:15:e7:f4:d1:c4:e2:8b:00:47:31:be:b0: 9e:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:AF:06:F5:8B:04:F8:96:B5:C3:45:91:15:03:03:3A:93:84:D8:EE X509v3 Authority Key Identifier: keyid:2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:19:eb:74:b7:e5:3c:a3:31:f4:4f:51:4b:a0:ac:10:af:3c: 13:d5:2b:e2:24:01:cc:28:f6:c5:f5:05:79:3f:e5:4a:5f:71: 3a:3b:f6:3e:cb:17:5a:e4:45:90:18:ed:d6:a1:1a:0b:a4:7a: 6e:c2:f3:eb:cc:49:9b:4c:a1:bd:ac:4f:43:84:bb:c4:da:13: 22:fb:29:c1:5f:c0:56:f0:cc:90:68:41:21:2f:61:c0:17:9a: ba:8e:18:70:69:ab:24:d7:71:eb:b6:a2:aa:51:7a:d2:ce:ee: 44:50:23:da:f9:1e:f1:b0:f4:0a:16:74:d3:4d:89:86:c9:b5: 1b:4a:39:8f:98:02:3d:ab:3d:48:42:28:45:9d:c0:7b:16:79: 8b:c6:d0:cb:84:71:d8:3a:53:27:54:cf:ee:60:93:ef:18:45: b1:a5:bc:f8:5f:ec:b2:83:6d:77:5e:8a:bb:42:cf:fc:6f:38: 2d:de:e1:64:61:da:98:69:0e:63:1f:38:99:bb:76:a6:0d:8c: 71:3b:3e:2c:b3:e9:75:60:42:e8:43:9d:90:4c:42:d0:15:61: 44:ba:2e:70:ed:ba:05:c8:27:fb:7a:fb:cb:70:fe:99:b4:ea: 10:cc:21:bd:11:50:1d:8a:9b:7d:62:56:d7:b5:bb:84:37:2d: b5:f1:4a:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGMDAxMTAvBgNVBAUTKDJCM0VFNDRFQTlDQjVCODEyOTZCQjY3REYwRjU0NkY4 QUFDOEE0QjQwHhcNMjUxMjIyMjAyOTA3WhcNMjUxMjI5MjAyOTA3WjAYMRYwFAYD VQQDDA02OTQ5YWExMy04MjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRNK7gwZexvB4CcreCpxX0Al8QAjbDka1lYhEBUwEsPbdaZw6EC0ywYnOphA 6URMoqd7tWBU5/frlzOsSRArbviTzlwRvImDmeF7r7ZhXKEZqjndEGUZuZVmrsUQ AxkDm+2FoVDCLg4AG8CUXgEQduKQMJREXpr6r5i+k42YrGH6uTUn01/gfjwYXl1j 1QIFRVQKSkoKHbZAOF4WcltGNI9H+fKjTNwvKC0alKgZO2g/1rhsygeaODZWRola kbWugX8ewLm0woTIe3qdnMM1lE323+UETlj443igE7tJqWaEqdQWVkWJUVZm84I1 RStdGi8V5/TRxOKLAEcxvrCeEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNCvBvWL BPiWtcNFkRUDAzqThNjuMB8GA1UdIwQYMBaAFCs+5E6py1uBKWu2ffD1RviqyKS0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEYwMC8zREE2OTAxNjEz NTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0RXBhN1o5OFBWRy1Lcklw TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t6N2tUcW5MVzRFcGE3Wjk4UFZHLUtySXBMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEYwMC8zREE2OTAxNjEzNTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0 RXBhN1o5OFBWRy1LcklwTFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGGet0t+U8ozH0T1FLoKwQrzwT1SviJAHMKPbF9QV5P+VKX3E6O/Y+ yxda5EWQGO3WoRoLpHpuwvPrzEmbTKG9rE9DhLvE2hMi+ynBX8BW8MyQaEEhL2HA F5q6jhhwaask13HrtqKqUXrSzu5EUCPa+R7xsPQKFnTTTYmGybUbSjmPmAI9qz1I QihFncB7FnmLxtDLhHHYOlMnVM/uYJPvGEWxpbz4X+yyg213Xoq7Qs/8bzgt3uFk YdqYaQ5jHziZu3amDYxxOz4ss+l1YELoQ52QTELQFWFEui5w7boFyCf7evvLcP6Z tOoQzCG9EVAdipt9YlbXtbuENy218Uo2 -----END CERTIFICATE-----Generated at Wed Dec 24 19:29:38 2025 by rpki-client