This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft File: kfPcWc0PodJBy3h1fR2qksKsn2A.mft (raw, json) Hash identifier: sEWdzRHPOMJwLdEGjTL1hX/nR0GauGLlQOFttQFmbYU= Subject key identifier: 77:C4:E7:23:AB:4F:C6:5F:0C:8E:80:59:5D:86:C0:64:E6:0C:D8:A2 Authority key identifier: 91:F3:DC:59:CD:0F:A1:D2:41:CB:78:75:7D:1D:AA:92:C2:AC:9F:60 Certificate issuer: /CN=A91A0432/serialNumber=91F3DC59CD0FA1D241CB78757D1DAA92C2AC9F60 Certificate serial: 03F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft Manifest number: 03F1 Signing time: Thu 18 Dec 2025 23:49:38 +0000 Manifest this update: Thu 18 Dec 2025 23:49:37 +0000 Manifest next update: Thu 25 Dec 2025 23:49:37 +0000 Files and hashes: 1: kfPcWc0PodJBy3h1fR2qksKsn2A.crl (hash: gKsFt+uWEKA5ljHnTOn2YZvew7kqGhW9rN1WNC63Lk4=) 2: 4114509A597511EFA2B79A84C4F9AE02.roa (hash: 8U+UsiCXDKifnoegufsPJKGalX6CUXoFX96X70pYMYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.crl rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:49:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1016 (0x3f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0432, serialNumber=91F3DC59CD0FA1D241CB78757D1DAA92C2AC9F60 Validity Not Before: Dec 18 23:49:37 2025 GMT Not After : Dec 25 23:49:37 2025 GMT Subject: CN=69449312-15a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:b9:e6:3b:16:30:4c:59:ec:7b:4c:bc:fc:4b: 1b:ea:46:89:ec:25:68:d5:0b:0e:1c:6b:17:fb:a8: 66:00:6f:4e:fd:75:5b:ad:45:e6:70:04:da:8a:dd: 03:9a:c7:a4:65:1b:09:3d:e4:d2:4c:a2:07:3b:7c: 46:ea:fb:0c:d1:9b:f0:35:d4:18:88:87:4a:f2:c5: 0c:51:4f:f6:99:33:60:a2:48:07:15:1a:a5:a7:d3: 5a:6d:b1:97:01:be:1f:35:e0:74:b1:a7:9a:b6:bf: 1f:4a:b3:7a:5f:01:78:11:59:72:6f:5c:46:95:68: 6f:62:23:e3:ab:8e:b1:d9:74:f3:78:2b:c7:5a:0b: f6:da:a0:17:63:d9:bf:e7:a0:e2:af:18:d1:88:11: 92:67:a2:d3:26:b2:28:86:74:ad:f2:c5:2b:cb:ae: 72:bc:2f:dc:65:be:01:a7:bd:f2:0b:45:88:d1:bc: aa:c7:1d:9e:8e:37:50:4e:0d:af:55:9d:2a:ff:2a: 87:53:bd:1e:45:45:c1:26:57:5f:c2:1b:58:d6:8a: 7f:ba:3c:5d:49:46:ed:b0:e4:d7:ee:9e:6f:5e:f1: 5a:84:bc:b8:99:87:1a:0f:c0:8f:cf:2b:eb:47:bb: 1e:92:4d:d7:f9:de:fc:71:3d:22:0a:d1:75:6d:04: 16:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:C4:E7:23:AB:4F:C6:5F:0C:8E:80:59:5D:86:C0:64:E6:0C:D8:A2 X509v3 Authority Key Identifier: keyid:91:F3:DC:59:CD:0F:A1:D2:41:CB:78:75:7D:1D:AA:92:C2:AC:9F:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:8b:15:97:e7:07:cd:c4:ac:9a:f4:26:2f:8f:4d:bd:62:46: b3:3f:c3:19:98:0f:b0:b7:3a:a3:fa:8c:63:b2:a5:50:5b:e3: 79:7f:22:e0:89:c2:c1:17:5f:3b:a2:3c:5a:c8:14:19:02:a3: 63:56:30:ac:ba:4a:82:9d:f3:bc:b3:70:4a:1a:2c:c4:40:13: 24:12:0e:65:7f:31:48:10:91:61:41:2d:e9:7a:4a:09:5e:ec: 79:94:e9:13:f5:67:36:9f:81:13:b3:c4:2e:90:54:6b:e8:f5: af:02:14:b6:e9:84:c2:06:1d:b3:7c:13:e2:c3:32:15:e7:00: ff:8d:de:c2:d6:ea:6c:96:65:ab:6f:55:f6:45:0c:28:c7:a1: 24:1a:f2:6c:8b:34:7d:d2:87:1a:5e:a0:2b:66:dc:b2:03:3e: 69:5f:c4:21:29:a0:a5:ac:76:a6:c1:85:d9:52:b2:a5:99:f8: e5:d5:78:02:40:4f:5e:ea:99:d9:f8:ee:c0:02:12:3f:0d:da: b9:a4:ec:ea:7b:c6:e7:dd:a7:bb:dd:80:85:d7:55:67:3f:96: 51:d7:d4:9d:1e:2b:79:9f:b4:83:94:82:20:59:2b:77:e7:5c: 82:1e:5f:21:c1:1b:43:d8:16:4e:f1:e9:7b:68:fc:9b:05:c9: 8a:de:cd:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA0MzIxMTAvBgNVBAUTKDkxRjNEQzU5Q0QwRkExRDI0MUNCNzg3NTdEMURBQTky QzJBQzlGNjAwHhcNMjUxMjE4MjM0OTM3WhcNMjUxMjI1MjM0OTM3WjAYMRYwFAYD VQQDDA02OTQ0OTMxMi0xNWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+bnmOxYwTFnse0y8/Esb6kaJ7CVo1QsOHGsX+6hmAG9O/XVbrUXmcATait0D msekZRsJPeTSTKIHO3xG6vsM0ZvwNdQYiIdK8sUMUU/2mTNgokgHFRqlp9NabbGX Ab4fNeB0saeatr8fSrN6XwF4EVlyb1xGlWhvYiPjq46x2XTzeCvHWgv22qAXY9m/ 56DirxjRiBGSZ6LTJrIohnSt8sUry65yvC/cZb4Bp73yC0WI0byqxx2ejjdQTg2v VZ0q/yqHU70eRUXBJldfwhtY1op/ujxdSUbtsOTX7p5vXvFahLy4mYcaD8CPzyvr R7sekk3X+d78cT0iCtF1bQQWewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHfE5yOr T8ZfDI6AWV2GwGTmDNiiMB8GA1UdIwQYMBaAFJHz3FnND6HSQct4dX0dqpLCrJ9g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDQzMi9GNUJGNjk5Q0E0 Q0ExMUVDQUM0RTU3NDRDNEY5QUUwMi9rZlBjV2MwUG9kSkJ5M2gxZlIycWtzS3Nu MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tmUGNXYzBQb2RKQnkzaDFmUjJxa3NLc24yQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDQzMi9GNUJGNjk5Q0E0Q0ExMUVDQUM0RTU3NDRDNEY5QUUwMi9rZlBjV2MwUG9k SkJ5M2gxZlIycWtzS3NuMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnixWX5wfNxKya9CYvj029YkazP8MZmA+wtzqj+oxjsqVQW+N5fyLg icLBF187ojxayBQZAqNjVjCsukqCnfO8s3BKGizEQBMkEg5lfzFIEJFhQS3pekoJ Xux5lOkT9Wc2n4ETs8QukFRr6PWvAhS26YTCBh2zfBPiwzIV5wD/jd7C1upslmWr b1X2RQwox6EkGvJsizR90ocaXqArZtyyAz5pX8QhKaClrHamwYXZUrKlmfjl1XgC QE9e6pnZ+O7AAhI/Ddq5pOzqe8bn3ae73YCF11VnP5ZR19SdHit5n7SDlIIgWSt3 51yCHl8hwRtD2BZO8el7aPybBcmK3s34 -----END CERTIFICATE-----Generated at Fri Dec 19 17:45:25 2025 by rpki-client