This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F08D9/0FD6AB52817111F09B10AE56C4F9AE02/K7fm9k6JPZEwSosliGA1DWdQVK0.mft File: K7fm9k6JPZEwSosliGA1DWdQVK0.mft (raw, json) Hash identifier: SmxCBoy4k/6zGyUxZRKBKuAF+oe6sW0tX8JmsOT/cds= Subject key identifier: 88:F5:B6:6E:38:51:8C:39:0D:B4:CA:27:05:E8:23:6E:6C:EF:D3:34 Authority key identifier: 2B:B7:E6:F6:4E:89:3D:91:30:4A:8B:25:88:60:35:0D:67:50:54:AD Certificate issuer: /CN=A91F08D9/serialNumber=2BB7E6F64E893D91304A8B258860350D675054AD Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K7fm9k6JPZEwSosliGA1DWdQVK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F08D9/0FD6AB52817111F09B10AE56C4F9AE02/K7fm9k6JPZEwSosliGA1DWdQVK0.mft Manifest number: 38 Signing time: Fri 05 Dec 2025 05:22:28 +0000 Manifest this update: Fri 05 Dec 2025 05:22:27 +0000 Manifest next update: Fri 12 Dec 2025 05:22:27 +0000 Files and hashes: 1: K7fm9k6JPZEwSosliGA1DWdQVK0.crl (hash: +AoP+UkPXZY/WjVrbvFv9O7RjElYbtEXuvCdzutVAfw=) 2: 87B1CF3484AB11F08EC73477C4F9AE02.roa (hash: RjgLOuF0n1X6yMn5QtVrfn7LMHid0aUgc2sd0x2KRqg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F08D9/0FD6AB52817111F09B10AE56C4F9AE02/K7fm9k6JPZEwSosliGA1DWdQVK0.crl rsync://rpki.apnic.net/member_repository/A91F08D9/0FD6AB52817111F09B10AE56C4F9AE02/K7fm9k6JPZEwSosliGA1DWdQVK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K7fm9k6JPZEwSosliGA1DWdQVK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:22:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F08D9, serialNumber=2BB7E6F64E893D91304A8B258860350D675054AD Validity Not Before: Dec 5 05:22:27 2025 GMT Not After : Dec 12 05:22:27 2025 GMT Subject: CN=69326c14-3e23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:8c:79:78:30:40:20:ab:9f:45:0b:99:01:3e: c7:3f:63:e7:ae:fa:64:fc:0a:a0:57:53:42:a5:45: cd:77:47:84:f0:62:62:cb:f6:3c:80:89:a7:00:a9: 14:60:1d:6f:95:12:9e:60:e7:4e:75:91:96:f0:f6: c6:9b:57:5b:0d:c8:4e:d1:56:a1:9e:7f:c4:e6:3e: 2c:ea:e1:58:21:cb:de:d9:4c:2f:4c:07:f6:a3:70: de:a9:a5:2a:65:41:10:a9:e3:1f:64:1b:70:06:05: b4:9b:1d:ad:74:19:aa:52:52:0a:98:8f:79:45:5c: 3f:23:36:ea:37:57:fc:b8:0a:89:00:a2:fa:4c:f8: eb:be:df:fb:d6:18:41:c4:48:11:18:25:be:ea:70: 33:ad:0c:b9:f4:8e:2b:b5:22:1d:0f:d1:16:94:13: 48:74:78:bf:39:7d:7b:5e:e6:62:cf:1d:e6:3c:7f: 5d:8f:27:79:11:24:70:f8:bb:fa:b2:ab:a0:d8:88: b5:f0:04:58:e5:fc:a7:69:41:67:ef:78:4c:db:80: 09:58:2c:49:4b:47:4e:f9:3f:45:0b:b9:44:1a:e9: d4:ab:3b:9a:e9:e5:c1:0d:91:8c:e5:c9:2d:66:5a: 58:d2:47:c2:90:19:73:b7:9f:32:61:7d:d1:95:01: 45:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:F5:B6:6E:38:51:8C:39:0D:B4:CA:27:05:E8:23:6E:6C:EF:D3:34 X509v3 Authority Key Identifier: keyid:2B:B7:E6:F6:4E:89:3D:91:30:4A:8B:25:88:60:35:0D:67:50:54:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F08D9/0FD6AB52817111F09B10AE56C4F9AE02/K7fm9k6JPZEwSosliGA1DWdQVK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K7fm9k6JPZEwSosliGA1DWdQVK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F08D9/0FD6AB52817111F09B10AE56C4F9AE02/K7fm9k6JPZEwSosliGA1DWdQVK0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:26:c9:cc:f7:da:70:c4:d1:f5:7c:9b:0d:51:de:35:d5:0a: 6c:cd:bd:93:bd:ba:cc:5e:50:bc:27:74:22:3d:78:27:07:7a: 2c:ce:06:3e:f3:d1:1e:9f:06:5a:e4:70:9e:db:85:ba:1b:ce: 34:cb:49:e8:a9:14:27:eb:2c:01:ab:8d:de:ba:76:1f:3d:eb: dd:a4:e1:40:e3:90:3c:7f:34:95:47:93:e3:60:43:b4:26:6e: c2:43:4e:ae:b2:75:7b:f2:aa:40:bf:23:ba:0d:22:51:a2:a2: f6:c8:4c:b2:c9:21:01:b2:04:7f:f2:24:a7:07:64:2f:0b:e4: 5a:db:0d:5f:10:75:36:da:b5:84:b9:c0:8e:16:b0:ce:7c:e6: 3e:f4:a0:f3:a9:ae:d2:81:26:7b:87:46:74:c5:46:38:f8:25: c1:de:0a:57:30:bb:12:88:35:69:2d:ae:fe:0a:34:ce:10:e3: ce:2e:b2:07:2b:2c:c0:e7:8d:ad:49:ff:39:bf:71:38:2b:de: ac:f4:8e:d3:de:a3:93:5b:bb:90:45:06:00:6b:f1:ba:e8:85: 57:d2:56:d6:bd:41:a3:19:86:49:36:d7:3b:59:cc:b8:c0:1e: 7a:7d:49:45:66:a4:42:38:35:c3:41:5d:31:d6:b8:35:60:e7: 45:8e:53:62 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MDhEOTExMC8GA1UEBRMoMkJCN0U2RjY0RTg5M0Q5MTMwNEE4QjI1ODg2MDM1MEQ2 NzUwNTRBRDAeFw0yNTEyMDUwNTIyMjdaFw0yNTEyMTIwNTIyMjdaMBgxFjAUBgNV BAMTDTY5MzI2YzE0LTNlMjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDkjHl4MEAgq59FC5kBPsc/Y+eu+mT8CqBXU0KlRc13R4TwYmLL9jyAiacAqRRg HW+VEp5g5051kZbw9sabV1sNyE7RVqGef8TmPizq4Vghy97ZTC9MB/ajcN6ppSpl QRCp4x9kG3AGBbSbHa10GapSUgqYj3lFXD8jNuo3V/y4CokAovpM+Ou+3/vWGEHE SBEYJb7qcDOtDLn0jiu1Ih0P0RaUE0h0eL85fXte5mLPHeY8f12PJ3kRJHD4u/qy q6DYiLXwBFjl/KdpQWfveEzbgAlYLElLR075P0ULuUQa6dSrO5rp5cENkYzlyS1m WljSR8KQGXO3nzJhfdGVAUUDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUiPW2bjhR jDkNtMonBegjbmzv0zQwHwYDVR0jBBgwFoAUK7fm9k6JPZEwSosliGA1DWdQVK0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYwOEQ5LzBGRDZBQjUyODE3 MTExRjA5QjEwQUU1NkM0RjlBRTAyL0s3Zm05azZKUFpFd1Nvc2xpR0ExRFdkUVZL MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSzdmbTlrNkpQWkV3U29zbGlHQTFEV2RRVkswLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYw OEQ5LzBGRDZBQjUyODE3MTExRjA5QjEwQUU1NkM0RjlBRTAyL0s3Zm05azZKUFpF d1Nvc2xpR0ExRFdkUVZLMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALEmycz32nDE0fV8mw1R3jXVCmzNvZO9usxeULwndCI9eCcHeizOBj7z 0R6fBlrkcJ7bhbobzjTLSeipFCfrLAGrjd66dh89692k4UDjkDx/NJVHk+NgQ7Qm bsJDTq6ydXvyqkC/I7oNIlGiovbITLLJIQGyBH/yJKcHZC8L5FrbDV8QdTbatYS5 wI4WsM585j70oPOprtKBJnuHRnTFRjj4JcHeClcwuxKINWktrv4KNM4Q484usgcr LMDnja1J/zm/cTgr3qz0jtPeo5Nbu5BFBgBr8brohVfSVta9QaMZhkk21ztZzLjA Hnp9SUVmpEI4NcNBXTHWuDVg50WOU2I= -----END CERTIFICATE-----Generated at Sun Dec 7 00:13:48 2025 by rpki-client