This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.mft File: -kF5Yn9bJllOVjA1Ogt3heDWksU.mft (raw, json) Hash identifier: q3SsUhzYtY13g1CU4nm6bBSkB44pmPq/CUKNkBq/Wzo= Subject key identifier: 3A:C7:11:8E:E0:D9:FC:61:33:59:54:3C:54:06:83:B5:10:6A:F0:86 Authority key identifier: FA:41:79:62:7F:5B:26:59:4E:56:30:35:3A:0B:77:85:E0:D6:92:C5 Certificate issuer: /CN=A91C1621/serialNumber=FA4179627F5B26594E5630353A0B7785E0D692C5 Certificate serial: 351E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-kF5Yn9bJllOVjA1Ogt3heDWksU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.mft Manifest number: 3505 Signing time: Thu 04 Dec 2025 14:16:03 +0000 Manifest this update: Thu 04 Dec 2025 14:16:02 +0000 Manifest next update: Thu 11 Dec 2025 14:16:02 +0000 Files and hashes: 1: -kF5Yn9bJllOVjA1Ogt3heDWksU.crl (hash: 88z8cLFKNAPpqT82Y71i1rJIEWHgI47f2nQ8PmENbBo=) 2: CDE36D52DB9511E99F3F673EC4F9AE02.roa (hash: jPHSUiUkbozR5N6j9xgdL/cbld0Q8j3JedxabqO04KM=) 3: BB8F87B4D4B011ECAA427351C4F9AE02.roa (hash: eRpbjrs7GTwfzhpVzYBrg6AgI/qzL8mQbPqmgl8ihsU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.crl rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-kF5Yn9bJllOVjA1Ogt3heDWksU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 14:16:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13598 (0x351e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1621, serialNumber=FA4179627F5B26594E5630353A0B7785E0D692C5 Validity Not Before: Dec 4 14:16:02 2025 GMT Not After : Dec 11 14:16:02 2025 GMT Subject: CN=693197a3-9c1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:8c:d6:88:45:67:39:c0:3d:ee:e5:30:a3:97: 10:05:ca:a3:6b:dd:8c:f3:b7:c2:89:ba:aa:5b:be: 96:c8:89:fd:34:e2:98:0d:61:39:21:86:93:e7:65: fc:13:e3:d8:05:76:41:0d:6a:2f:48:d6:ca:4b:a2: ed:c6:87:11:d2:af:49:d3:ad:4d:d3:72:94:71:1e: 8b:7b:d8:35:61:54:ba:aa:14:b7:05:d7:5d:3d:96: 9c:4b:7f:02:9d:14:9f:5a:40:2c:57:8b:d3:22:94: 57:27:51:fc:ab:60:1e:78:89:93:a0:af:c5:a4:3e: 81:75:78:50:b6:bd:3c:f4:e9:61:d2:b7:09:7a:ba: 3d:77:5e:60:27:b7:6a:95:9f:6e:d6:56:72:48:28: 75:6f:44:85:69:c8:f0:67:6b:59:5e:f7:76:70:9b: b5:8f:91:94:2e:cc:c7:69:d3:99:00:de:64:b5:1d: d7:8f:fc:87:b1:3c:72:78:d8:1f:7c:da:f3:8f:83: 40:b2:f7:31:ff:90:c9:ba:98:f9:e5:60:99:4b:c2: e8:3d:d1:16:14:5c:f9:b5:97:93:44:91:0a:25:d3: 01:d8:fb:7c:4c:28:5f:57:28:9f:c4:af:44:e2:65: c6:eb:7f:3a:5d:fa:ed:3d:30:10:35:56:17:bf:93: bf:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:C7:11:8E:E0:D9:FC:61:33:59:54:3C:54:06:83:B5:10:6A:F0:86 X509v3 Authority Key Identifier: keyid:FA:41:79:62:7F:5B:26:59:4E:56:30:35:3A:0B:77:85:E0:D6:92:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-kF5Yn9bJllOVjA1Ogt3heDWksU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:88:37:60:9d:ef:44:3f:74:74:9c:1f:54:95:94:1e:24:aa: c9:a9:f7:d3:ea:f7:b9:2b:37:db:98:43:0f:0a:98:18:bd:d4: 6b:ac:2b:49:25:8b:2b:c5:ee:69:33:c6:d6:83:d8:4a:f8:1f: 17:86:35:56:d0:30:36:4a:43:67:04:9f:d4:6a:30:92:62:7b: f4:76:99:aa:d3:a8:4c:eb:87:0f:89:5c:c8:ff:c7:dc:03:05: 62:2f:0e:05:5b:d8:64:6a:7b:71:bf:7d:f7:c2:ba:ce:d1:1e: 99:9f:5a:a7:ca:16:77:c9:65:7c:78:37:5a:b6:f4:7a:6d:a4: 5c:a4:02:d0:ef:05:16:de:36:72:1b:b3:55:e9:76:99:1c:20: 8d:ab:9a:6f:55:e9:d7:0a:db:08:51:49:46:d9:9c:48:b8:d6: 33:64:b6:6d:49:e7:55:74:0d:48:c2:be:b9:8f:0c:15:a0:e6: 84:78:cd:07:66:3a:c5:be:dc:fe:66:c6:27:8b:81:42:eb:b2: d3:7e:f3:8b:1c:fe:ab:aa:a0:36:3a:f8:ec:ab:4c:e7:39:a5: 38:26:8c:b8:11:2e:64:97:7a:2d:aa:f3:df:ca:29:81:aa:3e: 06:6e:fa:11:56:60:2a:97:25:7e:a1:ec:21:13:88:74:a5:96: d7:90:ab:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE2MjExMTAvBgNVBAUTKEZBNDE3OTYyN0Y1QjI2NTk0RTU2MzAzNTNBMEI3Nzg1 RTBENjkyQzUwHhcNMjUxMjA0MTQxNjAyWhcNMjUxMjExMTQxNjAyWjAYMRYwFAYD VQQDEw02OTMxOTdhMy05YzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ozWiEVnOcA97uUwo5cQBcqja92M87fCibqqW76WyIn9NOKYDWE5IYaT52X8 E+PYBXZBDWovSNbKS6LtxocR0q9J061N03KUcR6Le9g1YVS6qhS3BdddPZacS38C nRSfWkAsV4vTIpRXJ1H8q2AeeImToK/FpD6BdXhQtr089Olh0rcJero9d15gJ7dq lZ9u1lZySCh1b0SFacjwZ2tZXvd2cJu1j5GULszHadOZAN5ktR3Xj/yHsTxyeNgf fNrzj4NAsvcx/5DJupj55WCZS8LoPdEWFFz5tZeTRJEKJdMB2Pt8TChfVyifxK9E 4mXG6386XfrtPTAQNVYXv5O/tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDrHEY7g 2fxhM1lUPFQGg7UQavCGMB8GA1UdIwQYMBaAFPpBeWJ/WyZZTlYwNToLd4Xg1pLF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTYyMS85OUQ2OERDRTFE NjkxMUUyQTQ2NDBEQTcwOEIwMkNEMi8ta0Y1WW45YkpsbE9WakExT2d0M2hlRFdr c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1rRjVZbjliSmxsT1ZqQTFPZ3QzaGVEV2tzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTYyMS85OUQ2OERDRTFENjkxMUUyQTQ2NDBEQTcwOEIwMkNEMi8ta0Y1WW45Ykps bE9WakExT2d0M2hlRFdrc1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPiDdgne9EP3R0nB9UlZQeJKrJqffT6ve5KzfbmEMPCpgYvdRrrCtJ JYsrxe5pM8bWg9hK+B8XhjVW0DA2SkNnBJ/UajCSYnv0dpmq06hM64cPiVzI/8fc AwViLw4FW9hkantxv333wrrO0R6Zn1qnyhZ3yWV8eDdatvR6baRcpALQ7wUW3jZy G7NV6XaZHCCNq5pvVenXCtsIUUlG2ZxIuNYzZLZtSedVdA1Iwr65jwwVoOaEeM0H ZjrFvtz+ZsYni4FC67LTfvOLHP6rqqA2Ovjsq0znOaU4Joy4ES5kl3otqvPfyimB qj4GbvoRVmAqlyV+oewhE4h0pZbXkKtF -----END CERTIFICATE-----Generated at Sat Dec 6 07:08:42 2025 by rpki-client