This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft File: kBUoySF5F9lWch0caFZlNFvrVv0.mft (raw, json) Hash identifier: 2TuumX7eBFqY8qAkQhxviwHRcICOAEZy6l1hoQjbbSE= Subject key identifier: 1C:27:C7:05:CA:49:6A:23:3E:92:00:7E:F7:B2:5D:3B:00:F6:87:24 Authority key identifier: 90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD Certificate issuer: /CN=A91CFAB9/serialNumber=901528C9217917D956721D1C685665345BEB56FD Certificate serial: 0390 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft Manifest number: 038C Signing time: Sat 06 Dec 2025 23:09:23 +0000 Manifest this update: Sat 06 Dec 2025 23:09:22 +0000 Manifest next update: Sat 13 Dec 2025 23:09:22 +0000 Files and hashes: 1: kBUoySF5F9lWch0caFZlNFvrVv0.crl (hash: pyHArebcN+6pKoh9Vts6GAH3XaQFO++JTqUej5G6NSA=) 2: 39A335D6CB3F11ECBEBC9A1DC4F9AE02.roa (hash: NmvW/sg0pEXjTHBegEg6TihBwGGc4JodMMQnzVosHvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 912 (0x390) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFAB9, serialNumber=901528C9217917D956721D1C685665345BEB56FD Validity Not Before: Dec 6 23:09:22 2025 GMT Not After : Dec 13 23:09:22 2025 GMT Subject: CN=6934b7a3-2ad0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:4a:58:47:9f:d2:ca:e8:b5:d3:4d:00:5f:ef: 4a:4c:0e:6e:78:c4:d8:dc:8c:f6:f8:de:7f:b6:c6: 19:42:39:c9:2d:f9:34:1f:ed:ba:d6:88:d5:e7:d2: 6b:4b:ce:e5:b7:12:21:2f:14:ac:4f:b8:f3:02:2d: c2:9e:84:fa:ff:34:01:b1:8c:2e:90:2e:00:b6:03: 46:70:c1:68:3c:14:d6:56:09:f1:83:7a:6e:f0:60: 78:23:9e:04:41:ae:d1:b3:94:25:5e:8c:c2:ba:49: c6:13:75:55:8f:f1:d8:40:49:c8:96:38:c1:93:a2: 3c:cb:a5:6e:df:7d:48:82:60:74:71:4e:d4:06:f2: 9d:9d:ca:a5:aa:ce:db:21:a1:f2:11:3a:67:19:a9: 7e:1d:6f:37:c9:dc:2e:8f:c6:99:3a:ea:55:2e:1b: fc:01:0c:83:04:0d:17:c7:e6:49:6a:5d:99:92:bb: 38:65:13:4b:54:26:06:3b:a0:7d:f4:cb:a2:d8:b2: 55:52:04:a3:5d:5e:31:a5:7a:3d:11:1c:68:60:f1: 42:1f:6e:9f:4b:e6:71:83:05:cf:5d:80:f5:d5:7a: d1:cc:9d:45:0b:13:ff:7a:79:1a:e1:fe:0a:64:00: b9:18:4e:f2:78:c5:95:18:63:18:34:d9:18:33:1c: 90:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:27:C7:05:CA:49:6A:23:3E:92:00:7E:F7:B2:5D:3B:00:F6:87:24 X509v3 Authority Key Identifier: keyid:90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:ae:0b:7c:d3:7a:72:4e:e8:bf:ff:7e:84:21:66:38:7b:f2: c0:5f:e1:a3:f5:a0:b2:8b:1b:7e:bc:93:9d:4e:aa:d7:94:0a: 2d:e4:01:f5:ca:a0:a9:f7:73:b9:5a:79:d9:ac:5b:a4:56:c2: 73:da:21:8c:bd:b6:9a:e3:7e:96:96:2e:7d:37:5b:40:c2:d3: 63:71:1d:10:ac:de:75:c9:03:67:d6:8b:f7:d1:1d:c1:78:84: 3d:79:08:04:2f:db:9f:b8:fc:f1:14:3d:53:cc:77:2c:ce:fa: 51:6f:d8:67:fa:5e:3e:c2:80:56:25:2e:57:e3:19:5c:26:be: 1e:ac:9c:67:95:9d:a6:30:fc:bb:58:9d:cf:e3:59:4c:73:ba: 4a:9a:2d:c6:ac:29:ef:11:b6:8b:03:90:c5:a4:ab:11:92:50: a6:a0:20:3c:12:4d:60:47:c9:a2:d2:d3:30:bf:05:53:42:10: a7:ac:e9:32:31:93:62:88:1c:92:03:01:21:63:2e:57:87:4f: 40:57:1d:f2:b4:b5:fe:b2:1a:ef:1c:be:af:c3:2a:8b:71:0f: e7:5d:9c:49:a9:e4:e6:fd:3d:58:7a:07:85:ff:78:6c:4e:7e: dc:84:94:b7:5b:b0:94:92:1a:89:92:1e:50:b4:90:b2:b2:5d: 8e:fd:4b:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBQjkxMTAvBgNVBAUTKDkwMTUyOEM5MjE3OTE3RDk1NjcyMUQxQzY4NTY2NTM0 NUJFQjU2RkQwHhcNMjUxMjA2MjMwOTIyWhcNMjUxMjEzMjMwOTIyWjAYMRYwFAYD VQQDEw02OTM0YjdhMy0yYWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5UpYR5/Syui1000AX+9KTA5ueMTY3Iz2+N5/tsYZQjnJLfk0H+261ojV59Jr S87ltxIhLxSsT7jzAi3CnoT6/zQBsYwukC4AtgNGcMFoPBTWVgnxg3pu8GB4I54E Qa7Rs5QlXozCuknGE3VVj/HYQEnIljjBk6I8y6Vu331IgmB0cU7UBvKdncqlqs7b IaHyETpnGal+HW83ydwuj8aZOupVLhv8AQyDBA0Xx+ZJal2Zkrs4ZRNLVCYGO6B9 9Mui2LJVUgSjXV4xpXo9ERxoYPFCH26fS+ZxgwXPXYD11XrRzJ1FCxP/enka4f4K ZAC5GE7yeMWVGGMYNNkYMxyQsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBwnxwXK SWojPpIAfveyXTsA9ockMB8GA1UdIwQYMBaAFJAVKMkheRfZVnIdHGhWZTRb61b9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkFCOS8xQ0Q0NEY5RUM3 N0ExMUVDQjk0MzRDMkNDNEY5QUUwMi9rQlVveVNGNUY5bFdjaDBjYUZabE5GdnJW djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tCVW95U0Y1RjlsV2NoMGNhRlpsTkZ2clZ2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkFCOS8xQ0Q0NEY5RUM3N0ExMUVDQjk0MzRDMkNDNEY5QUUwMi9rQlVveVNGNUY5 bFdjaDBjYUZabE5GdnJWdjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmrgt803pyTui//36EIWY4e/LAX+Gj9aCyixt+vJOdTqrXlAot5AH1 yqCp93O5WnnZrFukVsJz2iGMvbaa436Wli59N1tAwtNjcR0QrN51yQNn1ov30R3B eIQ9eQgEL9ufuPzxFD1TzHcszvpRb9hn+l4+woBWJS5X4xlcJr4erJxnlZ2mMPy7 WJ3P41lMc7pKmi3GrCnvEbaLA5DFpKsRklCmoCA8Ek1gR8mi0tMwvwVTQhCnrOky MZNiiBySAwEhYy5Xh09AVx3ytLX+shrvHL6vwyqLcQ/nXZxJqeTm/T1YegeF/3hs Tn7chJS3W7CUkhqJkh5QtJCysl2O/UsM -----END CERTIFICATE-----Generated at Sun Dec 7 02:13:59 2025 by rpki-client