This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft File: kzrtfDoGQianFEt0eMdAPazdgAU.mft (raw, json) Hash identifier: Ixa6P+v6leJSO+Apbadxms+kHWSsNn9KIc21zHepUlc= Subject key identifier: 59:27:48:C0:83:CB:8D:0B:7E:EC:19:81:A9:D5:30:37:8A:9B:96:F1 Authority key identifier: 93:3A:ED:7C:3A:06:42:26:A7:14:4B:74:78:C7:40:3D:AC:DD:80:05 Certificate issuer: /CN=A91A81F7/serialNumber=933AED7C3A064226A7144B7478C7403DACDD8005 Certificate serial: 03F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrtfDoGQianFEt0eMdAPazdgAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft Manifest number: 03EC Signing time: Mon 17 Nov 2025 04:01:20 +0000 Manifest this update: Mon 17 Nov 2025 04:01:20 +0000 Manifest next update: Mon 24 Nov 2025 04:01:20 +0000 Files and hashes: 1: kzrtfDoGQianFEt0eMdAPazdgAU.crl (hash: T9NSmfDAk/XwC+JsT8YEc9G4UDELOGHNeA8jpeGLpMM=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 1009 (0x3f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A81F7, serialNumber=933AED7C3A064226A7144B7478C7403DACDD8005 Validity Not Before: Nov 17 04:01:20 2025 GMT Not After : Nov 24 04:01:20 2025 GMT Subject: CN=691a9e10-9d3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4d:27:d8:12:8b:ab:c4:46:c8:72:f8:20:7d: 0f:54:df:c3:42:01:2a:cb:0d:65:a3:51:a2:59:05: 3d:09:96:33:0c:41:eb:0e:3a:4b:67:dd:81:22:c4: 0b:d6:c3:91:ce:62:41:84:0a:53:97:07:3f:fc:37: 53:02:7b:5b:3b:c3:f7:b6:49:09:89:e7:d9:2c:f5: f2:00:df:d6:2a:7f:b7:b5:3a:41:44:c9:ba:eb:d0: e5:56:15:b9:27:6c:a7:04:74:88:f1:11:62:1b:91: 3a:2d:0e:c2:a6:a7:cf:15:48:61:48:50:19:2c:ed: de:71:07:15:75:d5:74:08:0c:af:ae:21:e9:6a:70: 43:9c:fa:b8:47:80:17:ea:86:6e:f3:d0:ea:da:19: af:71:db:45:1e:7f:71:9e:a5:2d:66:5e:5c:92:28: 01:f1:60:f0:ee:90:39:65:8b:d5:a0:d9:59:93:32: aa:d0:a1:76:41:e2:01:0c:17:47:c0:80:16:bf:a8: b9:c8:85:bd:8a:ff:80:a2:1d:fb:4c:07:de:4d:f6: f9:c7:48:fc:4b:83:6b:9c:76:12:b2:33:91:a5:06: d0:bc:1e:55:e0:91:9f:21:65:a7:57:bf:03:ca:f6: c6:12:88:40:fb:6a:62:44:da:0c:de:1b:02:34:e5: 9a:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:27:48:C0:83:CB:8D:0B:7E:EC:19:81:A9:D5:30:37:8A:9B:96:F1 X509v3 Authority Key Identifier: keyid:93:3A:ED:7C:3A:06:42:26:A7:14:4B:74:78:C7:40:3D:AC:DD:80:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrtfDoGQianFEt0eMdAPazdgAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:b6:17:d5:3f:cd:cc:8b:59:d0:0a:17:98:e1:c1:4c:bb:b9: fb:f7:4f:db:d5:43:b2:3b:3f:7a:7c:b8:ca:a8:76:a9:b8:71: c3:cb:8e:9e:19:bd:4b:b5:97:ac:19:88:1c:9a:e7:2d:3a:94: f4:cc:48:e0:b3:8a:65:c5:7b:6b:e9:aa:40:a1:8a:f8:af:f3: 21:30:4b:e2:d2:52:e4:31:53:8f:a5:1d:bf:45:2a:bf:5f:ca: eb:af:e7:96:ba:4b:79:a4:ba:1c:20:54:fe:1a:36:2b:9a:47: ca:5f:52:48:6b:50:bf:d5:92:b4:bc:31:03:c7:29:36:c5:62: 02:2e:8f:3b:a6:56:8a:d3:3f:73:98:b0:fe:24:db:44:b4:9c: e7:54:67:14:bf:35:66:38:df:ab:58:0c:31:62:22:67:af:39: 5c:94:a1:1e:56:d1:6c:f8:a9:90:b5:73:2b:8b:4d:51:b1:f9: 95:78:24:c6:34:a7:09:c5:79:ae:43:01:9b:56:b3:cd:9f:8b: 89:7c:cd:9d:eb:b9:00:05:a1:56:8a:c4:0b:32:75:fa:71:30: 09:8c:e2:3b:5f:3b:d7:e4:ff:1e:b7:d2:c2:b3:f7:83:9c:f6: 9d:57:d2:af:57:be:3b:0a:a6:61:93:0a:8f:9d:32:22:7b:08: 5b:8b:a1:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgxRjcxMTAvBgNVBAUTKDkzM0FFRDdDM0EwNjQyMjZBNzE0NEI3NDc4Qzc0MDNE QUNERDgwMDUwHhcNMjUxMTE3MDQwMTIwWhcNMjUxMTI0MDQwMTIwWjAYMRYwFAYD VQQDEw02OTFhOWUxMC05ZDNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyE0n2BKLq8RGyHL4IH0PVN/DQgEqyw1lo1GiWQU9CZYzDEHrDjpLZ92BIsQL 1sORzmJBhApTlwc//DdTAntbO8P3tkkJiefZLPXyAN/WKn+3tTpBRMm669DlVhW5 J2ynBHSI8RFiG5E6LQ7CpqfPFUhhSFAZLO3ecQcVddV0CAyvriHpanBDnPq4R4AX 6oZu89Dq2hmvcdtFHn9xnqUtZl5ckigB8WDw7pA5ZYvVoNlZkzKq0KF2QeIBDBdH wIAWv6i5yIW9iv+Aoh37TAfeTfb5x0j8S4NrnHYSsjORpQbQvB5V4JGfIWWnV78D yvbGEohA+2piRNoM3hsCNOWajQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFknSMCD y40LfuwZganVMDeKm5bxMB8GA1UdIwQYMBaAFJM67Xw6BkImpxRLdHjHQD2s3YAF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODFGNy8zMEY0NkVFRTlG ODYxMUVDOEQ5RjNGMzRDNEY5QUUwMi9renJ0ZkRvR1FpYW5GRXQwZU1kQVBhemRn QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6cnRmRG9HUWlhbkZFdDBlTWRBUGF6ZGdBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODFGNy8zMEY0NkVFRTlGODYxMUVDOEQ5RjNGMzRDNEY5QUUwMi9renJ0ZkRvR1Fp YW5GRXQwZU1kQVBhemRnQVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJthfVP83Mi1nQCheY4cFMu7n790/b1UOyOz96fLjKqHapuHHDy46e Gb1LtZesGYgcmuctOpT0zEjgs4plxXtr6apAoYr4r/MhMEvi0lLkMVOPpR2/RSq/ X8rrr+eWukt5pLocIFT+GjYrmkfKX1JIa1C/1ZK0vDEDxyk2xWICLo87plaK0z9z mLD+JNtEtJznVGcUvzVmON+rWAwxYiJnrzlclKEeVtFs+KmQtXMri01RsfmVeCTG NKcJxXmuQwGbVrPNn4uJfM2d67kABaFWisQLMnX6cTAJjOI7XzvX5P8et9LCs/eD nPadV9KvV747CqZhkwqPnTIiewhbi6H9 -----END CERTIFICATE-----Generated at Mon Jan 12 07:14:38 2026 by rpki-client