This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft File: KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft (raw, json) Hash identifier: UeiNFInFfXYqeuBRwn6NBXsEY8N+f+5ywNp1Olb7TW8= Subject key identifier: E1:8A:6A:60:93:55:D7:59:3C:8A:C6:DD:90:39:DE:F6:FA:23:A8:A0 Authority key identifier: 28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 Certificate issuer: /CN=A91C5021/serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Certificate serial: 079A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft Manifest number: 0783 Signing time: Thu 04 Dec 2025 20:32:55 +0000 Manifest this update: Thu 04 Dec 2025 20:32:55 +0000 Manifest next update: Thu 11 Dec 2025 20:32:54 +0000 Files and hashes: 1: KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl (hash: Md8sgwCxh/GuUdqQLwhrGLPJP+4G6Oqh5iAIF8Jqmig=) 2: C42CEC7ECC3611EF9C79665CC4F9AE02.roa (hash: +9I46oBmobqbn5rox7c5LlYsiP1+hncBa8w/SO0pYyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 20:32:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1946 (0x79a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5021, serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Validity Not Before: Dec 4 20:32:55 2025 GMT Not After : Dec 11 20:32:54 2025 GMT Subject: CN=6931eff7-d9d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:4a:1b:bc:1c:36:85:e8:c1:8f:ee:2b:85:84: 25:fb:8d:18:e6:72:a4:17:62:4e:d7:e2:f5:36:c5: 1c:7c:0e:08:30:2a:2c:5a:a1:bc:61:03:5b:38:88: 67:43:19:03:e3:29:84:91:a6:ac:05:df:78:1a:de: d4:98:ee:9c:85:aa:3d:d7:a1:8c:f6:bb:dc:af:33: 1a:48:8f:27:fc:35:fc:5d:0b:be:a2:39:05:52:fd: 1e:48:b1:4c:d5:4a:7e:7a:38:17:97:90:a5:b1:07: 6e:1a:6f:a6:b9:1c:8a:bc:3d:90:29:65:d9:50:10: 04:d1:3f:22:36:3c:94:29:5e:97:87:ea:02:b5:d7: 77:83:df:01:bd:5f:ab:11:b7:b5:05:94:a7:c6:9c: cc:0b:d8:ed:cd:82:6f:ad:bb:87:f7:10:7d:e6:33: 40:7f:a3:e5:f0:25:52:11:cc:57:96:3a:62:0f:aa: 75:8d:d8:27:ea:b8:1b:6c:75:e1:70:3b:4d:8d:a2: 99:f9:13:e5:35:4f:b3:f0:2e:2a:6f:68:82:d2:a4: 1f:cf:81:08:cd:ab:04:0a:17:7f:21:c6:a1:1d:21: c2:ba:21:c5:7f:7d:c3:8d:8e:0b:9c:2a:5b:00:47: cf:97:04:4d:c1:71:04:96:39:9b:8a:47:49:4c:6f: bc:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:8A:6A:60:93:55:D7:59:3C:8A:C6:DD:90:39:DE:F6:FA:23:A8:A0 X509v3 Authority Key Identifier: keyid:28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:bf:1f:2f:c7:d9:06:de:7f:89:38:f1:3a:0d:76:c1:d2:ff: 36:c5:8b:e9:09:26:8f:f6:b8:56:dc:da:d7:94:01:67:98:bf: 88:da:3f:fe:c1:f9:9b:e2:12:e9:c3:e2:a6:cb:5d:2d:df:c0: d5:c0:96:d4:77:64:53:bd:37:e8:71:ca:25:d3:5c:1b:f8:a1: 1a:17:9d:7a:5c:fb:24:e8:cb:cb:69:93:cd:e4:79:99:91:45: 0a:b7:5e:c6:47:59:28:5b:ad:2c:b2:33:8e:00:f4:12:d0:f8: 5e:24:79:91:53:61:b2:ad:fc:48:67:12:ff:f4:75:d7:d8:05: 47:44:1c:be:72:92:85:4f:16:c9:ce:55:b9:11:ac:0e:bf:9d: d8:3a:82:cf:43:b1:79:31:c9:24:57:c5:85:ad:82:40:22:5d: 66:8b:e6:7e:eb:1e:cf:dc:7c:f6:47:28:d1:48:9b:b2:c9:41: eb:e1:e4:06:58:ff:89:02:53:ed:74:45:08:ef:6a:b2:5b:c0: b0:78:9d:1d:b9:ba:b4:cf:26:1a:98:43:28:d2:00:34:b4:7d: dc:4f:2d:1c:e0:5b:8d:e8:e4:c0:13:78:5b:eb:02:d5:d0:8d: cf:fd:f3:94:18:59:c8:62:64:8f:38:90:bd:b6:2e:eb:ec:fc: a5:a0:83:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUwMjExMTAvBgNVBAUTKDI4RjA3MTEwRTQzNTg0QTNCQTZBM0E0QTg3RDY4RTlF QjdEM0U5MDIwHhcNMjUxMjA0MjAzMjU1WhcNMjUxMjExMjAzMjU0WjAYMRYwFAYD VQQDEw02OTMxZWZmNy1kOWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8EobvBw2hejBj+4rhYQl+40Y5nKkF2JO1+L1NsUcfA4IMCosWqG8YQNbOIhn QxkD4ymEkaasBd94Gt7UmO6chao916GM9rvcrzMaSI8n/DX8XQu+ojkFUv0eSLFM 1Up+ejgXl5ClsQduGm+muRyKvD2QKWXZUBAE0T8iNjyUKV6Xh+oCtdd3g98BvV+r Ebe1BZSnxpzMC9jtzYJvrbuH9xB95jNAf6Pl8CVSEcxXljpiD6p1jdgn6rgbbHXh cDtNjaKZ+RPlNU+z8C4qb2iC0qQfz4EIzasEChd/IcahHSHCuiHFf33DjY4LnCpb AEfPlwRNwXEEljmbikdJTG+82wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOGKamCT VddZPIrG3ZA53vb6I6igMB8GA1UdIwQYMBaAFCjwcRDkNYSjumo6SofWjp630+kC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTAyMS85QUZENDg2QzNC QkMxMUVCQTc3NkYxNjFDNEY5QUUwMi9LUEJ4RU9RMWhLTzZhanBLaDlhT25yZlQ2 UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQQnhFT1ExaEtPNmFqcEtoOWFPbnJmVDZRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTAyMS85QUZENDg2QzNCQkMxMUVCQTc3NkYxNjFDNEY5QUUwMi9LUEJ4RU9RMWhL TzZhanBLaDlhT25yZlQ2UUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYvx8vx9kG3n+JOPE6DXbB0v82xYvpCSaP9rhW3NrXlAFnmL+I2j/+ wfmb4hLpw+Kmy10t38DVwJbUd2RTvTfoccol01wb+KEaF516XPsk6MvLaZPN5HmZ kUUKt17GR1koW60ssjOOAPQS0PheJHmRU2GyrfxIZxL/9HXX2AVHRBy+cpKFTxbJ zlW5EawOv53YOoLPQ7F5MckkV8WFrYJAIl1mi+Z+6x7P3Hz2RyjRSJuyyUHr4eQG WP+JAlPtdEUI72qyW8CweJ0dubq0zyYamEMo0gA0tH3cTy0c4FuN6OTAE3hb6wLV 0I3P/fOUGFnIYmSPOJC9ti7r7PyloIPH -----END CERTIFICATE-----Generated at Sat Dec 6 16:10:14 2025 by rpki-client