This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft File: Klm5bDClX71h0iMDc864nR2wGos.mft (raw, json) Hash identifier: Vfqm5A8bVorzR+mxWNzdPjdlpO6ZSZg6yXHItYJ6/2I= Subject key identifier: 27:94:4B:69:35:CF:54:94:6C:59:22:21:FD:12:72:BF:22:74:E9:01 Authority key identifier: 2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B Certificate issuer: /CN=A91F523F/serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Certificate serial: BF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft Manifest number: BD Signing time: Wed 03 Dec 2025 04:19:27 +0000 Manifest this update: Wed 03 Dec 2025 04:19:26 +0000 Manifest next update: Wed 10 Dec 2025 04:19:26 +0000 Files and hashes: 1: Klm5bDClX71h0iMDc864nR2wGos.crl (hash: S64vCBCxhssfYrBauY84jfvSjW6+0bIa6a91nnDFsqc=) 2: 607B5F6AB05411EF84C8DC74C4F9AE02.roa (hash: CDlWFm2LtxVmYaaBC5EKvKez8sI4jo8CXca3FR8eDpc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 04:19:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F523F, serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Validity Not Before: Dec 3 04:19:26 2025 GMT Not After : Dec 10 04:19:26 2025 GMT Subject: CN=692fba4f-2ac5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c2:84:f2:03:3f:ce:72:8c:83:db:ef:f0:1d: 2f:4b:11:48:c6:3d:76:e0:e0:de:5d:ad:4e:33:b4: 9b:58:32:17:48:b6:fa:68:6f:f8:83:7d:e6:8a:50: e7:05:78:52:f2:d9:f1:21:00:5a:f8:09:95:9a:a2: a7:bf:6a:44:92:21:0e:39:05:0b:e6:cb:6b:19:b8: b3:0c:d2:98:c3:45:02:00:4c:98:5b:78:3d:3b:31: 94:7e:a7:2e:f5:45:c8:d1:eb:33:9e:03:33:43:26: ad:82:62:be:44:08:dc:a1:3f:35:52:0c:ad:0d:29: c8:46:fd:17:f3:7b:27:63:49:58:65:1c:85:4c:d6: 3a:0d:b3:ba:43:38:4b:68:07:25:5f:22:c4:05:92: f6:25:21:b9:76:6e:c9:df:5a:a3:27:24:8c:d5:6b: 51:31:4b:4d:b0:66:fc:03:5c:87:7c:0c:11:a4:39: c1:25:67:9b:c0:fd:d8:c0:b0:48:f8:c2:ad:7f:f7: 3d:d2:ee:4c:5b:c8:e9:0b:8c:7f:9f:4a:d6:39:3b: 64:ec:e4:01:b2:76:7c:8f:2a:5f:b2:68:80:3d:aa: c9:ba:b0:21:e6:1e:42:16:a7:9d:26:88:e8:39:80: f1:82:d7:3a:45:16:e6:76:c0:c2:84:04:c8:c5:31: b0:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:94:4B:69:35:CF:54:94:6C:59:22:21:FD:12:72:BF:22:74:E9:01 X509v3 Authority Key Identifier: keyid:2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:57:d8:1c:8f:1f:3b:49:83:dd:e0:eb:18:08:ca:77:c9:d6: 9c:33:39:d5:6e:58:4e:65:b8:fe:f5:5c:50:6c:c3:97:17:72: 19:70:b3:36:47:0b:93:1b:ea:4a:54:9e:59:f8:30:e5:d4:72: 14:f2:7a:9f:81:8f:90:22:03:a5:26:fc:48:5a:4c:5f:1e:bb: 1d:13:05:4f:30:4d:d0:ff:1d:95:01:08:4e:76:b2:13:dc:94: 81:5f:a0:96:40:5f:eb:1b:de:31:4e:33:02:f0:12:d9:4c:e6: 98:a0:3d:61:90:8e:67:47:b3:33:83:a8:8d:5b:8d:f7:1c:9d: de:3c:0a:40:8b:d9:77:a2:4a:43:9d:21:3a:a2:74:1e:2b:b2: fa:36:5f:47:73:b2:4a:20:a6:d1:76:56:1e:94:ff:c2:75:ab: e8:89:a4:88:f5:0c:60:04:04:ff:19:3f:1e:2a:68:26:6b:d4: cc:54:eb:73:fd:1a:c9:75:36:53:79:42:b1:f3:a7:13:b3:9e: a5:40:89:f7:94:d3:7f:e5:b8:27:25:68:ec:0c:c2:96:a3:71: bf:61:17:7a:92:fd:4f:1c:0f:e8:97:db:8c:8f:31:bb:50:ac: 1c:d2:33:85:4c:b2:f6:ce:8f:8d:25:42:98:5d:7c:24:56:88: d7:2b:bb:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyM0YxMTAvBgNVBAUTKDJBNTlCOTZDMzBBNTVGQkQ2MUQyMjMwMzczQ0VCODlE MURCMDFBOEIwHhcNMjUxMjAzMDQxOTI2WhcNMjUxMjEwMDQxOTI2WjAYMRYwFAYD VQQDEw02OTJmYmE0Zi0yYWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMKE8gM/znKMg9vv8B0vSxFIxj124ODeXa1OM7SbWDIXSLb6aG/4g33milDn BXhS8tnxIQBa+AmVmqKnv2pEkiEOOQUL5strGbizDNKYw0UCAEyYW3g9OzGUfqcu 9UXI0eszngMzQyatgmK+RAjcoT81UgytDSnIRv0X83snY0lYZRyFTNY6DbO6QzhL aAclXyLEBZL2JSG5dm7J31qjJySM1WtRMUtNsGb8A1yHfAwRpDnBJWebwP3YwLBI +MKtf/c90u5MW8jpC4x/n0rWOTtk7OQBsnZ8jypfsmiAParJurAh5h5CFqedJojo OYDxgtc6RRbmdsDChATIxTGwvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCeUS2k1 z1SUbFkiIf0Scr8idOkBMB8GA1UdIwQYMBaAFCpZuWwwpV+9YdIjA3POuJ0dsBqL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTIzRi80RUJBNkIzMkIw NTMxMUVGOUMyQjhEM0ZDNEY5QUUwMi9LbG01YkRDbFg3MWgwaU1EYzg2NG5SMndH b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tsbTViRENsWDcxaDBpTURjODY0blIyd0dvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTIzRi80RUJBNkIzMkIwNTMxMUVGOUMyQjhEM0ZDNEY5QUUwMi9LbG01YkRDbFg3 MWgwaU1EYzg2NG5SMndHb3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9V9gcjx87SYPd4OsYCMp3ydacMznVblhOZbj+9VxQbMOXF3IZcLM2 RwuTG+pKVJ5Z+DDl1HIU8nqfgY+QIgOlJvxIWkxfHrsdEwVPME3Q/x2VAQhOdrIT 3JSBX6CWQF/rG94xTjMC8BLZTOaYoD1hkI5nR7Mzg6iNW433HJ3ePApAi9l3okpD nSE6onQeK7L6Nl9Hc7JKIKbRdlYelP/CdavoiaSI9QxgBAT/GT8eKmgma9TMVOtz /RrJdTZTeUKx86cTs56lQIn3lNN/5bgnJWjsDMKWo3G/YRd6kv1PHA/ol9uMjzG7 UKwc0jOFTLL2zo+NJUKYXXwkVojXK7tQ -----END CERTIFICATE-----Generated at Wed Dec 3 13:56:56 2025 by rpki-client