This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft File: KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft (raw, json) Hash identifier: GZa2tXr8eU7C8J26tSl8NnOraedaOdGQPiork6T12LU= Subject key identifier: EC:23:15:7D:B6:19:3C:E4:49:B1:E8:68:EC:64:FB:C1:EF:5B:DB:6E Authority key identifier: 29:0C:40:10:FA:DC:47:69:47:E0:09:3F:43:F7:00:4F:0D:7C:5C:1C Certificate issuer: /CN=A91A3456/serialNumber=290C4010FADC476947E0093F43F7004F0D7C5C1C Certificate serial: 0B73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft Manifest number: 0B6C Signing time: Thu 04 Dec 2025 18:27:59 +0000 Manifest this update: Thu 04 Dec 2025 18:27:58 +0000 Manifest next update: Thu 11 Dec 2025 18:27:58 +0000 Files and hashes: 1: KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl (hash: N8nPEuMQ2R8s9vOIyyK/t2yM0d7Dsf3Q+68EuMhJewg=) 2: 496096EE41A311EABAADCE0AC4F9AE02.roa (hash: PulA86jFfi+mSmGrurNlPPzi/J9i4GAt5gWrp9tpCBs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2931 (0xb73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3456, serialNumber=290C4010FADC476947E0093F43F7004F0D7C5C1C Validity Not Before: Dec 4 18:27:58 2025 GMT Not After : Dec 11 18:27:58 2025 GMT Subject: CN=6931d2af-a278 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:18:21:4f:26:a4:cc:ae:84:39:98:19:3c:f6: 36:f6:0b:dc:90:20:e9:59:62:20:34:c2:75:eb:07: f5:5f:c8:26:2a:64:f6:a3:82:8c:f6:34:c2:98:6d: 98:e9:f6:6d:bc:fc:0a:b5:68:4c:c3:f8:42:f1:8e: b1:a7:4b:98:97:39:b3:7a:81:fe:e1:d4:69:1f:0a: 5c:c3:e8:ff:77:17:f8:82:9a:ae:a9:82:d8:a0:89: 61:d2:84:6c:18:e1:fa:9f:cd:6a:86:d1:e6:31:fb: 8d:ce:aa:a1:a5:e0:df:bf:3f:c4:10:7b:93:39:f7: 91:5c:c5:19:a2:14:55:31:7e:85:56:5b:cb:de:9a: 00:28:1f:0e:a9:3a:86:55:02:ad:19:8d:1c:81:3e: a8:94:93:17:80:04:60:99:8e:39:10:94:4a:31:23: f9:25:01:9c:17:f2:18:1b:8b:68:b0:ad:a4:f3:fb: 1e:d0:60:23:e9:2d:e2:e5:a9:c3:7a:39:6f:6d:7e: 14:57:95:5a:ab:76:96:9e:43:f6:41:13:bc:17:4a: bd:eb:97:51:44:e2:cc:57:c1:bf:1b:66:0f:77:94: b0:e2:9e:8d:a8:ab:67:f2:2a:3b:3c:7a:4b:f8:2a: 52:50:09:97:63:36:75:f2:89:98:70:83:c7:12:a7: 9e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:23:15:7D:B6:19:3C:E4:49:B1:E8:68:EC:64:FB:C1:EF:5B:DB:6E X509v3 Authority Key Identifier: keyid:29:0C:40:10:FA:DC:47:69:47:E0:09:3F:43:F7:00:4F:0D:7C:5C:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:1d:b5:43:d5:4a:43:23:80:57:8f:ad:aa:4c:09:5d:3f:e8: 3d:d9:2d:e7:76:c2:8c:ad:4c:be:06:19:fe:c9:25:ae:bd:c5: 1e:6d:f9:fe:89:fb:4e:ee:d8:55:fc:f1:f7:90:8b:bb:57:e5: d2:52:c3:5f:f3:0a:11:66:27:84:70:bd:43:42:3e:85:aa:41: 41:e2:20:f1:b0:06:14:06:19:2b:5b:73:a2:c9:42:c5:fc:db: d7:65:74:9d:25:ab:bb:bc:2a:72:e1:f4:c3:b8:d7:1d:ee:b4: d1:63:3f:be:67:5e:a2:64:2e:0d:79:8d:6a:a1:98:81:75:51: 40:7f:63:df:c9:a1:58:25:de:f8:ee:28:d4:a7:af:a2:0e:be: ae:20:cc:8f:73:9b:83:64:5b:82:b5:1d:b1:cc:24:a8:da:9e: 28:28:76:a4:3a:05:97:d0:37:09:91:6b:36:35:68:01:d2:22: 44:33:92:a2:ca:44:a7:08:2b:23:ef:cb:23:50:b9:93:f2:b7: 1e:f7:1b:4e:60:df:ab:4c:d9:51:c3:99:c4:ae:29:b0:65:27: a0:29:7f:8f:ff:c0:df:ed:28:33:2a:b9:a0:bb:3c:d8:8e:08: 38:e7:cb:4a:07:86:c8:f9:1f:cb:79:2a:7f:3a:d9:0c:a1:10: e2:cb:43:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM0NTYxMTAvBgNVBAUTKDI5MEM0MDEwRkFEQzQ3Njk0N0UwMDkzRjQzRjcwMDRG MEQ3QzVDMUMwHhcNMjUxMjA0MTgyNzU4WhcNMjUxMjExMTgyNzU4WjAYMRYwFAYD VQQDEw02OTMxZDJhZi1hMjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqxghTyakzK6EOZgZPPY29gvckCDpWWIgNMJ16wf1X8gmKmT2o4KM9jTCmG2Y 6fZtvPwKtWhMw/hC8Y6xp0uYlzmzeoH+4dRpHwpcw+j/dxf4gpquqYLYoIlh0oRs GOH6n81qhtHmMfuNzqqhpeDfvz/EEHuTOfeRXMUZohRVMX6FVlvL3poAKB8OqTqG VQKtGY0cgT6olJMXgARgmY45EJRKMSP5JQGcF/IYG4tosK2k8/se0GAj6S3i5anD ejlvbX4UV5Vaq3aWnkP2QRO8F0q965dRROLMV8G/G2YPd5Sw4p6NqKtn8io7PHpL +CpSUAmXYzZ18omYcIPHEqee/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOwjFX22 GTzkSbHoaOxk+8HvW9tuMB8GA1UdIwQYMBaAFCkMQBD63EdpR+AJP0P3AE8NfFwc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzQ1Ni82QzI3RjI1QTQx QTExMUVBQTQ3RDFFODZDNEY5QUUwMi9LUXhBRVByY1IybEg0QWtfUV9jQVR3MThY QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tReEFFUHJjUjJsSDRBa19RX2NBVHcxOFhCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzQ1Ni82QzI3RjI1QTQxQTExMUVBQTQ3RDFFODZDNEY5QUUwMi9LUXhBRVByY1Iy bEg0QWtfUV9jQVR3MThYQncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaHbVD1UpDI4BXj62qTAldP+g92S3ndsKMrUy+Bhn+ySWuvcUebfn+ iftO7thV/PH3kIu7V+XSUsNf8woRZieEcL1DQj6FqkFB4iDxsAYUBhkrW3OiyULF /NvXZXSdJau7vCpy4fTDuNcd7rTRYz++Z16iZC4NeY1qoZiBdVFAf2PfyaFYJd74 7ijUp6+iDr6uIMyPc5uDZFuCtR2xzCSo2p4oKHakOgWX0DcJkWs2NWgB0iJEM5Ki ykSnCCsj78sjULmT8rce9xtOYN+rTNlRw5nErimwZSegKX+P/8Df7SgzKrmguzzY jgg458tKB4bI+R/LeSp/OtkMoRDiy0N4 -----END CERTIFICATE-----Generated at Sat Dec 6 15:10:37 2025 by rpki-client