This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft File: keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft (raw, json) Hash identifier: LwnlpLCRFf4CvicwQSCttGDoqKrioEdt79gE533Jifk= Subject key identifier: 3D:65:DC:7E:F3:25:C5:B2:8C:1E:21:08:2A:7F:98:3A:DA:5F:0E:3F Authority key identifier: 91:E6:69:CE:02:15:09:7B:D4:D4:77:A1:A7:44:6B:0D:9D:02:48:FF Certificate issuer: /CN=A91876D9/serialNumber=91E669CE0215097BD4D477A1A7446B0D9D0248FF Certificate serial: 0580 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZpzgIVCXvU1Hehp0RrDZ0CSP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft Manifest number: 0579 Signing time: Sat 06 Dec 2025 22:07:19 +0000 Manifest this update: Sat 06 Dec 2025 22:07:18 +0000 Manifest next update: Sat 13 Dec 2025 22:07:18 +0000 Files and hashes: 1: keZpzgIVCXvU1Hehp0RrDZ0CSP8.crl (hash: NGuAh9zjrDpNJQ1vmKsYQXUceIWKmU8JMJOodKfeNZw=) 2: 5C759146B9D211F0A4846C41C4F9AE02.roa (hash: magF5fHTmiSsewDpIaJLfFLa4fslr0l7IIyluckSvII=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.crl rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZpzgIVCXvU1Hehp0RrDZ0CSP8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 22:07:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1408 (0x580) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91876D9, serialNumber=91E669CE0215097BD4D477A1A7446B0D9D0248FF Validity Not Before: Dec 6 22:07:18 2025 GMT Not After : Dec 13 22:07:18 2025 GMT Subject: CN=6934a916-3fb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:6b:dc:b4:ea:d9:c5:f7:e9:b5:22:0b:57:ed: 93:c3:f9:da:4f:88:17:e9:2a:1b:d3:bb:64:8a:b5: 3f:03:e8:13:69:ae:c8:e5:c0:21:85:2a:5d:b0:97: 4f:32:e5:91:2c:2a:4d:0d:b0:2c:ed:ee:6d:9e:4d: 11:27:fa:c1:33:15:8f:1d:f2:56:51:80:89:c1:f4: 58:05:10:ab:b1:65:08:06:5a:de:52:44:e1:74:25: 66:c1:07:d3:9c:4d:6b:f4:23:43:45:a3:ba:2e:4d: 41:36:1c:b3:d7:b8:cc:8f:4c:53:da:e5:1c:9a:67: 5d:f6:54:73:16:22:bc:ea:ea:56:be:69:51:88:22: 7c:29:55:c2:f5:bd:08:f4:6e:ea:d2:78:61:c0:ce: fe:77:9c:26:be:82:4b:a7:b9:86:ea:4d:e7:a5:94: 7b:83:ea:c0:34:00:51:d1:31:35:5e:bb:17:eb:14: a7:f3:7c:e2:95:2e:d3:11:31:d6:07:67:c1:b7:e5: 0d:dc:29:30:9d:4d:13:52:1a:bd:0c:5f:5f:a2:f0: db:15:10:aa:88:44:e5:6b:02:05:1b:1e:c2:2c:f5: f4:6f:9d:50:70:1b:04:6d:e2:9e:a9:0b:cd:7a:c8: 8c:9e:4e:c9:ab:7f:c3:29:ef:56:f1:10:0d:6d:7d: c4:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:65:DC:7E:F3:25:C5:B2:8C:1E:21:08:2A:7F:98:3A:DA:5F:0E:3F X509v3 Authority Key Identifier: keyid:91:E6:69:CE:02:15:09:7B:D4:D4:77:A1:A7:44:6B:0D:9D:02:48:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZpzgIVCXvU1Hehp0RrDZ0CSP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:a3:95:71:6d:37:74:ad:64:66:f9:75:43:2c:2d:95:a1:25: b6:82:0d:eb:8c:b4:54:02:21:61:59:85:b3:cd:0a:fb:fd:a3: 7c:40:1b:52:68:6f:fb:70:36:87:0c:6a:7c:92:e3:81:d6:f3: 1a:d7:83:3e:aa:e8:7c:17:5d:d0:0c:6d:f3:b5:6b:e2:ff:02: c0:60:1e:d0:8b:b6:98:b4:37:60:b3:9a:60:49:a6:54:ab:4c: 19:99:b0:55:20:00:a9:69:52:12:23:b9:65:cc:32:74:44:d4: ae:14:f4:24:b9:cf:7d:06:91:41:1b:40:a9:7d:66:6f:30:91: d0:67:a9:01:8f:49:5b:4d:6e:a7:21:44:bd:ab:7b:36:77:c2: be:fa:df:56:bd:d2:43:6b:8e:2b:2f:6f:d7:e8:36:5b:b9:94: b3:09:66:1f:d8:ab:e6:b6:c1:70:ee:85:bd:75:20:ea:91:c9: 2a:51:2c:cc:dc:e4:f3:36:e0:cc:80:d1:24:9d:9b:b4:f9:c6: bd:c5:c2:e1:37:0e:c0:94:9f:82:f4:b5:e3:92:96:32:69:ef: f0:f3:56:ed:b6:61:79:29:75:a3:87:bb:9b:77:99:d6:43:2d: 02:32:8d:87:26:5f:db:8c:4a:61:68:82:c2:2d:d5:ad:9c:d0: 6a:2d:2b:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc2RDkxMTAvBgNVBAUTKDkxRTY2OUNFMDIxNTA5N0JENEQ0NzdBMUE3NDQ2QjBE OUQwMjQ4RkYwHhcNMjUxMjA2MjIwNzE4WhcNMjUxMjEzMjIwNzE4WjAYMRYwFAYD VQQDEw02OTM0YTkxNi0zZmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy2vctOrZxffptSILV+2Tw/naT4gX6Sob07tkirU/A+gTaa7I5cAhhSpdsJdP MuWRLCpNDbAs7e5tnk0RJ/rBMxWPHfJWUYCJwfRYBRCrsWUIBlreUkThdCVmwQfT nE1r9CNDRaO6Lk1BNhyz17jMj0xT2uUcmmdd9lRzFiK86upWvmlRiCJ8KVXC9b0I 9G7q0nhhwM7+d5wmvoJLp7mG6k3npZR7g+rANABR0TE1XrsX6xSn83zilS7TETHW B2fBt+UN3CkwnU0TUhq9DF9fovDbFRCqiETlawIFGx7CLPX0b51QcBsEbeKeqQvN esiMnk7Jq3/DKe9W8RANbX3EiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD1l3H7z JcWyjB4hCCp/mDraXw4/MB8GA1UdIwQYMBaAFJHmac4CFQl71NR3oadEaw2dAkj/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzZEOS85MjYwQzY1ODA2 MTgxMUVDQkIyNjJDNUVDNEY5QUUwMi9rZVpwemdJVkNYdlUxSGVocDBSckRaMENT UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tlWnB6Z0lWQ1h2VTFIZWhwMFJyRFowQ1NQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzZEOS85MjYwQzY1ODA2MTgxMUVDQkIyNjJDNUVDNEY5QUUwMi9rZVpwemdJVkNY dlUxSGVocDBSckRaMENTUDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5o5VxbTd0rWRm+XVDLC2VoSW2gg3rjLRUAiFhWYWzzQr7/aN8QBtS aG/7cDaHDGp8kuOB1vMa14M+quh8F13QDG3ztWvi/wLAYB7Qi7aYtDdgs5pgSaZU q0wZmbBVIACpaVISI7llzDJ0RNSuFPQkuc99BpFBG0CpfWZvMJHQZ6kBj0lbTW6n IUS9q3s2d8K++t9WvdJDa44rL2/X6DZbuZSzCWYf2KvmtsFw7oW9dSDqkckqUSzM 3OTzNuDMgNEknZu0+ca9xcLhNw7AlJ+C9LXjkpYyae/w81bttmF5KXWjh7ubd5nW Qy0CMo2HJl/bjEphaILCLdWtnNBqLSte -----END CERTIFICATE-----Generated at Sun Dec 7 02:35:07 2025 by rpki-client