This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.mft File: FKbKvDAuwePc503pi_VYoEK-rFY.mft (raw, json) Hash identifier: GEAp1Eg4VF8lRx/VOQzcIzP29yV+rwEJGQEaoCF6byY= Subject key identifier: 01:7F:1C:45:1B:AF:78:BF:55:B3:DE:45:12:FE:09:80:B8:AB:99:F6 Authority key identifier: 14:A6:CA:BC:30:2E:C1:E3:DC:E7:4D:E9:8B:F5:58:A0:42:BE:AC:56 Certificate issuer: /CN=A91409DC/serialNumber=14A6CABC302EC1E3DCE74DE98BF558A042BEAC56 Certificate serial: 08C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.mft Manifest number: 153B Signing time: Sat 06 Dec 2025 17:47:29 +0000 Manifest this update: Sat 06 Dec 2025 17:47:28 +0000 Manifest next update: Sat 13 Dec 2025 17:47:28 +0000 Files and hashes: 1: FKbKvDAuwePc503pi_VYoEK-rFY.crl (hash: 8HvQFikBrhBUYqUhacbrgHp4Q+MJWwwaCpUPkE0EQD0=) 2: DB78B2684BCD11EE8F976B7EC4F9AE02.roa (hash: LJOeHyhGq5PPmm1YdhMXahy2BlMK+uuqLBs6e3cOua4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.crl rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:47:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2245 (0x8c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91409DC, serialNumber=14A6CABC302EC1E3DCE74DE98BF558A042BEAC56 Validity Not Before: Dec 6 17:47:28 2025 GMT Not After : Dec 13 17:47:28 2025 GMT Subject: CN=69346c31-b2ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:73:8c:f9:f5:ec:19:d1:0a:9d:77:78:f5:71: ba:80:b0:28:da:17:09:5f:38:e5:a8:ee:41:d9:d6: fa:51:7f:84:2a:a9:25:6a:5f:d5:e7:65:7b:1a:92: 86:73:4f:65:9d:7f:97:bc:0b:0b:7e:d1:07:0e:5a: f7:8f:10:a7:a3:ea:83:44:32:63:63:99:75:0a:5e: 8a:54:7a:2a:ab:34:21:e2:07:ba:79:46:7a:d5:e3: 9f:ab:83:3f:80:97:0a:ed:0d:34:3e:dc:58:b2:27: 29:51:6d:f7:dd:3f:bf:2a:1b:76:04:ab:25:5a:a2: a6:fa:e1:23:b7:48:7e:e2:f5:6e:a3:f3:4d:ca:1a: 56:3b:bb:e8:a3:2a:45:26:ae:f1:d0:4c:91:a8:2b: 44:7b:47:49:0b:fe:64:10:ec:b5:f9:8c:94:ba:db: 63:b8:af:21:f9:b8:68:08:a3:a7:3d:91:0d:19:83: dc:cc:dc:52:fe:48:2d:2b:66:d6:7c:4b:41:56:27: c5:92:3e:86:42:c3:a1:41:7c:4c:5f:ef:48:3b:4b: cc:2c:e1:52:bb:78:4a:d1:bc:eb:f4:f0:bc:a4:7f: b2:5f:76:dc:cd:e8:67:c8:cb:34:1e:ea:3c:b3:2c: e0:6f:ac:e9:79:69:9c:1a:cb:46:4e:ea:ed:64:06: 0d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:7F:1C:45:1B:AF:78:BF:55:B3:DE:45:12:FE:09:80:B8:AB:99:F6 X509v3 Authority Key Identifier: keyid:14:A6:CA:BC:30:2E:C1:E3:DC:E7:4D:E9:8B:F5:58:A0:42:BE:AC:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:13:3b:ca:f4:c0:a9:68:73:ed:4e:da:6d:d8:7e:10:35:d2: 9f:1d:1f:65:76:06:4f:97:05:bd:f7:1c:37:ba:c4:d4:7d:63: 80:b8:15:29:54:75:f1:ec:bc:e1:14:cc:1f:bb:bb:91:6f:b8: f6:9f:95:1b:72:b9:11:88:27:4d:57:27:a5:62:37:ec:ce:7f: 46:ab:d7:a5:2c:9c:f1:ed:eb:e2:ec:8a:55:2b:1b:01:95:08: 53:9c:35:db:78:47:27:12:ba:ce:6c:99:c0:a6:1c:3a:2d:88: 4b:33:20:c6:5d:2f:3a:1c:50:09:1b:83:09:94:37:13:30:2f: 01:88:cf:9f:44:a7:51:70:f8:ec:74:73:a6:e9:62:fe:4b:f4: ed:1c:bf:67:dc:8f:ae:2a:4c:07:98:85:0b:95:16:38:af:31: dd:fa:18:79:9b:fa:e0:9f:cb:a1:0f:2b:5f:a9:3e:54:a1:8c: e4:3c:72:27:1a:07:75:e5:d2:3a:d5:d4:1b:c8:80:89:d0:8b: 7c:82:d4:d0:17:e5:57:41:a0:69:f9:91:a0:98:62:d2:00:59: bd:4e:41:61:3d:5a:16:2a:91:b7:e4:2c:d4:20:8a:c9:cb:04: a6:8a:ee:dd:5b:21:d6:7a:3e:c5:5d:35:4f:83:7b:0e:a5:85: 24:de:fd:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA5REMxMTAvBgNVBAUTKDE0QTZDQUJDMzAyRUMxRTNEQ0U3NERFOThCRjU1OEEw NDJCRUFDNTYwHhcNMjUxMjA2MTc0NzI4WhcNMjUxMjEzMTc0NzI4WjAYMRYwFAYD VQQDEw02OTM0NmMzMS1iMmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwnOM+fXsGdEKnXd49XG6gLAo2hcJXzjlqO5B2db6UX+EKqklal/V52V7GpKG c09lnX+XvAsLftEHDlr3jxCno+qDRDJjY5l1Cl6KVHoqqzQh4ge6eUZ61eOfq4M/ gJcK7Q00PtxYsicpUW333T+/Kht2BKslWqKm+uEjt0h+4vVuo/NNyhpWO7vooypF Jq7x0EyRqCtEe0dJC/5kEOy1+YyUuttjuK8h+bhoCKOnPZENGYPczNxS/kgtK2bW fEtBVifFkj6GQsOhQXxMX+9IO0vMLOFSu3hK0bzr9PC8pH+yX3bczehnyMs0Huo8 syzgb6zpeWmcGstGTurtZAYN4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAF/HEUb r3i/VbPeRRL+CYC4q5n2MB8GA1UdIwQYMBaAFBSmyrwwLsHj3OdN6Yv1WKBCvqxW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDlEQy9BNUJCRkFBNjA5 MzUxMUVBQUIxMEM5MUZDNEY5QUUwMi9GS2JLdkRBdXdlUGM1MDNwaV9WWW9FSy1y RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZLYkt2REF1d2VQYzUwM3BpX1ZZb0VLLXJGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDlEQy9BNUJCRkFBNjA5MzUxMUVBQUIxMEM5MUZDNEY5QUUwMi9GS2JLdkRBdXdl UGM1MDNwaV9WWW9FSy1yRlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHEzvK9MCpaHPtTtpt2H4QNdKfHR9ldgZPlwW99xw3usTUfWOAuBUp VHXx7LzhFMwfu7uRb7j2n5UbcrkRiCdNVyelYjfszn9Gq9elLJzx7evi7IpVKxsB lQhTnDXbeEcnErrObJnAphw6LYhLMyDGXS86HFAJG4MJlDcTMC8BiM+fRKdRcPjs dHOm6WL+S/TtHL9n3I+uKkwHmIULlRY4rzHd+hh5m/rgn8uhDytfqT5UoYzkPHIn Ggd15dI61dQbyICJ0It8gtTQF+VXQaBp+ZGgmGLSAFm9TkFhPVoWKpG35CzUIIrJ ywSmiu7dWyHWej7FXTVPg3sOpYUk3v2+ -----END CERTIFICATE-----Generated at Sun Dec 7 00:57:33 2025 by rpki-client