This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft File: ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft (raw, json) Hash identifier: D0D1dQUH06Fdzn32ircyIF1sRx7PlrvmMQ3u5ofrAyw= Subject key identifier: A8:6E:47:16:0B:EA:A6:37:80:C8:86:34:98:99:17:AE:7A:EE:12:D9 Authority key identifier: 91:AE:E9:60:DC:41:FF:98:ED:1B:37:23:34:31:73:93:81:26:DC:9F Certificate issuer: /CN=A91128B5/serialNumber=91AEE960DC41FF98ED1B3723343173938126DC9F Certificate serial: 0643 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft Manifest number: 063E Signing time: Thu 18 Dec 2025 22:03:54 +0000 Manifest this update: Thu 18 Dec 2025 22:03:53 +0000 Manifest next update: Thu 25 Dec 2025 22:03:53 +0000 Files and hashes: 1: ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl (hash: WyR4Jvn0cLshA9WfL7sypVgTjdE4npHzLPBog1ek9Vw=) 2: 74BDB7D0B96C11EB956C1D2DC4F9AE02.roa (hash: IADvK+KgV5vnYxJ4wHU1Xtz8TSGee8Bm5ZckrfzrChM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:03:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1603 (0x643) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91128B5, serialNumber=91AEE960DC41FF98ED1B3723343173938126DC9F Validity Not Before: Dec 18 22:03:53 2025 GMT Not After : Dec 25 22:03:53 2025 GMT Subject: CN=69447a4a-fe4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:06:aa:37:b1:04:8d:53:e4:62:63:08:32:b6: 05:70:ff:d5:0e:64:80:6d:c5:09:c0:aa:52:97:d3: 39:61:ef:5c:99:78:e7:13:6b:93:ad:c4:1f:c3:c0: 4a:9d:b1:31:29:24:03:5e:f3:86:9f:ce:2e:25:00: ac:fc:6c:5b:35:47:04:1b:df:f2:87:53:15:1e:6a: f2:1a:a0:80:1a:ed:39:0c:3d:5e:03:17:22:97:fb: b5:a0:54:3a:d6:25:7d:7b:5c:a1:04:8e:84:fd:2e: af:9b:47:95:13:88:0d:c1:f6:4e:12:68:50:5e:5c: ab:60:41:81:35:ef:43:72:33:0e:cb:2d:3f:15:0f: 38:c3:a2:7c:d8:7d:4f:f9:5f:0f:5f:44:51:54:0e: d5:9c:3f:a2:ef:c9:d0:63:1c:82:03:aa:34:1b:47: 0d:be:79:29:56:e2:73:82:af:ee:34:df:58:a0:d3: 55:90:8b:2a:cd:9d:57:6d:d6:ca:fe:03:29:0d:46: f3:a2:bb:41:0d:10:a6:6e:f8:20:44:40:27:c1:f9: 24:3b:ae:e8:61:d3:ae:24:a2:e1:3d:39:be:93:3d: 0c:d0:e8:b8:74:70:f2:ae:61:01:9a:a3:a4:ae:21: af:39:aa:5f:ab:67:40:7b:93:dd:76:b5:ed:00:c8: 1d:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:6E:47:16:0B:EA:A6:37:80:C8:86:34:98:99:17:AE:7A:EE:12:D9 X509v3 Authority Key Identifier: keyid:91:AE:E9:60:DC:41:FF:98:ED:1B:37:23:34:31:73:93:81:26:DC:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:4e:4c:6b:ae:47:b5:70:b1:c9:36:b6:1a:40:88:28:a9:db: 85:6c:1d:9e:73:09:b4:ee:b3:57:c7:68:0a:1b:5c:47:92:bd: b1:35:1d:3e:85:d5:3f:7b:c2:87:c1:03:74:ae:3e:90:ac:9c: 12:ef:bd:1e:7d:13:43:77:fe:e2:da:26:d0:d8:1d:3d:88:4f: ce:57:97:d3:6f:34:3d:1c:28:3d:b9:9d:fd:19:b9:75:2c:da: 50:dc:11:5a:4b:7d:d0:16:53:5e:7f:aa:28:01:09:b0:3f:6d: 4e:48:f9:2b:ba:99:e6:1c:5c:fe:ab:23:79:ad:0e:6d:12:98: cc:d4:20:20:7c:6d:dd:b7:f7:12:42:ba:5f:08:80:a5:93:42: bf:a3:41:d8:e8:16:44:89:28:c2:3f:f4:48:09:cc:c9:d0:91: d6:3e:a7:24:df:c7:69:32:5a:5e:37:f3:ed:00:f7:ab:53:62: 50:26:5a:b6:a9:31:21:f8:ee:c0:52:91:fe:37:fa:40:48:d2: 61:81:67:1d:57:63:cd:e7:da:7f:4e:db:94:e5:21:70:11:90: 58:09:22:98:14:6a:06:9c:97:96:08:f9:b2:e3:ab:9e:58:a0: 25:9a:03:30:09:b9:52:64:11:9a:42:21:09:3e:4b:24:8d:b1: 8a:7c:e4:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4QjUxMTAvBgNVBAUTKDkxQUVFOTYwREM0MUZGOThFRDFCMzcyMzM0MzE3Mzkz ODEyNkRDOUYwHhcNMjUxMjE4MjIwMzUzWhcNMjUxMjI1MjIwMzUzWjAYMRYwFAYD VQQDDA02OTQ0N2E0YS1mZTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQaqN7EEjVPkYmMIMrYFcP/VDmSAbcUJwKpSl9M5Ye9cmXjnE2uTrcQfw8BK nbExKSQDXvOGn84uJQCs/GxbNUcEG9/yh1MVHmryGqCAGu05DD1eAxcil/u1oFQ6 1iV9e1yhBI6E/S6vm0eVE4gNwfZOEmhQXlyrYEGBNe9DcjMOyy0/FQ84w6J82H1P +V8PX0RRVA7VnD+i78nQYxyCA6o0G0cNvnkpVuJzgq/uNN9YoNNVkIsqzZ1XbdbK /gMpDUbzortBDRCmbvggREAnwfkkO67oYdOuJKLhPTm+kz0M0Oi4dHDyrmEBmqOk riGvOapfq2dAe5PddrXtAMgdqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKhuRxYL 6qY3gMiGNJiZF6567hLZMB8GA1UdIwQYMBaAFJGu6WDcQf+Y7Rs3IzQxc5OBJtyf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjhCNS8zRUJDRDFEQUI5 NkIxMUVCQjE2RUVGMkNDNEY5QUUwMi9rYTdwWU54Ql81anRHemNqTkRGems0RW0z SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2thN3BZTnhCXzVqdEd6Y2pOREZ6azRFbTNKOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjhCNS8zRUJDRDFEQUI5NkIxMUVCQjE2RUVGMkNDNEY5QUUwMi9rYTdwWU54Ql81 anRHemNqTkRGems0RW0zSjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCITkxrrke1cLHJNrYaQIgoqduFbB2ecwm07rNXx2gKG1xHkr2xNR0+ hdU/e8KHwQN0rj6QrJwS770efRNDd/7i2ibQ2B09iE/OV5fTbzQ9HCg9uZ39Gbl1 LNpQ3BFaS33QFlNef6ooAQmwP21OSPkrupnmHFz+qyN5rQ5tEpjM1CAgfG3dt/cS QrpfCIClk0K/o0HY6BZEiSjCP/RICczJ0JHWPqck38dpMlpeN/PtAPerU2JQJlq2 qTEh+O7AUpH+N/pASNJhgWcdV2PN59p/TtuU5SFwEZBYCSKYFGoGnJeWCPmy46ue WKAlmgMwCblSZBGaQiEJPkskjbGKfORq -----END CERTIFICATE-----Generated at Fri Dec 19 19:06:13 2025 by rpki-client