This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft File: KbnmrAGSmMyglt6Jcancj3144dk.mft (raw, json) Hash identifier: PG7E9OsOnwWuEZR8N/6iyo5ggKK5cD7zIVZMm1FUt9U= Subject key identifier: 2B:F8:51:A6:8E:BB:6C:B0:CC:A8:AB:28:BF:F9:AB:A2:EE:22:D9:09 Authority key identifier: 29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 Certificate issuer: /CN=A91371E4/serialNumber=29B9E6AC019298CCA096DE8971A9DC8F7D78E1D9 Certificate serial: 122D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft Manifest number: 1221 Signing time: Sat 06 Dec 2025 16:39:44 +0000 Manifest this update: Sat 06 Dec 2025 16:39:43 +0000 Manifest next update: Sat 13 Dec 2025 16:39:43 +0000 Files and hashes: 1: KbnmrAGSmMyglt6Jcancj3144dk.crl (hash: im9btObbmafyT5hMZrPsy8LK2q2TcXNJByLWWx6iRCE=) 2: B6C2A27AF16A11E89550B621C4F9AE02.roa (hash: BFzxkw6Jl6Lyrixu4gWs2v/y+sObxx8rIEhHM4ZupXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 16:39:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4653 (0x122d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91371E4, serialNumber=29B9E6AC019298CCA096DE8971A9DC8F7D78E1D9 Validity Not Before: Dec 6 16:39:43 2025 GMT Not After : Dec 13 16:39:43 2025 GMT Subject: CN=69345c4f-7032 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d7:d5:ae:7f:c1:50:59:23:63:48:88:59:f1: d4:89:ef:2b:7f:e2:7a:9f:14:b9:9c:41:15:3d:73: 2c:ea:6e:fd:42:db:03:97:c1:8a:48:4f:12:2f:7e: 17:34:bf:b8:cf:96:ee:ad:ed:af:b8:49:53:38:c5: 87:1f:85:51:3d:ef:50:22:3a:34:80:95:49:47:25: 25:1b:f6:9e:1d:8f:85:86:d9:27:46:98:2d:77:f0: 48:c0:d1:0a:de:3d:28:56:63:b3:76:a7:e1:fb:57: 1d:b7:58:8b:a7:e6:a9:fa:5c:58:a8:5e:2a:d7:5b: b2:7e:38:6d:87:01:30:6e:66:ba:a2:0b:4f:f3:95: 4b:e5:14:19:98:54:39:25:97:03:c7:a7:89:61:fe: da:eb:85:50:7d:d0:d8:23:21:74:cc:15:1f:e7:26: 24:e8:98:95:6f:46:7b:ae:69:94:a7:1c:82:e8:05: 94:49:4b:21:3d:0d:8d:b2:e6:ce:1d:d3:9d:20:d0: 08:81:a6:58:21:70:bc:bc:bb:7a:23:54:cf:f0:0f: ef:e7:14:3a:6f:91:e5:79:3a:e1:f7:52:af:ce:a6: 07:b7:a0:ea:4f:c1:a0:2f:4e:74:ff:8b:30:fd:b4: c5:6a:a3:d0:db:0f:5e:25:a5:84:ee:3f:57:ab:b3: 57:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:F8:51:A6:8E:BB:6C:B0:CC:A8:AB:28:BF:F9:AB:A2:EE:22:D9:09 X509v3 Authority Key Identifier: keyid:29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:ac:ba:56:61:f7:9e:60:78:26:a8:44:bd:38:93:f3:4d:23: 2b:cb:b7:e9:e5:a6:63:27:0f:af:ed:3c:11:b2:f7:8b:62:59: b4:e3:2d:0d:e1:5d:ad:93:41:98:46:0d:e0:07:72:10:a1:78: 6e:b8:f0:cd:e9:6b:d8:e2:87:9a:2c:24:ce:1d:a5:8e:e8:02: 78:ac:54:3d:87:de:6e:a5:25:e2:cf:d7:29:77:cd:58:d9:1c: 20:55:ef:91:f3:d2:c5:07:07:b0:df:0a:cb:19:cb:9f:bc:fe: 21:40:5f:89:63:79:fb:dd:53:9e:99:2d:4a:ae:cf:63:21:49: ff:e0:46:8e:46:03:38:c9:cd:6c:1a:fb:51:1d:31:70:85:18: 26:75:c1:84:50:ec:13:25:72:bf:4d:fc:b1:16:b9:42:98:71: a3:6b:af:30:62:15:f4:a1:1e:4f:09:2e:db:1f:02:25:6d:a0: 4c:a7:19:06:79:60:ad:54:b2:89:90:9b:07:c3:2e:b1:45:fc: 8b:d9:88:2f:71:8c:3b:67:00:c1:c8:fa:b7:9b:29:75:e7:a3: 9f:7c:51:c5:20:4f:96:cb:b0:02:a4:71:24:89:09:39:3e:dc: bf:a0:d0:30:b8:fa:30:80:ed:f7:19:a3:3b:d7:56:6b:ae:45: 7a:c3:f0:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzcxRTQxMTAvBgNVBAUTKDI5QjlFNkFDMDE5Mjk4Q0NBMDk2REU4OTcxQTlEQzhG N0Q3OEUxRDkwHhcNMjUxMjA2MTYzOTQzWhcNMjUxMjEzMTYzOTQzWjAYMRYwFAYD VQQDEw02OTM0NWM0Zi03MDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1NfVrn/BUFkjY0iIWfHUie8rf+J6nxS5nEEVPXMs6m79QtsDl8GKSE8SL34X NL+4z5bure2vuElTOMWHH4VRPe9QIjo0gJVJRyUlG/aeHY+FhtknRpgtd/BIwNEK 3j0oVmOzdqfh+1cdt1iLp+ap+lxYqF4q11uyfjhthwEwbma6ogtP85VL5RQZmFQ5 JZcDx6eJYf7a64VQfdDYIyF0zBUf5yYk6JiVb0Z7rmmUpxyC6AWUSUshPQ2NsubO HdOdINAIgaZYIXC8vLt6I1TP8A/v5xQ6b5HleTrh91KvzqYHt6DqT8GgL050/4sw /bTFaqPQ2w9eJaWE7j9Xq7NXDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCv4UaaO u2ywzKirKL/5q6LuItkJMB8GA1UdIwQYMBaAFCm55qwBkpjMoJbeiXGp3I99eOHZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzFFNC8zODI0N0E3MEYx NjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21NeWdsdDZKY2FuY2ozMTQ0 ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tibm1yQUdTbU15Z2x0NkpjYW5jajMxNDRkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzFFNC8zODI0N0E3MEYxNjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21N eWdsdDZKY2FuY2ozMTQ0ZGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFrLpWYfeeYHgmqES9OJPzTSMry7fp5aZjJw+v7TwRsveLYlm04y0N 4V2tk0GYRg3gB3IQoXhuuPDN6WvY4oeaLCTOHaWO6AJ4rFQ9h95upSXiz9cpd81Y 2RwgVe+R89LFBwew3wrLGcufvP4hQF+JY3n73VOemS1Krs9jIUn/4EaORgM4yc1s GvtRHTFwhRgmdcGEUOwTJXK/TfyxFrlCmHGja68wYhX0oR5PCS7bHwIlbaBMpxkG eWCtVLKJkJsHwy6xRfyL2YgvcYw7ZwDByPq3myl156OffFHFIE+Wy7ACpHEkiQk5 Pty/oNAwuPowgO33GaM711ZrrkV6w/Ae -----END CERTIFICATE-----Generated at Sun Dec 7 06:21:28 2025 by rpki-client