This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft File: kfPcWc0PodJBy3h1fR2qksKsn2A.mft (raw, json) Hash identifier: RWLpd1mkdDoQjqOveg707TCIJwC5Rx8xgBOea8HSzUc= Subject key identifier: 1E:6B:C7:4D:A8:61:37:2D:AB:25:81:B7:35:DC:87:F9:22:CB:E8:5D Authority key identifier: 91:F3:DC:59:CD:0F:A1:D2:41:CB:78:75:7D:1D:AA:92:C2:AC:9F:60 Certificate issuer: /CN=A91A0432/serialNumber=91F3DC59CD0FA1D241CB78757D1DAA92C2AC9F60 Certificate serial: 03F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft Manifest number: 03EB Signing time: Sat 06 Dec 2025 23:12:12 +0000 Manifest this update: Sat 06 Dec 2025 23:12:12 +0000 Manifest next update: Sat 13 Dec 2025 23:12:12 +0000 Files and hashes: 1: kfPcWc0PodJBy3h1fR2qksKsn2A.crl (hash: J7kCABDevClBbxCbBKpvztFEbfdeavujniTV+0k3E8k=) 2: 4114509A597511EFA2B79A84C4F9AE02.roa (hash: 8U+UsiCXDKifnoegufsPJKGalX6CUXoFX96X70pYMYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.crl rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 23:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1010 (0x3f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0432, serialNumber=91F3DC59CD0FA1D241CB78757D1DAA92C2AC9F60 Validity Not Before: Dec 6 23:12:12 2025 GMT Not After : Dec 13 23:12:12 2025 GMT Subject: CN=6934b84c-890b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:60:74:dd:ec:fe:ef:88:45:2c:64:35:de:29: 2a:29:7a:90:56:f0:e6:24:73:d4:2b:6c:d4:94:1f: 6d:26:7d:4c:6b:98:4f:24:b6:63:64:f0:90:b6:16: 05:41:fe:6f:1b:b0:89:6c:c1:23:66:8c:bd:f1:2f: 88:11:6b:43:c0:3f:07:30:62:4b:ea:e6:5a:c9:7d: 93:9b:c3:fc:16:56:f8:be:21:14:4d:20:63:51:13: 7a:f1:ca:30:72:fa:8b:b9:60:f0:90:70:80:42:c8: 75:e3:4e:aa:98:96:39:cc:e6:8d:05:6e:de:cf:e3: 3c:28:a0:e5:14:0c:43:c0:08:86:71:b0:f4:ca:1c: 9d:9b:21:fc:1e:4b:cd:31:f9:2c:76:5f:6f:2b:39: 4f:9e:1f:51:1c:5b:ac:58:77:4b:e3:9f:2d:d0:e6: db:1f:d5:96:88:f3:e0:d1:f3:e3:fc:b8:09:e9:dd: 65:da:a4:8f:5c:09:fb:65:90:af:dd:62:3c:8a:0b: 13:65:ec:4f:a5:88:6d:5e:39:f8:ca:95:80:5a:c9: 07:26:e6:d7:cc:00:1b:0f:56:b7:26:70:d6:85:0d: 3c:da:bb:47:0f:b5:ea:cd:1b:aa:8a:aa:c4:4d:fd: 7f:af:ab:28:0f:eb:7f:8b:0e:5b:b9:57:b5:9d:47: 4b:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:6B:C7:4D:A8:61:37:2D:AB:25:81:B7:35:DC:87:F9:22:CB:E8:5D X509v3 Authority Key Identifier: keyid:91:F3:DC:59:CD:0F:A1:D2:41:CB:78:75:7D:1D:AA:92:C2:AC:9F:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:29:13:a3:68:04:9b:ec:0b:1d:6b:4e:30:6a:83:f9:0e:53: 9e:f1:7f:73:6b:38:b8:0d:28:6b:72:c4:62:68:5c:1b:2d:13: 05:cf:57:91:b7:c5:7d:f9:c7:07:81:7e:ea:6f:e3:27:20:f0: c0:d9:a7:c6:68:d1:e6:36:f0:0b:bd:5b:10:b0:c1:b7:19:ad: 57:80:64:bb:e5:7d:9d:78:07:80:25:e0:d9:20:7d:f4:2e:cc: 14:8f:f9:3b:dc:58:9b:82:33:a7:2e:fa:c9:97:9c:57:f8:32: c4:6d:ca:95:10:a6:c2:dd:c7:88:20:9a:cb:06:96:a7:23:c7: ca:99:bd:1e:2f:95:ec:1e:50:12:83:27:fd:36:b4:f8:4a:2c: 25:14:78:df:48:2f:c8:56:9d:35:ab:f2:ef:fb:6a:ea:48:f6: b7:52:99:77:6a:2d:62:64:aa:c8:7b:36:7c:73:ce:e5:cc:ed: 45:2c:76:6b:a9:e9:0c:91:30:bd:6f:e3:d9:22:f3:62:e4:fb: 0d:1c:a8:51:b5:4a:53:84:3c:53:3c:a4:de:bc:d6:dc:4e:0b: 36:21:f6:b6:da:e3:ec:9e:ae:6b:ab:da:7a:57:1c:0e:b3:a8: 28:93:9d:78:5b:ae:35:83:bf:97:50:ca:50:b1:12:52:1c:9f: ee:b4:4b:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA0MzIxMTAvBgNVBAUTKDkxRjNEQzU5Q0QwRkExRDI0MUNCNzg3NTdEMURBQTky QzJBQzlGNjAwHhcNMjUxMjA2MjMxMjEyWhcNMjUxMjEzMjMxMjEyWjAYMRYwFAYD VQQDEw02OTM0Yjg0Yy04OTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt2B03ez+74hFLGQ13ikqKXqQVvDmJHPUK2zUlB9tJn1Ma5hPJLZjZPCQthYF Qf5vG7CJbMEjZoy98S+IEWtDwD8HMGJL6uZayX2Tm8P8Flb4viEUTSBjURN68cow cvqLuWDwkHCAQsh1406qmJY5zOaNBW7ez+M8KKDlFAxDwAiGcbD0yhydmyH8HkvN Mfksdl9vKzlPnh9RHFusWHdL458t0ObbH9WWiPPg0fPj/LgJ6d1l2qSPXAn7ZZCv 3WI8igsTZexPpYhtXjn4ypWAWskHJubXzAAbD1a3JnDWhQ082rtHD7XqzRuqiqrE Tf1/r6soD+t/iw5buVe1nUdLqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB5rx02o YTctqyWBtzXch/kiy+hdMB8GA1UdIwQYMBaAFJHz3FnND6HSQct4dX0dqpLCrJ9g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDQzMi9GNUJGNjk5Q0E0 Q0ExMUVDQUM0RTU3NDRDNEY5QUUwMi9rZlBjV2MwUG9kSkJ5M2gxZlIycWtzS3Nu MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tmUGNXYzBQb2RKQnkzaDFmUjJxa3NLc24yQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDQzMi9GNUJGNjk5Q0E0Q0ExMUVDQUM0RTU3NDRDNEY5QUUwMi9rZlBjV2MwUG9k SkJ5M2gxZlIycWtzS3NuMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGKROjaASb7Asda04waoP5DlOe8X9zazi4DShrcsRiaFwbLRMFz1eR t8V9+ccHgX7qb+MnIPDA2afGaNHmNvALvVsQsMG3Ga1XgGS75X2deAeAJeDZIH30 LswUj/k73FibgjOnLvrJl5xX+DLEbcqVEKbC3ceIIJrLBpanI8fKmb0eL5XsHlAS gyf9NrT4SiwlFHjfSC/IVp01q/Lv+2rqSPa3Upl3ai1iZKrIezZ8c87lzO1FLHZr qekMkTC9b+PZIvNi5PsNHKhRtUpThDxTPKTevNbcTgs2Ifa22uPsnq5rq9p6VxwO s6gok514W641g7+XUMpQsRJSHJ/utEtB -----END CERTIFICATE-----Generated at Sun Dec 7 03:42:55 2025 by rpki-client