This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft File: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft (raw, json) Hash identifier: EX3ybIHIsH9C3eWonxPXOKtIAQcfZ6RKoXIXwyZalE4= Subject key identifier: C1:31:C0:CD:56:AA:06:DA:7F:72:32:09:F4:FD:C6:C0:71:A5:84:41 Authority key identifier: 28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD Certificate issuer: /CN=A91ACC22/serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Certificate serial: 1065 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft Manifest number: 1054 Signing time: Sat 06 Dec 2025 16:53:28 +0000 Manifest this update: Sat 06 Dec 2025 16:53:27 +0000 Manifest next update: Sat 13 Dec 2025 16:53:27 +0000 Files and hashes: 1: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl (hash: 63x891y1Hq0bfMZAqw37OV5beIMNfSs+T7DZrFpGEh8=) 2: 2A3D8B5EA97D11EABA31B843C4F9AE02.roa (hash: fPoBgkYnMh4IMhrB/TA39+M1O1OAHZFrtUEJDkMooUg=) 3: EF66DDE4E46A11EB9552D31BC4F9AE02.roa (hash: ucL3j8TnFmy+7V5qbIqZDaLy79WcFoXLeH1a5In6i8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 16:53:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4197 (0x1065) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACC22, serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Validity Not Before: Dec 6 16:53:27 2025 GMT Not After : Dec 13 16:53:27 2025 GMT Subject: CN=69345f87-ee54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:64:64:2b:95:10:f5:6f:70:a7:ba:43:15:12: 85:df:a1:96:f2:3a:c1:2b:81:62:5e:6d:bc:46:e3: 57:7f:a1:0d:9d:ed:79:74:5c:f3:25:56:33:f2:f8: 38:f7:4c:e6:af:9c:94:a7:56:01:9a:6f:02:72:0c: a8:62:55:cf:b7:a5:54:c7:62:cc:e4:0e:b6:be:44: e3:e8:08:4a:b5:5c:83:00:8d:e5:17:71:65:25:08: b8:16:89:ae:95:32:31:14:0c:27:32:5a:e1:62:7b: d4:a2:96:46:6f:53:98:66:ab:09:72:41:0d:66:92: 4a:b8:6e:fb:40:8c:30:13:50:f3:dd:2c:09:7c:8e: f6:97:75:46:06:d0:f3:12:58:cb:f8:e5:20:83:fc: fe:48:12:02:89:c0:b7:ff:63:25:8b:c1:57:b3:43: 49:92:29:ed:10:90:4c:7c:53:41:4d:31:df:77:68: c5:81:07:07:8c:d8:ee:9d:8a:f8:de:48:bf:15:15: 02:b6:da:5a:b8:ca:2c:07:93:52:41:c7:c1:3a:3c: c9:d4:6b:a9:7b:b2:01:9d:0a:cc:5d:d3:41:4f:51: fd:7c:d4:c8:ab:b7:5b:9a:67:71:15:61:1d:12:3c: 08:80:b9:9a:af:d8:3c:cd:29:7c:8b:18:ca:de:dc: 36:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:31:C0:CD:56:AA:06:DA:7F:72:32:09:F4:FD:C6:C0:71:A5:84:41 X509v3 Authority Key Identifier: keyid:28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:22:96:96:74:1c:11:12:63:91:61:d4:ef:f8:46:d1:ee:fd: 47:7a:d8:27:09:bc:98:66:3e:7d:5c:b5:f4:85:d7:66:91:5f: 78:13:bc:64:4b:4e:93:32:5b:0c:f9:e3:e8:2e:80:4e:22:ed: bf:d9:b5:33:34:66:b5:e9:77:8b:48:f3:9d:75:ba:09:44:4e: 42:b4:5c:cd:c1:69:23:94:85:66:38:ca:94:56:58:b6:5a:cd: 5c:53:ba:ba:08:e5:3e:57:4b:7a:1f:d7:cf:1f:64:d1:fc:9e: 40:1c:5f:6f:c9:52:a1:0c:dd:4d:37:71:6b:7a:ad:e1:00:9a: cc:17:20:f4:c9:d2:f4:f2:30:cd:9f:3a:61:a4:08:52:59:f0: 93:89:05:a0:95:32:44:7a:39:db:44:36:ad:66:d7:fd:b0:70: 8f:7d:e4:4a:67:4c:40:1b:4a:0a:af:68:05:a1:55:48:78:fb: 62:68:85:f6:39:ef:18:b2:4d:93:1d:31:02:bf:07:1e:82:93: cd:a5:eb:71:47:dd:36:0d:81:03:e3:09:66:c4:b2:9f:5d:73: ab:9f:32:68:1b:00:0a:9c:51:a4:b1:fc:8b:74:0c:4b:75:b5: 99:2c:c4:d3:22:ce:3a:3c:1e:e9:1c:12:cb:5b:9f:09:9c:21: 63:21:2a:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNDMjIxMTAvBgNVBAUTKDI4RjVFNjVENzUwNTk2MURDNTUwQTk0OTI0REJDRUZC QjY3Njk0QkQwHhcNMjUxMjA2MTY1MzI3WhcNMjUxMjEzMTY1MzI3WjAYMRYwFAYD VQQDEw02OTM0NWY4Ny1lZTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsGRkK5UQ9W9wp7pDFRKF36GW8jrBK4FiXm28RuNXf6ENne15dFzzJVYz8vg4 90zmr5yUp1YBmm8CcgyoYlXPt6VUx2LM5A62vkTj6AhKtVyDAI3lF3FlJQi4Fomu lTIxFAwnMlrhYnvUopZGb1OYZqsJckENZpJKuG77QIwwE1Dz3SwJfI72l3VGBtDz EljL+OUgg/z+SBICicC3/2Mli8FXs0NJkintEJBMfFNBTTHfd2jFgQcHjNjunYr4 3ki/FRUCttpauMosB5NSQcfBOjzJ1Gupe7IBnQrMXdNBT1H9fNTIq7dbmmdxFWEd EjwIgLmar9g8zSl8ixjK3tw2MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMExwM1W qgbaf3IyCfT9xsBxpYRBMB8GA1UdIwQYMBaAFCj15l11BZYdxVCpSSTbzvu2dpS9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0MyMi82OTA2QzZGQTRD NzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxoM0ZVS2xKSk52Ty03WjJs TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQWG1YWFVGbGgzRlVLbEpKTnZPLTdaMmxMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0MyMi82OTA2QzZGQTRDNzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxo M0ZVS2xKSk52Ty03WjJsTDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEIpaWdBwREmORYdTv+EbR7v1HetgnCbyYZj59XLX0hddmkV94E7xk S06TMlsM+ePoLoBOIu2/2bUzNGa16XeLSPOddboJRE5CtFzNwWkjlIVmOMqUVli2 Ws1cU7q6COU+V0t6H9fPH2TR/J5AHF9vyVKhDN1NN3Freq3hAJrMFyD0ydL08jDN nzphpAhSWfCTiQWglTJEejnbRDatZtf9sHCPfeRKZ0xAG0oKr2gFoVVIePtiaIX2 Oe8Ysk2THTECvwcegpPNpetxR902DYED4wlmxLKfXXOrnzJoGwAKnFGksfyLdAxL dbWZLMTTIs46PB7pHBLLW58JnCFjISpJ -----END CERTIFICATE-----Generated at Sun Dec 7 00:02:56 2025 by rpki-client