This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft File: rs-kglLctVxfHrOBKIztw-b4YnQ.mft (raw, json) Hash identifier: UeJJR3jUZ2Vswv4HIE3gm7zwa7hxWYHLfPTw1eUDDsM= Subject key identifier: 8D:43:6B:50:40:2B:65:88:3B:A8:D8:93:4C:0B:2A:A9:04:D3:88:73 Authority key identifier: AE:CF:A4:82:52:DC:B5:5C:5F:1E:B3:81:28:8C:ED:C3:E6:F8:62:74 Certificate issuer: /CN=A91356BA/serialNumber=AECFA48252DCB55C5F1EB381288CEDC3E6F86274 Certificate serial: F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft Manifest number: EE Signing time: Fri 05 Dec 2025 03:23:15 +0000 Manifest this update: Fri 05 Dec 2025 03:23:15 +0000 Manifest next update: Fri 12 Dec 2025 03:23:15 +0000 Files and hashes: 1: rs-kglLctVxfHrOBKIztw-b4YnQ.crl (hash: u4+0csj0nDNdgffaO3u8RyEh4G+Zc9zW2NEYgq7WPmU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.crl rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:23:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 240 (0xf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91356BA, serialNumber=AECFA48252DCB55C5F1EB381288CEDC3E6F86274 Validity Not Before: Dec 5 03:23:15 2025 GMT Not After : Dec 12 03:23:15 2025 GMT Subject: CN=69325023-aefe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:71:31:61:aa:a1:90:1a:a9:41:e0:c6:87:4a: 6e:14:63:c8:ad:ab:e5:f4:6c:28:40:30:f9:19:9c: 74:6e:70:56:88:36:36:0b:67:6a:3f:48:38:9c:3d: 57:f6:0c:59:ae:e2:10:0f:5f:a2:76:80:f6:71:23: fd:59:27:57:cf:7d:23:1d:95:b1:26:68:5b:fe:a8: a6:58:4d:7b:5e:21:e8:c4:94:8d:9b:4c:10:fd:ad: 86:bd:3b:39:b4:2a:5f:a6:70:83:58:17:a6:7e:de: f5:5b:a5:18:7f:f2:0e:18:c5:f3:21:73:77:36:a4: 50:b7:61:c0:51:d2:f4:e2:a7:75:37:4f:f9:ac:56: 35:a5:4e:c5:ee:4a:f3:b5:66:fc:b4:33:0e:57:17: f0:71:2f:f0:40:4e:32:9b:43:2e:57:55:8c:4e:66: 5c:f1:d2:3c:8f:8a:0f:93:cd:b5:4e:e8:9d:d1:00: ab:64:4b:5f:5a:ca:18:28:eb:19:11:a7:8a:a7:df: 52:4b:3e:fa:bc:03:d5:4f:e7:09:5c:75:26:2c:61: 01:01:32:67:a5:13:4d:05:97:3a:0c:af:32:0a:cc: 53:eb:f1:ed:da:78:78:dc:64:d6:33:1a:cc:85:96: 20:50:3d:02:b1:2e:22:39:a1:29:e4:3c:7e:38:64: ea:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:43:6B:50:40:2B:65:88:3B:A8:D8:93:4C:0B:2A:A9:04:D3:88:73 X509v3 Authority Key Identifier: keyid:AE:CF:A4:82:52:DC:B5:5C:5F:1E:B3:81:28:8C:ED:C3:E6:F8:62:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:02:74:78:79:df:5c:c9:13:fd:25:19:1a:21:95:8b:4b:34: b5:73:fc:f1:70:e3:20:8e:5f:ee:d1:5e:93:4e:36:a4:2a:55: 5b:d4:bb:46:9c:2f:fc:92:8d:b5:7d:5c:02:6c:88:37:4c:7c: 53:af:80:09:a5:c1:00:89:ac:d3:d4:db:49:95:33:e9:e4:ba: d6:e4:e5:e8:63:a5:f2:87:5c:0e:38:e2:22:6b:c5:7c:87:a2: 17:98:01:62:7f:45:10:b2:66:a0:a4:08:cf:57:1a:ec:8a:6d: 1e:89:e2:0d:5f:0c:07:74:90:e5:35:06:d6:0c:21:37:89:0a: c6:d4:41:45:cd:69:a8:68:6a:91:70:1a:06:f6:30:ae:63:a9: 98:e6:3f:7f:ab:83:b9:95:86:ec:fe:d0:3e:07:b8:19:ff:f6: 42:04:5d:be:0e:e7:b3:98:bf:a6:77:04:91:21:9a:75:94:59: c8:54:43:99:8e:82:c6:7f:d7:fa:a0:0a:12:45:6d:c8:ee:31: 9b:00:3a:9c:75:da:ba:e4:50:1d:44:52:0c:89:77:cf:b1:5e: 2d:3f:30:60:de:b0:49:13:46:2c:51:ec:ef:d1:4f:d8:58:27: fa:9f:b0:c6:6d:ea:35:32:8f:37:d4:07:16:a6:1b:fa:05:a0: c2:09:7b:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU2QkExMTAvBgNVBAUTKEFFQ0ZBNDgyNTJEQ0I1NUM1RjFFQjM4MTI4OENFREMz RTZGODYyNzQwHhcNMjUxMjA1MDMyMzE1WhcNMjUxMjEyMDMyMzE1WjAYMRYwFAYD VQQDEw02OTMyNTAyMy1hZWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAznExYaqhkBqpQeDGh0puFGPIravl9GwoQDD5GZx0bnBWiDY2C2dqP0g4nD1X 9gxZruIQD1+idoD2cSP9WSdXz30jHZWxJmhb/qimWE17XiHoxJSNm0wQ/a2GvTs5 tCpfpnCDWBemft71W6UYf/IOGMXzIXN3NqRQt2HAUdL04qd1N0/5rFY1pU7F7krz tWb8tDMOVxfwcS/wQE4ym0MuV1WMTmZc8dI8j4oPk821Tuid0QCrZEtfWsoYKOsZ EaeKp99SSz76vAPVT+cJXHUmLGEBATJnpRNNBZc6DK8yCsxT6/Ht2nh43GTWMxrM hZYgUD0CsS4iOaEp5Dx+OGTqkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI1Da1BA K2WIO6jYk0wLKqkE04hzMB8GA1UdIwQYMBaAFK7PpIJS3LVcXx6zgSiM7cPm+GJ0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTZCQS8yNjQ1MjFEMjY5 MDUxMUVGQUQyMzA0NjRDNEY5QUUwMi9ycy1rZ2xMY3RWeGZIck9CS0l6dHctYjRZ blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JzLWtnbExjdFZ4ZkhyT0JLSXp0dy1iNFluUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTZCQS8yNjQ1MjFEMjY5MDUxMUVGQUQyMzA0NjRDNEY5QUUwMi9ycy1rZ2xMY3RW eGZIck9CS0l6dHctYjRZblEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaAnR4ed9cyRP9JRkaIZWLSzS1c/zxcOMgjl/u0V6TTjakKlVb1LtG nC/8ko21fVwCbIg3THxTr4AJpcEAiazT1NtJlTPp5LrW5OXoY6Xyh1wOOOIia8V8 h6IXmAFif0UQsmagpAjPVxrsim0eieINXwwHdJDlNQbWDCE3iQrG1EFFzWmoaGqR cBoG9jCuY6mY5j9/q4O5lYbs/tA+B7gZ//ZCBF2+DuezmL+mdwSRIZp1lFnIVEOZ joLGf9f6oAoSRW3I7jGbADqcddq65FAdRFIMiXfPsV4tPzBg3rBJE0YsUezv0U/Y WCf6n7DGbeo1Mo831AcWphv6BaDCCXsr -----END CERTIFICATE-----Generated at Sat Dec 6 23:06:41 2025 by rpki-client