This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft File: KaAJAT90Md42nADKtUcWypNFJtM.mft (raw, json) Hash identifier: FW+aekyggesrP5EeEhZYuZQh9IcxvpA/MPtWjapGT3M= Subject key identifier: 0D:35:7B:DE:B5:35:BF:58:FE:A5:34:1B:9B:54:12:40:6A:ED:E4:9D Authority key identifier: 29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 Certificate issuer: /CN=A91651CF/serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Certificate serial: DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft Manifest number: DA Signing time: Fri 05 Dec 2025 03:36:02 +0000 Manifest this update: Fri 05 Dec 2025 03:36:01 +0000 Manifest next update: Fri 12 Dec 2025 03:36:01 +0000 Files and hashes: 1: KaAJAT90Md42nADKtUcWypNFJtM.crl (hash: RPhyMhIi0CM7I5GL5+xJoHeZ9JNuFqWO3nEtsL0vX5I=) 2: C731AFD03B9A11F0B7924C1FC4F9AE02.roa (hash: EmmsOqkiT007YavefYEjF7jWl6E1fCl7urJJNV6C63g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:36:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91651CF, serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Validity Not Before: Dec 5 03:36:01 2025 GMT Not After : Dec 12 03:36:01 2025 GMT Subject: CN=69325322-f914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ba:20:f2:b6:39:bc:62:72:2c:d3:3d:62:17: 38:00:5a:bb:ad:11:a4:5a:81:df:1c:c7:42:6f:f3: 53:5b:7e:f8:eb:d7:6d:0c:e9:cc:97:43:5b:e8:cf: f9:ee:9a:6d:1f:e0:d2:09:bf:12:cb:22:ef:f1:c7: c6:27:0e:6f:6c:3f:7c:8b:69:37:d8:ea:47:e3:b3: e9:65:b0:89:57:a8:8f:65:d1:61:7b:9e:4f:b9:cc: 9f:51:38:b1:ce:d8:57:df:ef:f8:4b:09:55:8d:e4: dc:61:44:c4:2f:f4:1d:f0:3d:94:2e:f0:f4:24:27: 66:64:36:36:20:ce:b2:be:1f:83:29:ca:e0:d4:05: ea:c6:60:63:1d:3b:8f:da:a7:92:4d:e5:66:36:03: 06:e9:92:5a:83:e3:ef:a3:75:99:30:ad:0f:05:8b: 9b:0b:d2:7d:84:fc:4a:0d:84:d5:64:2c:c0:f2:bf: e1:99:a5:e0:86:a8:87:1b:17:32:79:9d:c0:f1:df: e4:d4:88:9e:a2:5d:80:c2:3a:21:8c:b4:13:e9:b1: c1:73:41:a9:ae:8f:ae:f0:b5:04:a1:0a:d4:69:3b: 4e:f4:e0:eb:7b:f7:7a:3b:1c:96:b1:c2:65:fa:1d: e9:55:80:f5:a6:3f:90:19:6d:28:dc:d5:ef:30:74: e2:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:35:7B:DE:B5:35:BF:58:FE:A5:34:1B:9B:54:12:40:6A:ED:E4:9D X509v3 Authority Key Identifier: keyid:29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:96:6f:f0:2c:78:3f:1b:96:64:9d:07:9c:09:60:11:ce:30: 25:b5:22:3b:a0:a2:d9:f3:ec:27:ae:b5:47:61:3c:85:5a:d1: 2a:47:52:5a:86:69:04:e9:ae:89:bf:a4:77:e7:b2:5d:f0:a9: aa:63:2c:e8:fa:c6:9e:95:7f:63:98:d4:b0:8e:01:5f:f5:d0: e5:04:6b:ce:42:52:fa:7d:10:9c:31:ae:f0:d3:a7:01:67:c3: b5:e6:16:62:de:2a:dc:d7:58:45:c1:a8:87:6b:2f:c0:56:85: 74:c8:7f:e2:ca:ae:e8:bc:c5:58:52:41:b5:20:69:e7:91:6b: ed:87:c3:f7:d3:03:b0:fd:4d:d3:f1:de:c8:70:a6:49:c7:e4: bb:07:b9:94:a5:ad:91:d5:10:38:79:23:4c:b5:93:11:17:83: 3f:3f:3a:23:25:ee:4b:88:5f:3c:22:34:a6:90:13:29:fe:f7: b6:16:25:30:4d:ac:b4:ec:f4:99:3e:1a:86:7e:62:cc:c5:12: 2e:7f:ed:10:f4:6b:7e:1d:2d:89:06:f0:14:7a:71:f7:bd:78: 54:12:58:02:5a:a6:12:c9:7e:88:1b:c5:c1:90:9b:90:33:00: 8a:8d:77:73:de:60:33:43:cb:6a:3d:9d:b3:4c:35:b6:52:5d: 8b:73:70:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUxQ0YxMTAvBgNVBAUTKDI5QTAwOTAxM0Y3NDMxREUzNjlDMDBDQUI1NDcxNkNB OTM0NTI2RDMwHhcNMjUxMjA1MDMzNjAxWhcNMjUxMjEyMDMzNjAxWjAYMRYwFAYD VQQDEw02OTMyNTMyMi1mOTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLog8rY5vGJyLNM9Yhc4AFq7rRGkWoHfHMdCb/NTW37469dtDOnMl0Nb6M/5 7pptH+DSCb8SyyLv8cfGJw5vbD98i2k32OpH47PpZbCJV6iPZdFhe55PucyfUTix zthX3+/4SwlVjeTcYUTEL/Qd8D2ULvD0JCdmZDY2IM6yvh+DKcrg1AXqxmBjHTuP 2qeSTeVmNgMG6ZJag+Pvo3WZMK0PBYubC9J9hPxKDYTVZCzA8r/hmaXghqiHGxcy eZ3A8d/k1Iieol2AwjohjLQT6bHBc0Gpro+u8LUEoQrUaTtO9ODre/d6OxyWscJl +h3pVYD1pj+QGW0o3NXvMHTi0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA01e961 Nb9Y/qU0G5tUEkBq7eSdMB8GA1UdIwQYMBaAFCmgCQE/dDHeNpwAyrVHFsqTRSbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTFDRi8zMDQzNjM1Qzg2 RDcxMUVGODU0REQ0N0JDNEY5QUUwMi9LYUFKQVQ5ME1kNDJuQURLdFVjV3lwTkZK dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0thQUpBVDkwTWQ0Mm5BREt0VWNXeXBORkp0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTFDRi8zMDQzNjM1Qzg2RDcxMUVGODU0REQ0N0JDNEY5QUUwMi9LYUFKQVQ5ME1k NDJuQURLdFVjV3lwTkZKdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJlm/wLHg/G5ZknQecCWARzjAltSI7oKLZ8+wnrrVHYTyFWtEqR1Ja hmkE6a6Jv6R357Jd8KmqYyzo+saelX9jmNSwjgFf9dDlBGvOQlL6fRCcMa7w06cB Z8O15hZi3irc11hFwaiHay/AVoV0yH/iyq7ovMVYUkG1IGnnkWvth8P30wOw/U3T 8d7IcKZJx+S7B7mUpa2R1RA4eSNMtZMRF4M/PzojJe5LiF88IjSmkBMp/ve2FiUw Tay07PSZPhqGfmLMxRIuf+0Q9Gt+HS2JBvAUenH3vXhUElgCWqYSyX6IG8XBkJuQ MwCKjXdz3mAzQ8tqPZ2zTDW2Ul2Lc3Do -----END CERTIFICATE-----Generated at Sat Dec 6 17:07:47 2025 by rpki-client