This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDCFE/96505B2480E411ECB92DCB4DC4F9AE02/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.mft File: kqxPvhcOqd-J8MgxjDzUX5OlIzQ.mft (raw, json) Hash identifier: EXCcZa73w8KPczPktOFZiuA5Zb0PnqEVxz/+f84458k= Subject key identifier: B5:15:0D:FB:B7:CC:73:0C:71:0F:43:F0:0C:10:60:A9:E6:EF:D3:B4 Authority key identifier: 92:AC:4F:BE:17:0E:A9:DF:89:F0:C8:31:8C:3C:D4:5F:93:A5:23:34 Certificate issuer: /CN=A91FDCFE/serialNumber=92AC4FBE170EA9DF89F0C8318C3CD45F93A52334 Certificate serial: 0453 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDCFE/96505B2480E411ECB92DCB4DC4F9AE02/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.mft Manifest number: 0447 Signing time: Thu 04 Dec 2025 22:44:38 +0000 Manifest this update: Thu 04 Dec 2025 22:44:37 +0000 Manifest next update: Thu 11 Dec 2025 22:44:37 +0000 Files and hashes: 1: kqxPvhcOqd-J8MgxjDzUX5OlIzQ.crl (hash: f06bOxv06clJnzXcyBzM7zUO6yta66Q84DCRGmPo8xo=) 2: 8AB7936E5FF111F092635949C4F9AE02.roa (hash: ZKGRhr8pcRlZGuDYruEwy7xDWFkv+Zae+rNW87nRb4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDCFE/96505B2480E411ECB92DCB4DC4F9AE02/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.crl rsync://rpki.apnic.net/member_repository/A91FDCFE/96505B2480E411ECB92DCB4DC4F9AE02/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:44:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1107 (0x453) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDCFE, serialNumber=92AC4FBE170EA9DF89F0C8318C3CD45F93A52334 Validity Not Before: Dec 4 22:44:37 2025 GMT Not After : Dec 11 22:44:37 2025 GMT Subject: CN=69320ed5-8b84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:32:0b:e9:ee:57:27:b9:53:57:87:c8:c3:32: 76:cc:b7:4f:6f:d6:47:f6:c6:b2:9d:f3:7f:d5:09: 6e:9a:d6:28:cd:2d:8b:1a:0b:4a:8a:bd:59:b4:41: 74:6d:a2:8b:d7:ec:42:91:8d:60:4a:04:64:79:1b: 34:ca:8d:96:18:b6:e3:d7:54:c4:41:3e:2b:35:6f: f6:65:ad:bd:4f:3b:21:ba:bd:a5:dd:8b:54:0c:36: de:e0:3f:cd:dc:df:a3:74:3d:e5:19:53:6b:9d:84: e7:ec:49:6b:4e:ca:7c:fc:61:a0:03:e4:1b:7a:32: 07:ce:20:4f:ed:c7:81:8c:f7:0c:a4:4c:3d:fe:b2: f0:a9:c8:10:33:5a:03:86:4c:dc:44:2b:ee:ff:92: 4a:d3:b5:6c:1a:23:6c:00:43:b9:75:0d:c0:73:99: c0:69:bd:dd:f7:5c:48:a2:33:01:cb:b2:0c:20:5f: 86:99:b7:d8:9b:1c:69:96:f6:ba:47:b6:14:3a:51: bf:9e:d8:e2:88:3c:5d:7d:78:cb:b8:6e:f5:11:f5: 77:a5:d4:8b:ec:3b:e5:a4:e2:c1:16:07:7f:e4:39: bf:1b:76:da:21:14:01:94:b9:82:ae:b0:2d:5d:6e: 21:fb:41:f7:04:27:c0:68:92:e9:56:2f:f7:36:91: 2b:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:15:0D:FB:B7:CC:73:0C:71:0F:43:F0:0C:10:60:A9:E6:EF:D3:B4 X509v3 Authority Key Identifier: keyid:92:AC:4F:BE:17:0E:A9:DF:89:F0:C8:31:8C:3C:D4:5F:93:A5:23:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDCFE/96505B2480E411ECB92DCB4DC4F9AE02/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDCFE/96505B2480E411ECB92DCB4DC4F9AE02/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:e1:d9:45:19:0d:e2:96:c3:be:0d:a3:f9:7b:e6:99:ea:f6: 8a:b2:41:fe:c6:6f:53:aa:bf:a6:d5:e3:7a:25:33:9f:d3:ee: 90:ee:71:3a:44:6d:35:a9:62:8c:ed:0d:3c:87:aa:40:6e:ad: 96:1d:e4:f8:5e:3c:db:0d:50:6e:24:bc:a8:b8:9b:33:32:ea: aa:dc:c9:83:01:c1:62:e4:b6:38:e5:90:19:be:a0:d1:8b:38: a2:a3:22:e9:09:f0:77:7f:86:b5:e1:15:bc:95:8c:17:dd:23: 58:b8:44:16:87:03:a1:a6:6c:a9:a7:05:63:95:fb:84:51:0d: 0e:0d:fd:42:6d:8a:67:e2:0c:27:50:69:e8:b8:fa:a7:3a:4c: dc:d9:12:71:a1:b1:5a:ce:08:f9:cc:80:ae:94:25:2a:78:64: 8e:78:16:c4:4e:5d:a0:a8:3f:d6:49:f2:3b:c5:cb:58:9b:54: c1:d5:b1:8e:f1:b5:c1:95:29:9c:ff:05:76:46:97:ca:7e:cb: 86:aa:00:8a:0a:e3:d8:74:21:57:c2:1f:9e:52:50:2a:e7:50: ff:93:bf:aa:d5:f4:02:e2:b3:36:7e:2a:82:73:3c:d7:76:6d: 26:62:0d:58:88:70:c4:ee:a5:ac:6e:97:8e:ea:33:02:3c:71: 41:ba:0e:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRDRkUxMTAvBgNVBAUTKDkyQUM0RkJFMTcwRUE5REY4OUYwQzgzMThDM0NENDVG OTNBNTIzMzQwHhcNMjUxMjA0MjI0NDM3WhcNMjUxMjExMjI0NDM3WjAYMRYwFAYD VQQDEw02OTMyMGVkNS04Yjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyDIL6e5XJ7lTV4fIwzJ2zLdPb9ZH9saynfN/1QlumtYozS2LGgtKir1ZtEF0 baKL1+xCkY1gSgRkeRs0yo2WGLbj11TEQT4rNW/2Za29Tzshur2l3YtUDDbe4D/N 3N+jdD3lGVNrnYTn7ElrTsp8/GGgA+QbejIHziBP7ceBjPcMpEw9/rLwqcgQM1oD hkzcRCvu/5JK07VsGiNsAEO5dQ3Ac5nAab3d91xIojMBy7IMIF+GmbfYmxxplva6 R7YUOlG/ntjiiDxdfXjLuG71EfV3pdSL7DvlpOLBFgd/5Dm/G3baIRQBlLmCrrAt XW4h+0H3BCfAaJLpVi/3NpErUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLUVDfu3 zHMMcQ9D8AwQYKnm79O0MB8GA1UdIwQYMBaAFJKsT74XDqnfifDIMYw81F+TpSM0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRENGRS85NjUwNUIyNDgw RTQxMUVDQjkyRENCNERDNEY5QUUwMi9rcXhQdmhjT3FkLUo4TWd4akR6VVg1T2xJ elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2txeFB2aGNPcWQtSjhNZ3hqRHpVWDVPbEl6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RENGRS85NjUwNUIyNDgwRTQxMUVDQjkyRENCNERDNEY5QUUwMi9rcXhQdmhjT3Fk LUo4TWd4akR6VVg1T2xJelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAL4dlFGQ3ilsO+DaP5e+aZ6vaKskH+xm9Tqr+m1eN6JTOf0+6Q7nE6 RG01qWKM7Q08h6pAbq2WHeT4XjzbDVBuJLyouJszMuqq3MmDAcFi5LY45ZAZvqDR iziioyLpCfB3f4a14RW8lYwX3SNYuEQWhwOhpmyppwVjlfuEUQ0ODf1CbYpn4gwn UGnouPqnOkzc2RJxobFazgj5zICulCUqeGSOeBbETl2gqD/WSfI7xctYm1TB1bGO 8bXBlSmc/wV2RpfKfsuGqgCKCuPYdCFXwh+eUlAq51D/k7+q1fQC4rM2fiqCczzX dm0mYg1YiHDE7qWsbpeO6jMCPHFBug4v -----END CERTIFICATE-----Generated at Sat Dec 6 22:44:14 2025 by rpki-client