This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft File: KQN7v5LysPTDMKHN1KdiVs16VCI.mft (raw, json) Hash identifier: Fswy0b4vCZQ82a3T0BD88mkxaFveLs9eV6tD3eOFPdY= Subject key identifier: 59:DB:AD:49:16:0F:9D:00:42:87:C5:2F:70:5E:7C:C4:3E:77:2F:96 Authority key identifier: 29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 Certificate issuer: /CN=A91E9B89/serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Certificate serial: ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft Manifest number: EB Signing time: Fri 05 Dec 2025 03:25:27 +0000 Manifest this update: Fri 05 Dec 2025 03:25:26 +0000 Manifest next update: Fri 12 Dec 2025 03:25:26 +0000 Files and hashes: 1: KQN7v5LysPTDMKHN1KdiVs16VCI.crl (hash: pI7QNTZo5+VY/tfsDoDS56J/1WmWk2FGFpnBSszz8XI=) 2: 2025BD6C6C3311EF99E0EF34C4F9AE02.roa (hash: EkH7NGdtLzD6VnZqtvPSOcqvmB0pZ+aCYQgXfVmLWFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:25:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 237 (0xed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9B89, serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Validity Not Before: Dec 5 03:25:26 2025 GMT Not After : Dec 12 03:25:26 2025 GMT Subject: CN=693250a6-7498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:0d:54:0d:4d:af:3d:aa:f4:83:87:db:3d:5f: 2c:a6:57:b3:a2:c2:dd:c7:0a:54:88:60:1c:81:f8: 36:11:66:8d:b3:03:46:b5:8c:a0:61:6d:d2:88:4d: a3:ac:d6:5d:88:aa:ce:f6:bc:e6:fa:ec:82:e3:f6: a7:1d:d2:10:9d:85:56:31:91:b6:fd:c2:62:4c:1a: 87:72:e5:c8:a0:60:0b:76:02:3b:bd:50:f4:c6:56: 25:cd:cd:f1:7c:ce:fc:78:2f:fe:dd:44:52:b6:04: bb:aa:8f:46:6c:10:0e:8c:e2:1d:2b:33:d3:d4:09: c2:79:83:f7:3b:0e:44:bc:d2:cd:25:76:84:af:15: 81:48:58:38:07:d2:55:29:2a:5a:13:94:99:57:db: 4b:a1:72:d9:bd:d1:3e:52:22:e6:4c:7a:19:65:8e: be:00:fd:40:6b:7b:ee:ee:ec:a4:74:dd:54:38:a8: d4:0b:cb:49:0e:d2:9b:89:68:b3:33:33:04:4b:fe: 17:5e:fb:67:c9:92:99:b5:fd:cf:1d:43:53:df:3d: 41:2e:50:57:e0:ad:20:9b:57:c1:4f:7d:46:fb:25: 9d:79:11:02:1a:f2:ad:4f:85:6d:e7:06:b3:22:67: 92:9f:c8:69:90:f0:92:57:d6:2b:03:48:b1:c4:c7: 49:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:DB:AD:49:16:0F:9D:00:42:87:C5:2F:70:5E:7C:C4:3E:77:2F:96 X509v3 Authority Key Identifier: keyid:29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:15:10:e7:4d:ef:01:b7:36:5b:fb:4c:c7:48:06:ed:4b:d4: 45:77:59:4d:b8:23:22:27:df:e9:2b:1f:dd:24:21:de:52:01: 6a:05:60:f4:5a:d5:0d:68:15:05:83:88:84:32:8e:a4:84:bd: 41:06:5a:f0:aa:2a:a4:fc:73:d2:0f:60:da:b9:65:12:0d:8b: b0:3e:41:a6:21:2f:47:64:f1:0d:87:04:2d:2e:bb:78:cc:97: 31:4e:80:83:14:3b:60:cf:dc:40:51:d9:46:b9:c1:7d:f2:66: af:2e:ee:48:cf:d0:03:0b:fa:48:95:b7:ae:e0:18:5f:43:b3: 2e:f0:ba:a5:2b:87:c7:ee:b4:ee:60:a8:52:52:9a:c3:81:d8: 16:76:c5:63:0c:52:65:3d:88:b5:14:8c:13:1b:a1:3a:dd:80: 16:bc:7e:d0:a8:e4:4d:61:27:3d:fd:75:ed:88:8f:72:ee:bd: 44:82:ab:a2:0c:e4:c7:64:0e:ad:c1:4d:0d:b3:62:67:42:b0: f5:31:0c:8a:51:a7:86:ef:9d:33:02:6c:e9:c9:d9:02:02:9b: 1c:07:69:5c:c6:a1:88:a0:c4:e3:ec:0c:5d:65:b2:06:27:16: 05:78:c3:da:b4:e8:44:cf:5a:dc:21:9a:76:32:a8:c8:fa:ec: b3:66:d7:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCODkxMTAvBgNVBAUTKDI5MDM3QkJGOTJGMkIwRjRDMzMwQTFDREQ0QTc2MjU2 Q0Q3QTU0MjIwHhcNMjUxMjA1MDMyNTI2WhcNMjUxMjEyMDMyNTI2WjAYMRYwFAYD VQQDEw02OTMyNTBhNi03NDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0w1UDU2vPar0g4fbPV8splezosLdxwpUiGAcgfg2EWaNswNGtYygYW3SiE2j rNZdiKrO9rzm+uyC4/anHdIQnYVWMZG2/cJiTBqHcuXIoGALdgI7vVD0xlYlzc3x fM78eC/+3URStgS7qo9GbBAOjOIdKzPT1AnCeYP3Ow5EvNLNJXaErxWBSFg4B9JV KSpaE5SZV9tLoXLZvdE+UiLmTHoZZY6+AP1Aa3vu7uykdN1UOKjUC8tJDtKbiWiz MzMES/4XXvtnyZKZtf3PHUNT3z1BLlBX4K0gm1fBT31G+yWdeRECGvKtT4Vt5waz ImeSn8hpkPCSV9YrA0ixxMdJmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFnbrUkW D50AQofFL3BefMQ+dy+WMB8GA1UdIwQYMBaAFCkDe7+S8rD0wzChzdSnYlbNelQi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUI4OS80MzY3QzIwRTZD MTgxMUVGQUI2QjY5MENDNEY5QUUwMi9LUU43djVMeXNQVERNS0hOMUtkaVZzMTZW Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tRTjd2NUx5c1BURE1LSE4xS2RpVnMxNlZDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUI4OS80MzY3QzIwRTZDMTgxMUVGQUI2QjY5MENDNEY5QUUwMi9LUU43djVMeXNQ VERNS0hOMUtkaVZzMTZWQ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJFRDnTe8BtzZb+0zHSAbtS9RFd1lNuCMiJ9/pKx/dJCHeUgFqBWD0 WtUNaBUFg4iEMo6khL1BBlrwqiqk/HPSD2DauWUSDYuwPkGmIS9HZPENhwQtLrt4 zJcxToCDFDtgz9xAUdlGucF98mavLu5Iz9ADC/pIlbeu4BhfQ7Mu8LqlK4fH7rTu YKhSUprDgdgWdsVjDFJlPYi1FIwTG6E63YAWvH7QqORNYSc9/XXtiI9y7r1Egqui DOTHZA6twU0Ns2JnQrD1MQyKUaeG750zAmzpydkCApscB2lcxqGIoMTj7AxdZbIG JxYFeMPatOhEz1rcIZp2MqjI+uyzZtcI -----END CERTIFICATE-----Generated at Sat Dec 6 15:07:47 2025 by rpki-client