This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6B4B/BB42C1DE24C311F096C68481C4F9AE02/KgD9XV6u-B8ysAsuXILF7NrBJpM.mft File: KgD9XV6u-B8ysAsuXILF7NrBJpM.mft (raw, json) Hash identifier: F1IIH5VTY9HQet3zyTw0HF1rE0qSXCUkTpOhZxsiIoE= Subject key identifier: A4:FE:5E:C7:76:8C:7C:71:73:EF:22:68:67:8B:CC:62:EB:A8:AB:CF Authority key identifier: 2A:00:FD:5D:5E:AE:F8:1F:32:B0:0B:2E:5C:82:C5:EC:DA:C1:26:93 Certificate issuer: /CN=A91B6B4B/serialNumber=2A00FD5D5EAEF81F32B00B2E5C82C5ECDAC12693 Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KgD9XV6u-B8ysAsuXILF7NrBJpM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6B4B/BB42C1DE24C311F096C68481C4F9AE02/KgD9XV6u-B8ysAsuXILF7NrBJpM.mft Manifest number: 71 Signing time: Fri 05 Dec 2025 04:47:02 +0000 Manifest this update: Fri 05 Dec 2025 04:47:02 +0000 Manifest next update: Fri 12 Dec 2025 04:47:02 +0000 Files and hashes: 1: KgD9XV6u-B8ysAsuXILF7NrBJpM.crl (hash: o/fST6Wx5eDJn5XXu8EXpgEpzZvUwVbNz15rQ/bGx94=) 2: B3F95F9A24C411F0A4C45287C4F9AE02.roa (hash: xB68FJMR3JM3Cs61xN748kWOuQa0imSlnpLBddD+vsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6B4B/BB42C1DE24C311F096C68481C4F9AE02/KgD9XV6u-B8ysAsuXILF7NrBJpM.crl rsync://rpki.apnic.net/member_repository/A91B6B4B/BB42C1DE24C311F096C68481C4F9AE02/KgD9XV6u-B8ysAsuXILF7NrBJpM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KgD9XV6u-B8ysAsuXILF7NrBJpM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:47:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6B4B, serialNumber=2A00FD5D5EAEF81F32B00B2E5C82C5ECDAC12693 Validity Not Before: Dec 5 04:47:02 2025 GMT Not After : Dec 12 04:47:02 2025 GMT Subject: CN=693263c6-70ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:cc:b5:09:31:9d:71:6e:cb:43:87:6a:38:e9: 25:b2:48:42:ae:67:4d:c2:37:bb:9c:67:db:63:d7: 0d:dc:32:0e:51:95:c5:eb:33:5e:9d:a8:1d:40:4e: da:14:0c:08:0c:84:64:dd:2f:ee:45:ee:e7:c2:81: 77:9c:37:e7:ab:63:6a:b9:03:2d:35:a3:e0:2c:fb: 33:c9:99:6d:4e:0a:83:14:8f:21:06:9a:64:a4:b3: d4:39:fa:36:35:e0:14:c0:ce:af:5d:60:b7:5f:e8: c7:b1:6d:75:59:33:c8:f9:04:31:ed:99:c8:c1:cc: 2a:f0:d1:f2:a9:85:3d:64:dd:99:1b:96:7e:2b:9c: 98:1a:17:59:a6:c0:8c:29:06:f5:1e:f3:ce:90:28: 69:57:aa:8d:55:62:f5:9a:1d:bb:78:af:68:fb:cc: 63:fa:b3:a5:5d:fe:18:f5:df:0f:e7:0b:1e:08:a9: 2c:87:ca:41:58:c1:28:4a:c1:3a:c1:84:0a:03:3c: 51:fc:c8:ee:15:84:af:ea:8e:54:95:eb:fb:1d:0e: 75:a2:c8:d5:d6:1d:a1:30:89:df:30:24:7a:73:b0: 4a:f2:a4:61:21:e6:bb:c4:22:a2:f3:47:ef:bf:9e: 40:ab:ed:a6:9f:95:2f:cd:bb:a0:3c:f4:60:49:3e: a4:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:FE:5E:C7:76:8C:7C:71:73:EF:22:68:67:8B:CC:62:EB:A8:AB:CF X509v3 Authority Key Identifier: keyid:2A:00:FD:5D:5E:AE:F8:1F:32:B0:0B:2E:5C:82:C5:EC:DA:C1:26:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6B4B/BB42C1DE24C311F096C68481C4F9AE02/KgD9XV6u-B8ysAsuXILF7NrBJpM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KgD9XV6u-B8ysAsuXILF7NrBJpM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6B4B/BB42C1DE24C311F096C68481C4F9AE02/KgD9XV6u-B8ysAsuXILF7NrBJpM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:ab:23:5c:e7:9d:2a:6f:64:bb:a4:fb:e5:1b:47:1e:68:43: f7:0b:d0:b8:2d:ce:08:2d:b9:6c:de:30:53:be:90:29:a2:aa: 7b:ae:59:70:91:80:e2:91:43:ea:c6:80:ff:7c:04:6f:02:db: a6:90:7e:a1:34:94:d4:e1:7b:7a:96:e4:0a:8f:38:a4:32:a3: 33:fc:2f:b2:95:78:99:b3:4f:2e:a9:b8:00:df:99:c7:b4:aa: a7:af:27:01:4a:d9:9a:dc:10:71:03:23:73:d5:b8:29:77:dc: 2a:95:83:57:1d:0c:09:8b:bc:12:c1:bb:14:9c:43:23:95:25: 39:39:5d:db:43:66:77:36:23:ad:be:28:18:c6:0c:5c:7a:09: f8:64:b8:7a:ed:53:18:39:cf:f0:3d:e3:df:3b:1a:30:8e:96: 8f:0b:1e:1c:d5:72:1c:ff:ac:70:24:b3:bb:3c:b5:cc:08:d2: c5:43:80:ea:44:80:b8:b0:a4:41:65:48:28:25:09:22:e5:43: 05:ec:84:16:fa:4e:64:84:fb:67:3a:f5:96:25:d0:8d:32:3c: b5:9d:10:db:eb:cd:bc:e5:b0:25:7f:b5:51:a7:6a:7d:ed:fe: 28:db:c7:86:95:c4:58:ff:bc:4a:fb:cb:8e:5e:37:e6:e2:05: 1b:46:77:8e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NkI0QjExMC8GA1UEBRMoMkEwMEZENUQ1RUFFRjgxRjMyQjAwQjJFNUM4MkM1RUNE QUMxMjY5MzAeFw0yNTEyMDUwNDQ3MDJaFw0yNTEyMTIwNDQ3MDJaMBgxFjAUBgNV BAMTDTY5MzI2M2M2LTcwY2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOzLUJMZ1xbstDh2o46SWySEKuZ03CN7ucZ9tj1w3cMg5RlcXrM16dqB1ATtoU DAgMhGTdL+5F7ufCgXecN+erY2q5Ay01o+As+zPJmW1OCoMUjyEGmmSks9Q5+jY1 4BTAzq9dYLdf6MexbXVZM8j5BDHtmcjBzCrw0fKphT1k3Zkbln4rnJgaF1mmwIwp BvUe886QKGlXqo1VYvWaHbt4r2j7zGP6s6Vd/hj13w/nCx4IqSyHykFYwShKwTrB hAoDPFH8yO4VhK/qjlSV6/sdDnWiyNXWHaEwid8wJHpzsErypGEh5rvEIqLzR++/ nkCr7aaflS/Nu6A89GBJPqQpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUpP5ex3aM fHFz7yJoZ4vMYuuoq88wHwYDVR0jBBgwFoAUKgD9XV6u+B8ysAsuXILF7NrBJpMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2QjRCL0JCNDJDMURFMjRD MzExRjA5NkM2ODQ4MUM0RjlBRTAyL0tnRDlYVjZ1LUI4eXNBc3VYSUxGN05yQkpw TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS2dEOVhWNnUtQjh5c0FzdVhJTEY3TnJCSnBNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2 QjRCL0JCNDJDMURFMjRDMzExRjA5NkM2ODQ4MUM0RjlBRTAyL0tnRDlYVjZ1LUI4 eXNBc3VYSUxGN05yQkpwTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJSrI1znnSpvZLuk++UbRx5oQ/cL0LgtzggtuWzeMFO+kCmiqnuuWXCR gOKRQ+rGgP98BG8C26aQfqE0lNThe3qW5AqPOKQyozP8L7KVeJmzTy6puADfmce0 qqevJwFK2ZrcEHEDI3PVuCl33CqVg1cdDAmLvBLBuxScQyOVJTk5XdtDZnc2I62+ KBjGDFx6CfhkuHrtUxg5z/A94987GjCOlo8LHhzVchz/rHAks7s8tcwI0sVDgOpE gLiwpEFlSCglCSLlQwXshBb6TmSE+2c69ZYl0I0yPLWdENvrzbzlsCV/tVGnan3t /ijbx4aVxFj/vEr7y45eN+biBRtGd44= -----END CERTIFICATE-----Generated at Sun Dec 7 01:59:18 2025 by rpki-client