This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft File: Klm5bDClX71h0iMDc864nR2wGos.mft (raw, json) Hash identifier: iZSp9QKZ4h/bUJ11DDiRip+yCU/NnUSozvkjHtyPsPk= Subject key identifier: 36:D1:7C:0E:6B:D7:F0:3C:D8:C7:54:F9:E3:00:8A:80:D0:39:5C:C2 Authority key identifier: 2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B Certificate issuer: /CN=A91F523F/serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Certificate serial: C0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft Manifest number: BE Signing time: Fri 05 Dec 2025 03:57:17 +0000 Manifest this update: Fri 05 Dec 2025 03:57:17 +0000 Manifest next update: Fri 12 Dec 2025 03:57:17 +0000 Files and hashes: 1: Klm5bDClX71h0iMDc864nR2wGos.crl (hash: Dg0CGlggVton0Z6ZCNryovlySUBvm54Ng1Sqtefbt9Y=) 2: 607B5F6AB05411EF84C8DC74C4F9AE02.roa (hash: CDlWFm2LtxVmYaaBC5EKvKez8sI4jo8CXca3FR8eDpc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:57:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F523F, serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Validity Not Before: Dec 5 03:57:17 2025 GMT Not After : Dec 12 03:57:17 2025 GMT Subject: CN=6932581d-3365 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:28:16:db:ac:a1:d1:8a:59:ec:35:bc:a1:6d: 67:7f:8a:c6:17:f8:9b:3e:b3:8d:08:fb:d3:8b:db: 85:4a:cb:68:84:3a:ac:5f:68:90:4d:63:3b:42:b7: f0:4d:98:de:9c:5f:67:c9:bd:4a:db:76:54:f1:c9: a4:a9:fc:14:40:73:1e:a6:cd:39:41:30:a3:2f:a3: ba:7c:da:85:75:3c:6d:78:2a:ff:a3:73:e5:2b:68: dd:39:da:0d:65:55:17:d9:9a:2c:33:4c:30:11:0d: 2c:52:92:07:b6:3c:39:d9:9d:42:e9:bc:48:66:60: ab:8d:76:e4:00:22:da:fe:65:10:da:49:ea:e0:11: 11:36:eb:21:31:65:1b:c6:7e:56:9e:01:b8:d2:84: fb:72:dc:9e:72:e0:fe:4c:e4:23:c7:64:9a:9d:7e: 44:44:34:36:f6:74:93:33:4f:8b:35:fe:9c:b9:24: 42:43:22:e8:6b:18:11:e0:ad:ec:aa:5e:87:d9:bd: 05:8e:64:65:27:18:c0:bb:d5:9a:fe:9d:12:96:fc: fd:ae:c8:69:5b:81:d8:f5:68:11:26:6d:43:d6:e8: fa:d2:b1:65:e3:e6:85:f4:dc:1b:29:20:00:fb:33: 58:4f:94:cc:82:22:8f:8c:59:3b:d5:fa:1f:0e:d1: 3f:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:D1:7C:0E:6B:D7:F0:3C:D8:C7:54:F9:E3:00:8A:80:D0:39:5C:C2 X509v3 Authority Key Identifier: keyid:2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:44:1c:0c:be:e2:bf:4e:7d:a0:a6:3e:c6:aa:e9:cd:ee:29: b4:12:ea:82:9b:b8:78:d9:38:ea:eb:5f:62:80:72:6d:84:04: a7:78:f2:6e:36:93:f1:c8:b9:af:29:f8:4c:43:77:6f:60:e4: 58:01:09:4e:1f:11:34:ea:d9:3b:c6:e5:2f:4f:45:d8:3d:96: c7:82:07:9f:1a:ff:54:5b:7b:2d:38:1b:27:82:36:d5:17:72: c7:f8:1b:41:d0:95:d1:7f:ac:74:f4:f4:c1:aa:84:52:5a:86: a0:92:09:e3:b5:e8:78:16:0c:bd:24:aa:c8:74:60:0c:40:c3: 8e:3e:0e:67:71:de:9a:9c:86:34:8a:fa:fa:c1:77:15:41:cb: 93:e1:23:46:86:cc:6d:ed:70:94:fb:93:7d:08:d0:a2:7d:3c: 27:34:28:86:ef:76:84:3e:83:e0:6f:a0:35:94:68:c5:92:83: a9:f4:5c:76:ad:4d:c0:8f:5d:e7:00:9f:21:29:f0:74:87:15: 54:5f:09:bb:00:8d:21:48:ad:d6:cd:52:09:cc:49:97:66:11: 6a:e0:8e:6d:5b:c0:36:4b:99:86:08:6e:ca:e2:0b:74:e1:08: a6:01:8b:69:11:c0:19:95:43:ea:ed:3c:73:9f:17:91:72:b3: 34:45:ca:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyM0YxMTAvBgNVBAUTKDJBNTlCOTZDMzBBNTVGQkQ2MUQyMjMwMzczQ0VCODlE MURCMDFBOEIwHhcNMjUxMjA1MDM1NzE3WhcNMjUxMjEyMDM1NzE3WjAYMRYwFAYD VQQDEw02OTMyNTgxZC0zMzY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8SgW26yh0YpZ7DW8oW1nf4rGF/ibPrONCPvTi9uFSstohDqsX2iQTWM7Qrfw TZjenF9nyb1K23ZU8cmkqfwUQHMeps05QTCjL6O6fNqFdTxteCr/o3PlK2jdOdoN ZVUX2ZosM0wwEQ0sUpIHtjw52Z1C6bxIZmCrjXbkACLa/mUQ2knq4BERNushMWUb xn5WngG40oT7ctyecuD+TOQjx2SanX5ERDQ29nSTM0+LNf6cuSRCQyLoaxgR4K3s ql6H2b0FjmRlJxjAu9Wa/p0Slvz9rshpW4HY9WgRJm1D1uj60rFl4+aF9NwbKSAA +zNYT5TMgiKPjFk71fofDtE/0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbRfA5r 1/A82MdU+eMAioDQOVzCMB8GA1UdIwQYMBaAFCpZuWwwpV+9YdIjA3POuJ0dsBqL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTIzRi80RUJBNkIzMkIw NTMxMUVGOUMyQjhEM0ZDNEY5QUUwMi9LbG01YkRDbFg3MWgwaU1EYzg2NG5SMndH b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tsbTViRENsWDcxaDBpTURjODY0blIyd0dvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTIzRi80RUJBNkIzMkIwNTMxMUVGOUMyQjhEM0ZDNEY5QUUwMi9LbG01YkRDbFg3 MWgwaU1EYzg2NG5SMndHb3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxRBwMvuK/Tn2gpj7GqunN7im0EuqCm7h42Tjq619igHJthASnePJu NpPxyLmvKfhMQ3dvYORYAQlOHxE06tk7xuUvT0XYPZbHggefGv9UW3stOBsngjbV F3LH+BtB0JXRf6x09PTBqoRSWoagkgnjteh4Fgy9JKrIdGAMQMOOPg5ncd6anIY0 ivr6wXcVQcuT4SNGhsxt7XCU+5N9CNCifTwnNCiG73aEPoPgb6A1lGjFkoOp9Fx2 rU3Aj13nAJ8hKfB0hxVUXwm7AI0hSK3WzVIJzEmXZhFq4I5tW8A2S5mGCG7K4gt0 4QimAYtpEcAZlUPq7TxznxeRcrM0RcrB -----END CERTIFICATE-----Generated at Sat Dec 6 17:11:07 2025 by rpki-client