This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft File: kQglePceS4YFfcPrBwP-ZYnmaJE.mft (raw, json) Hash identifier: L8g1weJeRC7/TeDMbfnRvcPH1k/7ezZPqml0gdUNYY0= Subject key identifier: 20:F3:8C:14:36:B6:96:62:51:68:F5:24:8A:76:53:5C:85:10:8D:70 Authority key identifier: 91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 Certificate issuer: /CN=A91BC039/serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Certificate serial: CD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft Manifest number: CA Signing time: Thu 04 Dec 2025 22:36:15 +0000 Manifest this update: Thu 04 Dec 2025 22:36:14 +0000 Manifest next update: Thu 11 Dec 2025 22:36:14 +0000 Files and hashes: 1: kQglePceS4YFfcPrBwP-ZYnmaJE.crl (hash: /nbFqV7e6tMfTRN3154FCg5QJMfp4BYCsQa3XKzMmnQ=) 2: 1167F6B2A18211EFA7475221C4F9AE02.roa (hash: Ifm3IRESO4IiNyy88ffJnkP8xwASc9gofSuSR7nlwHs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:36:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC039, serialNumber=91082578F71E4B86057DC3EB0703FE6589E66891 Validity Not Before: Dec 4 22:36:14 2025 GMT Not After : Dec 11 22:36:14 2025 GMT Subject: CN=69320cdf-96e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:6e:f4:34:d8:6e:4d:92:9c:eb:5d:40:81:c5: c2:dd:fd:bb:f6:0d:56:25:d3:6d:ac:74:69:24:4e: 6f:98:95:3d:2e:40:98:a6:22:76:c1:d4:99:f6:af: 1b:60:6b:f8:5c:35:3c:08:43:2b:b0:a4:7c:af:0c: 4c:03:06:f8:fd:dd:66:3a:1f:8e:90:33:fd:a0:fa: 92:8e:84:18:4a:13:65:5c:2a:90:bc:7c:e0:93:94: 21:a6:5a:bd:6c:73:83:5f:dc:7b:84:81:3d:ec:ac: 18:17:75:3c:9f:c3:50:1d:6a:f3:c0:2e:fb:af:37: f9:df:3d:41:63:4f:a9:c2:d7:21:6f:0c:32:49:ff: d5:4a:e5:52:72:1f:ff:82:0e:2f:6f:1b:86:99:98: 34:50:3b:ef:67:d2:d0:64:55:e7:ef:f9:31:99:4d: da:66:76:7f:d7:0d:2a:96:f7:c5:d8:51:39:87:cd: fc:9b:38:7f:b7:ef:18:ff:d3:79:0b:49:9f:ac:e4: d9:f1:1c:01:2c:ee:14:a2:d2:92:1b:e7:d4:3e:60: 10:d7:fa:ea:89:99:d1:4b:db:a6:23:20:4c:3b:92: b7:bb:40:95:e6:fa:08:0f:75:c6:a7:fd:ea:a8:81: f5:8e:69:42:2e:64:ff:69:ff:1e:48:70:88:20:ce: 27:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:F3:8C:14:36:B6:96:62:51:68:F5:24:8A:76:53:5C:85:10:8D:70 X509v3 Authority Key Identifier: keyid:91:08:25:78:F7:1E:4B:86:05:7D:C3:EB:07:03:FE:65:89:E6:68:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kQglePceS4YFfcPrBwP-ZYnmaJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC039/1534A05AA17411EFBF616624C4F9AE02/kQglePceS4YFfcPrBwP-ZYnmaJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:94:1c:d3:9a:97:71:59:36:49:8f:0c:68:62:85:53:e6:1a: 08:26:fd:8f:dc:82:27:7f:5f:15:b0:28:6f:f5:bc:d6:c0:5a: a0:e2:e7:70:46:27:d4:5d:03:35:12:61:82:89:eb:5b:4d:d7: 05:d8:ce:f8:82:ab:29:e6:12:8f:e4:15:13:75:ad:f7:6c:82: 60:36:41:be:74:a3:ff:d2:d7:06:e6:3a:2f:91:0d:97:bb:e1: c1:4e:27:7a:03:a2:9c:8d:6d:4c:55:5a:7e:aa:2c:50:fe:77: eb:b8:72:ee:74:9c:53:17:10:50:54:02:91:23:7a:8d:af:77: 36:a9:60:4f:72:27:45:98:79:9f:13:01:0c:7c:2d:ff:e8:9f: 82:bc:9d:46:96:d5:5a:f8:a1:c2:21:90:b0:14:eb:51:71:8d: 8a:4c:63:2f:7e:50:5f:1d:53:b8:b7:dd:71:e8:19:0c:0c:19: af:0b:40:cd:0d:56:65:1e:50:d4:02:b0:13:18:f0:d0:ae:bc: bd:81:58:5a:08:df:88:74:c6:8a:68:2f:d1:a7:55:de:d7:ae: 3a:b5:3c:3e:07:62:aa:14:25:d9:a6:05:e3:f2:1f:99:ee:cc: f2:4e:db:c3:83:5e:35:47:ea:00:ed:b0:19:92:f6:0a:80:ff: 01:da:7b:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMwMzkxMTAvBgNVBAUTKDkxMDgyNTc4RjcxRTRCODYwNTdEQzNFQjA3MDNGRTY1 ODlFNjY4OTEwHhcNMjUxMjA0MjIzNjE0WhcNMjUxMjExMjIzNjE0WjAYMRYwFAYD VQQDEw02OTMyMGNkZi05NmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzm70NNhuTZKc611AgcXC3f279g1WJdNtrHRpJE5vmJU9LkCYpiJ2wdSZ9q8b YGv4XDU8CEMrsKR8rwxMAwb4/d1mOh+OkDP9oPqSjoQYShNlXCqQvHzgk5Qhplq9 bHODX9x7hIE97KwYF3U8n8NQHWrzwC77rzf53z1BY0+pwtchbwwySf/VSuVSch// gg4vbxuGmZg0UDvvZ9LQZFXn7/kxmU3aZnZ/1w0qlvfF2FE5h838mzh/t+8Y/9N5 C0mfrOTZ8RwBLO4UotKSG+fUPmAQ1/rqiZnRS9umIyBMO5K3u0CV5voID3XGp/3q qIH1jmlCLmT/af8eSHCIIM4noQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCDzjBQ2 tpZiUWj1JIp2U1yFEI1wMB8GA1UdIwQYMBaAFJEIJXj3HkuGBX3D6wcD/mWJ5miR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzAzOS8xNTM0QTA1QUEx NzQxMUVGQkY2MTY2MjRDNEY5QUUwMi9rUWdsZVBjZVM0WUZmY1ByQndQLVpZbm1h SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tRZ2xlUGNlUzRZRmZjUHJCd1AtWllubWFKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzAzOS8xNTM0QTA1QUExNzQxMUVGQkY2MTY2MjRDNEY5QUUwMi9rUWdsZVBjZVM0 WUZmY1ByQndQLVpZbm1hSkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIlBzTmpdxWTZJjwxoYoVT5hoIJv2P3IInf18VsChv9bzWwFqg4udw RifUXQM1EmGCietbTdcF2M74gqsp5hKP5BUTda33bIJgNkG+dKP/0tcG5jovkQ2X u+HBTid6A6KcjW1MVVp+qixQ/nfruHLudJxTFxBQVAKRI3qNr3c2qWBPcidFmHmf EwEMfC3/6J+CvJ1GltVa+KHCIZCwFOtRcY2KTGMvflBfHVO4t91x6BkMDBmvC0DN DVZlHlDUArATGPDQrry9gVhaCN+IdMaKaC/Rp1Xe1646tTw+B2KqFCXZpgXj8h+Z 7szyTtvDg141R+oA7bAZkvYKgP8B2nsK -----END CERTIFICATE-----Generated at Sat Dec 6 17:27:12 2025 by rpki-client