This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91113A5/E57F35924B7711F0B1CB9E27C4F9AE02/kCG-_ztj7nJIuQ3apd2_p-MSHNk.mft File: kCG-_ztj7nJIuQ3apd2_p-MSHNk.mft (raw, json) Hash identifier: wNFZlHoYlT3Qh2QzCDciELNvNvwmepfE220VuztQMM0= Subject key identifier: 79:BF:AE:6D:77:DC:ED:97:FA:FA:92:A2:9C:0C:62:69:03:42:7C:DB Authority key identifier: 90:21:BE:FF:3B:63:EE:72:48:B9:0D:DA:A5:DD:BF:A7:E3:12:1C:D9 Certificate issuer: /CN=A91113A5/serialNumber=9021BEFF3B63EE7248B90DDAA5DDBFA7E3121CD9 Certificate serial: 5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCG-_ztj7nJIuQ3apd2_p-MSHNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91113A5/E57F35924B7711F0B1CB9E27C4F9AE02/kCG-_ztj7nJIuQ3apd2_p-MSHNk.mft Manifest number: 5A Signing time: Sun 07 Dec 2025 05:12:53 +0000 Manifest this update: Sun 07 Dec 2025 05:12:52 +0000 Manifest next update: Sun 14 Dec 2025 05:12:52 +0000 Files and hashes: 1: kCG-_ztj7nJIuQ3apd2_p-MSHNk.crl (hash: cwr86xS8dk6tHs/olTEZBRJdQ8o3bCZBKEzokouKafY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91113A5/E57F35924B7711F0B1CB9E27C4F9AE02/kCG-_ztj7nJIuQ3apd2_p-MSHNk.crl rsync://rpki.apnic.net/member_repository/A91113A5/E57F35924B7711F0B1CB9E27C4F9AE02/kCG-_ztj7nJIuQ3apd2_p-MSHNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCG-_ztj7nJIuQ3apd2_p-MSHNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 05:12:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91113A5, serialNumber=9021BEFF3B63EE7248B90DDAA5DDBFA7E3121CD9 Validity Not Before: Dec 7 05:12:52 2025 GMT Not After : Dec 14 05:12:52 2025 GMT Subject: CN=69350cd5-d0e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d8:64:fb:db:f8:de:9d:7c:db:9e:1d:46:48: 9e:f5:27:0f:d0:13:5f:ee:b4:8a:c4:0e:f2:77:95: 68:2f:ea:80:8a:8a:59:c1:79:9e:9a:65:46:bb:57: 39:cb:36:50:9f:92:5e:8f:1e:cb:c4:88:ae:4c:40: 04:26:81:c4:c5:bd:18:32:0e:25:ad:5f:11:f0:de: b3:a5:61:19:1a:74:ad:9a:9c:19:87:86:dc:ce:0d: a1:a9:eb:44:dc:f3:48:b5:43:71:07:87:6f:81:d6: ff:8b:e9:3e:1d:a2:de:49:4e:9e:ca:5a:ad:20:e5: 4b:57:42:d5:c3:c6:64:bc:90:12:b9:72:6b:aa:90: fd:e7:f0:aa:02:ec:65:75:49:42:73:58:ae:b3:f3: c4:66:d8:59:b2:16:65:a1:dc:03:94:9f:87:b4:e4: 36:38:84:c6:8e:ea:01:34:b0:35:8c:ee:69:03:0f: 64:cd:f2:39:06:38:ab:3f:ea:c3:87:d3:9f:3f:7d: ab:13:f3:a1:bd:f3:40:e3:92:87:23:21:df:83:6d: be:61:7e:92:fd:33:1d:7e:da:2c:8d:cc:59:da:72: e2:00:e8:3b:13:6b:8f:2b:d8:73:7d:bd:33:b5:d1: dd:ef:22:dd:7e:34:60:f5:58:3d:f2:ef:19:ef:95: 0a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:BF:AE:6D:77:DC:ED:97:FA:FA:92:A2:9C:0C:62:69:03:42:7C:DB X509v3 Authority Key Identifier: keyid:90:21:BE:FF:3B:63:EE:72:48:B9:0D:DA:A5:DD:BF:A7:E3:12:1C:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91113A5/E57F35924B7711F0B1CB9E27C4F9AE02/kCG-_ztj7nJIuQ3apd2_p-MSHNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCG-_ztj7nJIuQ3apd2_p-MSHNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91113A5/E57F35924B7711F0B1CB9E27C4F9AE02/kCG-_ztj7nJIuQ3apd2_p-MSHNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:b2:6b:14:fe:b3:ad:77:30:b0:32:9b:cf:d6:51:2b:80:eb: 94:32:0a:32:46:72:c3:14:7c:01:46:d3:b0:53:88:c3:ed:3d: 4e:0c:0c:ee:87:04:5e:3b:4f:9b:8e:33:cb:f4:0d:a6:b9:74: b8:fc:72:2a:d2:48:a2:4a:5c:a2:1d:13:c8:c0:da:f6:e0:cc: c1:c0:40:f2:40:2c:bf:8c:6d:74:61:ee:c4:ec:f9:29:9d:22: f9:8b:76:7a:16:5e:6c:f7:32:61:64:b9:0b:e3:7f:4c:d4:ad: f5:ab:49:74:6d:bb:5a:f5:06:e9:80:51:32:70:42:75:2b:86: 3e:72:91:0d:92:44:16:8b:f7:33:c8:6e:a6:d8:fd:70:f7:4a: 72:92:7a:f7:d7:9d:32:64:9c:bc:b2:7b:3e:2f:6b:d4:13:e3: de:d5:2b:37:6d:6c:5f:36:59:12:80:39:26:ed:27:42:ca:c4: 3c:0c:e0:9f:19:b3:aa:de:61:24:2f:10:67:f7:72:21:ff:bd: 48:50:41:9e:cd:a4:c5:6b:32:c8:4d:3d:ea:35:0b:f3:f2:a5: d0:cd:5d:52:85:87:e5:ec:80:30:3e:c1:15:64:b9:63:97:99: dc:7a:11:f3:f6:38:bf:07:8b:35:1a:b3:4b:47:63:ec:38:21: 44:55:89:3a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MTNBNTExMC8GA1UEBRMoOTAyMUJFRkYzQjYzRUU3MjQ4QjkwRERBQTVEREJGQTdF MzEyMUNEOTAeFw0yNTEyMDcwNTEyNTJaFw0yNTEyMTQwNTEyNTJaMBgxFjAUBgNV BAMTDTY5MzUwY2Q1LWQwZTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCx2GT72/jenXzbnh1GSJ71Jw/QE1/utIrEDvJ3lWgv6oCKilnBeZ6aZUa7VznL NlCfkl6PHsvEiK5MQAQmgcTFvRgyDiWtXxHw3rOlYRkadK2anBmHhtzODaGp60Tc 80i1Q3EHh2+B1v+L6T4dot5JTp7KWq0g5UtXQtXDxmS8kBK5cmuqkP3n8KoC7GV1 SUJzWK6z88Rm2FmyFmWh3AOUn4e05DY4hMaO6gE0sDWM7mkDD2TN8jkGOKs/6sOH 058/fasT86G980DjkocjId+Dbb5hfpL9Mx1+2iyNzFnacuIA6DsTa48r2HN9vTO1 0d3vIt1+NGD1WD3y7xnvlQo7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUeb+ubXfc 7Zf6+pKinAxiaQNCfNswHwYDVR0jBBgwFoAUkCG+/ztj7nJIuQ3apd2/p+MSHNkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTExM0E1L0U1N0YzNTkyNEI3 NzExRjBCMUNCOUUyN0M0RjlBRTAyL2tDRy1fenRqN25KSXVRM2FwZDJfcC1NU0hO ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva0NHLV96dGo3bkpJdVEzYXBkMl9wLU1TSE5rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEx M0E1L0U1N0YzNTkyNEI3NzExRjBCMUNCOUUyN0M0RjlBRTAyL2tDRy1fenRqN25K SXVRM2FwZDJfcC1NU0hOay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHOyaxT+s613MLAym8/WUSuA65QyCjJGcsMUfAFG07BTiMPtPU4MDO6H BF47T5uOM8v0Daa5dLj8cirSSKJKXKIdE8jA2vbgzMHAQPJALL+MbXRh7sTs+Smd IvmLdnoWXmz3MmFkuQvjf0zUrfWrSXRtu1r1BumAUTJwQnUrhj5ykQ2SRBaL9zPI bqbY/XD3SnKSevfXnTJknLyyez4va9QT497VKzdtbF82WRKAOSbtJ0LKxDwM4J8Z s6reYSQvEGf3ciH/vUhQQZ7NpMVrMshNPeo1C/PypdDNXVKFh+XsgDA+wRVkuWOX mdx6EfP2OL8HizUas0tHY+w4IURViTo= -----END CERTIFICATE-----Generated at Mon Dec 8 09:12:57 2025 by rpki-client