This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft File: kIDbUP8LdD_6MredDdXDGQIdbiQ.mft (raw, json) Hash identifier: TfqETBAXXI2mVIp/UMqUhAx3XjwgydxBpbPiSlCvgzk= Subject key identifier: 3A:7B:EC:97:B0:5B:8D:67:98:98:FB:B3:4F:4E:FB:2A:DC:13:A7:3F Authority key identifier: 90:80:DB:50:FF:0B:74:3F:FA:32:B7:9D:0D:D5:C3:19:02:1D:6E:24 Certificate issuer: /CN=A91B5377/serialNumber=9080DB50FF0B743FFA32B79D0DD5C319021D6E24 Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft Manifest number: AA Signing time: Fri 05 Dec 2025 04:09:40 +0000 Manifest this update: Fri 05 Dec 2025 04:09:39 +0000 Manifest next update: Fri 12 Dec 2025 04:09:39 +0000 Files and hashes: 1: kIDbUP8LdD_6MredDdXDGQIdbiQ.crl (hash: VxwRLd0j1vnPRyIvMARo4sjOi0YgndusiZsXTK3D0sY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.crl rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:09:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5377, serialNumber=9080DB50FF0B743FFA32B79D0DD5C319021D6E24 Validity Not Before: Dec 5 04:09:39 2025 GMT Not After : Dec 12 04:09:39 2025 GMT Subject: CN=69325b04-38b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:0c:44:50:1c:c3:3f:14:c4:8b:88:e3:bb:1d: dd:96:23:57:e1:29:bc:01:ef:57:98:81:6f:7f:3b: b7:bc:ba:eb:53:2e:f7:20:a4:f5:fd:8b:7f:6b:77: 73:71:a4:24:75:93:56:f7:77:58:30:3d:da:7b:4a: 6f:70:b9:2f:1a:0c:d4:89:25:cb:77:9b:19:6f:6b: 8d:cd:09:f0:a5:a2:5f:e8:2e:4b:6c:a4:d4:98:d4: 93:22:af:14:06:9c:f6:0d:ed:10:e7:25:9a:7f:26: 24:37:28:07:df:47:6e:ec:15:e9:fb:b5:0c:bd:0d: 2e:d5:20:1e:4f:27:d2:be:df:d1:24:21:95:27:8e: c2:13:dd:d4:94:7e:e6:24:e4:c5:e1:02:4d:0b:c7: ad:3c:23:a9:ce:52:98:63:e6:ce:34:8a:1a:55:39: 34:58:ba:3d:10:1e:f7:a3:71:61:7c:96:81:76:a4: 0f:bc:6f:74:65:38:a8:bc:09:c3:26:97:4f:a1:79: b5:f5:0e:38:b8:76:4a:df:2e:bb:df:1a:ce:0a:d4: 02:56:ca:15:f8:cc:ca:df:06:2c:81:6a:cb:d0:4f: a3:4b:55:60:e7:1b:e3:b3:31:00:6e:cc:7b:9e:c1: cd:d0:1f:7e:66:16:06:c8:16:24:c4:32:0e:95:ae: b8:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:7B:EC:97:B0:5B:8D:67:98:98:FB:B3:4F:4E:FB:2A:DC:13:A7:3F X509v3 Authority Key Identifier: keyid:90:80:DB:50:FF:0B:74:3F:FA:32:B7:9D:0D:D5:C3:19:02:1D:6E:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:6f:80:bc:0b:0b:0b:58:c9:d0:0c:69:a8:f1:ba:79:69:12: 0b:2e:77:43:2e:ab:79:f5:88:c7:48:4f:37:b2:9c:90:cd:98: 11:5f:83:86:23:0d:c4:39:c8:63:bf:3c:6e:06:1e:70:f6:c5: 56:54:6a:cf:6f:dc:14:02:d8:ec:fd:1c:51:8a:12:18:69:0b: a9:a7:eb:c4:8f:86:f3:c4:5e:4a:3b:54:d3:ab:46:32:2c:cd: 32:6d:e5:bb:20:24:72:80:02:fd:7d:1d:5d:3f:48:65:78:d4: b9:56:77:e0:13:f8:d7:07:37:ea:85:22:27:3a:08:3f:12:50: 46:a8:c6:b0:16:97:ce:b0:8d:ab:e6:51:5b:b6:f8:00:9d:65: b1:0c:5b:8c:ba:a8:ee:b9:13:ed:15:04:fe:62:93:0f:fd:18: cf:48:cf:7d:77:03:8e:ab:78:3f:33:a0:b3:17:0f:72:b2:41: 3c:a3:7e:ab:d8:29:34:9f:7b:b8:76:b5:b9:5c:0e:cb:ca:60: e5:86:6c:92:03:ad:9d:39:eb:ae:1e:b8:a8:c5:a2:81:88:69: 6a:7c:ef:82:c9:2d:0f:49:1a:f6:a6:72:80:9a:ad:2d:c8:0a: 31:95:4c:11:9e:74:d5:ed:05:75:f3:3a:5d:de:73:35:a9:7b: a1:f6:56:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjUzNzcxMTAvBgNVBAUTKDkwODBEQjUwRkYwQjc0M0ZGQTMyQjc5RDBERDVDMzE5 MDIxRDZFMjQwHhcNMjUxMjA1MDQwOTM5WhcNMjUxMjEyMDQwOTM5WjAYMRYwFAYD VQQDEw02OTMyNWIwNC0zOGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5AxEUBzDPxTEi4jjux3dliNX4Sm8Ae9XmIFvfzu3vLrrUy73IKT1/Yt/a3dz caQkdZNW93dYMD3ae0pvcLkvGgzUiSXLd5sZb2uNzQnwpaJf6C5LbKTUmNSTIq8U Bpz2De0Q5yWafyYkNygH30du7BXp+7UMvQ0u1SAeTyfSvt/RJCGVJ47CE93UlH7m JOTF4QJNC8etPCOpzlKYY+bONIoaVTk0WLo9EB73o3FhfJaBdqQPvG90ZTiovAnD JpdPoXm19Q44uHZK3y673xrOCtQCVsoV+MzK3wYsgWrL0E+jS1Vg5xvjszEAbsx7 nsHN0B9+ZhYGyBYkxDIOla641QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDp77Jew W41nmJj7s09O+yrcE6c/MB8GA1UdIwQYMBaAFJCA21D/C3Q/+jK3nQ3VwxkCHW4k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTM3Ny9GM0M0NEE3OEND NTgxMUVGOTk5ODVEODZDNEY5QUUwMi9rSURiVVA4TGREXzZNcmVkRGRYREdRSWRi aVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJRGJVUDhMZERfNk1yZWREZFhER1FJZGJpUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTM3Ny9GM0M0NEE3OENDNTgxMUVGOTk5ODVEODZDNEY5QUUwMi9rSURiVVA4TGRE XzZNcmVkRGRYREdRSWRiaVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSb4C8CwsLWMnQDGmo8bp5aRILLndDLqt59YjHSE83spyQzZgRX4OG Iw3EOchjvzxuBh5w9sVWVGrPb9wUAtjs/RxRihIYaQupp+vEj4bzxF5KO1TTq0Yy LM0ybeW7ICRygAL9fR1dP0hleNS5VnfgE/jXBzfqhSInOgg/ElBGqMawFpfOsI2r 5lFbtvgAnWWxDFuMuqjuuRPtFQT+YpMP/RjPSM99dwOOq3g/M6CzFw9yskE8o36r 2Ck0n3u4drW5XA7LymDlhmySA62dOeuuHrioxaKBiGlqfO+CyS0PSRr2pnKAmq0t yAoxlUwRnnTV7QV18zpd3nM1qXuh9laL -----END CERTIFICATE-----Generated at Sat Dec 6 21:29:02 2025 by rpki-client