This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft File: KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft (raw, json) Hash identifier: WM5P78ay4FNOuFZz4sQogpK/3qaldHgYZOYMGYBNncU= Subject key identifier: 77:E2:ED:27:EF:35:9F:37:98:BD:68:28:5B:AA:90:2B:DF:A9:6A:B2 Authority key identifier: 28:F1:8E:C7:49:EA:91:B5:A3:29:97:49:F2:AB:E2:78:8A:10:C6:91 Certificate issuer: /CN=A91DA252/serialNumber=28F18EC749EA91B5A3299749F2ABE2788A10C691 Certificate serial: 0A0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft Manifest number: 0A07 Signing time: Sat 06 Dec 2025 19:03:54 +0000 Manifest this update: Sat 06 Dec 2025 19:03:53 +0000 Manifest next update: Sat 13 Dec 2025 19:03:53 +0000 Files and hashes: 1: KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl (hash: UTH1J+naNwcRAj5/FXTguoqdNUqwCfZWkgc9QLuDUm0=) 2: 81E66AB486DD11EAA5DCD466C4F9AE02.roa (hash: PABbUqoLwf3xZn77dm2ppG3YXtLL0LLzakgXhNUgKAg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2573 (0xa0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA252, serialNumber=28F18EC749EA91B5A3299749F2ABE2788A10C691 Validity Not Before: Dec 6 19:03:53 2025 GMT Not After : Dec 13 19:03:53 2025 GMT Subject: CN=69347e19-002c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:81:2e:9b:77:be:9b:08:cd:93:37:5d:7f:5c: 1c:11:c5:cd:e2:bc:be:99:33:1b:8e:2b:49:5e:b2: 40:e7:77:fd:ba:5e:43:43:f5:3d:12:be:80:0a:d2: 44:26:3e:b3:fe:0c:5d:84:cf:15:28:f5:a9:14:4c: 09:eb:86:8f:42:07:5c:f1:d9:e1:62:32:60:73:cc: 91:70:c0:97:47:ce:4c:74:f3:bd:8b:70:d6:3a:cc: 98:16:11:a6:a6:6a:8d:96:c3:8a:3f:26:5d:9a:42: 37:00:f6:d3:55:6e:90:73:48:84:fa:b6:34:33:7e: 9a:3e:8b:30:3b:28:9f:db:88:40:0e:3b:73:d1:cd: 75:f4:33:43:05:b4:d9:49:e5:39:8e:8c:1d:bb:09: 1c:ca:b7:f3:41:68:dd:aa:1d:c5:27:86:e0:38:c3: 19:ef:17:f6:b9:5f:9c:10:9d:b4:75:88:e1:a5:15: de:03:0b:3d:3b:6f:17:d7:29:86:01:2a:4d:ad:6f: 43:7f:34:9f:7d:e0:b4:60:68:b9:2c:02:e2:4c:53: 05:4f:6f:cd:e4:54:91:b0:a4:1d:6c:92:66:74:18: fc:90:be:69:cb:06:15:4d:ab:37:3d:9d:c7:8a:3c: 7c:bd:23:e3:a2:91:23:6c:72:53:19:8b:64:8b:47: d0:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:E2:ED:27:EF:35:9F:37:98:BD:68:28:5B:AA:90:2B:DF:A9:6A:B2 X509v3 Authority Key Identifier: keyid:28:F1:8E:C7:49:EA:91:B5:A3:29:97:49:F2:AB:E2:78:8A:10:C6:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:08:cb:38:63:09:70:a5:0f:88:a8:2d:53:d4:d3:a6:e2:5c: ab:09:e6:1a:dc:38:47:4d:0a:6d:57:12:0b:09:ce:e8:25:6a: 56:fb:13:74:98:8b:df:c3:45:8c:41:a4:c8:7e:9e:ed:24:c4: a2:ea:bb:f4:a5:dc:c8:cf:f9:e4:3f:d6:5d:78:7b:20:e3:90: fd:b2:13:c1:91:83:6e:50:a5:7b:aa:a0:8a:d5:48:ec:fb:d4: ad:8a:da:8e:8f:81:f6:6e:83:82:bc:df:62:bd:7a:0c:d9:e7: b7:e4:89:c4:ec:10:b9:32:2e:d6:13:c3:20:a9:c2:07:a0:71: f6:ad:1b:f8:ce:c1:51:d7:0d:7e:72:06:3b:1b:18:f2:67:82: ff:8f:44:a1:f7:35:08:8a:d5:2b:f6:6c:cb:48:71:0d:5d:bc: e9:c7:a0:20:07:70:03:14:4c:a0:bd:8b:15:26:1a:18:d5:10: 18:c9:61:d3:4d:4e:fd:48:2a:27:a5:54:31:4d:c7:8f:d4:3e: ff:96:f2:1a:38:fc:31:13:9a:6f:a4:38:72:f7:55:d8:96:7a: 45:70:79:94:62:b1:48:0f:eb:a1:e1:22:91:e1:82:a4:c3:38: cb:e1:76:8c:6f:68:26:20:1d:dc:52:67:41:4f:ba:67:36:39: 35:9b:c0:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCg0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEyNTIxMTAvBgNVBAUTKDI4RjE4RUM3NDlFQTkxQjVBMzI5OTc0OUYyQUJFMjc4 OEExMEM2OTEwHhcNMjUxMjA2MTkwMzUzWhcNMjUxMjEzMTkwMzUzWjAYMRYwFAYD VQQDEw02OTM0N2UxOS0wMDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0oEum3e+mwjNkzddf1wcEcXN4ry+mTMbjitJXrJA53f9ul5DQ/U9Er6ACtJE Jj6z/gxdhM8VKPWpFEwJ64aPQgdc8dnhYjJgc8yRcMCXR85MdPO9i3DWOsyYFhGm pmqNlsOKPyZdmkI3APbTVW6Qc0iE+rY0M36aPoswOyif24hADjtz0c119DNDBbTZ SeU5jowduwkcyrfzQWjdqh3FJ4bgOMMZ7xf2uV+cEJ20dYjhpRXeAws9O28X1ymG ASpNrW9DfzSffeC0YGi5LALiTFMFT2/N5FSRsKQdbJJmdBj8kL5pywYVTas3PZ3H ijx8vSPjopEjbHJTGYtki0fQTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHfi7Sfv NZ83mL1oKFuqkCvfqWqyMB8GA1UdIwQYMBaAFCjxjsdJ6pG1oymXSfKr4niKEMaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTI1Mi9GMDgxNzE2ODg2 REMxMUVBOUJEM0M0NjZDNEY5QUUwMi9LUEdPeDBucWtiV2pLWmRKOHF2aWVJb1F4 cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQR094MG5xa2JXaktaZEo4cXZpZUlvUXhwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTI1Mi9GMDgxNzE2ODg2REMxMUVBOUJEM0M0NjZDNEY5QUUwMi9LUEdPeDBucWti V2pLWmRKOHF2aWVJb1F4cEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdCMs4YwlwpQ+IqC1T1NOm4lyrCeYa3DhHTQptVxILCc7oJWpW+xN0 mIvfw0WMQaTIfp7tJMSi6rv0pdzIz/nkP9ZdeHsg45D9shPBkYNuUKV7qqCK1Ujs +9StitqOj4H2boOCvN9ivXoM2ee35InE7BC5Mi7WE8MgqcIHoHH2rRv4zsFR1w1+ cgY7GxjyZ4L/j0Sh9zUIitUr9mzLSHENXbzpx6AgB3ADFEygvYsVJhoY1RAYyWHT TU79SConpVQxTceP1D7/lvIaOPwxE5pvpDhy91XYlnpFcHmUYrFID+uh4SKR4YKk wzjL4XaMb2gmIB3cUmdBT7pnNjk1m8CK -----END CERTIFICATE-----Generated at Sat Dec 6 21:29:03 2025 by rpki-client