This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft File: kXkVGVyXGrRB_d7eb_PNNy51TLU.mft (raw, json) Hash identifier: QuRj4Spsxm3MyMBuXrtBM3m9RkaZSgbygBOHIGsHCDk= Subject key identifier: 29:BB:03:37:71:99:6E:CA:52:CF:7C:B4:C6:35:A2:13:58:09:F1:0E Authority key identifier: 91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5 Certificate issuer: /CN=A91795CA/serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5 Certificate serial: 0693 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft Manifest number: 068D Signing time: Sat 06 Dec 2025 21:06:59 +0000 Manifest this update: Sat 06 Dec 2025 21:06:58 +0000 Manifest next update: Sat 13 Dec 2025 21:06:58 +0000 Files and hashes: 1: kXkVGVyXGrRB_d7eb_PNNy51TLU.crl (hash: 0oliX/nzrAAljYTSoqwXLiM/oQ78PYLHAlZug5Qs7Xc=) 2: 2B8D76AE9BB711EBBB7BA02BC4F9AE02.roa (hash: aHkHq3prWV8PYM6R/1n0/cS3AolHN3tQt/aLI9yRoNU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.crl rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:06:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1683 (0x693) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91795CA, serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5 Validity Not Before: Dec 6 21:06:58 2025 GMT Not After : Dec 13 21:06:58 2025 GMT Subject: CN=69349af2-6ebf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:4c:d2:c5:06:ce:02:68:48:00:7c:25:c1:d1: b5:4c:24:f7:05:30:d7:86:af:08:97:30:b7:c0:54: ce:93:a6:bc:b1:20:7c:e7:12:f3:71:32:5e:40:a3: f0:93:ed:b5:41:3e:82:ee:6c:9f:a0:1b:b4:1d:fc: db:45:17:b1:b4:23:d6:9e:33:32:ec:0c:d3:7e:91: e9:04:62:52:26:e1:8d:9c:ce:b9:b4:fd:f6:d1:11: bc:df:8c:79:3d:5c:80:bf:c1:b8:04:49:c5:4b:a9: ea:20:88:8d:4b:fe:6d:61:4b:38:cd:86:f5:d2:09: 16:d6:94:d7:52:e7:7c:db:74:d7:e6:b5:f6:a6:0d: 5f:ac:d8:a5:ce:a5:da:e4:8d:3a:85:a4:4e:f4:52: 67:ac:52:50:d9:a8:8e:0a:49:04:d5:83:07:54:7c: f7:9d:e6:7d:de:f9:0d:58:6d:94:0e:28:e7:3d:b6: a0:4c:a6:6c:50:da:e5:47:8d:e0:03:fa:51:26:5c: 29:13:c7:51:be:42:dc:69:50:4d:5a:8e:16:b7:5c: 6b:1e:6f:98:81:01:44:ee:65:80:16:8a:56:7d:09: 21:0f:77:ea:a1:22:77:88:c7:75:7e:87:c3:b5:02: 17:a9:73:b0:95:23:ea:47:09:53:6e:d0:0c:1c:21: 61:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:BB:03:37:71:99:6E:CA:52:CF:7C:B4:C6:35:A2:13:58:09:F1:0E X509v3 Authority Key Identifier: keyid:91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:de:58:5f:dc:6c:91:83:c8:6d:34:ab:e3:23:13:66:32:95: 6e:09:3f:89:32:9b:c0:db:4b:d7:a7:97:0f:04:52:e0:1c:cc: 04:be:36:b3:5e:e3:5a:10:62:48:fd:69:a1:1b:b4:60:80:94: fe:96:ef:60:03:bd:00:33:0b:77:06:41:0a:e6:c5:bb:a0:cc: 18:e6:16:e9:f6:af:80:6f:76:57:f6:7f:60:1b:06:b9:92:e3: ae:2b:6e:04:a2:24:0d:16:36:eb:9b:f1:9a:a0:29:bb:72:95: ca:c8:ae:aa:a7:f1:bb:4d:4d:65:e5:b1:c5:ff:21:d3:86:9d: 9f:e0:76:0e:73:92:9c:d9:24:4b:d7:3d:30:90:62:43:10:b0: 66:70:a2:5f:64:78:0b:0e:a4:9b:2d:0e:98:bd:d7:60:94:8d: 88:ad:87:fb:e8:1e:b9:fb:1e:67:dc:4c:e3:40:41:96:a1:02: 49:63:18:7d:d7:7e:e6:0b:c5:c8:7c:b6:44:50:1b:f6:36:38: 9d:80:5b:a2:97:6e:87:f4:29:9f:08:cd:3f:bd:92:06:91:97: bb:a4:78:af:a0:ef:ae:96:c0:6a:8a:c9:58:a5:e5:b3:38:41: 42:2e:d6:0d:4c:43:71:1c:1c:7e:20:16:2a:4f:60:9b:73:0f: c2:27:08:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk1Q0ExMTAvBgNVBAUTKDkxNzkxNTE5NUM5NzFBQjQ0MUZEREVERTZGRjNDRDM3 MkU3NTRDQjUwHhcNMjUxMjA2MjEwNjU4WhcNMjUxMjEzMjEwNjU4WjAYMRYwFAYD VQQDEw02OTM0OWFmMi02ZWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8UzSxQbOAmhIAHwlwdG1TCT3BTDXhq8IlzC3wFTOk6a8sSB85xLzcTJeQKPw k+21QT6C7myfoBu0HfzbRRextCPWnjMy7AzTfpHpBGJSJuGNnM65tP320RG834x5 PVyAv8G4BEnFS6nqIIiNS/5tYUs4zYb10gkW1pTXUud823TX5rX2pg1frNilzqXa 5I06haRO9FJnrFJQ2aiOCkkE1YMHVHz3neZ93vkNWG2UDijnPbagTKZsUNrlR43g A/pRJlwpE8dRvkLcaVBNWo4Wt1xrHm+YgQFE7mWAFopWfQkhD3fqoSJ3iMd1fofD tQIXqXOwlSPqRwlTbtAMHCFhGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCm7Azdx mW7KUs98tMY1ohNYCfEOMB8GA1UdIwQYMBaAFJF5FRlclxq0Qf3e3m/zzTcudUy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTVDQS82MzQ3Mzc1Njk4 MDYxMUVCQTg3RTI3NjVDNEY5QUUwMi9rWGtWR1Z5WEdyUkJfZDdlYl9QTk55NTFU TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2tYa1ZHVnlYR3JSQl9kN2ViX1BOTnk1MVRMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTVDQS82MzQ3Mzc1Njk4MDYxMUVCQTg3RTI3NjVDNEY5QUUwMi9rWGtWR1Z5WEdy UkJfZDdlYl9QTk55NTFUTFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCh3lhf3GyRg8htNKvjIxNmMpVuCT+JMpvA20vXp5cPBFLgHMwEvjaz XuNaEGJI/WmhG7RggJT+lu9gA70AMwt3BkEK5sW7oMwY5hbp9q+Ab3ZX9n9gGwa5 kuOuK24EoiQNFjbrm/GaoCm7cpXKyK6qp/G7TU1l5bHF/yHThp2f4HYOc5Kc2SRL 1z0wkGJDELBmcKJfZHgLDqSbLQ6YvddglI2IrYf76B65+x5n3EzjQEGWoQJJYxh9 137mC8XIfLZEUBv2NjidgFuil26H9CmfCM0/vZIGkZe7pHivoO+ulsBqislYpeWz OEFCLtYNTENxHBx+IBYqT2Cbcw/CJwj9 -----END CERTIFICATE-----Generated at Sun Dec 7 04:46:56 2025 by rpki-client