This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft File: KXr2WH-YpJnreNLMrjYW70KfV1A.mft (raw, json) Hash identifier: Np4mBBsqYPC0WYztARp62zz4nKXUssF47ZnAUfiCB74= Subject key identifier: 4C:60:24:F9:0D:F2:0D:DD:B6:2F:D0:D8:0A:8D:87:97:A5:6B:66:3D Authority key identifier: 29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 Certificate issuer: /CN=A91411BC/serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Certificate serial: 1389 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft Manifest number: 1380 Signing time: Sat 06 Dec 2025 16:31:41 +0000 Manifest this update: Sat 06 Dec 2025 16:31:40 +0000 Manifest next update: Sat 13 Dec 2025 16:31:40 +0000 Files and hashes: 1: KXr2WH-YpJnreNLMrjYW70KfV1A.crl (hash: sLsudG0VpVD3+JzxLpMtOA731QoyB6viyi8otmFiAlk=) 2: B4996A22AC3411E88623474BC4F9AE02.roa (hash: 7JGYiU3kiC6kUGQIsQnoyjTh5wnU3N3mh36JHRhfnlU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5001 (0x1389) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91411BC, serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Validity Not Before: Dec 6 16:31:40 2025 GMT Not After : Dec 13 16:31:40 2025 GMT Subject: CN=69345a6d-98fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:bf:75:10:c0:b6:3a:d1:17:24:fe:f2:60:aa: 19:27:47:e5:8e:b5:4b:4f:e7:79:06:0b:d9:b2:13: 2a:33:e9:32:57:c9:fc:11:f5:31:c6:e8:f8:3e:71: 57:f8:ac:48:fe:c0:9a:9a:ad:df:d8:0e:e0:de:96: 4f:a0:58:99:c3:15:ea:5c:f8:8e:0c:ab:66:a3:c3: 1c:11:45:c8:f7:1c:0b:71:83:3c:3b:74:03:13:07: e4:24:88:f1:fc:bb:41:62:36:3b:75:37:a2:86:68: 9d:af:f7:26:f7:8d:83:f6:fe:78:fc:86:e6:49:b7: 17:dd:aa:7e:6d:c3:ad:c1:49:54:07:3e:d6:79:48: e3:dc:a3:b7:97:6f:f3:be:a2:51:29:ad:6e:66:b1: dd:7d:4e:e5:50:13:86:1c:e8:18:10:07:05:85:f7: ad:3d:6d:f2:75:b4:58:45:b9:48:77:ea:df:46:af: d3:6e:09:c8:e5:f3:14:84:59:0d:05:db:d6:3b:4a: 10:11:e0:8a:40:1a:71:e5:6c:b3:ca:12:ea:0a:5b: a9:4f:de:7e:e7:33:25:6a:0b:04:16:f0:4b:34:3f: 8c:98:7c:2d:be:13:f7:24:2d:44:09:f0:fb:ce:3a: e3:13:94:f6:2e:d8:8d:ef:54:52:24:35:41:a8:b9: 1b:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:60:24:F9:0D:F2:0D:DD:B6:2F:D0:D8:0A:8D:87:97:A5:6B:66:3D X509v3 Authority Key Identifier: keyid:29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:46:80:18:9c:88:1e:40:1d:57:c8:a3:e8:63:bd:2c:97:3c: 9c:f0:ed:ab:9b:df:31:58:45:e7:7c:19:5a:b8:81:ae:7d:5c: 86:61:bc:9e:a9:a9:ce:b1:f6:64:8b:8c:c8:09:f3:dd:ec:40: aa:c4:49:00:5e:aa:77:c2:c2:f8:e6:89:11:5c:08:96:5a:f7: 25:f8:1f:3a:b5:0f:54:cb:01:d0:78:76:4e:d3:aa:65:cf:5b: 18:c6:56:9a:cd:39:b5:c4:de:df:ea:bd:fc:08:92:e4:c1:b4: 01:d0:bc:18:bb:20:a9:ef:5e:25:ce:ba:82:d4:13:bc:0a:66: d4:56:0f:d1:93:3d:50:ab:10:18:15:d8:e2:fb:e8:98:25:b4: 43:e7:8f:05:4a:9b:a9:5e:47:86:96:e9:47:62:db:40:1e:6d: a8:de:31:ae:e4:86:0b:9b:4c:df:f1:6c:dd:b9:0f:44:2f:48: 8d:1f:92:b5:3d:e6:04:8a:d4:bd:88:d1:85:f1:21:60:73:7e: c4:2d:f6:ac:fa:2f:c3:c5:69:e2:54:d4:f0:c3:f4:03:27:cb: cf:d4:9d:87:ce:8e:94:5e:86:a4:b4:85:43:b4:dc:16:03:1b: 51:88:c1:8b:86:bf:82:5c:28:41:a5:f7:75:d7:87:ee:ae:93: 30:24:e1:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE4kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDExQkMxMTAvBgNVBAUTKDI5N0FGNjU4N0Y5OEE0OTlFQjc4RDJDQ0FFMzYxNkVG NDI5RjU3NTAwHhcNMjUxMjA2MTYzMTQwWhcNMjUxMjEzMTYzMTQwWjAYMRYwFAYD VQQDEw02OTM0NWE2ZC05OGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqb91EMC2OtEXJP7yYKoZJ0fljrVLT+d5BgvZshMqM+kyV8n8EfUxxuj4PnFX +KxI/sCamq3f2A7g3pZPoFiZwxXqXPiODKtmo8McEUXI9xwLcYM8O3QDEwfkJIjx /LtBYjY7dTeihmidr/cm942D9v54/IbmSbcX3ap+bcOtwUlUBz7WeUjj3KO3l2/z vqJRKa1uZrHdfU7lUBOGHOgYEAcFhfetPW3ydbRYRblId+rfRq/TbgnI5fMUhFkN BdvWO0oQEeCKQBpx5WyzyhLqClupT95+5zMlagsEFvBLND+MmHwtvhP3JC1ECfD7 zjrjE5T2LtiN71RSJDVBqLkbtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFExgJPkN 8g3dti/Q2AqNh5ela2Y9MB8GA1UdIwQYMBaAFCl69lh/mKSZ63jSzK42Fu9Cn1dQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTFCQy9FMzE3MUIwMkFD MzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBKbnJlTkxNcmpZVzcwS2ZW MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tYcjJXSC1ZcEpucmVOTE1yallXNzBLZlYxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTFCQy9FMzE3MUIwMkFDMzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBK bnJlTkxNcmpZVzcwS2ZWMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJRoAYnIgeQB1XyKPoY70slzyc8O2rm98xWEXnfBlauIGufVyGYbye qanOsfZki4zICfPd7ECqxEkAXqp3wsL45okRXAiWWvcl+B86tQ9UywHQeHZO06pl z1sYxlaazTm1xN7f6r38CJLkwbQB0LwYuyCp714lzrqC1BO8CmbUVg/Rkz1QqxAY Fdji++iYJbRD548FSpupXkeGlulHYttAHm2o3jGu5IYLm0zf8WzduQ9EL0iNH5K1 PeYEitS9iNGF8SFgc37ELfas+i/DxWniVNTww/QDJ8vP1J2Hzo6UXoaktIVDtNwW AxtRiMGLhr+CXChBpfd114furpMwJOFP -----END CERTIFICATE-----Generated at Sat Dec 6 20:11:35 2025 by rpki-client