This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft File: kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft (raw, json) Hash identifier: czHr/naLUBZSvkL3bgYiDujyfPhX9zDi6epo1RBMgvc= Subject key identifier: 7A:3A:A3:ED:6C:D4:F1:EA:30:0C:C7:EF:41:01:C4:FF:38:96:B3:7A Authority key identifier: 91:17:6D:16:9C:42:F0:3D:95:28:2B:BB:A2:04:C4:E4:4D:31:ED:09 Certificate issuer: /CN=A91FF5B9/serialNumber=91176D169C42F03D95282BBBA204C4E44D31ED09 Certificate serial: 8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft Manifest number: 88 Signing time: Fri 05 Dec 2025 04:38:38 +0000 Manifest this update: Fri 05 Dec 2025 04:38:37 +0000 Manifest next update: Fri 12 Dec 2025 04:38:37 +0000 Files and hashes: 1: kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl (hash: 8pZmHM2IkBCPBbtGzxDx7Qt93i/NAzpeALuCVJj04sw=) 2: E658E72CB4A611F08CEAB576C4F9AE02.roa (hash: 3K0DVSQ88H0vE5ErqZjrHuBFz3ioSOB+/QcjArPUvp0=) 3: DA700744185511F09304D972C4F9AE02.roa (hash: MiqFluIC5BNSTT1867bwbDdwUanVh/INLvZrWpn+wqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:38:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5B9, serialNumber=91176D169C42F03D95282BBBA204C4E44D31ED09 Validity Not Before: Dec 5 04:38:37 2025 GMT Not After : Dec 12 04:38:37 2025 GMT Subject: CN=693261cd-0bc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:4f:12:4e:4c:08:05:ec:18:96:f8:dc:c9:f9: 5d:31:f1:ff:35:c5:96:18:1c:2e:b1:d4:00:65:61: 44:e6:d4:3b:b2:f9:78:65:d8:c2:b6:c0:b3:f8:66: b8:17:13:a6:0a:da:1f:6a:4b:af:12:98:98:67:e4: dd:3b:4e:3b:05:c2:4d:ac:6e:82:d3:aa:74:2d:20: bc:28:43:06:8d:e4:7c:9a:2d:5a:af:ea:ad:10:b5: 68:22:01:63:37:84:96:7a:1a:22:e9:94:07:57:f8: a4:c3:c7:25:0e:3c:7f:27:da:9e:c5:35:30:15:b1: 8e:91:46:35:66:47:ee:7f:4c:e2:14:2c:b5:d1:58: f4:6d:47:1b:fb:40:27:ef:e3:a2:44:55:7a:11:69: 96:69:4c:65:5f:6e:33:46:86:2c:25:a1:32:8d:cb: 3e:14:be:51:23:d5:3a:df:da:b9:5a:cc:49:58:85: 0a:38:64:90:80:37:02:19:7a:3a:ab:53:74:ff:40: 9b:09:5b:8f:28:f4:52:3b:c9:4e:21:69:4e:e8:1f: 25:c8:f9:fb:ad:c4:27:57:ef:4e:b2:99:28:dc:fc: 08:a4:6a:5b:20:c7:3a:62:3b:89:f2:75:ef:6d:5b: 86:0c:c5:96:37:a2:74:b9:52:8f:ff:81:6f:bd:da: d3:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:3A:A3:ED:6C:D4:F1:EA:30:0C:C7:EF:41:01:C4:FF:38:96:B3:7A X509v3 Authority Key Identifier: keyid:91:17:6D:16:9C:42:F0:3D:95:28:2B:BB:A2:04:C4:E4:4D:31:ED:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:f1:32:23:65:bb:25:a6:b9:64:7a:4a:c7:f8:03:c2:6a:0e: 27:dc:13:f7:66:9c:2b:51:d3:8a:2e:bf:7b:31:4a:1e:c6:ef: 41:aa:70:98:de:e7:6a:74:b6:81:cf:ba:c5:a5:3b:2d:85:c2: 1c:86:34:ed:f9:df:bb:43:68:13:73:66:bb:30:27:96:b7:2c: 9a:2c:93:80:25:38:10:09:3c:4c:42:e8:25:37:a4:53:3d:09: b0:1b:4f:67:bf:1a:07:7f:28:82:18:a3:d0:e4:38:01:8e:94: e1:14:f7:a8:81:6c:eb:23:bb:fe:1a:cb:c7:c6:34:b6:b0:b5: f0:de:85:30:ca:68:06:49:ea:69:31:52:61:48:9f:63:05:70: d1:49:d4:58:7a:49:f8:07:d7:d7:9f:13:8a:59:f5:50:e0:ac: d2:a3:39:57:7d:51:7a:8d:89:ee:a7:b6:5f:c3:4a:e4:d1:9c: 81:94:dc:42:51:93:59:44:46:6e:ed:e3:01:7e:18:76:7c:dd: 41:20:74:6b:74:e1:8f:bc:74:e1:27:22:b6:0e:b5:7e:19:8c: bd:c2:e2:0d:39:bf:66:1a:eb:62:fe:c0:cb:44:3a:e7:74:21: d4:03:8c:20:42:d1:06:d5:ed:29:3d:ae:1d:19:bf:cf:53:4c: b6:7f:6b:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1QjkxMTAvBgNVBAUTKDkxMTc2RDE2OUM0MkYwM0Q5NTI4MkJCQkEyMDRDNEU0 NEQzMUVEMDkwHhcNMjUxMjA1MDQzODM3WhcNMjUxMjEyMDQzODM3WjAYMRYwFAYD VQQDEw02OTMyNjFjZC0wYmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8k8STkwIBewYlvjcyfldMfH/NcWWGBwusdQAZWFE5tQ7svl4ZdjCtsCz+Ga4 FxOmCtofakuvEpiYZ+TdO047BcJNrG6C06p0LSC8KEMGjeR8mi1ar+qtELVoIgFj N4SWehoi6ZQHV/ikw8clDjx/J9qexTUwFbGOkUY1Zkfuf0ziFCy10Vj0bUcb+0An 7+OiRFV6EWmWaUxlX24zRoYsJaEyjcs+FL5RI9U639q5WsxJWIUKOGSQgDcCGXo6 q1N0/0CbCVuPKPRSO8lOIWlO6B8lyPn7rcQnV+9Ospko3PwIpGpbIMc6YjuJ8nXv bVuGDMWWN6J0uVKP/4FvvdrTQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHo6o+1s 1PHqMAzH70EBxP84lrN6MB8GA1UdIwQYMBaAFJEXbRacQvA9lSgru6IExORNMe0J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVCOS81MjAyRDAyODBE RjkxMUYwOEU2RTc2MkFDNEY5QUUwMi9rUmR0RnB4QzhEMlZLQ3U3b2dURTVFMHg3 UWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tSZHRGcHhDOEQyVktDdTdvZ1RFNUUweDdRay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVCOS81MjAyRDAyODBERjkxMUYwOEU2RTc2MkFDNEY5QUUwMi9rUmR0RnB4QzhE MlZLQ3U3b2dURTVFMHg3UWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAC8TIjZbslprlkekrH+APCag4n3BP3ZpwrUdOKLr97MUoexu9BqnCY 3udqdLaBz7rFpTsthcIchjTt+d+7Q2gTc2a7MCeWtyyaLJOAJTgQCTxMQuglN6RT PQmwG09nvxoHfyiCGKPQ5DgBjpThFPeogWzrI7v+GsvHxjS2sLXw3oUwymgGSepp MVJhSJ9jBXDRSdRYekn4B9fXnxOKWfVQ4KzSozlXfVF6jYnup7Zfw0rk0ZyBlNxC UZNZREZu7eMBfhh2fN1BIHRrdOGPvHThJyK2DrV+GYy9wuINOb9mGuti/sDLRDrn dCHUA4wgQtEG1e0pPa4dGb/PU0y2f2vF -----END CERTIFICATE-----Generated at Sat Dec 6 12:07:04 2025 by rpki-client