This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft File: kBqfnorkBi5SGbdlLY6f7n7FrjM.mft (raw, json) Hash identifier: zdC0KHxjIMR5BJFeMbiI9YK4THTqOJ4b3y765urOKhs= Subject key identifier: FD:3F:D4:F5:BD:39:B2:99:7E:E0:28:AE:72:2E:2F:9A:7C:45:9C:52 Authority key identifier: 90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 Certificate issuer: /CN=A91F2CE7/serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Certificate serial: FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft Manifest number: F9 Signing time: Fri 05 Dec 2025 03:14:08 +0000 Manifest this update: Fri 05 Dec 2025 03:14:07 +0000 Manifest next update: Fri 12 Dec 2025 03:14:07 +0000 Files and hashes: 1: kBqfnorkBi5SGbdlLY6f7n7FrjM.crl (hash: EXrzlsGCwtgJYOlJYZfPOoPLDyIaaSUq/0JwX6XvkHo=) 2: 4C738434ABD011F08EDDF110C4F9AE02.roa (hash: Lm3n9/beTQTSuADhNOkS7uaY8GPI4m4BtlZmRSSiRCI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 253 (0xfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2CE7, serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Validity Not Before: Dec 5 03:14:07 2025 GMT Not After : Dec 12 03:14:07 2025 GMT Subject: CN=69324dff-5bae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:e4:cf:81:06:18:a1:9b:64:f1:a3:3e:02:01: 2d:c9:13:a3:aa:71:37:92:53:8e:25:2c:49:62:32: 24:58:96:10:5e:95:3c:99:99:de:8f:e5:f7:a1:50: d9:25:89:d9:bb:f7:de:67:a1:04:28:a3:4a:4e:60: 5d:46:8d:ba:f7:b9:a7:00:1e:f2:ae:96:ae:7d:af: 64:e8:6a:df:41:f5:f5:75:11:cd:4a:3a:34:a8:50: eb:46:c1:b9:a9:c0:0b:68:f3:3c:d0:42:af:7e:2a: 75:d1:d7:91:22:b1:fd:ca:03:b6:41:47:9e:71:5f: dc:40:ea:b6:b0:9f:69:ce:a3:5c:14:4c:23:c3:41: 7a:16:5c:94:00:9e:d1:0c:07:ab:e9:5a:9f:e5:72: 98:e8:08:df:ba:f4:d8:47:5a:8b:e2:12:1e:19:4a: e1:f5:d8:b1:7b:e1:06:8a:e5:d1:ec:fa:fb:ce:b0: 04:0d:1e:72:3b:3e:62:c7:ab:7e:bf:0e:58:fe:b3: 99:f5:36:2e:fc:fc:6f:f4:6d:87:b1:89:09:03:28: 0c:d2:86:b2:4a:56:b5:3f:13:8e:7c:83:55:44:de: 72:ce:cc:2d:7c:b3:b4:8c:f1:26:6c:66:be:2e:39: fc:21:28:da:3e:68:e7:46:00:9c:50:1a:ad:86:95: ca:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:3F:D4:F5:BD:39:B2:99:7E:E0:28:AE:72:2E:2F:9A:7C:45:9C:52 X509v3 Authority Key Identifier: keyid:90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:f2:83:9d:33:a3:3f:01:69:af:c1:92:38:2a:08:21:a3:30: 6d:76:13:1b:03:d1:48:d1:b4:3f:30:0e:08:1c:10:b2:8c:7d: bf:2d:75:45:3b:ba:7b:a6:fa:44:ed:6f:07:8e:82:b8:6e:42: 2a:c1:7f:a0:87:d1:fa:fd:e8:07:f0:09:fb:e1:56:99:f1:27: 6e:d5:c2:8c:7d:79:50:7c:77:c8:c2:38:05:97:ae:fc:7d:1f: 40:85:34:12:14:9a:5c:08:85:5b:d8:30:f0:ef:34:51:8d:44: 47:11:77:76:e8:ab:82:b9:01:78:8b:8a:41:ae:4b:10:93:e0: 05:2c:0c:ee:1f:d7:2a:68:6c:b5:79:b2:e8:3e:b5:c1:1e:01: 96:d0:55:37:11:ad:56:b4:c0:fd:d0:e0:55:b7:b4:75:dd:50: f7:c4:cb:80:20:d2:3b:a1:7a:6a:ea:29:43:3c:de:bf:a0:a5: 57:46:a1:19:20:b2:77:15:58:5d:6b:cf:20:f7:3a:60:8b:a6: 3d:1f:a8:1b:3f:71:da:fd:31:7b:7f:8f:5b:7e:d5:b6:6f:e7: d4:dc:8f:77:80:2d:76:75:fb:6c:6b:75:4f:29:d6:cd:ea:f0: 3d:ae:55:0b:f6:3a:76:43:4f:d1:b9:9a:d1:96:a1:3d:02:a6: c6:be:91:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJDRTcxMTAvBgNVBAUTKDkwMUE5RjlFOEFFNDA2MkU1MjE5Qjc2NTJEOEU5RkVF N0VDNUFFMzMwHhcNMjUxMjA1MDMxNDA3WhcNMjUxMjEyMDMxNDA3WjAYMRYwFAYD VQQDEw02OTMyNGRmZi01YmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAneTPgQYYoZtk8aM+AgEtyROjqnE3klOOJSxJYjIkWJYQXpU8mZnej+X3oVDZ JYnZu/feZ6EEKKNKTmBdRo2697mnAB7yrpaufa9k6GrfQfX1dRHNSjo0qFDrRsG5 qcALaPM80EKvfip10deRIrH9ygO2QUeecV/cQOq2sJ9pzqNcFEwjw0F6FlyUAJ7R DAer6Vqf5XKY6AjfuvTYR1qL4hIeGUrh9dixe+EGiuXR7Pr7zrAEDR5yOz5ix6t+ vw5Y/rOZ9TYu/Pxv9G2HsYkJAygM0oaySla1PxOOfINVRN5yzswtfLO0jPEmbGa+ Ljn8ISjaPmjnRgCcUBqthpXKvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP0/1PW9 ObKZfuAornIuL5p8RZxSMB8GA1UdIwQYMBaAFJAan56K5AYuUhm3ZS2On+5+xa4z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkNFNy83MkY3NUI5ODVB REQxMUVGODEyQzkyM0ZDNEY5QUUwMi9rQnFmbm9ya0JpNVNHYmRsTFk2ZjduN0Zy ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCcWZub3JrQmk1U0diZGxMWTZmN243RnJqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkNFNy83MkY3NUI5ODVBREQxMUVGODEyQzkyM0ZDNEY5QUUwMi9rQnFmbm9ya0Jp NVNHYmRsTFk2ZjduN0Zyak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAp8oOdM6M/AWmvwZI4KgghozBtdhMbA9FI0bQ/MA4IHBCyjH2/LXVF O7p7pvpE7W8HjoK4bkIqwX+gh9H6/egH8An74VaZ8Sdu1cKMfXlQfHfIwjgFl678 fR9AhTQSFJpcCIVb2DDw7zRRjURHEXd26KuCuQF4i4pBrksQk+AFLAzuH9cqaGy1 ebLoPrXBHgGW0FU3Ea1WtMD90OBVt7R13VD3xMuAINI7oXpq6ilDPN6/oKVXRqEZ ILJ3FVhda88g9zpgi6Y9H6gbP3Ha/TF7f49bftW2b+fU3I93gC12dftsa3VPKdbN 6vA9rlUL9jp2Q0/RuZrRlqE9AqbGvpG6 -----END CERTIFICATE-----Generated at Sat Dec 6 20:42:11 2025 by rpki-client